diff options
| author | Kay Sievers <kay@vrfy.org> | 2013-10-11 09:47:31 +0200 |
|---|---|---|
| committer | Kay Sievers <kay@vrfy.org> | 2013-10-11 10:16:41 +0200 |
| commit | 9a4e038c1519d836d217fac5df3722e6a02ea78d (patch) | |
| tree | 62cdab0fa3da479f39317a049908ca9265d0040f /src/shared | |
| parent | adcdb3747609962881301ed19636002dd34c05a0 (diff) | |
smack: minimize ifdef use, and move all labeling to smack-util.c
Diffstat (limited to 'src/shared')
| -rw-r--r-- | src/shared/smack-util.c | 52 | ||||
| -rw-r--r-- | src/shared/smack-util.h | 4 |
2 files changed, 55 insertions, 1 deletions
diff --git a/src/shared/smack-util.c b/src/shared/smack-util.c index 4e8cf796d3..df194e0844 100644 --- a/src/shared/smack-util.c +++ b/src/shared/smack-util.c @@ -22,11 +22,14 @@ ***/ #include <unistd.h> +#include <string.h> +#ifdef HAVE_XATTR +#include <attr/xattr.h> +#endif #include "smack-util.h" bool use_smack(void) { - #ifdef HAVE_SMACK static int use_smack_cached = -1; @@ -39,3 +42,50 @@ bool use_smack(void) { #endif } + +int smack_label_path(const char *path, const char *label) { +#ifdef HAVE_SMACK + if (!use_smack()) + return 0; + + if (label) + return setxattr(path, "security.SMACK64", label, strlen(label), 0); + else + return lremovexattr(path, "security.SMACK64"); +#else + return 0; +#endif +} + +int smack_label_fd(int fd, const char *label) { +#ifdef HAVE_SMACK + if (!use_smack()) + return 0; + + return fsetxattr(fd, "security.SMACK64", label, strlen(label), 0); +#else + return 0; +#endif +} + +int smack_label_ip_out_fd(int fd, const char *label) { +#ifdef HAVE_SMACK + if (!use_smack()) + return 0; + + return fsetxattr(fd, "security.SMACK64IPOUT", label, strlen(label), 0); +#else + return 0; +#endif +} + +int smack_label_ip_in_fd(int fd, const char *label) { +#ifdef HAVE_SMACK + if (!use_smack()) + return 0; + + return fsetxattr(fd, "security.SMACK64IPIN", label, strlen(label), 0); +#else + return 0; +#endif +} diff --git a/src/shared/smack-util.h b/src/shared/smack-util.h index 7b950ea0cb..42895ff805 100644 --- a/src/shared/smack-util.h +++ b/src/shared/smack-util.h @@ -26,3 +26,7 @@ #include <stdbool.h> bool use_smack(void); +int smack_label_path(const char *path, const char *label); +int smack_label_fd(int fd, const char *label); +int smack_label_ip_in_fd(int fd, const char *label); +int smack_label_ip_out_fd(int fd, const char *label); |