summaryrefslogtreecommitdiff
path: root/src/compute_av.c
diff options
context:
space:
mode:
Diffstat (limited to 'src/compute_av.c')
-rw-r--r--src/compute_av.c72
1 files changed, 0 insertions, 72 deletions
diff --git a/src/compute_av.c b/src/compute_av.c
deleted file mode 100644
index d6f76f8..0000000
--- a/src/compute_av.c
+++ /dev/null
@@ -1,72 +0,0 @@
-#include <unistd.h>
-#include <sys/types.h>
-#include <fcntl.h>
-#include <stdlib.h>
-#include <stdio.h>
-#include <errno.h>
-#include <string.h>
-#include <limits.h>
-#include "selinux_internal.h"
-#include "policy.h"
-#include "mapping.h"
-
-int security_compute_av(const char * scon,
- const char * tcon,
- security_class_t tclass,
- access_vector_t requested,
- struct av_decision *avd)
-{
- char path[PATH_MAX];
- char *buf;
- size_t len;
- int fd, ret;
-
- if (!selinux_mnt) {
- errno = ENOENT;
- return -1;
- }
-
- snprintf(path, sizeof path, "%s/access", selinux_mnt);
- fd = open(path, O_RDWR);
- if (fd < 0)
- return -1;
-
- len = selinux_page_size;
- buf = malloc(len);
- if (!buf) {
- ret = -1;
- goto out;
- }
-
- snprintf(buf, len, "%s %s %hu %x", scon, tcon,
- unmap_class(tclass), unmap_perm(tclass, requested));
-
- ret = write(fd, buf, strlen(buf));
- if (ret < 0)
- goto out2;
-
- memset(buf, 0, len);
- ret = read(fd, buf, len - 1);
- if (ret < 0)
- goto out2;
-
- ret = sscanf(buf, "%x %x %x %x %u %x",
- &avd->allowed, &avd->decided,
- &avd->auditallow, &avd->auditdeny,
- &avd->seqno, &avd->flags);
- if (ret < 5) {
- ret = -1;
- goto out2;
- } else if (ret < 6)
- avd->flags = 0;
-
- map_decision(tclass, avd);
-
- ret = 0;
- out2:
- free(buf);
- out:
- close(fd);
- return ret;
-}
-
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-24 16:55:08 +0000