21 static char *semanage_user_roles(semanage_handle_t * handle, const char *sename) {  in semanage_user_roles()  argument
29 	if (semanage_user_key_create(handle, sename, &key) >= 0) {  in semanage_user_roles()
30 		if (semanage_user_query(handle, key, &user) >= 0) {  in semanage_user_roles()
31 			if (semanage_user_get_roles(handle,  in semanage_user_roles()
54 static int semanage_seuser_audit(semanage_handle_t * handle,  in semanage_seuser_audit()  argument
74 		roles = semanage_user_roles(handle, sename);  in semanage_seuser_audit()
79 		proles = semanage_user_roles(handle, psename);  in semanage_seuser_audit()
118 int semanage_seuser_modify_local(semanage_handle_t * handle,  in semanage_seuser_modify_local()  argument
123 	void *callback = (void *) handle->msg_callback;  in semanage_seuser_modify_local()
124 	dbase_config_t *dconfig = semanage_seuser_dbase_local(handle);  in semanage_seuser_modify_local()
134 	rc = semanage_seuser_clone(handle, data, &new);  in semanage_seuser_modify_local()
139 	if (!mls_range && semanage_mls_enabled(handle)) {  in semanage_seuser_modify_local()
142 		rc = semanage_user_key_create(handle, sename, &ukey);  in semanage_seuser_modify_local()
146 		rc = semanage_user_query(handle, ukey, &u);  in semanage_seuser_modify_local()
150 			rc = semanage_seuser_set_mlsrange(handle, new, mls_range);  in semanage_seuser_modify_local()
157 	handle->msg_callback = NULL;  in semanage_seuser_modify_local()
158 	(void) semanage_seuser_query(handle, key, &previous);  in semanage_seuser_modify_local()
159 	handle->msg_callback = callback;  in semanage_seuser_modify_local()
160 	rc = dbase_modify(handle, dconfig, key, new);  in semanage_seuser_modify_local()
161 	if (semanage_seuser_audit(handle, new, previous, AUDIT_ROLE_ASSIGN, rc == 0) < 0)  in semanage_seuser_modify_local()
170 int semanage_seuser_del_local(semanage_handle_t * handle,  in semanage_seuser_del_local()  argument
175 	dbase_config_t *dconfig = semanage_seuser_dbase_local(handle);  in semanage_seuser_del_local()
176 	rc = dbase_del(handle, dconfig, key);  in semanage_seuser_del_local()
177 	semanage_seuser_query(handle, key, &seuser);  in semanage_seuser_del_local()
178 	if (semanage_seuser_audit(handle, NULL, seuser, AUDIT_ROLE_REMOVE, rc == 0) < 0)  in semanage_seuser_del_local()
185 int semanage_seuser_query_local(semanage_handle_t * handle,  in semanage_seuser_query_local()  argument
190 	dbase_config_t *dconfig = semanage_seuser_dbase_local(handle);  in semanage_seuser_query_local()
191 	return dbase_query(handle, dconfig, key, response);  in semanage_seuser_query_local()
194 int semanage_seuser_exists_local(semanage_handle_t * handle,  in semanage_seuser_exists_local()  argument
199 	dbase_config_t *dconfig = semanage_seuser_dbase_local(handle);  in semanage_seuser_exists_local()
200 	return dbase_exists(handle, dconfig, key, response);  in semanage_seuser_exists_local()
203 int semanage_seuser_count_local(semanage_handle_t * handle,  in semanage_seuser_count_local()  argument
207 	dbase_config_t *dconfig = semanage_seuser_dbase_local(handle);  in semanage_seuser_count_local()
208 	return dbase_count(handle, dconfig, response);  in semanage_seuser_count_local()
211 int semanage_seuser_iterate_local(semanage_handle_t * handle,  in semanage_seuser_iterate_local()  argument
217 	dbase_config_t *dconfig = semanage_seuser_dbase_local(handle);  in semanage_seuser_iterate_local()
218 	return dbase_iterate(handle, dconfig, handler, handler_arg);  in semanage_seuser_iterate_local()
223 int semanage_seuser_list_local(semanage_handle_t * handle,  in hidden_def()
228 	dbase_config_t *dconfig = semanage_seuser_dbase_local(handle);  in hidden_def()
229 	return dbase_list(handle, dconfig, records, count);  in hidden_def()
233 	semanage_handle_t *handle;  member
246 	semanage_handle_t *handle = arg->handle;  in validate_handler()  local
256 	if (semanage_user_key_create(handle, sename, &key) < 0)  in validate_handler()
258 	if (semanage_user_exists(handle, key, &exists) < 0)  in validate_handler()
261 		ERR(handle, "selinux user %s does not exist", sename);  in validate_handler()
269 		if (semanage_user_query(handle, key, &user) < 0)  in validate_handler()
273 		if (sepol_mls_check(handle->sepolh, policydb, mls_range) < 0)  in validate_handler()
275 		if (sepol_mls_contains(handle->sepolh, policydb,  in validate_handler()
280 			ERR(handle, "MLS range %s for Unix user %s "  in validate_handler()
287 		ERR(handle, "MLS is disabled, but MLS range %s "  in validate_handler()
297 	ERR(handle, "could not check if seuser mapping for %s is valid", name);  in validate_handler()
304 		ERR(handle, "seuser mapping [%s -> (%s, %s)] is invalid",  in validate_handler()
307 		ERR(handle, "seuser mapping [%s -> %s] is invalid",  in validate_handler()
318 int hidden semanage_seuser_validate_local(semanage_handle_t * handle,  in semanage_seuser_validate_local()  argument
323 	arg.handle = handle;  in semanage_seuser_validate_local()
325 	return semanage_seuser_iterate_local(handle, validate_handler, &arg);  in semanage_seuser_validate_local()