[PATCH] semanage: optionally remove previous and linked to reduce disck usage

[PATCH] semanage: optionally remove previous and linked to reduce disck usage

[Karl MacMillan]

This patch adds two options to the semanage config file to control 
whether the previous module directory and linked module are saved after 
a successful commit to the policy store. The default is to delete both.

On my system this reduces the size of the module directory from 78mb to 
22mb.

Signed-off-by: Karl MacMillan <kmacmillan@mentalrootkit.com>

diff -r 5a199c52a29c libsemanage/src/conf-parse.y
--- a/libsemanage/src/conf-parse.y	Wed Jan 03 22:27:17 2007 -0500
+++ b/libsemanage/src/conf-parse.y	Thu Jan 04 11:48:29 2007 -0500
@@ -56,7 +56,7 @@ static int parse_errors;
          char *s;
  }

-%token MODULE_STORE VERSION EXPAND_CHECK FILE_MODE
+%token MODULE_STORE VERSION EXPAND_CHECK FILE_MODE SAVE_PREVIOUS 
SAVE_LINKED
  %token LOAD_POLICY_START SETFILES_START GENHOMEDIRCON_START
  %token VERIFY_MOD_START VERIFY_LINKED_START VERIFY_KERNEL_START BLOCK_END
  %token PROG_PATH PROG_ARGS
@@ -78,6 +78,8 @@ single_opt:     module_store
          |       version
          |       expand_check
          |       file_mode
+        |       save_previous
+        |       save_linked
          ;

  module_store:   MODULE_STORE '=' ARG {
@@ -112,6 +114,24 @@ file_mode:   FILE_MODE '=' ARG  {
                  }
          ;

+save_previous:    SAVE_PREVIOUS '=' ARG {
+	                if (strcmp($3, "true") == 0)
+		                current_conf->save_previous = 1;
+			else
+				current_conf->save_previous = 0;		
+                }
+        ;
+
+
+save_linked:    SAVE_LINKED '=' ARG {
+	                if (strcmp($3, "true") == 0)
+		                current_conf->save_linked = 1;
+			else
+				current_conf->save_linked = 0;		
+                }
+        ;
+
+
  command_block:
                  command_start external_opts BLOCK_END  {
                          if (new_external->path == NULL) {
@@ -186,6 +206,9 @@ static int semanage_conf_init(semanage_c
  	conf->policyvers = sepol_policy_kern_vers_max();
  	conf->expand_check = 1;
  	conf->file_mode = 0644;
+
+	conf->save_previous = 0;
+	conf->save_linked = 0;

  	if ((conf->load_policy =
  	     calloc(1, sizeof(*(current_conf->load_policy)))) == NULL) {
@@ -284,6 +307,7 @@ void semanage_conf_destroy(semanage_conf

  int semanage_error(char *msg)
  {
+	fprintf(stderr, "error parsing semanage configuration file: %s\n", msg);
  	parse_errors++;
  	return 0;
  }
diff -r 5a199c52a29c libsemanage/src/conf-scan.l
--- a/libsemanage/src/conf-scan.l	Wed Jan 03 22:27:17 2007 -0500
+++ b/libsemanage/src/conf-scan.l	Thu Jan 04 11:48:29 2007 -0500
@@ -42,6 +42,8 @@ policy-version    return VERSION;
  policy-version    return VERSION;
  expand-check      return EXPAND_CHECK;
  file-mode         return FILE_MODE;
+save-previous     return SAVE_PREVIOUS;
+save-linked       return SAVE_LINKED;
  "[load_policy]"   return LOAD_POLICY_START;
  "[setfiles]"      return SETFILES_START;
  "[genhomedircon]" return GENHOMEDIRCON_START;
diff -r 5a199c52a29c libsemanage/src/direct_api.c
--- a/libsemanage/src/direct_api.c	Wed Jan 03 22:27:17 2007 -0500
+++ b/libsemanage/src/direct_api.c	Thu Jan 04 11:48:29 2007 -0500
@@ -509,18 +509,35 @@ static int semanage_direct_commit(semana
  		if (retval < 0)
  			goto cleanup;

-		/* write the linked base */
+		/* write the linked base if we want to save or we have a
+		 * verification program that wants it. */
  		linked_filename = semanage_path(SEMANAGE_TMP, SEMANAGE_LINKED);
  		if (linked_filename == NULL) {
  			retval = -1;
  			goto cleanup;
  		}
-		retval = semanage_write_module(sh, linked_filename, base);
-		if (retval < 0)
-			goto cleanup;
-		retval = semanage_verify_linked(sh);
-		if (retval < 0)
-			goto cleanup;
+		if (sh->conf->save_linked || sh->conf->linked_prog) {
+			retval = semanage_write_module(sh, linked_filename, base);
+			if (retval < 0)
+				goto cleanup;
+			retval = semanage_verify_linked(sh);
+			if (retval < 0)
+				goto cleanup;
+			/* remove the linked policy if we only wrote it for the
+			 * verification program. */
+			if (!sh->conf->save_linked) {
+				retval = unlink(linked_filename);
+				if (retval < 0)
+					goto cleanup;
+			}
+		} else {
+			/* Try to delete the linked copy - this is needed if
+			 * the save_link option has changed to prevent the
+			 * old linked copy from being copied forever. No error
+			 * checking is done because this is likely to fail because
+			 * the file does not exist - which is not an error. */
+			unlink(linked_filename);
+		}

  		/* ==================== File-backed ================== */

diff -r 5a199c52a29c libsemanage/src/semanage_conf.h
--- a/libsemanage/src/semanage_conf.h	Wed Jan 03 22:27:17 2007 -0500
+++ b/libsemanage/src/semanage_conf.h	Thu Jan 04 11:48:29 2007 -0500
@@ -35,6 +35,8 @@ typedef struct semanage_conf {
  	int server_port;
  	int policyvers;		/* version for server generated policies */
  	int expand_check;
+	int save_previous;
+	int save_linked;
  	mode_t file_mode;
  	struct external_prog *load_policy;
  	struct external_prog *setfiles;
diff -r 5a199c52a29c libsemanage/src/semanage_store.c
--- a/libsemanage/src/semanage_store.c	Wed Jan 03 22:27:17 2007 -0500
+++ b/libsemanage/src/semanage_store.c	Thu Jan 04 11:48:29 2007 -0500
@@ -1224,6 +1224,10 @@ static int semanage_commit_sandbox(seman
  		goto cleanup;
  	}

+	if (sh->conf->save_previous != 1) {
+		retval = semanage_remove_directory(backup);
+	}
+
        cleanup:
  	semanage_release_active_lock(sh);
  	return retval;

--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.

Re: [PATCH] semanage: optionally remove previous and linked to reduce disck usage

[Joshua Brindle]

Karl MacMillan wrote:
> This patch adds two options to the semanage config file to control 
> whether the previous module directory and linked module are saved 
> after a successful commit to the policy store. The default is to 
> delete both.
>
> On my system this reduces the size of the module directory from 78mb 
> to 22mb.
>
> Signed-off-by: Karl MacMillan <kmacmillan@mentalrootkit.com>
Acked-By: Joshua Brindle <jbrindle@tresys.com>
>
> diff -r 5a199c52a29c libsemanage/src/conf-parse.y
> --- a/libsemanage/src/conf-parse.y    Wed Jan 03 22:27:17 2007 -0500
> +++ b/libsemanage/src/conf-parse.y    Thu Jan 04 11:48:29 2007 -0500
> @@ -56,7 +56,7 @@ static int parse_errors;
>          char *s;
>  }
>
> -%token MODULE_STORE VERSION EXPAND_CHECK FILE_MODE
> +%token MODULE_STORE VERSION EXPAND_CHECK FILE_MODE SAVE_PREVIOUS 
> SAVE_LINKED
>  %token LOAD_POLICY_START SETFILES_START GENHOMEDIRCON_START
>  %token VERIFY_MOD_START VERIFY_LINKED_START VERIFY_KERNEL_START 
> BLOCK_END
>  %token PROG_PATH PROG_ARGS
> @@ -78,6 +78,8 @@ single_opt:     module_store
>          |       version
>          |       expand_check
>          |       file_mode
> +        |       save_previous
> +        |       save_linked
>          ;
>
>  module_store:   MODULE_STORE '=' ARG {
> @@ -112,6 +114,24 @@ file_mode:   FILE_MODE '=' ARG  {
>                  }
>          ;
>
> +save_previous:    SAVE_PREVIOUS '=' ARG {
> +                    if (strcmp($3, "true") == 0)
> +                        current_conf->save_previous = 1;
> +            else
> +                current_conf->save_previous = 0;       
> +                }
> +        ;
> +
> +
> +save_linked:    SAVE_LINKED '=' ARG {
> +                    if (strcmp($3, "true") == 0)
> +                        current_conf->save_linked = 1;
> +            else
> +                current_conf->save_linked = 0;       
> +                }
> +        ;
> +
> +
>  command_block:
>                  command_start external_opts BLOCK_END  {
>                          if (new_external->path == NULL) {
> @@ -186,6 +206,9 @@ static int semanage_conf_init(semanage_c
>      conf->policyvers = sepol_policy_kern_vers_max();
>      conf->expand_check = 1;
>      conf->file_mode = 0644;
> +
> +    conf->save_previous = 0;
> +    conf->save_linked = 0;
>
>      if ((conf->load_policy =
>           calloc(1, sizeof(*(current_conf->load_policy)))) == NULL) {
> @@ -284,6 +307,7 @@ void semanage_conf_destroy(semanage_conf
>
>  int semanage_error(char *msg)
>  {
> +    fprintf(stderr, "error parsing semanage configuration file: 
> %s\n", msg);
>      parse_errors++;
>      return 0;
>  }
> diff -r 5a199c52a29c libsemanage/src/conf-scan.l
> --- a/libsemanage/src/conf-scan.l    Wed Jan 03 22:27:17 2007 -0500
> +++ b/libsemanage/src/conf-scan.l    Thu Jan 04 11:48:29 2007 -0500
> @@ -42,6 +42,8 @@ policy-version    return VERSION;
>  policy-version    return VERSION;
>  expand-check      return EXPAND_CHECK;
>  file-mode         return FILE_MODE;
> +save-previous     return SAVE_PREVIOUS;
> +save-linked       return SAVE_LINKED;
>  "[load_policy]"   return LOAD_POLICY_START;
>  "[setfiles]"      return SETFILES_START;
>  "[genhomedircon]" return GENHOMEDIRCON_START;
> diff -r 5a199c52a29c libsemanage/src/direct_api.c
> --- a/libsemanage/src/direct_api.c    Wed Jan 03 22:27:17 2007 -0500
> +++ b/libsemanage/src/direct_api.c    Thu Jan 04 11:48:29 2007 -0500
> @@ -509,18 +509,35 @@ static int semanage_direct_commit(semana
>          if (retval < 0)
>              goto cleanup;
>
> -        /* write the linked base */
> +        /* write the linked base if we want to save or we have a
> +         * verification program that wants it. */
>          linked_filename = semanage_path(SEMANAGE_TMP, SEMANAGE_LINKED);
>          if (linked_filename == NULL) {
>              retval = -1;
>              goto cleanup;
>          }
> -        retval = semanage_write_module(sh, linked_filename, base);
> -        if (retval < 0)
> -            goto cleanup;
> -        retval = semanage_verify_linked(sh);
> -        if (retval < 0)
> -            goto cleanup;
> +        if (sh->conf->save_linked || sh->conf->linked_prog) {
> +            retval = semanage_write_module(sh, linked_filename, base);
> +            if (retval < 0)
> +                goto cleanup;
> +            retval = semanage_verify_linked(sh);
> +            if (retval < 0)
> +                goto cleanup;
> +            /* remove the linked policy if we only wrote it for the
> +             * verification program. */
> +            if (!sh->conf->save_linked) {
> +                retval = unlink(linked_filename);
> +                if (retval < 0)
> +                    goto cleanup;
> +            }
> +        } else {
> +            /* Try to delete the linked copy - this is needed if
> +             * the save_link option has changed to prevent the
> +             * old linked copy from being copied forever. No error
> +             * checking is done because this is likely to fail because
> +             * the file does not exist - which is not an error. */
> +            unlink(linked_filename);
> +        }
>
>          /* ==================== File-backed ================== */
>
> diff -r 5a199c52a29c libsemanage/src/semanage_conf.h
> --- a/libsemanage/src/semanage_conf.h    Wed Jan 03 22:27:17 2007 -0500
> +++ b/libsemanage/src/semanage_conf.h    Thu Jan 04 11:48:29 2007 -0500
> @@ -35,6 +35,8 @@ typedef struct semanage_conf {
>      int server_port;
>      int policyvers;        /* version for server generated policies */
>      int expand_check;
> +    int save_previous;
> +    int save_linked;
>      mode_t file_mode;
>      struct external_prog *load_policy;
>      struct external_prog *setfiles;
> diff -r 5a199c52a29c libsemanage/src/semanage_store.c
> --- a/libsemanage/src/semanage_store.c    Wed Jan 03 22:27:17 2007 -0500
> +++ b/libsemanage/src/semanage_store.c    Thu Jan 04 11:48:29 2007 -0500
> @@ -1224,6 +1224,10 @@ static int semanage_commit_sandbox(seman
>          goto cleanup;
>      }
>
> +    if (sh->conf->save_previous != 1) {
> +        retval = semanage_remove_directory(backup);
> +    }
> +
>        cleanup:
>      semanage_release_active_lock(sh);
>      return retval;



--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.

Re: [PATCH] semanage: optionally remove previous and linked to reduce disck usage

[Stephen Smalley]

On Thu, 2007-01-04 at 11:56 -0500, Karl MacMillan wrote:
> This patch adds two options to the semanage config file to control 
> whether the previous module directory and linked module are saved after 
> a successful commit to the policy store. The default is to delete both.
> 
> On my system this reduces the size of the module directory from 78mb to 
> 22mb.
> 
> Signed-off-by: Karl MacMillan <kmacmillan@mentalrootkit.com>

A couple of minor suggestions...

> diff -r 5a199c52a29c libsemanage/src/conf-parse.y
> --- a/libsemanage/src/conf-parse.y	Wed Jan 03 22:27:17 2007 -0500
> +++ b/libsemanage/src/conf-parse.y	Thu Jan 04 11:48:29 2007 -0500
> @@ -112,6 +114,24 @@ file_mode:   FILE_MODE '=' ARG  {
>                   }
>           ;
> 
> +save_previous:    SAVE_PREVIOUS '=' ARG {
> +	                if (strcmp($3, "true") == 0)

Use strcasecmp() here

> +		                current_conf->save_previous = 1;
> +			else

Explicitly check for "false" here.

> +				current_conf->save_previous = 0;

Add another else clause to report an error otherwise.

> 		
> +                }
> +        ;
> +
> +
> +save_linked:    SAVE_LINKED '=' ARG {
> +	                if (strcmp($3, "true") == 0)
> +		                current_conf->save_linked = 1;
> +			else
> +				current_conf->save_linked = 0;

Ditto.

> @@ -284,6 +307,7 @@ void semanage_conf_destroy(semanage_conf
> 
>   int semanage_error(char *msg)
>   {
> +	fprintf(stderr, "error parsing semanage configuration file: %s\n", msg);
>   	parse_errors++;
>   	return 0;
>   }

Offhand, this seems inconsistent with the standard error reporting
mechanism in libsemanage, but naturally we don't have a handle here, and
the generated parser/scanner will use stderr too.  No change required
here I suppose, but not ideal for a library.

> diff -r 5a199c52a29c libsemanage/src/semanage_store.c
> --- a/libsemanage/src/semanage_store.c	Wed Jan 03 22:27:17 2007 -0500
> +++ b/libsemanage/src/semanage_store.c	Thu Jan 04 11:48:29 2007 -0500
> @@ -1224,6 +1224,10 @@ static int semanage_commit_sandbox(seman
>   		goto cleanup;
>   	}
> 
> +	if (sh->conf->save_previous != 1) {

Simplify as if (!sh->conf->save_previous)

> +		retval = semanage_remove_directory(backup);

Needs an ERR() statement to report the error?
And should it be an error or just a warning, as the actual commit did
succeed?

> +	}
> +
>         cleanup:
>   	semanage_release_active_lock(sh);
>   	return retval;
> 

-- 
Stephen Smalley
National Security Agency


--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.

Re: [PATCH] semanage: optionally remove previous and linked to reduce disck usage

[Karl MacMillan]

Stephen Smalley wrote:
> On Thu, 2007-01-04 at 11:56 -0500, Karl MacMillan wrote:
>> This patch adds two options to the semanage config file to control 
>> whether the previous module directory and linked module are saved after 
>> a successful commit to the policy store. The default is to delete both.
>>
>> On my system this reduces the size of the module directory from 78mb to 
>> 22mb.
>>
>> Signed-off-by: Karl MacMillan <kmacmillan@mentalrootkit.com>
> 
> A couple of minor suggestions...
> 
>> diff -r 5a199c52a29c libsemanage/src/conf-parse.y
>> --- a/libsemanage/src/conf-parse.y	Wed Jan 03 22:27:17 2007 -0500
>> +++ b/libsemanage/src/conf-parse.y	Thu Jan 04 11:48:29 2007 -0500
>> @@ -112,6 +114,24 @@ file_mode:   FILE_MODE '=' ARG  {
>>                   }
>>           ;
>>
>> +save_previous:    SAVE_PREVIOUS '=' ARG {
>> +	                if (strcmp($3, "true") == 0)
> 
> Use strcasecmp() here
> 
>> +		                current_conf->save_previous = 1;
>> +			else
> 
> Explicitly check for "false" here.
> 
>> +				current_conf->save_previous = 0;
> 
> Add another else clause to report an error otherwise.
> 

Sure.

>> 		
>> +                }
>> +        ;
>> +
>> +
>> +save_linked:    SAVE_LINKED '=' ARG {
>> +	                if (strcmp($3, "true") == 0)
>> +		                current_conf->save_linked = 1;
>> +			else
>> +				current_conf->save_linked = 0;
> 
> Ditto.
> 
>> @@ -284,6 +307,7 @@ void semanage_conf_destroy(semanage_conf
>>
>>   int semanage_error(char *msg)
>>   {
>> +	fprintf(stderr, "error parsing semanage configuration file: %s\n", msg);
>>   	parse_errors++;
>>   	return 0;
>>   }
> 
> Offhand, this seems inconsistent with the standard error reporting
> mechanism in libsemanage, but naturally we don't have a handle here, and
> the generated parser/scanner will use stderr too.  No change required
> here I suppose, but not ideal for a library.
> 

I know that is isn't ideal. I added that during debugging when I 
realized that _no errors_ are reported indicating that the configuration 
file was invalid. And - as you note - there is really no good way to get 
an error out through a handle at that point.

>> diff -r 5a199c52a29c libsemanage/src/semanage_store.c
>> --- a/libsemanage/src/semanage_store.c	Wed Jan 03 22:27:17 2007 -0500
>> +++ b/libsemanage/src/semanage_store.c	Thu Jan 04 11:48:29 2007 -0500
>> @@ -1224,6 +1224,10 @@ static int semanage_commit_sandbox(seman
>>   		goto cleanup;
>>   	}
>>
>> +	if (sh->conf->save_previous != 1) {
> 
> Simplify as if (!sh->conf->save_previous)
> 

I prefer the explicit checks, but don't care much (this is probably 
because I spend a lot of time with python).

>> +		retval = semanage_remove_directory(backup);
> 
> Needs an ERR() statement to report the error?
> And should it be an error or just a warning, as the actual commit did
> succeed?
> 

I wondered about whether this should be an error or not (obviously I was 
still wondering when I made the patch). Currently everything is an error 
during commits, so I'll go with that.

New version below:

Signed-off-by: Karl MacMillan <kmacmillan@mentalrootkit.com>

diff -r 5eec2dbb1b6c libsemanage/src/conf-parse.y
--- a/libsemanage/src/conf-parse.y	Fri Jan 05 11:18:13 2007 -0500
+++ b/libsemanage/src/conf-parse.y	Fri Jan 05 11:19:01 2007 -0500
@@ -56,7 +56,7 @@ static int parse_errors;
          char *s;
  }

-%token MODULE_STORE VERSION EXPAND_CHECK FILE_MODE
+%token MODULE_STORE VERSION EXPAND_CHECK FILE_MODE SAVE_PREVIOUS 
SAVE_LINKED
  %token LOAD_POLICY_START SETFILES_START GENHOMEDIRCON_START
  %token VERIFY_MOD_START VERIFY_LINKED_START VERIFY_KERNEL_START BLOCK_END
  %token PROG_PATH PROG_ARGS
@@ -78,6 +78,8 @@ single_opt:     module_store
          |       version
          |       expand_check
          |       file_mode
+        |       save_previous
+        |       save_linked
          ;

  module_store:   MODULE_STORE '=' ARG {
@@ -112,6 +114,30 @@ file_mode:   FILE_MODE '=' ARG  {
                  }
          ;

+save_previous:    SAVE_PREVIOUS '=' ARG {
+	                if (strcasecmp($3, "true") == 0)
+		                current_conf->save_previous = 1;
+			else if (strcasecmp($3, "false") == 0)
+				current_conf->save_previous = 0;		
+			else {
+				yyerror("save-previous can only be 'true' or 'false'");
+			}
+                }
+        ;
+
+
+save_linked:    SAVE_LINKED '=' ARG {
+	                if (strcasecmp($3, "true") == 0)
+		                current_conf->save_linked = 1;
+			else if (strcasecmp($3, "false") == 0)
+				current_conf->save_linked = 0;		
+			else {
+				yyerror("save-linked can only be 'true' or 'false'");
+			}
+                }
+        ;
+
+
  command_block:
                  command_start external_opts BLOCK_END  {
                          if (new_external->path == NULL) {
@@ -186,6 +212,9 @@ static int semanage_conf_init(semanage_c
  	conf->policyvers = sepol_policy_kern_vers_max();
  	conf->expand_check = 1;
  	conf->file_mode = 0644;
+
+	conf->save_previous = 0;
+	conf->save_linked = 0;

  	if ((conf->load_policy =
  	     calloc(1, sizeof(*(current_conf->load_policy)))) == NULL) {
@@ -284,6 +313,7 @@ void semanage_conf_destroy(semanage_conf

  int semanage_error(char *msg)
  {
+	fprintf(stderr, "error parsing semanage configuration file: %s\n", msg);
  	parse_errors++;
  	return 0;
  }
diff -r 5eec2dbb1b6c libsemanage/src/conf-scan.l
--- a/libsemanage/src/conf-scan.l	Fri Jan 05 11:18:13 2007 -0500
+++ b/libsemanage/src/conf-scan.l	Fri Jan 05 11:19:01 2007 -0500
@@ -42,6 +42,8 @@ policy-version    return VERSION;
  policy-version    return VERSION;
  expand-check      return EXPAND_CHECK;
  file-mode         return FILE_MODE;
+save-previous     return SAVE_PREVIOUS;
+save-linked       return SAVE_LINKED;
  "[load_policy]"   return LOAD_POLICY_START;
  "[setfiles]"      return SETFILES_START;
  "[genhomedircon]" return GENHOMEDIRCON_START;
diff -r 5eec2dbb1b6c libsemanage/src/direct_api.c
--- a/libsemanage/src/direct_api.c	Fri Jan 05 11:18:13 2007 -0500
+++ b/libsemanage/src/direct_api.c	Fri Jan 05 11:19:01 2007 -0500
@@ -509,18 +509,35 @@ static int semanage_direct_commit(semana
  		if (retval < 0)
  			goto cleanup;

-		/* write the linked base */
+		/* write the linked base if we want to save or we have a
+		 * verification program that wants it. */
  		linked_filename = semanage_path(SEMANAGE_TMP, SEMANAGE_LINKED);
  		if (linked_filename == NULL) {
  			retval = -1;
  			goto cleanup;
  		}
-		retval = semanage_write_module(sh, linked_filename, base);
-		if (retval < 0)
-			goto cleanup;
-		retval = semanage_verify_linked(sh);
-		if (retval < 0)
-			goto cleanup;
+		if (sh->conf->save_linked || sh->conf->linked_prog) {
+			retval = semanage_write_module(sh, linked_filename, base);
+			if (retval < 0)
+				goto cleanup;
+			retval = semanage_verify_linked(sh);
+			if (retval < 0)
+				goto cleanup;
+			/* remove the linked policy if we only wrote it for the
+			 * verification program. */
+			if (!sh->conf->save_linked) {
+				retval = unlink(linked_filename);
+				if (retval < 0)
+					goto cleanup;
+			}
+		} else {
+			/* Try to delete the linked copy - this is needed if
+			 * the save_link option has changed to prevent the
+			 * old linked copy from being copied forever. No error
+			 * checking is done because this is likely to fail because
+			 * the file does not exist - which is not an error. */
+			unlink(linked_filename);
+		}

  		/* ==================== File-backed ================== */

diff -r 5eec2dbb1b6c libsemanage/src/semanage_conf.h
--- a/libsemanage/src/semanage_conf.h	Fri Jan 05 11:18:13 2007 -0500
+++ b/libsemanage/src/semanage_conf.h	Fri Jan 05 11:19:01 2007 -0500
@@ -35,6 +35,8 @@ typedef struct semanage_conf {
  	int server_port;
  	int policyvers;		/* version for server generated policies */
  	int expand_check;
+	int save_previous;
+	int save_linked;
  	mode_t file_mode;
  	struct external_prog *load_policy;
  	struct external_prog *setfiles;
diff -r 5eec2dbb1b6c libsemanage/src/semanage_store.c
--- a/libsemanage/src/semanage_store.c	Fri Jan 05 11:18:13 2007 -0500
+++ b/libsemanage/src/semanage_store.c	Fri Jan 05 11:19:01 2007 -0500
@@ -1224,6 +1224,12 @@ static int semanage_commit_sandbox(seman
  		goto cleanup;
  	}

+	if (!sh->conf->save_previous) {
+		retval = semanage_remove_directory(backup);
+		ERR(sh, "Could not delete previous directory %s.", backup);
+		goto cleanup;
+	}
+
        cleanup:
  	semanage_release_active_lock(sh);
  	return retval;

--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.

Re: [PATCH] semanage: optionally remove previous and linked to reduce disck usage

[Stephen Smalley]

On Fri, 2007-01-05 at 11:19 -0500, Karl MacMillan wrote:
> New version below:
> 
> Signed-off-by: Karl MacMillan <kmacmillan@mentalrootkit.com>

> diff -r 5eec2dbb1b6c libsemanage/src/direct_api.c
> --- a/libsemanage/src/direct_api.c	Fri Jan 05 11:18:13 2007 -0500
> +++ b/libsemanage/src/direct_api.c	Fri Jan 05 11:19:01 2007 -0500
> @@ -509,18 +509,35 @@ static int semanage_direct_commit(semana
>   		if (retval < 0)
>   			goto cleanup;
> 
> -		/* write the linked base */
> +		/* write the linked base if we want to save or we have a
> +		 * verification program that wants it. */
>   		linked_filename = semanage_path(SEMANAGE_TMP, SEMANAGE_LINKED);
>   		if (linked_filename == NULL) {
>   			retval = -1;
>   			goto cleanup;
>   		}
> -		retval = semanage_write_module(sh, linked_filename, base);
> -		if (retval < 0)
> -			goto cleanup;
> -		retval = semanage_verify_linked(sh);
> -		if (retval < 0)
> -			goto cleanup;
> +		if (sh->conf->save_linked || sh->conf->linked_prog) {
> +			retval = semanage_write_module(sh, linked_filename, base);
> +			if (retval < 0)
> +				goto cleanup;
> +			retval = semanage_verify_linked(sh);
> +			if (retval < 0)
> +				goto cleanup;
> +			/* remove the linked policy if we only wrote it for the
> +			 * verification program. */
> +			if (!sh->conf->save_linked) {
> +				retval = unlink(linked_filename);
> +				if (retval < 0)
> +					goto cleanup;

Likely need an error message here too.

> diff -r 5eec2dbb1b6c libsemanage/src/semanage_store.c
> --- a/libsemanage/src/semanage_store.c	Fri Jan 05 11:18:13 2007 -0500
> +++ b/libsemanage/src/semanage_store.c	Fri Jan 05 11:19:01 2007 -0500
> @@ -1224,6 +1224,12 @@ static int semanage_commit_sandbox(seman
>   		goto cleanup;
>   	}
> 
> +	if (!sh->conf->save_previous) {
> +		retval = semanage_remove_directory(backup);
> +		ERR(sh, "Could not delete previous directory %s.", backup);

That will be a little noisy (not conditional on retval) ;)

> +		goto cleanup;
> +	}
> +
>         cleanup:
>   	semanage_release_active_lock(sh);
>   	return retval;
-- 
Stephen Smalley
National Security Agency


--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.

Re: [PATCH] semanage: optionally remove previous and linked to reduce disck usage

[Karl MacMillan]

Stephen Smalley wrote:
> On Fri, 2007-01-05 at 11:19 -0500, Karl MacMillan wrote:
>> New version below:
>>
>> Signed-off-by: Karl MacMillan <kmacmillan@mentalrootkit.com>
> 

Another try below.

This patch adds two options to the semanage config file to control 
whether the previous module directory and linked module are saved after 
a successful commit to the policy store. The default is to delete both.

On my system this reduces the size of the module directory from 78mb to 
22mb.

Signed-off-by: Karl MacMillan <kmacmillan@mentalrootkit.com>

diff -r 701cfcc87cf7 libsemanage/src/conf-parse.y
--- a/libsemanage/src/conf-parse.y	Fri Jan 05 14:02:14 2007 -0500
+++ b/libsemanage/src/conf-parse.y	Fri Jan 05 14:06:00 2007 -0500
@@ -56,7 +56,7 @@ static int parse_errors;
          char *s;
  }

-%token MODULE_STORE VERSION EXPAND_CHECK FILE_MODE
+%token MODULE_STORE VERSION EXPAND_CHECK FILE_MODE SAVE_PREVIOUS 
SAVE_LINKED
  %token LOAD_POLICY_START SETFILES_START GENHOMEDIRCON_START
  %token VERIFY_MOD_START VERIFY_LINKED_START VERIFY_KERNEL_START BLOCK_END
  %token PROG_PATH PROG_ARGS
@@ -78,6 +78,8 @@ single_opt:     module_store
          |       version
          |       expand_check
          |       file_mode
+        |       save_previous
+        |       save_linked
          ;

  module_store:   MODULE_STORE '=' ARG {
@@ -112,6 +114,30 @@ file_mode:   FILE_MODE '=' ARG  {
                  }
          ;

+save_previous:    SAVE_PREVIOUS '=' ARG {
+	                if (strcasecmp($3, "true") == 0)
+		                current_conf->save_previous = 1;
+			else if (strcasecmp($3, "false") == 0)
+				current_conf->save_previous = 0;		
+			else {
+				yyerror("save-previous can only be 'true' or 'false'");
+			}
+                }
+        ;
+
+
+save_linked:    SAVE_LINKED '=' ARG {
+	                if (strcasecmp($3, "true") == 0)
+		                current_conf->save_linked = 1;
+			else if (strcasecmp($3, "false") == 0)
+				current_conf->save_linked = 0;		
+			else {
+				yyerror("save-linked can only be 'true' or 'false'");
+			}
+                }
+        ;
+
+
  command_block:
                  command_start external_opts BLOCK_END  {
                          if (new_external->path == NULL) {
@@ -186,6 +212,9 @@ static int semanage_conf_init(semanage_c
  	conf->policyvers = sepol_policy_kern_vers_max();
  	conf->expand_check = 1;
  	conf->file_mode = 0644;
+
+	conf->save_previous = 0;
+	conf->save_linked = 0;

  	if ((conf->load_policy =
  	     calloc(1, sizeof(*(current_conf->load_policy)))) == NULL) {
@@ -284,6 +313,7 @@ void semanage_conf_destroy(semanage_conf

  int semanage_error(char *msg)
  {
+	fprintf(stderr, "error parsing semanage configuration file: %s\n", msg);
  	parse_errors++;
  	return 0;
  }
diff -r 701cfcc87cf7 libsemanage/src/conf-scan.l
--- a/libsemanage/src/conf-scan.l	Fri Jan 05 14:02:14 2007 -0500
+++ b/libsemanage/src/conf-scan.l	Fri Jan 05 14:06:00 2007 -0500
@@ -42,6 +42,8 @@ policy-version    return VERSION;
  policy-version    return VERSION;
  expand-check      return EXPAND_CHECK;
  file-mode         return FILE_MODE;
+save-previous     return SAVE_PREVIOUS;
+save-linked       return SAVE_LINKED;
  "[load_policy]"   return LOAD_POLICY_START;
  "[setfiles]"      return SETFILES_START;
  "[genhomedircon]" return GENHOMEDIRCON_START;
diff -r 701cfcc87cf7 libsemanage/src/direct_api.c
--- a/libsemanage/src/direct_api.c	Fri Jan 05 14:02:14 2007 -0500
+++ b/libsemanage/src/direct_api.c	Fri Jan 05 14:06:00 2007 -0500
@@ -509,18 +509,38 @@ static int semanage_direct_commit(semana
  		if (retval < 0)
  			goto cleanup;

-		/* write the linked base */
+		/* write the linked base if we want to save or we have a
+		 * verification program that wants it. */
  		linked_filename = semanage_path(SEMANAGE_TMP, SEMANAGE_LINKED);
  		if (linked_filename == NULL) {
  			retval = -1;
  			goto cleanup;
  		}
-		retval = semanage_write_module(sh, linked_filename, base);
-		if (retval < 0)
-			goto cleanup;
-		retval = semanage_verify_linked(sh);
-		if (retval < 0)
-			goto cleanup;
+		if (sh->conf->save_linked || sh->conf->linked_prog) {
+			retval = semanage_write_module(sh, linked_filename, base);
+			if (retval < 0)
+				goto cleanup;
+			retval = semanage_verify_linked(sh);
+			if (retval < 0)
+				goto cleanup;
+			/* remove the linked policy if we only wrote it for the
+			 * verification program. */
+			if (!sh->conf->save_linked) {
+				retval = unlink(linked_filename);
+				if (retval < 0) {
+					ERR(sh, "could not remove linked base %s",
+					    linked_filename);
+					goto cleanup;
+				}
+			}
+		} else {
+			/* Try to delete the linked copy - this is needed if
+			 * the save_link option has changed to prevent the
+			 * old linked copy from being copied forever. No error
+			 * checking is done because this is likely to fail because
+			 * the file does not exist - which is not an error. */
+			unlink(linked_filename);
+		}

  		/* ==================== File-backed ================== */

diff -r 701cfcc87cf7 libsemanage/src/semanage_conf.h
--- a/libsemanage/src/semanage_conf.h	Fri Jan 05 14:02:14 2007 -0500
+++ b/libsemanage/src/semanage_conf.h	Fri Jan 05 14:06:00 2007 -0500
@@ -35,6 +35,8 @@ typedef struct semanage_conf {
  	int server_port;
  	int policyvers;		/* version for server generated policies */
  	int expand_check;
+	int save_previous;
+	int save_linked;
  	mode_t file_mode;
  	struct external_prog *load_policy;
  	struct external_prog *setfiles;
diff -r 701cfcc87cf7 libsemanage/src/semanage_store.c
--- a/libsemanage/src/semanage_store.c	Fri Jan 05 14:02:14 2007 -0500
+++ b/libsemanage/src/semanage_store.c	Fri Jan 05 14:06:00 2007 -0500
@@ -1224,6 +1224,14 @@ static int semanage_commit_sandbox(seman
  		goto cleanup;
  	}

+	if (!sh->conf->save_previous) {
+		retval = semanage_remove_directory(backup);
+		if (retval < 0) {
+			ERR(sh, "Could not delete previous directory %s.", backup);
+			goto cleanup;
+		}
+	}
+
        cleanup:
  	semanage_release_active_lock(sh);
  	return retval;


--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.

Re: [PATCH] semanage: optionally remove previous and linked to reduce disck usage

[Stephen Smalley]

On Fri, 2007-01-05 at 14:08 -0500, Karl MacMillan wrote:
> Stephen Smalley wrote:
> > On Fri, 2007-01-05 at 11:19 -0500, Karl MacMillan wrote:
> >> New version below:
> >>
> >> Signed-off-by: Karl MacMillan <kmacmillan@mentalrootkit.com>
> > 
> 
> Another try below.
> 
> This patch adds two options to the semanage config file to control 
> whether the previous module directory and linked module are saved after 
> a successful commit to the policy store. The default is to delete both.
> 
> On my system this reduces the size of the module directory from 78mb to 
> 22mb.
> 
> Signed-off-by: Karl MacMillan <kmacmillan@mentalrootkit.com>

Acked-by:  Stephen Smalley <sds@tycho.nsa.gov>

...but I'll let Joshua merge it.

> 
> diff -r 701cfcc87cf7 libsemanage/src/conf-parse.y
> --- a/libsemanage/src/conf-parse.y	Fri Jan 05 14:02:14 2007 -0500
> +++ b/libsemanage/src/conf-parse.y	Fri Jan 05 14:06:00 2007 -0500
> @@ -56,7 +56,7 @@ static int parse_errors;
>           char *s;
>   }
> 
> -%token MODULE_STORE VERSION EXPAND_CHECK FILE_MODE
> +%token MODULE_STORE VERSION EXPAND_CHECK FILE_MODE SAVE_PREVIOUS 
> SAVE_LINKED
>   %token LOAD_POLICY_START SETFILES_START GENHOMEDIRCON_START
>   %token VERIFY_MOD_START VERIFY_LINKED_START VERIFY_KERNEL_START BLOCK_END
>   %token PROG_PATH PROG_ARGS
> @@ -78,6 +78,8 @@ single_opt:     module_store
>           |       version
>           |       expand_check
>           |       file_mode
> +        |       save_previous
> +        |       save_linked
>           ;
> 
>   module_store:   MODULE_STORE '=' ARG {
> @@ -112,6 +114,30 @@ file_mode:   FILE_MODE '=' ARG  {
>                   }
>           ;
> 
> +save_previous:    SAVE_PREVIOUS '=' ARG {
> +	                if (strcasecmp($3, "true") == 0)
> +		                current_conf->save_previous = 1;
> +			else if (strcasecmp($3, "false") == 0)
> +				current_conf->save_previous = 0;		
> +			else {
> +				yyerror("save-previous can only be 'true' or 'false'");
> +			}
> +                }
> +        ;
> +
> +
> +save_linked:    SAVE_LINKED '=' ARG {
> +	                if (strcasecmp($3, "true") == 0)
> +		                current_conf->save_linked = 1;
> +			else if (strcasecmp($3, "false") == 0)
> +				current_conf->save_linked = 0;		
> +			else {
> +				yyerror("save-linked can only be 'true' or 'false'");
> +			}
> +                }
> +        ;
> +
> +
>   command_block:
>                   command_start external_opts BLOCK_END  {
>                           if (new_external->path == NULL) {
> @@ -186,6 +212,9 @@ static int semanage_conf_init(semanage_c
>   	conf->policyvers = sepol_policy_kern_vers_max();
>   	conf->expand_check = 1;
>   	conf->file_mode = 0644;
> +
> +	conf->save_previous = 0;
> +	conf->save_linked = 0;
> 
>   	if ((conf->load_policy =
>   	     calloc(1, sizeof(*(current_conf->load_policy)))) == NULL) {
> @@ -284,6 +313,7 @@ void semanage_conf_destroy(semanage_conf
> 
>   int semanage_error(char *msg)
>   {
> +	fprintf(stderr, "error parsing semanage configuration file: %s\n", msg);
>   	parse_errors++;
>   	return 0;
>   }
> diff -r 701cfcc87cf7 libsemanage/src/conf-scan.l
> --- a/libsemanage/src/conf-scan.l	Fri Jan 05 14:02:14 2007 -0500
> +++ b/libsemanage/src/conf-scan.l	Fri Jan 05 14:06:00 2007 -0500
> @@ -42,6 +42,8 @@ policy-version    return VERSION;
>   policy-version    return VERSION;
>   expand-check      return EXPAND_CHECK;
>   file-mode         return FILE_MODE;
> +save-previous     return SAVE_PREVIOUS;
> +save-linked       return SAVE_LINKED;
>   "[load_policy]"   return LOAD_POLICY_START;
>   "[setfiles]"      return SETFILES_START;
>   "[genhomedircon]" return GENHOMEDIRCON_START;
> diff -r 701cfcc87cf7 libsemanage/src/direct_api.c
> --- a/libsemanage/src/direct_api.c	Fri Jan 05 14:02:14 2007 -0500
> +++ b/libsemanage/src/direct_api.c	Fri Jan 05 14:06:00 2007 -0500
> @@ -509,18 +509,38 @@ static int semanage_direct_commit(semana
>   		if (retval < 0)
>   			goto cleanup;
> 
> -		/* write the linked base */
> +		/* write the linked base if we want to save or we have a
> +		 * verification program that wants it. */
>   		linked_filename = semanage_path(SEMANAGE_TMP, SEMANAGE_LINKED);
>   		if (linked_filename == NULL) {
>   			retval = -1;
>   			goto cleanup;
>   		}
> -		retval = semanage_write_module(sh, linked_filename, base);
> -		if (retval < 0)
> -			goto cleanup;
> -		retval = semanage_verify_linked(sh);
> -		if (retval < 0)
> -			goto cleanup;
> +		if (sh->conf->save_linked || sh->conf->linked_prog) {
> +			retval = semanage_write_module(sh, linked_filename, base);
> +			if (retval < 0)
> +				goto cleanup;
> +			retval = semanage_verify_linked(sh);
> +			if (retval < 0)
> +				goto cleanup;
> +			/* remove the linked policy if we only wrote it for the
> +			 * verification program. */
> +			if (!sh->conf->save_linked) {
> +				retval = unlink(linked_filename);
> +				if (retval < 0) {
> +					ERR(sh, "could not remove linked base %s",
> +					    linked_filename);
> +					goto cleanup;
> +				}
> +			}
> +		} else {
> +			/* Try to delete the linked copy - this is needed if
> +			 * the save_link option has changed to prevent the
> +			 * old linked copy from being copied forever. No error
> +			 * checking is done because this is likely to fail because
> +			 * the file does not exist - which is not an error. */
> +			unlink(linked_filename);
> +		}
> 
>   		/* ==================== File-backed ================== */
> 
> diff -r 701cfcc87cf7 libsemanage/src/semanage_conf.h
> --- a/libsemanage/src/semanage_conf.h	Fri Jan 05 14:02:14 2007 -0500
> +++ b/libsemanage/src/semanage_conf.h	Fri Jan 05 14:06:00 2007 -0500
> @@ -35,6 +35,8 @@ typedef struct semanage_conf {
>   	int server_port;
>   	int policyvers;		/* version for server generated policies */
>   	int expand_check;
> +	int save_previous;
> +	int save_linked;
>   	mode_t file_mode;
>   	struct external_prog *load_policy;
>   	struct external_prog *setfiles;
> diff -r 701cfcc87cf7 libsemanage/src/semanage_store.c
> --- a/libsemanage/src/semanage_store.c	Fri Jan 05 14:02:14 2007 -0500
> +++ b/libsemanage/src/semanage_store.c	Fri Jan 05 14:06:00 2007 -0500
> @@ -1224,6 +1224,14 @@ static int semanage_commit_sandbox(seman
>   		goto cleanup;
>   	}
> 
> +	if (!sh->conf->save_previous) {
> +		retval = semanage_remove_directory(backup);
> +		if (retval < 0) {
> +			ERR(sh, "Could not delete previous directory %s.", backup);
> +			goto cleanup;
> +		}
> +	}
> +
>         cleanup:
>   	semanage_release_active_lock(sh);
>   	return retval;
-- 
Stephen Smalley
National Security Agency


--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.