[PATCH] Fix problem where call involving the SELinux AVC occurs before the AVC is initialized
James Carter
jwcart2 at tycho.nsa.gov
Tue Oct 7 07:26:56 PDT 2008
On Sat, 2008-10-04 at 11:49 +0530, shaunak saha wrote:
>
> >if the context is not valid for the current policy then the
> >sidtab_context_to_sid will not be successful (although it
> shouldn't
> >crash).
>
>
> Yes.Now after calling bus_selinux_full_init before
> process_config_postinit it does crashes.
Are you saying that you're still getting a segfault after applying my
patch?
> And for valid context i think i have given the valid context only.The
> same context is working fine in FC6 but here with dbus-1.2.3 code it
> does not seem to work.
It works for me now with both "foo_t" and "user_u:user_r:user_t" used as
the contexts. So even though "foo_t" is not a valid context with the
policy I am running, it still doesn't cause me any problems.
> Is there any change in how we define the context in system.conf file?
No.
--
James Carter <jwcart2 at tycho.nsa.gov>
National Security Agency
More information about the dbus
mailing list