/* compare SELinux context if preserving */
if (selinux_enabled && x->preserve_security_context)
{
- char *file_scontext = nullptr;
- char *to_scontext = nullptr;
+ char *file_scontext_raw = nullptr;
+ char *to_scontext_raw = nullptr;
bool scontext_match;
- if (getfilecon (src_name, &file_scontext) == -1)
+ if (getfilecon_raw (src_name, &file_scontext_raw) == -1)
return true;
- if (getfilecon (dest_name, &to_scontext) == -1)
+ if (getfilecon_raw (dest_name, &to_scontext_raw) == -1)
{
- freecon (file_scontext);
+ freecon (file_scontext_raw);
return true;
}
- scontext_match = STREQ (file_scontext, to_scontext);
+ scontext_match = STREQ (file_scontext_raw, to_scontext_raw);
- freecon (file_scontext);
- freecon (to_scontext);
+ freecon (file_scontext_raw);
+ freecon (to_scontext_raw);
if (!scontext_match)
return true;
}
setdefaultfilecon (char const *file)
{
struct stat st;
- char *scontext = nullptr;
+ char *scontext_raw = nullptr;
if (selinux_enabled != 1)
{
struct selabel_handle *hnd = get_labeling_handle ();
if (!hnd)
return;
- if (selabel_lookup (hnd, &scontext, file, st.st_mode) != 0)
+ if (selabel_lookup_raw (hnd, &scontext_raw, file, st.st_mode) != 0)
{
if (errno != ENOENT && ! ignorable_ctx_err (errno))
error (0, errno, _("warning: %s: context lookup failed"),
return;
}
- if (lsetfilecon (file, scontext) < 0 && errno != ENOTSUP)
+ if (lsetfilecon_raw (file, scontext_raw) < 0 && errno != ENOTSUP)
error (0, errno,
_("warning: %s: failed to change context to %s"),
- quotef_n (0, file), quote_n (1, scontext));
+ quotef_n (0, file), quote_n (1, scontext_raw));
- freecon (scontext);
+ freecon (scontext_raw);
}
/* Report that directory DIR was made, if OPTIONS requests this. */
*/
static int
-computecon (char const *path, mode_t mode, char **con)
+computecon_raw (char const *path, mode_t mode, char **con)
{
- char *scon = nullptr;
- char *tcon = nullptr;
+ char *scon_raw = nullptr;
+ char *tcon_raw = nullptr;
security_class_t tclass;
int rc = -1;
char *dir = dir_name (path);
if (!dir)
goto quit;
- if (getcon (&scon) < 0)
+ if (getcon_raw (&scon_raw) < 0)
goto quit;
- if (getfilecon (dir, &tcon) < 0)
+ if (getfilecon_raw (dir, &tcon_raw) < 0)
goto quit;
tclass = mode_to_security_class (mode);
if (!tclass)
goto quit;
- rc = security_compute_create (scon, tcon, tclass, con);
+ rc = security_compute_create_raw (scon_raw, tcon_raw, tclass, con);
quit:;
int err = errno;
free (dir);
- freecon (scon);
- freecon (tcon);
+ freecon (scon_raw);
+ freecon (tcon_raw);
errno = err;
return rc;
}
/*
- This function takes a handle, path and mode, it calls computecon to get the
- label of the path object if the current process created it, then it calls
+ This function takes a handle, path and mode, it calls computecon_raw to get
+ the label of the path object if the current process created it, then it calls
selabel_lookup to get the default type for the object. It substitutes the
default type into label. It tells the SELinux Kernel to label all new file
system objects created by the current process with this label.
char const *path, mode_t mode)
{
int rc = -1;
- char *scon = nullptr;
- char *tcon = nullptr;
+ char *scon_raw = nullptr;
+ char *tcon_raw = nullptr;
context_t scontext = 0, tcontext = 0;
char const *contype;
char const *constr;
path = newpath;
}
- if (selabel_lookup (selabel_handle, &scon, path, mode) < 0)
+ if (selabel_lookup_raw (selabel_handle, &scon_raw, path, mode) < 0)
{
/* "No such file or directory" is a confusing error,
when processing files, when in fact it was the
errno = ENODATA;
goto quit;
}
- if (computecon (path, mode, &tcon) < 0)
+ if (computecon_raw (path, mode, &tcon_raw) < 0)
goto quit;
- if (!(scontext = context_new (scon)))
+ if (!(scontext = context_new (scon_raw)))
goto quit;
- if (!(tcontext = context_new (tcon)))
+ if (!(tcontext = context_new (tcon_raw)))
goto quit;
if (!(contype = context_type_get (scontext)))
if (!(constr = context_str (tcontext)))
goto quit;
- rc = setfscreatecon (constr);
+ rc = setfscreatecon_raw (constr);
quit:;
int err = errno;
context_free (scontext);
context_free (tcontext);
- freecon (scon);
- freecon (tcon);
+ freecon (scon_raw);
+ freecon (tcon_raw);
free (newpath);
errno = err;
return rc;
{
int rc = -1;
struct stat sb;
- char *scon = nullptr;
- char *tcon = nullptr;
+ char *scon_raw = nullptr;
+ char *tcon_raw = nullptr;
context_t scontext = 0, tcontext = 0;
char const *contype;
char const *constr;
if (!selabel_handle)
{
- if (getfscreatecon (&tcon) < 0)
+ if (getfscreatecon_raw (&tcon_raw) < 0)
return rc;
- if (!tcon)
+ if (!tcon_raw)
{
errno = ENODATA;
return rc;
}
- rc = lsetfilecon (path, tcon);
+ rc = lsetfilecon_raw (path, tcon_raw);
int err = errno;
- freecon (tcon);
+ freecon (tcon_raw);
errno = err;
return rc;
}
goto quit;
}
- if (selabel_lookup (selabel_handle, &scon, path, sb.st_mode) < 0)
+ if (selabel_lookup_raw (selabel_handle, &scon_raw, path, sb.st_mode) < 0)
{
/* "No such file or directory" is a confusing error,
when processing files, when in fact it was the
errno = ENODATA;
goto quit;
}
- if (!(scontext = context_new (scon)))
+ if (!(scontext = context_new (scon_raw)))
goto quit;
if (fd != -1)
{
- if (fgetfilecon (fd, &tcon) < 0)
+ if (fgetfilecon_raw (fd, &tcon_raw) < 0)
goto quit;
}
else
{
- if (lgetfilecon (path, &tcon) < 0)
+ if (lgetfilecon_raw (path, &tcon_raw) < 0)
goto quit;
}
- if (!(tcontext = context_new (tcon)))
+ if (!(tcontext = context_new (tcon_raw)))
goto quit;
if (!(contype = context_type_get (scontext)))
goto quit;
if (fd != -1)
- rc = fsetfilecon (fd, constr);
+ rc = fsetfilecon_raw (fd, constr);
else
- rc = lsetfilecon (path, constr);
+ rc = lsetfilecon_raw (path, constr);
quit:;
int err = errno;
close (fd);
context_free (scontext);
context_free (tcontext);
- freecon (scon);
- freecon (tcon);
+ freecon (scon_raw);
+ freecon (tcon_raw);
errno = err;
return rc;
}
projects / thirdparty / coreutils.git / commitdiff
