ACPR/android_system_core
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Merge "Unify toolbox restorecon and libselinux restorecon implementations."

Browse source
This commit is contained in:
Nick Kralevich 2014-02-06 23:43:59 +00:00 committed by Gerrit Code Review
commit 71de56a08c
1 changed files with 15 additions and 92 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

107
toolbox/restorecon.c
View file

@ -2,76 +2,41 @@
#include <stdio.h> #include <stdio.h>
#include <stdlib.h> #include <stdlib.h>
#include <errno.h> #include <errno.h>
#include <sys/types.h>
#include <sys/stat.h>
#include <fts.h>
#include <selinux/selinux.h> #include <selinux/selinux.h>
#include <selinux/label.h>
#include <selinux/android.h> #include <selinux/android.h>
static struct selabel_handle *sehandle;
static const char *progname; static const char *progname;
static int nochange;
static int verbose;
static void usage(void) static void usage(void)
{ {
fprintf(stderr, "usage: %s [-nrRv] pathname...\n", progname); fprintf(stderr, "usage: %s [-FnrRv] pathname...\n", progname);
exit(1); exit(1);
} }
static int restore(const char *pathname, const struct stat *sb)
{
char *oldcontext, *newcontext;
if (lgetfilecon(pathname, &oldcontext) < 0) {
fprintf(stderr, "Could not get context of %s: %s\n",
pathname, strerror(errno));
return -1;
}
if (selabel_lookup(sehandle, &newcontext, pathname, sb->st_mode) < 0) {
fprintf(stderr, "Could not lookup context for %s: %s\n", pathname,
strerror(errno));
return -1;
}
if (strcmp(newcontext, "<<none>>") &&
strcmp(oldcontext, newcontext)) {
if (verbose)
printf("Relabeling %s from %s to %s.\n", pathname, oldcontext, newcontext);
if (!nochange) {
if (lsetfilecon(pathname, newcontext) < 0) {
fprintf(stderr, "Could not label %s with %s: %s\n",
pathname, newcontext, strerror(errno));
return -1;
}
}
}
freecon(oldcontext);
freecon(newcontext);
return 0;
}
int restorecon_main(int argc, char **argv) int restorecon_main(int argc, char **argv)
{ {
int ch, recurse = 0, ftsflags = FTS_PHYSICAL; int ch, i, rc;
int i = 0; unsigned int flags = 0;
progname = argv[0]; progname = argv[0];
do { do {
ch = getopt(argc, argv, "nrRv"); ch = getopt(argc, argv, "FnrRv");
if (ch == EOF) if (ch == EOF)
break; break;
switch (ch) { switch (ch) {
case 'F':
flags |= SELINUX_ANDROID_RESTORECON_FORCE;
break;
case 'n': case 'n':
nochange = 1; flags |= SELINUX_ANDROID_RESTORECON_NOCHANGE;
break; break;
case 'r': case 'r':
case 'R': case 'R':
recurse = 1; flags |= SELINUX_ANDROID_RESTORECON_RECURSE;
break; break;
case 'v': case 'v':
verbose = 1; flags |= SELINUX_ANDROID_RESTORECON_VERBOSE;
break; break;
default: default:
usage(); usage();
@ -83,53 +48,11 @@ int restorecon_main(int argc, char **argv)
if (!argc) if (!argc)
usage(); usage();
sehandle = selinux_android_file_context_handle(); for (i = 0; i < argc; i++) {
rc = selinux_android_restorecon_flags(argv[i], flags);
if (!sehandle) { if (rc < 0)
fprintf(stderr, "Could not load file_contexts: %s\n", fprintf(stderr, "Could not restorecon %s: %s\n", argv[i],
strerror(errno)); strerror(errno));
return -1;
}
if (recurse) {
FTS *fts;
FTSENT *ftsent;
fts = fts_open(argv, ftsflags, NULL);
if (!fts) {
fprintf(stderr, "Could not traverse filesystems (first was %s): %s\n",
argv[0], strerror(errno));
return -1;
}
while ((ftsent = fts_read(fts))) {
switch (ftsent->fts_info) {
case FTS_DP:
break;
case FTS_DNR:
case FTS_ERR:
case FTS_NS:
fprintf(stderr, "Could not access %s: %s\n", ftsent->fts_path,
strerror(errno));
fts_set(fts, ftsent, FTS_SKIP);
break;
default:
if (restore(ftsent->fts_path, ftsent->fts_statp) < 0)
fts_set(fts, ftsent, FTS_SKIP);
break;
}
}
} else {
int i, rc;
struct stat sb;
for (i = 0; i < argc; i++) {
rc = lstat(argv[i], &sb);
if (rc < 0) {
fprintf(stderr, "Could not stat %s: %s\n", argv[i],
strerror(errno));
continue;
}
restore(argv[i], &sb);
}
} }
return 0; return 0;