Handle SELinux authorisation roles

Rejected upstream due to discomfort with magic usernames; a better approach will need an SSH protocol change. In the meantime, this came from Debian's SELinux maintainer, so we'll keep it until we have something better. Bug: https://bugzilla.mindrot.org/show_bug.cgi?id=1641 Bug-Debian: http://bugs.debian.org/394795 Last-Update: 2015-08-19 Patch-Name: selinux-role.patch
author: Manoj Srivastava <srivasta@debian.org> 2014-02-09 16:09:49 +0000
committer: Colin Watson <cjwatson@debian.org> 2016-08-07 12:18:42 +0100
commit: 7a7851c903e5dbb58a85014deb2c88cb718068c9 (patch)
tree: 3c558bbeaf0e964e6b9c55128f0f8007113c47ef /auth.h
parent: c027de5eb3e6cb1718990841c2a9cbc89fd53151 (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/auth.h b/auth.h
index 55170af50..50baeaadb 100644
--- a/auth.h
+++ b/auth.h
@@ -62,6 +62,7 @@ struct Authctxt {
        char            *service;
        struct passwd   *pw;            /* set if 'valid' */
        char            *style;
+        char            *role;
        void            *kbdintctxt;
        char            *info;          /* Extra info for next auth_log */
 #ifdef BSD_AUTH
author	Manoj Srivastava <srivasta@debian.org>	2014-02-09 16:09:49 +0000
committer	Colin Watson <cjwatson@debian.org>	2016-08-07 12:18:42 +0100
commit	7a7851c903e5dbb58a85014deb2c88cb718068c9 (patch)
tree	3c558bbeaf0e964e6b9c55128f0f8007113c47ef /auth.h
parent	c027de5eb3e6cb1718990841c2a9cbc89fd53151 (diff)

diff --git a/auth.h b/auth.h index 55170af50..50baeaadb 100644 --- a/auth.h +++ b/auth.h
@@ -62,6 +62,7 @@ struct Authctxt {
62	char *service;	62	char *service;
63	struct passwd pw; / set if 'valid' */	63	struct passwd pw; / set if 'valid' */
64	char *style;	64	char *style;
		65	char *role;
65	void *kbdintctxt;	66	void *kbdintctxt;
66	char info; / Extra info for next auth_log */	67	char info; / Extra info for next auth_log */
67	#ifdef BSD_AUTH	68	#ifdef BSD_AUTH