[PATCH] Add screens to the PRIVATE_XSELINUX set.

Justin P. Mattock justinmattock at gmail.com
Mon Aug 30 17:45:56 PDT 2010


On 08/30/2010 01:37 PM, Eamon Walsh wrote:
> The SELinux extension does store a security label in the screen
> devPrivates.  Fixes crash caused by overwriting another private.
>
> Signed-off-by: Eamon Walsh<ewalsh at tycho.nsa.gov>
> Reported-by: Justin Mattock<justinmattock at gmail.com>
> ---
>   dix/privates.c |    1 +
>   1 files changed, 1 insertions(+), 0 deletions(-)
>
> diff --git a/dix/privates.c b/dix/privates.c
> index ec818d4..17e1050 100644
> --- a/dix/privates.c
> +++ b/dix/privates.c
> @@ -71,6 +71,7 @@ static struct {
>   } keys[PRIVATE_LAST];
>
>   static const Bool xselinux_private[PRIVATE_LAST] = {
> +    [PRIVATE_SCREEN] = TRUE,
>       [PRIVATE_CLIENT] = TRUE,
>       [PRIVATE_WINDOW] = TRUE,
>       [PRIVATE_PIXMAP] = TRUE,


Alright.. out for a bit, and now back.. applied your patch and am glad 
to report that the xserver_object_manager --> on boolean is switched on
and I'm able to start gdm xfce4-session without crashing..
Ill add the allow rules into the policy and run it to see if anything 
happens.

Thank you vary much for this..

Justin P. Mattock


More information about the xorg-devel mailing list