security: dac: Add is_toplevel to SetImageLabelInternal

This will simplify future patches and make the logic easier to follow Reviewed-by: N Daniel Henrique Barboza <danielhb413@gmail.com> Reviewed-by: N Michal Privoznik <mprivozn@redhat.com> Signed-off-by: N Cole Robinson <crobinso@redhat.com>

security: dac: Add is_toplevel to SetImageLabelInternal
This will simplify future patches and make the logic easier to follow Reviewed-by: N Daniel Henrique Barboza <danielhb413@gmail.com> Reviewed-by: N Michal Privoznik <mprivozn@redhat.com> Signed-off-by: N Cole Robinson <crobinso@redhat.com>
c1f0b312 · Cole Robinson · a7262a66 · c1f0b312
隐藏空白更改
内联并排

Showing with 2 addition and 1 deletion

src/security/security_dac.c src/security/security_dac.c +2 -1

未找到文件。
--- a/src/security/security_dac.c
+++ b/src/security/security_dac.c
@@ -884,6 +884,7 @@ virSecurityDACSetImageLabelInternal(virSecurityManagerPtr mgr,
    virSecurityDeviceLabelDefPtr parent_seclabel = NULL;
    virSecurityDACDataPtr priv = virSecurityManagerGetPrivateData(mgr);
    bool remember;
+    bool is_toplevel = parent == src;
    uid_t user;
    gid_t group;

@@ -928,7 +929,7 @@ virSecurityDACSetImageLabelInternal(virSecurityManagerPtr mgr,
     * but the top layer, or read only image, or disk explicitly
     * marked as shared.
     */
-    remember = src == parent && !src->readonly && !src->shared;
+    remember = is_toplevel && !src->readonly && !src->shared;

    return virSecurityDACSetOwnership(mgr, src, NULL, user, group, remember);
 }