topjohnwu/selinux
1
0
Fork 0
mirror of https://github.com/topjohnwu/selinux.git synced 2024-11-28 14:00:45 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

policycoreutils/sandbox: Fix sandbox to propagate specified MCS/MLS Security Level.

Browse Source 
If "level" option is used to start sandbox commands, this level is not propagated
to specified  homedir and tmpdir directories. See rhbz #1279006.

Signed-off-by: Miroslav Grepl <mgrepl@redhat.com>
This commit is contained in:
Miroslav Grepl 2015-11-14 08:48:40 +01:00 committed by James Carter
parent 50c349df8f
commit 0f4620d611
1 changed files with 0 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
policycoreutils/sandbox/sandbox
View File

@ -424,9 +424,6 @@ sandbox [-h] [-l level ] [-[X|M] [-H homedir] [-T tempdir]] [-I includefile ] [-
self.__filecon = "%s:object_r:sandbox_file_t:%s" % (con[0], level)
def __setup_dir(self):
if self.__options.level or self.__options.session:
return
if self.__options.homedir:
selinux.chcon(self.__options.homedir, self.__filecon, recursive=True)
self.__homedir = self.__options.homedir