commit | 85a42ec87d51daad9f99ffa972a5a22542d9d928 | [log] [tgz] |
---|---|---|
author | Stephen Smalley <sds@tycho.nsa.gov> | Mon Dec 23 14:03:31 2013 -0500 |
committer | Stephen Smalley <sds@tycho.nsa.gov> | Mon Dec 30 14:36:19 2013 -0500 |
tree | 289511eddec4990812cd87020b523038e9ee0539 | |
parent | 582c2d019926e5a34a637be6ff6eedd93e05f4ca [diff] |
Fix a bug in the userspace AVC that broke per-domain permissive mode. Failure to copy the entire av_decision structure, including the flags field, would prevent preservation of the SELINUX_AVD_FLAGS_PERMISSIVE flag and thus cause per-domain permissive to not be honored for userspace permission checks. Also ensure that we clear the entire structure. Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>