1 #include <selinux/selinux.h> 2 #include <pthread.h> 3 #include "dso.h" 4 5 hidden_proto(selinux_mkload_policy) 6 hidden_proto(fini_selinuxmnt) 7 hidden_proto(set_selinuxmnt) 8 hidden_proto(selinuxfs_exists) 9 hidden_proto(security_disable) 10 hidden_proto(security_policyvers) 11 hidden_proto(security_load_policy) 12 hidden_proto(security_get_boolean_active) 13 hidden_proto(security_get_boolean_names) 14 hidden_proto(security_set_boolean) 15 hidden_proto(security_commit_booleans) 16 hidden_proto(security_check_context) 17 hidden_proto(security_check_context_raw) 18 hidden_proto(security_canonicalize_context) 19 hidden_proto(security_canonicalize_context_raw) 20 hidden_proto(security_compute_av) 21 hidden_proto(security_compute_av_raw) 22 hidden_proto(security_compute_av_flags) 23 hidden_proto(security_compute_av_flags_raw) 24 hidden_proto(security_compute_user) 25 hidden_proto(security_compute_user_raw) 26 hidden_proto(security_compute_create) 27 hidden_proto(security_compute_create_raw) 28 hidden_proto(security_compute_create_name) 29 hidden_proto(security_compute_create_name_raw) 30 hidden_proto(security_compute_member_raw) 31 hidden_proto(security_compute_relabel_raw) 32 hidden_proto(is_selinux_enabled) 33 hidden_proto(is_selinux_mls_enabled) 34 hidden_proto(freecon) 35 hidden_proto(freeconary) 36 hidden_proto(getprevcon) 37 hidden_proto(getprevcon_raw) 38 hidden_proto(getcon) 39 hidden_proto(getcon_raw) 40 hidden_proto(setcon_raw) 41 hidden_proto(getpeercon_raw) 42 hidden_proto(getpidcon_raw) 43 hidden_proto(getexeccon_raw) 44 hidden_proto(getfilecon) 45 hidden_proto(getfilecon_raw) 46 hidden_proto(lgetfilecon_raw) 47 hidden_proto(fgetfilecon_raw) 48 hidden_proto(setfilecon_raw) 49 hidden_proto(lsetfilecon_raw) 50 hidden_proto(fsetfilecon_raw) 51 hidden_proto(setexeccon) 52 hidden_proto(setexeccon_raw) 53 hidden_proto(getfscreatecon_raw) 54 hidden_proto(getkeycreatecon_raw) 55 hidden_proto(getsockcreatecon_raw) 56 hidden_proto(setfscreatecon_raw) 57 hidden_proto(setkeycreatecon_raw) 58 hidden_proto(setsockcreatecon_raw) 59 hidden_proto(security_getenforce) 60 hidden_proto(security_setenforce) 61 hidden_proto(security_deny_unknown) 62 hidden_proto(security_get_checkreqprot) 63 hidden_proto(selinux_boolean_sub) 64 hidden_proto(selinux_current_policy_path) 65 hidden_proto(selinux_binary_policy_path) 66 hidden_proto(selinux_booleans_subs_path) 67 hidden_proto(selinux_default_context_path) 68 hidden_proto(selinux_securetty_types_path) 69 hidden_proto(selinux_failsafe_context_path) 70 hidden_proto(selinux_removable_context_path) 71 hidden_proto(selinux_virtual_domain_context_path) 72 hidden_proto(selinux_virtual_image_context_path) 73 hidden_proto(selinux_lxc_contexts_path) 74 hidden_proto(selinux_file_context_path) 75 hidden_proto(selinux_file_context_homedir_path) 76 hidden_proto(selinux_file_context_local_path) 77 hidden_proto(selinux_file_context_subs_dist_path) 78 hidden_proto(selinux_file_context_subs_path) 79 hidden_proto(selinux_netfilter_context_path) 80 hidden_proto(selinux_homedir_context_path) 81 hidden_proto(selinux_user_contexts_path) 82 hidden_proto(selinux_booleans_path) 83 hidden_proto(selinux_customizable_types_path) 84 hidden_proto(selinux_media_context_path) 85 hidden_proto(selinux_x_context_path) 86 hidden_proto(selinux_sepgsql_context_path) 87 hidden_proto(selinux_openrc_contexts_path) 88 hidden_proto(selinux_openssh_contexts_path) 89 hidden_proto(selinux_snapperd_contexts_path) 90 hidden_proto(selinux_systemd_contexts_path) 91 hidden_proto(selinux_path) 92 hidden_proto(selinux_check_passwd_access) 93 hidden_proto(selinux_check_securetty_context) 94 hidden_proto(matchpathcon_init_prefix) 95 hidden_proto(selinux_users_path) 96 hidden_proto(selinux_usersconf_path); 97 hidden_proto(selinux_translations_path); 98 hidden_proto(selinux_colors_path); 99 hidden_proto(selinux_getenforcemode); 100 hidden_proto(selinux_getpolicytype); 101 hidden_proto(selinux_raw_to_trans_context); 102 hidden_proto(selinux_trans_to_raw_context); 103 hidden_proto(selinux_raw_context_to_color); 104 hidden_proto(security_get_initial_context); 105 hidden_proto(security_get_initial_context_raw); 106 hidden_proto(selinux_reset_config); 107 108 hidden void flush_class_cache(void); 109 110 extern int load_setlocaldefs hidden; 111 extern int require_seusers hidden; 112 extern int selinux_page_size hidden; 113 114 /* Make pthread_once optional */ 115 #pragma weak pthread_once 116 #pragma weak pthread_key_create 117 #pragma weak pthread_key_delete 118 #pragma weak pthread_setspecific 119 120 /* Call handler iff the first call. */ 121 #define __selinux_once(ONCE_CONTROL, INIT_FUNCTION) \ 122 do { \ 123 if (pthread_once != NULL) \ 124 pthread_once (&(ONCE_CONTROL), (INIT_FUNCTION)); \ 125 else if ((ONCE_CONTROL) == PTHREAD_ONCE_INIT) { \ 126 INIT_FUNCTION (); \ 127 (ONCE_CONTROL) = 2; \ 128 } \ 129 } while (0) 130 131 /* Pthread key macros */ 132 #define __selinux_key_create(KEY, DESTRUCTOR) \ 133 (pthread_key_create != NULL ? pthread_key_create(KEY, DESTRUCTOR) : -1) 134 135 #define __selinux_key_delete(KEY) \ 136 do { \ 137 if (pthread_key_delete != NULL) \ 138 pthread_key_delete(KEY); \ 139 } while (0) 140 141 #define __selinux_setspecific(KEY, VALUE) \ 142 do { \ 143 if (pthread_setspecific != NULL) \ 144 pthread_setspecific(KEY, VALUE); \ 145 } while (0) 146 147 /* selabel_lookup() is only thread safe if we're compiled with pthreads */ 148 149 #pragma weak pthread_mutex_init 150 #pragma weak pthread_mutex_destroy 151 #pragma weak pthread_mutex_lock 152 #pragma weak pthread_mutex_unlock 153 154 #define __pthread_mutex_init(LOCK, ATTR) \ 155 do { \ 156 if (pthread_mutex_init != NULL) \ 157 pthread_mutex_init(LOCK, ATTR); \ 158 } while (0) 159 160 #define __pthread_mutex_destroy(LOCK) \ 161 do { \ 162 if (pthread_mutex_destroy != NULL) \ 163 pthread_mutex_destroy(LOCK); \ 164 } while (0) 165 166 #define __pthread_mutex_lock(LOCK) \ 167 do { \ 168 if (pthread_mutex_lock != NULL) \ 169 pthread_mutex_lock(LOCK); \ 170 } while (0) 171 172 #define __pthread_mutex_unlock(LOCK) \ 173 do { \ 174 if (pthread_mutex_unlock != NULL) \ 175 pthread_mutex_unlock(LOCK); \ 176 } while (0) 177 178 179 #define SELINUXDIR "/etc/selinux/" 180 #define SELINUXCONFIG SELINUXDIR "config" 181 182 extern int has_selinux_config hidden; 183