diff options
| author | Eamon Walsh <ewalsh@tycho.nsa.gov> | 2010-12-02 19:21:10 -0500 |
|---|---|---|
| committer | Eamon Walsh <ewalsh@tycho.nsa.gov> | 2010-12-02 19:21:10 -0500 |
| commit | a00fd94a46e92a233f4e613660e9962918f28207 (patch) | |
| tree | 93009b7738f9fb4a63ec825dbc911e2162da45c9 /libselinux/src/label.c | |
| parent | a29ff33baf366825c0fbe721d30b12b5b96a64e1 (diff) | |
| download | android_external_selinux-a00fd94a46e92a233f4e613660e9962918f28207.tar.gz android_external_selinux-a00fd94a46e92a233f4e613660e9962918f28207.tar.bz2 android_external_selinux-a00fd94a46e92a233f4e613660e9962918f28207.zip | |
selabel: Store substitution data in the handle instead of globally.
This is for thread safety.
Signed-off-by: Eamon Walsh <ewalsh@tycho.nsa.gov>
Diffstat (limited to 'libselinux/src/label.c')
| -rw-r--r-- | libselinux/src/label.c | 45 |
1 files changed, 18 insertions, 27 deletions
diff --git a/libselinux/src/label.c b/libselinux/src/label.c index 020b803d..2fd19c51 100644 --- a/libselinux/src/label.c +++ b/libselinux/src/label.c @@ -26,19 +26,10 @@ static selabel_initfunc initfuncs[] = { &selabel_db_init, }; -typedef struct selabel_sub { - char *src; - int slen; - char *dst; +static void selabel_subs_fini(struct selabel_sub *ptr) +{ struct selabel_sub *next; -} SELABELSUB; - -SELABELSUB *selabelsublist = NULL; -static void selabel_subs_fini(void) -{ - SELABELSUB *ptr = selabelsublist; - SELABELSUB *next = NULL; while (ptr) { next = ptr->next; free(ptr->src); @@ -46,13 +37,12 @@ static void selabel_subs_fini(void) free(ptr); ptr = next; } - selabelsublist = NULL; } -static char *selabel_sub(const char *src) +static char *selabel_sub(struct selabel_sub *ptr, const char *src) { char *dst = NULL; - SELABELSUB *ptr = selabelsublist; + while (ptr) { if (strncmp(src, ptr->src, ptr->slen) == 0 ) { if (src[ptr->slen] == '/' || @@ -66,10 +56,13 @@ static char *selabel_sub(const char *src) return NULL; } -static int selabel_subs_init(void) +static struct selabel_sub *selabel_subs_init(void) { char buf[1024]; FILE *cfg = fopen(selinux_file_context_subs_path(), "r"); + struct selabel_sub *sub; + struct selabel_sub *list = NULL; + if (cfg) { while (fgets_unlocked(buf, sizeof(buf) - 1, cfg)) { char *ptr = NULL; @@ -94,26 +87,26 @@ static int selabel_subs_init(void) *ptr=0; if (! *dst) continue; - SELABELSUB *sub = (SELABELSUB*) malloc(sizeof(SELABELSUB)); - if (! sub) return -1; + sub = malloc(sizeof(struct selabel_sub)); + if (! sub) return list; sub->src=strdup(src); if (! sub->src) { free(sub); - return -1; + return list; } sub->dst=strdup(dst); if (! sub->dst) { free(sub->src); free(sub); - return -1; + return list; } sub->slen = strlen(src); - sub->next = selabelsublist; - selabelsublist = sub; + sub->next = list; + list = sub; } fclose(cfg); } - return 0; + return list; } /* @@ -160,8 +153,6 @@ struct selabel_handle *selabel_open(unsigned int backend, goto out; } - selabel_subs_init(); - rec = (struct selabel_handle *)malloc(sizeof(*rec)); if (!rec) goto out; @@ -169,6 +160,7 @@ struct selabel_handle *selabel_open(unsigned int backend, memset(rec, 0, sizeof(*rec)); rec->backend = backend; rec->validating = selabel_is_validate_set(opts, nopts); + rec->subs = selabel_subs_init(); if ((*initfuncs[backend])(rec, opts, nopts)) { free(rec); @@ -184,7 +176,7 @@ selabel_lookup_common(struct selabel_handle *rec, int translating, const char *key, int type) { struct selabel_lookup_rec *lr; - char *ptr = selabel_sub(key); + char *ptr = selabel_sub(rec->subs, key); if (ptr) { lr = rec->func_lookup(rec, ptr, type); free(ptr); @@ -232,10 +224,9 @@ int selabel_lookup_raw(struct selabel_handle *rec, security_context_t *con, void selabel_close(struct selabel_handle *rec) { + selabel_subs_fini(rec->subs); rec->func_close(rec); free(rec); - - selabel_subs_fini(); } void selabel_stats(struct selabel_handle *rec) |