emo/openrc
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

selinux: use openrc contexts path to get contexts

Browse Source 
The minimum requirement for libselinux is now >=2.6
The refpolicy and the gentoo policy contain the
contexts since version 2.20170204-r4
This commit is contained in:
Jason Zaman 2017-09-17 21:15:13 +08:00 committed by William Hubbs
parent 3fafd7a76e
commit b1c3422f45
1 changed files with 21 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

23
src/rc/rc-selinux.c
View File

@ -39,7 +39,6 @@
#include "rc-selinux.h" #include "rc-selinux.h"
/* the context files for selinux */ /* the context files for selinux */
#define RUN_INIT_FILE "run_init_type"
#define INITRC_FILE "initrc_context" #define INITRC_FILE "initrc_context"
#ifdef HAVE_AUDIT #ifdef HAVE_AUDIT
@ -299,6 +298,26 @@ static int read_context_file(const char *filename, char **context)
return ret; return ret;
} }
static int read_run_init_context(char **context)
{
int ret = -1;
RC_STRINGLIST *list;
char *value = NULL;
list = rc_config_list(selinux_openrc_contexts_path());
if (list == NULL)
return ret;
value = rc_config_value(list, "run_init");
if (value != NULL && strlen(value) > 0) {
*context = xstrdup(value);
ret = 0;
}
rc_stringlist_free(list);
return ret;
}
void selinux_setup(char **argv) void selinux_setup(char **argv)
{ {
char *new_context = NULL; char *new_context = NULL;
@ -312,7 +331,7 @@ void selinux_setup(char **argv)
return; return;
} }
if (read_context_file(RUN_INIT_FILE, &run_init_t) != 0) { if (read_run_init_context(&run_init_t) != 0) {
/* assume a reasonable default, rather than bailing out */ /* assume a reasonable default, rather than bailing out */
run_init_t = xstrdup("run_init_t"); run_init_t = xstrdup("run_init_t");
ewarn("Assuming SELinux run_init type is %s", run_init_t); ewarn("Assuming SELinux run_init type is %s", run_init_t);