[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH] Fix the range_transition rule

To: Stephen Smalley <sds@xxxxxxxxxxxxx>
Subject: Re: [PATCH] Fix the range_transition rule
From: Joshua Brindle <jbrindle@xxxxxxxxxx>
Date: Mon, 08 Aug 2005 10:06:02 -0400
Cc: Paul Moore <paul.moore@xxxxxx>, selinux@xxxxxxxxxxxxx, jkim@xxxxxxxxxxxxx, chanson@xxxxxxxxxxxxx, Daniel J Walsh <dwalsh@xxxxxxxxxx>
In-reply-to: <1123509256.13654.158.camel@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
References: <42F3CBB0.4060304@xxxxxx> <42F4DB2D.2040002@xxxxxxxxxx> <1123509256.13654.158.camel@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
Sender: owner-selinux@xxxxxxxxxxxxx
User-agent: Mozilla Thunderbird 1.0 (X11/20041208)

Stephen Smalley wrote:

On Sat, 2005-08-06 at 11:45 -0400, Joshua Brindle wrote:

Thanks, however this should probably be using the typemap that alreadydoes this sort of thing.something like new_range->type = state->typemap[type->value - 1] shouldwork correctly.


How about this patch?

Index: libsepol/src/expand.c
===================================================================
RCS file: /nfshome/pal/CVS/selinux-usr/libsepol/src/expand.c,v
retrieving revision 1.2
diff -u -p -r1.2 expand.c
--- libsepol/src/expand.c	2 Aug 2005 18:32:15 -0000	1.2
+++ libsepol/src/expand.c	8 Aug 2005 13:49:45 -0000
@@ -1352,8 +1352,8 @@ static int range_trans_clone(expand_stat
                if ((new_range = malloc(sizeof(*new_range))) == NULL) {
                        goto out_of_mem;
                }
-                new_range->dom = range->dom;
-                new_range->type = range->type;
+                new_range->dom = state->typemap[range->dom-1];
+                new_range->type = state->typemap[range->type-1];
                if (mls_level_clone(&new_range->range.level[0], &range->range.level[0]) == -1 ||
                    mls_level_clone(&new_range->range.level[1], &range->range.level[1])) {
                        goto out_of_mem;

That looks correct.

--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with
the words "unsubscribe selinux" without quotes as the message.

References:
- [PATCH] Fix the range_transition rule
  - From: Paul Moore
- Re: [PATCH] Fix the range_transition rule
  - From: Joshua Brindle
- Re: [PATCH] Fix the range_transition rule
  - From: Stephen Smalley

Prev by Date: Re: [PATCH] Fix the range_transition rule
Next by Date: Re: libselinux does not compile on ia64
Previous by thread: Re: [PATCH] Fix the range_transition rule
Next by thread: libselinux does not compile on ia64
Index(es):
- Date
- Thread

This mailing list archive is a service of Copilot Consulting.