85a42ec87d51daad9f99ffa972a5a22542d9d928 - fp2-dev/platform/external/selinux

commit	85a42ec87d51daad9f99ffa972a5a22542d9d928	[log] [tgz]
author	Stephen Smalley <sds@tycho.nsa.gov>	Mon Dec 23 14:03:31 2013 -0500
committer	Stephen Smalley <sds@tycho.nsa.gov>	Mon Dec 30 14:36:19 2013 -0500
tree	289511eddec4990812cd87020b523038e9ee0539
parent	582c2d019926e5a34a637be6ff6eedd93e05f4ca [diff]

Fix a bug in the userspace AVC that broke per-domain permissive mode.

Failure to copy the entire av_decision structure, including the
flags field, would prevent preservation of the SELINUX_AVD_FLAGS_PERMISSIVE
flag and thus cause per-domain permissive to not be honored for userspace
permission checks.

Also ensure that we clear the entire structure.

Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>

libselinux/src/avc.c[diff]

1 file changed

tree: 289511eddec4990812cd87020b523038e9ee0539

checkpolicy/
libselinux/
libsemanage/
libsepol/
policycoreutils/
scripts/
sepolgen/
.gitignore
Makefile
README