[PATCH] selinux-at: new module

bug-gnulib

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[PATCH] selinux-at: new module

From:	Jim Meyering
Subject:	[PATCH] selinux-at: new module
Date:	Thu, 06 Aug 2009 14:32:20 +0200

I've just pushed this:

>From 27aa230554a630b52c2ce1540f6274c0aa4eaed1 Mon Sep 17 00:00:00 2001
From: Jim Meyering <address@hidden>
Date: Thu, 6 Aug 2009 14:15:23 +0200
Subject: [PATCH] selinux-at: new module

Initially written for coreutils, this module will soon be
used by findutils, too.
* MODULES.html.sh [Misc]: Add selinux-at.
* lib/selinux-at.h: New file, from coreutils.
* lib/selinux-at.c: Likewise.
* modules/selinux-at: Likewise.
(License): Change from LGPL to GPL, since it depends
on the GPL'd openat module.
---
 ChangeLog          |   10 ++++++
 MODULES.html.sh    |    1 +
 lib/selinux-at.c   |   88 ++++++++++++++++++++++++++++++++++++++++++++++++++++
 lib/selinux-at.h   |   23 +++++++++++++
 modules/selinux-at |   32 +++++++++++++++++++
 5 files changed, 154 insertions(+), 0 deletions(-)
 create mode 100644 lib/selinux-at.c
 create mode 100644 lib/selinux-at.h
 create mode 100644 modules/selinux-at

diff --git a/ChangeLog b/ChangeLog
index 50d3cd3..7bd3dce 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,5 +1,15 @@
 2009-08-06  Jim Meyering  <address@hidden>

+       selinux-at: new module
+       Initially written for coreutils, this module will soon be
+       used by findutils, too.
+       * MODULES.html.sh [Misc]: Add selinux-at.
+       * lib/selinux-at.h: New file, from coreutils.
+       * lib/selinux-at.c: Likewise.
+       * modules/selinux-at: Likewise.
+       (License): Change from LGPL to GPL, since it depends
+       on the GPL'd openat module.
+
        doc: update README
        * README: Remove references to cogito.
        Remove cvs-repo-updating instructions from 2007.
diff --git a/MODULES.html.sh b/MODULES.html.sh
index ef48ec5..ce5ac80 100755
--- a/MODULES.html.sh
+++ b/MODULES.html.sh
@@ -3114,6 +3114,7 @@ func_all_modules ()
   func_module quote
   func_module readutmp
   func_module random_r
+  func_module selinux-at
   func_module sysexits
   func_module u64
   func_module verror
diff --git a/lib/selinux-at.c b/lib/selinux-at.c
new file mode 100644
index 0000000..18e6b0f
--- /dev/null
+++ b/lib/selinux-at.c
@@ -0,0 +1,88 @@
+/* openat-style fd-relative functions for SE Linux
+   Copyright (C) 2007, 2009 Free Software Foundation, Inc.
+
+   This program is free software: you can redistribute it and/or modify
+   it under the terms of the GNU General Public License as published by
+   the Free Software Foundation, either version 3 of the License, or
+   (at your option) any later version.
+
+   This program is distributed in the hope that it will be useful,
+   but WITHOUT ANY WARRANTY; without even the implied warranty of
+   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+   GNU General Public License for more details.
+
+   You should have received a copy of the GNU General Public License
+   along with this program.  If not, see <http://www.gnu.org/licenses/>.  */
+
+/* written by Jim Meyering */
+
+#include <config.h>
+
+#include "selinux-at.h"
+#include "openat.h"
+
+#include <stdlib.h>
+#include <unistd.h>
+#include <errno.h>
+#include <fcntl.h>
+
+#include "dirname.h" /* solely for definition of IS_ABSOLUTE_FILE_NAME */
+#include "save-cwd.h"
+
+#include "openat-priv.h"
+
+#define AT_FUNC_NAME getfileconat
+#define AT_FUNC_F1 getfilecon
+#define AT_FUNC_F2 getfilecon
+#define AT_FUNC_USE_F1_COND 1
+#define AT_FUNC_POST_FILE_PARAM_DECLS , security_context_t *con
+#define AT_FUNC_POST_FILE_ARGS        , con
+#include "at-func.c"
+#undef AT_FUNC_NAME
+#undef AT_FUNC_F1
+#undef AT_FUNC_F2
+#undef AT_FUNC_USE_F1_COND
+#undef AT_FUNC_POST_FILE_PARAM_DECLS
+#undef AT_FUNC_POST_FILE_ARGS
+
+#define AT_FUNC_NAME lgetfileconat
+#define AT_FUNC_F1 lgetfilecon
+#define AT_FUNC_F2 lgetfilecon
+#define AT_FUNC_USE_F1_COND 1
+#define AT_FUNC_POST_FILE_PARAM_DECLS , security_context_t *con
+#define AT_FUNC_POST_FILE_ARGS        , con
+#include "at-func.c"
+#undef AT_FUNC_NAME
+#undef AT_FUNC_F1
+#undef AT_FUNC_F2
+#undef AT_FUNC_USE_F1_COND
+#undef AT_FUNC_POST_FILE_PARAM_DECLS
+#undef AT_FUNC_POST_FILE_ARGS
+
+#define AT_FUNC_NAME setfileconat
+#define AT_FUNC_F1 setfilecon
+#define AT_FUNC_F2 setfilecon
+#define AT_FUNC_USE_F1_COND 1
+#define AT_FUNC_POST_FILE_PARAM_DECLS , security_context_t con
+#define AT_FUNC_POST_FILE_ARGS        , con
+#include "at-func.c"
+#undef AT_FUNC_NAME
+#undef AT_FUNC_F1
+#undef AT_FUNC_F2
+#undef AT_FUNC_USE_F1_COND
+#undef AT_FUNC_POST_FILE_PARAM_DECLS
+#undef AT_FUNC_POST_FILE_ARGS
+
+#define AT_FUNC_NAME lsetfileconat
+#define AT_FUNC_F1 lsetfilecon
+#define AT_FUNC_F2 lsetfilecon
+#define AT_FUNC_USE_F1_COND 1
+#define AT_FUNC_POST_FILE_PARAM_DECLS , security_context_t con
+#define AT_FUNC_POST_FILE_ARGS        , con
+#include "at-func.c"
+#undef AT_FUNC_NAME
+#undef AT_FUNC_F1
+#undef AT_FUNC_F2
+#undef AT_FUNC_USE_F1_COND
+#undef AT_FUNC_POST_FILE_PARAM_DECLS
+#undef AT_FUNC_POST_FILE_ARGS
diff --git a/lib/selinux-at.h b/lib/selinux-at.h
new file mode 100644
index 0000000..212e252
--- /dev/null
+++ b/lib/selinux-at.h
@@ -0,0 +1,23 @@
+/* Prototypes for openat-style fd-relative SELinux functions
+   Copyright (C) 2007, 2009 Free Software Foundation, Inc.
+
+   This program is free software: you can redistribute it and/or modify
+   it under the terms of the GNU General Public License as published by
+   the Free Software Foundation, either version 3 of the License, or
+   (at your option) any later version.
+
+   This program is distributed in the hope that it will be useful,
+   but WITHOUT ANY WARRANTY; without even the implied warranty of
+   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+   GNU General Public License for more details.
+
+   You should have received a copy of the GNU General Public License
+   along with this program.  If not, see <http://www.gnu.org/licenses/>.  */
+
+#include <selinux/selinux.h>
+#include <selinux/context.h>
+
+int  getfileconat (int fd, char const *file, security_context_t *con);
+int lgetfileconat (int fd, char const *file, security_context_t *con);
+int  setfileconat (int fd, char const *file, security_context_t con);
+int lsetfileconat (int fd, char const *file, security_context_t con);
diff --git a/modules/selinux-at b/modules/selinux-at
new file mode 100644
index 0000000..191429a
--- /dev/null
+++ b/modules/selinux-at
@@ -0,0 +1,32 @@
+Description:
+openat-style fd-relative functions for SE Linux
+
+Files:
+lib/selinux-at.c
+lib/selinux-at.h
+
+Depends-on:
+openat
+selinux-h
+
+configure.ac:
+AC_CHECK_HEADERS([selinux/flask.h])
+AC_LIBOBJ([selinux-at])
+gl_save_LIBS=$LIBS
+  LIB_SELINUX=
+  AC_SEARCH_LIBS([setfilecon], [selinux],
+                 [test "$ac_cv_search_setfilecon" = "none required" ||
+                  LIB_SELINUX=$ac_cv_search_setfilecon])
+  AC_SUBST(LIB_SELINUX)
+LIBS=$gl_save_LIBS
+
+Makefile.am:
+
+Include:
+selinux-at.h
+
+License:
+GPL
+
+Maintainer:
+Jim Meyering
--
1.6.4.115.g33d49

[Prev in Thread]

Current Thread

[Next in Thread]

[PATCH] selinux-at: new module, Jim Meyering <=
- Re: [PATCH] selinux-at: new module, Bruno Haible, 2009/08/06
  - Re: [PATCH] selinux-at: new module, Jim Meyering, 2009/08/06
  - Re: [PATCH] selinux-at: new module, Jim Meyering, 2009/08/07
    - Re: [PATCH] selinux-at: new module, Paolo Bonzini, 2009/08/07
    - Re: [PATCH] selinux-at: new module, Jim Meyering, 2009/08/07

Prev by Date: Re: HOST_NAME_MAX
Next by Date: Re: HOST_NAME_MAX
Previous by thread: Re: [PATCH 1/2] find: add SELinux support
Next by thread: Re: [PATCH] selinux-at: new module
Index(es):
- Date
- Thread