[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[ SEPOL ] [ SEMANAGE ] Fix record interfaces

To: selinux@xxxxxxxxxxxxx
Subject: [ SEPOL ] [ SEMANAGE ] Fix record interfaces
From: Ivan Gyurdiev <ivg2@xxxxxxxxxxx>
Date: Mon, 31 Oct 2005 01:47:54 -0500
Cc: Stephen Smalley <sds@xxxxxxxxxxxxx>
Sender: owner-selinux@xxxxxxxxxxxxx
User-agent: Mail/News 1.4.1 (X11/20051008)

Okay, I can't justify not passing the handle into the records.

I said that all those errors are simple OMEM errors, but that may notremain the case in the future, and it's not even true right now -there's already a bunch of functions in the record files that reallyshould emit a more informative error message when they fail (not omem).

Second, if the caller wants to use callbacks, then it wants _all_ errorsrouted to the callback, regardless of whether they're omem, or somethingelse. It doesn't make sense to split the API in two - half usingcallbacks, and the other using status codes. The handle should be usedeverywhere.


=============================

So, this patch fixes a number of important issues:

- SEPOL: passes handle into all records
- SEPOL: removes DEBUG completely

- SEMANAGE: passes handle into all semanage records

- SEMANAGE: this requires the handle to be passed into parse/print -pass the handle where appropriate.

- SEMANAGE: this also breaks the database, which only works with asemanage handle, and uses sepol records directly. To correct this issueI've made the database only work with semanage records. This means the[object]_policydb databases are now configured to use the semanagerecords instead of the sepol ones.

This shifts the place where binary compatibility is assumed from therelay function ([object]_policy.c) to the ([object]_policydb.c) files,which are responsible for configuring which functions the databaseshould use. This is a very good idea, because now policy_components.c nolonger requires binary compatibility, since both the source and targetdatabases work with semanage records - so compatibility is assumed inexactly one place, and not two.

I've removed the casts from the ([object]_policy.c) files, since theyare no longer required.I have not added new casts into ([object]_policydb.c), because I wantthis issue to remain visible, until we decide what to do about it. If weadd convert functions, they would go into ([object]_policydb.c).

- SEMANAGE: I've removed the SEPOL_[object]_RTABLE record tables, sincethey are not needed after the change above. I've moved theSEMANAGE_[object]_RTABLE record tables out of the local case, and intotheir corresponding record files, where they should have been in thefirst place.

- SEPOL and SEMANAGE: I've dropped the status code for several functionswhich never fail:

   - port_set_port, port_set_range, port_set_proto, port_set_con
   - iface_set_ifcon, iface_set_msgcon

- SEMANAGE: various include cleanups in [object]_file.c and[object]_policydb.c

Attachment: libsepol.libsemanage.records_fix.diff.bz2
Description: application/bzip

Prev by Date: [ SEMANAGE 2 ] Fix bug in dbase_file_flush
Next by Date: unreasonably long SE Linux context display
Previous by thread: [ SEMANAGE 2 ] Fix bug in dbase_file_flush
Next by thread: unreasonably long SE Linux context display
Index(es):
- Date
- Thread

This mailing list archive is a service of Copilot Consulting.