mirror of
https://github.com/SELinuxProject/selinux
synced 2025-01-28 16:22:45 +00:00
3592ebea1a
When the rolemap and pointer to the base module are available, if a non-zero bit in role_set_t.roles is a role attribute, expand it before remap. Note, during module compile the rolemap may not be available, the potential duplicates of a regular role and the role attribute that the regular role belongs to could be properly handled by copy_role_allow() and copy_role_trans() during module expansion. Take advantage of the role_val_to_struct[] of the base module, since when role_set_expand() is invoked, the role_val_to_struct[] of the out module may have not been established yet. Also cleanup the error handling of role_set_expand(). Signed-off-by: Harry Ciao <qingtao.cao@windriver.com> Signed-off-by: Steve Lawrence <slawrence@tresys.com> |
||
---|---|---|
.. | ||
policydb | ||
boolean_record.h | ||
booleans.h | ||
context_record.h | ||
context.h | ||
debug.h | ||
errcodes.h | ||
handle.h | ||
iface_record.h | ||
interfaces.h | ||
module.h | ||
node_record.h | ||
nodes.h | ||
policydb.h | ||
port_record.h | ||
ports.h | ||
roles.h | ||
sepol.h | ||
user_record.h | ||
users.h |