summaryrefslogtreecommitdiff
path: root/sshd.c
diff options
context:
space:
mode:
authorManoj Srivastava <srivasta@debian.org>2014-02-09 16:09:49 +0000
committerColin Watson <cjwatson@debian.org>2018-04-03 08:20:56 +0100
commit7da968d97beba5fb80a5488516563ea1376db907 (patch)
tree0e9107c92138281814181acbdd1428a6862ef63b /sshd.c
parent398af3d66bfe8dc7d436570026571e522a0a13a0 (diff)
Handle SELinux authorisation roles
Rejected upstream due to discomfort with magic usernames; a better approach will need an SSH protocol change. In the meantime, this came from Debian's SELinux maintainer, so we'll keep it until we have something better. Bug: https://bugzilla.mindrot.org/show_bug.cgi?id=1641 Bug-Debian: http://bugs.debian.org/394795 Last-Update: 2017-10-04 Patch-Name: selinux-role.patch
Diffstat (limited to 'sshd.c')
-rw-r--r--sshd.c2
1 files changed, 1 insertions, 1 deletions
diff --git a/sshd.c b/sshd.c
index 4ed0364f2..6d911c19a 100644
--- a/sshd.c
+++ b/sshd.c
@@ -679,7 +679,7 @@ privsep_postauth(Authctxt *authctxt)
679 reseed_prngs(); 679 reseed_prngs();
680 680
681 /* Drop privileges */ 681 /* Drop privileges */
682 do_setusercontext(authctxt->pw); 682 do_setusercontext(authctxt->pw, authctxt->role);
683 683
684 skip: 684 skip:
685 /* It is safe now to apply the key state */ 685 /* It is safe now to apply the key state */