libuser

Clone
Source Code
GIT

#48 Do not use deprecated flask.h and av_permissions.h
Closed 3 years ago by atikhonov. Opened 3 years ago by atikhonov.
atikhonov/libuser fix-selinux-compilation-issue  into  master

file modified
+3 -4 
@@ -26,8 +26,6 @@ 
 

  #include <unistd.h>
 

  #ifdef WITH_SELINUX
 

  #include <selinux/selinux.h>
 

- #include <selinux/av_permissions.h>
 

- #include <selinux/flask.h>
 

  #include <selinux/context.h>
 

  #endif
 

  #include "../lib/error.h"
 
@@ -57,7 +55,7 @@ 
 

  

  			retval = security_compute_av(user_context,
 

  						     user_context,
 

- 						     SECCLASS_PASSWD,
 

+ 						     string_to_security_class("passwd"),
 

   						     access, &avd);
 

  

  			if (retval == 0 && (avd.allowed & access) == access)
 
@@ -221,7 +219,8 @@ 
 

  #ifdef WITH_SELINUX
 

  	if (is_selinux_enabled() > 0) {
 

  		/* FIXME: PASSWD_CHSH, PASSWD_PASSWD ? */
 

- 		if (getuid() == 0 && check_access(user, PASSWD__CHFN) != 0) {
 

+ 		if (getuid() == 0 &&
 

+ 		    check_access(user, string_to_av_perm(string_to_security_class("passwd"), "chfn")) != 0) {
 

  			security_context_t user_context;
 

  

  			if (getprevcon(&user_context) < 0)

no initial comment

Ah, there is https://pagure.io/libuser/pull-request/45, sorry for the noise.

Pull-Request has been closed by atikhonov
3 years ago
Metadata
None
No Tags
Changes Summary 1
+3 -4
file changed
apps/apputil.c
Powered by Pagure 5.13.3
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.