core: don't forget about fallback_smack_process_label

author Łukasz Stelmach <l.stelmach@samsung.com>

Wed, 23 Oct 2024 10:58:36 +0000 (12:58 +0200)

committer Yu Watanabe <watanabe.yu+github@gmail.com>

Wed, 23 Oct 2024 18:24:29 +0000 (03:24 +0900)
author Łukasz Stelmach <l.stelmach@samsung.com>
Wed, 23 Oct 2024 10:58:36 +0000 (12:58 +0200)
committer Yu Watanabe <watanabe.yu+github@gmail.com>
Wed, 23 Oct 2024 18:24:29 +0000 (03:24 +0900)
diff --git a/src/core/exec-invoke.c b/src/core/exec-invoke.c

index d5bd43bcd78e14044b0bee1c5956064a50ff417a..cdfa9f823b124201e7e9b85bb40f8cdc181d212f 100644 (file)
--- a/src/core/exec-invoke.c
+++ b/src/core/exec-invoke.c
@@ -4995,7 +4995,7 @@ int exec_invoke(
  #if ENABLE_SMACK
                  /* LSM Smack needs the capability CAP_MAC_ADMIN to change the current execution security context of the
                   * process. This is the latest place before dropping capabilities. Other MAC context are set later. */
-                if (use_smack && context->smack_process_label) {
+                if (use_smack) {
                          r = setup_smack(params, context, executable_fd);
                          if (r < 0 && !context->smack_process_label_ignore) {
                                  *exit_status = EXIT_SMACK_PROCESS_LABEL;
author	Łukasz Stelmach <l.stelmach@samsung.com>
	Wed, 23 Oct 2024 10:58:36 +0000 (12:58 +0200)
committer	Yu Watanabe <watanabe.yu+github@gmail.com>
	Wed, 23 Oct 2024 18:24:29 +0000 (03:24 +0900)