libsemanage/0005-libsemanage-genhomedircon-check-usepasswd.patch

From 511f8bbf779e10152d5af491e8b6a408b8ad666c Mon Sep 17 00:00:00 2001
From: Vit Mojzis <vmojzis@redhat.com>
Date: Fri, 30 Oct 2020 17:42:17 +0100
Subject: [PATCH] libsemanage/genhomedircon: check usepasswd

Only add user homedir contexts when usepasswd = True

Resolves:
   # grep usepasswd /etc/selinux/semanage.conf
   usepasswd=False
   # useradd -Z unconfined_u -d /tmp test
   # matchpathcon /tmp
   /tmp	unconfined_u:object_r:user_home_dir_t:s0

Signed-off-by: Vit Mojzis <vmojzis@redhat.com>
---
 libsemanage/src/genhomedircon.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/libsemanage/src/genhomedircon.c b/libsemanage/src/genhomedircon.c
index d08c88de99a7..18d3d99a1254 100644
--- a/libsemanage/src/genhomedircon.c
+++ b/libsemanage/src/genhomedircon.c
@@ -1332,7 +1332,7 @@ static int write_context_file(genhomedircon_settings_t * s, FILE * out)
 			s->fallback->home = NULL;
 		}
 	}
-	if (user_context_tpl || username_context_tpl) {
+	if ((s->usepasswd) && (user_context_tpl || username_context_tpl)) {
 		if (write_username_context(s, out, username_context_tpl,
 					   s->fallback) != STATUS_SUCCESS) {
 			retval = STATUS_ERR;
-- 
2.29.2
Merged update from upstream sources This is an automated DistroBaker update from upstream sources. If you do not know what this is about or would like to opt out, contact the OSCI team. Source: https://src.fedoraproject.org/rpms/libsemanage.git#9fe6a11821dccb3a8444233cd2154f7f0fea1917 2020-11-24 10:53:59 +00:00			`From 511f8bbf779e10152d5af491e8b6a408b8ad666c Mon Sep 17 00:00:00 2001`
			`From: Vit Mojzis <vmojzis@redhat.com>`
			`Date: Fri, 30 Oct 2020 17:42:17 +0100`
			`Subject: [PATCH] libsemanage/genhomedircon: check usepasswd`

			`Only add user homedir contexts when usepasswd = True`

			`Resolves:`
			`# grep usepasswd /etc/selinux/semanage.conf`
			`usepasswd=False`
			`# useradd -Z unconfined_u -d /tmp test`
			`# matchpathcon /tmp`
			`/tmp unconfined_u:object_r:user_home_dir_t:s0`

			`Signed-off-by: Vit Mojzis <vmojzis@redhat.com>`
			`---`
			`libsemanage/src/genhomedircon.c \| 2 +-`
			`1 file changed, 1 insertion(+), 1 deletion(-)`

			`diff --git a/libsemanage/src/genhomedircon.c b/libsemanage/src/genhomedircon.c`
			`index d08c88de99a7..18d3d99a1254 100644`
			`--- a/libsemanage/src/genhomedircon.c`
			`+++ b/libsemanage/src/genhomedircon.c`
			`@@ -1332,7 +1332,7 @@ static int write_context_file(genhomedircon_settings_t * s, FILE * out)`
			`s->fallback->home = NULL;`
			`}`
			`}`
			`- if (user_context_tpl \|\| username_context_tpl) {`
			`+ if ((s->usepasswd) && (user_context_tpl \|\| username_context_tpl)) {`
			`if (write_username_context(s, out, username_context_tpl,`
			`s->fallback) != STATUS_SUCCESS) {`
			`retval = STATUS_ERR;`
			`--`
			`2.29.2`