RepoMirrors/setools
1
0
Fork 0
mirror of https://github.com/SELinuxProject/setools synced 2025-04-11 03:51:26 +00:00
Code Issues Packages Projects Releases Wiki Activity

User: Cache users.

Browse Source
This commit is contained in:
Chris PeBenito 2018-08-08 14:39:42 -04:00
parent 8156e809b8
commit 40b9f2473e
1 changed files with 22 additions and 14 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

36
setools/policyrep/user.pxi
View File

@ -18,6 +18,9 @@
# <http://www.gnu.org/licenses/>. # <http://www.gnu.org/licenses/>.
# #
cdef dict _user_cache = {}
cdef class User(PolicySymbol): cdef class User(PolicySymbol):
"""A user.""" """A user."""
@ -32,23 +35,28 @@ cdef class User(PolicySymbol):
@staticmethod @staticmethod
cdef inline User factory(SELinuxPolicy policy, sepol.user_datum_t *symbol): cdef inline User factory(SELinuxPolicy policy, sepol.user_datum_t *symbol):
"""Factory function for constructing User objects.""" """Factory function for constructing User objects."""
cdef User u = User.__new__(User) cdef User u
u.policy = policy try:
u.key = <uintptr_t>symbol return _user_cache[<uintptr_t>symbol]
u.name = policy.user_value_to_name(symbol.s.value - 1) except KeyError:
u = User.__new__(User)
_user_cache[<uintptr_t>symbol] = u
u.policy = policy
u.key = <uintptr_t>symbol
u.name = policy.user_value_to_name(symbol.s.value - 1)
# object_r is implicitly added to all roles by the compiler. # object_r is implicitly added to all roles by the compiler.
# technically it is incorrect to skip it, but policy writers # technically it is incorrect to skip it, but policy writers
# and analysts don't expect to see it in results, and it # and analysts don't expect to see it in results, and it
# will confuse, especially for role set equality user queries. # will confuse, especially for role set equality user queries.
u.roles = frozenset(r for r in RoleEbitmapIterator.factory(policy, &symbol.roles.roles) u.roles = frozenset(r for r in RoleEbitmapIterator.factory(policy, &symbol.roles.roles)
if r != "object_r") if r != "object_r")
if policy.mls: if policy.mls:
u._level = Level.factory(policy, &symbol.exp_dfltlevel) u._level = Level.factory(policy, &symbol.exp_dfltlevel)
u._range = Range.factory(policy, &symbol.exp_range) u._range = Range.factory(policy, &symbol.exp_range)
return u return u
def __str__(self): def __str__(self):
return self.name return self.name