source-git / libsemanage

Clone
Source Code
GIT

Blame src/ports_file.c

c8 c8s master
  1.   c8s
  2.   src
  3.   ports_file.c
Blob History Raw
Packit 366192 
/* Copyright (C) 2005 Red Hat, Inc. */
Packit 366192
Packit 366192 
struct semanage_port;
Packit 366192 
struct semanage_port_key;
Packit 366192 
typedef struct semanage_port record_t;
Packit 366192 
typedef struct semanage_port_key record_key_t;
Packit 366192 
#define DBASE_RECORD_DEFINED
Packit 366192
Packit 366192 
struct dbase_file;
Packit 366192 
typedef struct dbase_file dbase_t;
Packit 366192 
#define DBASE_DEFINED
Packit 366192
Packit 366192 
#include <stdlib.h>
Packit 366192 
#include <stdio.h>
Packit 366192 
#include <strings.h>
Packit 366192 
#include <semanage/handle.h>
Packit 366192 
#include "port_internal.h"
Packit 366192 
#include "context_internal.h"
Packit 366192 
#include "database_file.h"
Packit 366192 
#include "parse_utils.h"
Packit 366192 
#include "debug.h"
Packit 366192
Packit 366192 
static int port_print(semanage_handle_t * handle,
Packit 366192 
		      semanage_port_t * port, FILE * str)
Packit 366192 
{
Packit 366192
Packit 366192 
	char *con_str = NULL;
Packit 366192
Packit 366192 
	int low = semanage_port_get_low(port);
Packit 366192 
	int high = semanage_port_get_high(port);
Packit 366192 
	int proto = semanage_port_get_proto(port);
Packit 366192 
	const char *proto_str = semanage_port_get_proto_str(proto);
Packit 366192 
	semanage_context_t *con = semanage_port_get_con(port);
Packit 366192
Packit 366192 
	if (fprintf(str, "portcon %s ", proto_str) < 0)
Packit 366192 
		goto err;
Packit 366192
Packit 366192 
	if (low == high) {
Packit 366192 
		if (fprintf(str, "%d ", low) < 0)
Packit 366192 
			goto err;
Packit 366192 
	} else {
Packit 366192 
		if (fprintf(str, "%d - %d ", low, high) < 0)
Packit 366192 
			goto err;
Packit 366192 
	}
Packit 366192
Packit 366192 
	if (semanage_context_to_string(handle, con, &con_str) < 0)
Packit 366192 
		goto err;
Packit 366192 
	if (fprintf(str, "%s\n", con_str) < 0)
Packit 366192 
		goto err;
Packit 366192
Packit 366192 
	free(con_str);
Packit 366192 
	return STATUS_SUCCESS;
Packit 366192
Packit 366192 
      err:
Packit 366192 
	ERR(handle, "could not print port range %u - %u (%s) to stream",
Packit 366192 
	    low, high, proto_str);
Packit 366192 
	free(con_str);
Packit 366192 
	return STATUS_ERR;
Packit 366192 
}
Packit 366192
Packit 366192 
static int port_parse(semanage_handle_t * handle,
Packit 366192 
		      parse_info_t * info, semanage_port_t * port)
Packit 366192 
{
Packit 366192
Packit 366192 
	int low, high;
Packit 366192 
	char *str = NULL;
Packit 366192 
	semanage_context_t *con = NULL;
Packit 366192
Packit 366192 
	if (parse_skip_space(handle, info) < 0)
Packit 366192 
		goto err;
Packit 366192 
	if (!info->ptr)
Packit 366192 
		goto last;
Packit 366192
Packit 366192 
	/* Header */
Packit 366192 
	if (parse_assert_str(handle, info, "portcon") < 0)
Packit 366192 
		goto err;
Packit 366192 
	if (parse_assert_space(handle, info) < 0)
Packit 366192 
		goto err;
Packit 366192
Packit 366192 
	/* Protocol */
Packit 366192 
	if (parse_fetch_string(handle, info, &str, ' ') < 0)
Packit 366192 
		goto err;
Packit 366192 
	if (!strcasecmp(str, "tcp"))
Packit 366192 
		semanage_port_set_proto(port, SEMANAGE_PROTO_TCP);
Packit 366192 
	else if (!strcasecmp(str, "udp"))
Packit 366192 
		semanage_port_set_proto(port, SEMANAGE_PROTO_UDP);
Packit 366192 
	else if (!strcasecmp(str, "dccp"))
Packit 366192 
		semanage_port_set_proto(port, SEMANAGE_PROTO_DCCP);
Packit 366192 
	else if (!strcasecmp(str, "sctp"))
Packit 366192 
		semanage_port_set_proto(port, SEMANAGE_PROTO_SCTP);
Packit 366192 
	else {
Packit 366192 
		ERR(handle, "invalid protocol \"%s\" (%s: %u):\n%s", str,
Packit 366192 
		    info->filename, info->lineno, info->orig_line);
Packit 366192 
		goto err;
Packit 366192 
	}
Packit 366192 
	free(str);
Packit 366192 
	str = NULL;
Packit 366192
Packit 366192 
	/* Range/Port */
Packit 366192 
	if (parse_assert_space(handle, info) < 0)
Packit 366192 
		goto err;
Packit 366192 
	if (parse_fetch_int(handle, info, &low, '-') < 0)
Packit 366192 
		goto err;
Packit 366192
Packit 366192 
	/* If range (-) does not follow immediately, require a space
Packit 366192 
	 * In other words, the space here is optional, but only
Packit 366192 
	 * in the ranged case, not in the single port case,
Packit 366192 
	 * so do a custom test */
Packit 366192 
	if (*(info->ptr) && *(info->ptr) != '-') {
Packit 366192 
		if (parse_assert_space(handle, info) < 0)
Packit 366192 
			goto err;
Packit 366192 
	}
Packit 366192
Packit 366192 
	if (parse_optional_ch(info, '-') != STATUS_NODATA) {
Packit 366192
Packit 366192 
		if (parse_skip_space(handle, info) < 0)
Packit 366192 
			goto err;
Packit 366192 
		if (parse_fetch_int(handle, info, &high, ' ') < 0)
Packit 366192 
			goto err;
Packit 366192 
		if (parse_assert_space(handle, info) < 0)
Packit 366192 
			goto err;
Packit 366192 
		semanage_port_set_range(port, low, high);
Packit 366192 
	} else
Packit 366192 
		semanage_port_set_port(port, low);
Packit 366192
Packit 366192 
	/* Port context */
Packit 366192 
	if (parse_fetch_string(handle, info, &str, ' ') < 0)
Packit 366192 
		goto err;
Packit 366192 
	if (semanage_context_from_string(handle, str, &con) < 0) {
Packit 366192 
		ERR(handle, "invalid security context \"%s\" (%s: %u)\n%s",
Packit 366192 
		    str, info->filename, info->lineno, info->orig_line);
Packit 366192 
		goto err;
Packit 366192 
	}
Packit 366192 
	if (con == NULL) {
Packit 366192 
		ERR(handle, "<<none>> context is not valid "
Packit 366192 
		    "for ports (%s: %u):\n%s", info->filename,
Packit 366192 
		    info->lineno, info->orig_line);
Packit 366192 
		goto err;
Packit 366192 
	}
Packit 366192 
	free(str);
Packit 366192 
	str = NULL;
Packit 366192
Packit 366192 
	if (semanage_port_set_con(handle, port, con) < 0)
Packit 366192 
		goto err;
Packit 366192
Packit 366192 
	if (parse_assert_space(handle, info) < 0)
Packit 366192 
		goto err;
Packit 366192
Packit 366192 
	semanage_context_free(con);
Packit 366192 
	return STATUS_SUCCESS;
Packit 366192
Packit 366192 
      last:
Packit 366192 
	parse_dispose_line(info);
Packit 366192 
	return STATUS_NODATA;
Packit 366192
Packit 366192 
      err:
Packit 366192 
	ERR(handle, "could not parse port record");
Packit 366192 
	free(str);
Packit 366192 
	semanage_context_free(con);
Packit 366192 
	parse_dispose_line(info);
Packit 366192 
	return STATUS_ERR;
Packit 366192 
}
Packit 366192
Packit 366192 
/* PORT RECORD: FILE extension: method table */
Packit 366192 
record_file_table_t SEMANAGE_PORT_FILE_RTABLE = {
Packit 366192 
	.parse = port_parse,
Packit 366192 
	.print = port_print,
Packit 366192 
};
Packit 366192
Packit 366192 
int port_file_dbase_init(semanage_handle_t * handle,
Packit 366192 
			 const char *path_ro,
Packit 366192 
			 const char *path_rw,
Packit 366192 
			 dbase_config_t * dconfig)
Packit 366192 
{
Packit 366192
Packit 366192 
	if (dbase_file_init(handle,
Packit 366192 
			    path_ro,
Packit 366192 
			    path_rw,
Packit 366192 
			    &SEMANAGE_PORT_RTABLE,
Packit 366192 
			    &SEMANAGE_PORT_FILE_RTABLE, &dconfig->dbase) < 0)
Packit 366192 
		return STATUS_ERR;
Packit 366192
Packit 366192 
	dconfig->dtable = &SEMANAGE_FILE_DTABLE;
Packit 366192 
	return STATUS_SUCCESS;
Packit 366192 
}
Packit 366192
Packit 366192 
void port_file_dbase_release(dbase_config_t * dconfig)
Packit 366192 
{
Packit 366192
Packit 366192 
	dbase_file_release(dconfig->dbase);
Packit 366192 
}

Powered by Pagure 5.13.3

SSH Hostkey/Fingerprint | Documentation