On Sat, Aug 20, 2005 at 07:51:17PM -0500, Mike Hokenson wrote: > > I just noticed I was building cron w/out selinux support. :P
Yes, I guessed as much :-)
>
> Here's a backtrace of a -g:
(..)
>
> Which still pretty much leads back to the same place...
Yes.
> I'm not sure what your patch looks like, but just testing for a NULL
> u->scontext didn't work, I had to do this:
Why not? This is the patch I used:
@@ -133,7 +133,8 @@
free_entry(e);
}
#ifdef WITH_SELINUX
- freecon(u->scontext);
+ if (u->scontext != NULL)
+ freecon(u->scontext);
#endif
free(u);
}
> #ifdef WITH_SELINUX
> + u->scontext = NULL;
> +
Hmm.. this might look like is needed too but I would like Russel to
confirm it.
> I originally pulled the other u->scontext = NULL;, but wasn't sure if the
> security context would ever be set when get_security_context() returns -1.
> It's working right now without, been runnin for 10 minutes.
Please let me know if the single patch I sent out works for you. I'm
not sure why you are seeing this and nobody else is reporting it...
There's definitely something which is system-specific here but I'm no
SElinux expert.
Regards
Javier
signature.asc
Description: Digital signature
