From: Rahul Sandhu <nvraxn@gmail.com>
To: nvraxn@gmail.com
Cc: selinux@vger.kernel.org
Subject: [PATCH v2] libselinux: refactor selinux_check_securetty_context
Date: Thu, 31 Jul 2025 17:23:42 +0100 [thread overview]
Message-ID: <20250731162342.1074496-1-nvraxn@gmail.com> (raw)
In-Reply-To: <20250731162139.1074252-1-nvraxn@gmail.com>
Invert the checks for fp and con, and initalise char *end as NULL.
Signed-off-by: Rahul Sandhu <nvraxn@gmail.com>
---
.../src/selinux_check_securetty_context.c | 79 +++++++++++--------
1 file changed, 45 insertions(+), 34 deletions(-)
v2: oops, didn't mean to include fcntl.h
diff --git a/libselinux/src/selinux_check_securetty_context.c b/libselinux/src/selinux_check_securetty_context.c
index 7609752e..6d039f8f 100644
--- a/libselinux/src/selinux_check_securetty_context.c
+++ b/libselinux/src/selinux_check_securetty_context.c
@@ -8,45 +8,56 @@
int selinux_check_securetty_context(const char * tty_context)
{
+ context_t con = context_new(tty_context);
+ if (!con) {
+ return -1;
+ }
+
+ FILE *fp = fopen(selinux_securetty_types_path(), "re");
+ if (!fp) {
+ context_free(con);
+ return -1;
+ }
+
+ const char *type = context_type_get(con);
+
char *line = NULL;
- char *start, *end = NULL;
+ char *start = NULL;
+ char *end = NULL;
size_t line_len = 0;
- ssize_t len;
int found = -1;
- FILE *fp;
- fp = fopen(selinux_securetty_types_path(), "re");
- if (fp) {
- context_t con = context_new(tty_context);
- if (con) {
- const char *type = context_type_get(con);
- while ((len = getline(&line, &line_len, fp)) != -1) {
-
- if (line[len - 1] == '\n')
- line[len - 1] = 0;
-
- /* Skip leading whitespace. */
- start = line;
- while (*start && isspace((unsigned char)*start))
- start++;
- if (!(*start))
- continue;
-
- end = start;
- while (*end && !isspace((unsigned char)*end))
- end++;
- if (*end)
- *end++ = 0;
- if (!strcmp(type, start)) {
- found = 0;
- break;
- }
- }
- free(line);
- context_free(con);
+ ssize_t len;
+ while ((len = getline(&line, &line_len, fp)) != -1) {
+
+ if (line[len - 1] == '\n') {
+ line[len - 1] = 0;
+ }
+
+ /* Skip leading whitespace. */
+ start = line;
+ while (*start && isspace((unsigned char)*start)) {
+ start++;
+ }
+ if (!(*start)) {
+ continue;
+ }
+
+ end = start;
+ while (*end && !isspace((unsigned char)*end)) {
+ end++;
+ }
+ if (*end) {
+ *end++ = 0;
+ }
+ if (!strcmp(type, start)) {
+ found = 0;
+ break;
}
- fclose(fp);
}
+ free(line);
+ context_free(con);
+ fclose(fp);
+
return found;
}
-
--
2.50.1
next prev parent reply other threads:[~2025-07-31 16:23 UTC|newest]
Thread overview: 4+ messages / expand[flat|nested] mbox.gz Atom feed top
2025-07-31 16:21 [PATCH] libselinux: refactor selinux_check_securetty_context Rahul Sandhu
2025-07-31 16:23 ` Rahul Sandhu [this message]
2025-08-01 17:31 ` Stephen Smalley
2025-08-01 17:45 ` [PATCH v3] " Rahul Sandhu
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20250731162342.1074496-1-nvraxn@gmail.com \
--to=nvraxn@gmail.com \
--cc=selinux@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).