diff options
| author | Panu Matilainen <pmatilai@redhat.com> | 2020-02-18 15:50:40 +0200 |
|---|---|---|
| committer | Panu Matilainen <pmatilai@redhat.com> | 2020-04-21 10:54:43 +0300 |
| commit | 0f5ef70be97e6f8242b476a339fa0ca9e49d0ff4 (patch) | |
| tree | a6570f1a8f7db01a983d31b8d81abb70b1ead811 | |
| parent | be4bd1f8828ab5a5bdb9e6d3c040ca2f7b5ae7c4 (diff) | |
| download | rpm-0f5ef70be97e6f8242b476a339fa0ca9e49d0ff4.tar.gz | |
Use common error logic regardless of setexecfilecon() availability
Refactor the custom exec context setting code to look like setexecfilecon()
in case the real one is not available to eliminate pesky behavioral
differences between the two cases.
This fixes a concrete bug of libselinux setexecfilecon() returning with
an error when security_getenforce() returns with -1 (such as a bare
chroot with no /sys mounts etc), causing us to spit out useless error
messages in that case ever since fixing the bogus if-logic in
commit ab601b882b9d9d8248250111317615db1aa7b7c6.
Fixes: #1077
(cherry picked from commit 153c5c219844f0f294862c9043b20f4d24f7fa69)
| -rw-r--r-- | plugins/selinux.c | 48 |
1 files changed, 21 insertions, 27 deletions
diff --git a/plugins/selinux.c b/plugins/selinux.c index 3ff91c089..25e34783a 100644 --- a/plugins/selinux.c +++ b/plugins/selinux.c @@ -89,69 +89,63 @@ static rpmRC selinux_psm_pre(rpmPlugin plugin, rpmte te) return rc; } -static rpmRC selinux_scriptlet_fork_post(rpmPlugin plugin, - const char *path, int type) -{ - rpmRC rc = RPMRC_FAIL; - int xx; #ifndef HAVE_SETEXECFILECON +static int setexecfilecon(const char *path, const char *fallback_type) +{ + int rc = -1; security_context_t mycon = NULL, fcon = NULL, newcon = NULL; context_t con = NULL; - if (sehandle == NULL) - return RPMRC_OK; - /* Figure the context to for next exec() */ if (getcon(&mycon) < 0) goto exit; if (getfilecon(path, &fcon) < 0) goto exit; - if (security_compute_create(mycon, fcon, string_to_security_class("process"), &newcon) < 0) + if (security_compute_create(mycon, fcon, + string_to_security_class("process"), &newcon) < 0) goto exit; if (rstreq(mycon, newcon)) { - /* No default transition, use rpm_script_t for now. */ - const char * script_type = "rpm_script_t"; - con = context_new(mycon); if (!con) goto exit; - if (context_type_set(con, script_type)) + if (context_type_set(con, fallback_type)) goto exit; freecon(newcon); newcon = xstrdup(context_str(con)); } - if ((xx = setexeccon(newcon)) == 0) - rc = RPMRC_OK; - - if (rpmIsDebug()) { - rpmlog(RPMLOG_DEBUG, "setexeccon: (%s, %s) %s\n", - path, newcon, (xx < 0 ? strerror(errno) : "")); - } + rc = setexeccon(newcon); exit: context_free(con); freecon(newcon); freecon(fcon); freecon(mycon); + return rc; +} +#endif + +static rpmRC selinux_scriptlet_fork_post(rpmPlugin plugin, + const char *path, int type) +{ + /* No default transition, use rpm_script_t for now. */ + const char *script_type = "rpm_script_t"; + rpmRC rc = RPMRC_FAIL; -#else if (sehandle == NULL) return RPMRC_OK; - if ((xx = setexecfilecon(path, "rpm_script_t")) == 0) + if (setexecfilecon(path, script_type) == 0) rc = RPMRC_OK; - if (rpmIsDebug()) { - rpmlog(RPMLOG_DEBUG, "setexecfilecon: (%s) %s\n", - path, (xx < 0 ? strerror(errno) : "")); - } -#endif /* If selinux is not enforcing, we don't care either */ if (rc && security_getenforce() < 1) rc = RPMRC_OK; + rpmlog(rc ? RPMLOG_ERR : RPMLOG_DEBUG, "setexecfilecon: (%s, %s) %s\n", + path, script_type, rc ? strerror(errno) : ""); + return rc; } |