Go to file
James Carter 90db06c524 libsepol: Use a dynamic buffer in sepol_av_to_string()
In the internal function sepol_av_to_string(), use a dynamically
allocated buffer for the permission names of an access vector instead
of a fixed static buffer to support very long permission names.

Update the internal users of sepol_av_to_string() to free the buffer.

The exported function sepol_perm_to_string() is just a wrapper to
the internal function. To avoid changing the behavior of this function,
use a static buffer and copy the resulting string from the internal
function. If the string is too long for the buffer or there was an
error in creating the string, return a string indicating the error.

All of the changes to the internal function and users was the work
of Christian Göttsche <cgzones@googlemail.com>.

Reported-by: oss-fuzz (issue 64832, 64933)
Suggested-by: Christian Göttsche <cgzones@googlemail.com>
Signed-off-by: James Carter <jwcart2@gmail.com>
2024-03-04 09:45:41 -05:00
.circleci CircleCI: do not add Debian-specific parameter when invoking setup.py 2022-07-06 15:57:21 -04:00
.github/workflows github: bump action dependencies 2023-11-15 08:39:47 -05:00
checkpolicy libsepol: Use a dynamic buffer in sepol_av_to_string() 2024-03-04 09:45:41 -05:00
dbus Update VERSIONs to 3.6 for release. 2023-12-13 15:46:22 +01:00
gui Update VERSIONs to 3.6 for release. 2023-12-13 15:46:22 +01:00
libselinux libselinux: use reentrant strtok_r(3) 2024-01-25 13:06:10 -05:00
libsemanage libsemanage: support huge passwd entries 2024-01-25 12:51:16 -05:00
libsepol libsepol: Use a dynamic buffer in sepol_av_to_string() 2024-03-04 09:45:41 -05:00
mcstrans mcstrans: check memory allocations 2024-01-25 12:58:17 -05:00
policycoreutils setfiles: avoid unsigned integer underflow 2024-01-25 12:51:20 -05:00
python Update VERSIONs to 3.6 for release. 2023-12-13 15:46:22 +01:00
restorecond Update VERSIONs to 3.6 for release. 2023-12-13 15:46:22 +01:00
sandbox sandbox: do not override warning CFLAGS 2024-01-25 12:58:15 -05:00
scripts scripts: update run-scan-build 2023-11-15 08:37:43 -05:00
secilc Update VERSIONs to 3.6 for release. 2023-12-13 15:46:22 +01:00
semodule-utils Update VERSIONs to 3.6 for release. 2023-12-13 15:46:22 +01:00
.gitignore restorecond: Add gitignore 2016-11-16 11:20:05 -05:00
CleanSpec.mk Add empty top level Android.mk / CleanSpec.mk files 2015-04-16 07:54:09 -04:00
CONTRIBUTING.md Replace PCRE with PCRE2 build dependencies 2021-12-09 11:07:10 -05:00
LICENSE docs: provide a top level LICENSE file 2022-10-05 08:20:38 -04:00
Makefile Enable missing prototypes 2022-04-20 14:03:44 -04:00
README.md Update Python installation on Debian 2023-11-15 08:37:41 -05:00
SECURITY.md docs: Add GPG fingerprints 2022-10-24 08:26:05 -04:00
VERSION Update VERSIONs to 3.6 for release. 2023-12-13 15:46:22 +01:00

SELinux Userspace

SELinux logo Run Tests Run SELinux testsuite in a virtual machine OSS-Fuzz Status CIFuzz Status

SELinux is a flexible Mandatory Access Control (MAC) system built into the Linux Kernel. SELinux provides administrators with a comprehensive access control mechanism that enables greater access granularity over the existing Linux Discretionary Access Controls (DAC) and is present in many major Linux distributions. This repository contains the sources for the SELinux utilities and system libraries which allow for the configuration and management of an SELinux-based system.

Please submit all bug reports and patches to the selinux@vger.kernel.org mailing list. You can subscribe by sending "subscribe selinux" in the body of an email to majordomo@vger.kernel.org. Archives of the mailing list are available at https://lore.kernel.org/selinux.

Installation

SELinux libraries and tools are packaged in several Linux distributions:

Building and testing

Build dependencies on Fedora:

# For C libraries and programs
dnf install \
    audit-libs-devel \
    bison \
    bzip2-devel \
    CUnit-devel \
    diffutils \
    flex \
    gcc \
    gettext \
    glib2-devel \
    make \
    libcap-devel \
    libcap-ng-devel \
    pam-devel \
    pcre2-devel \
    xmlto

# For Python and Ruby bindings
dnf install \
    python3-devel \
    python3-pip \
    python3-setuptools \
    python3-wheel \
    ruby-devel \
    swig

Build dependencies on Debian:

# For C libraries and programs
apt-get install --no-install-recommends --no-install-suggests \
    bison \
    flex \
    gawk \
    gcc \
    gettext \
    make \
    libaudit-dev \
    libbz2-dev \
    libcap-dev \
    libcap-ng-dev \
    libcunit1-dev \
    libglib2.0-dev \
    libpcre2-dev \
    pkgconf \
    python3 \
    systemd \
    xmlto

# For Python and Ruby bindings
apt-get install --no-install-recommends --no-install-suggests \
    python3-dev \
    python3-pip \
    python3-setuptools \
    python3-wheel \
    ruby-dev \
    swig

To build and install everything under a private directory, run:

make clean distclean

make DESTDIR=~/obj install install-rubywrap install-pywrap

On Debian the environment variable DEB_PYTHON_INSTALL_LAYOUT needs to be set to deb when installing the Python wrappers in order to create the correct Python directory structure. On Debian systems older than bookworm set PYTHON_SETUP_ARGS='--install-option "--install-layout=deb"' instead.

To run tests with the built libraries and programs, several paths (relative to $DESTDIR) need to be added to variables $LD_LIBRARY_PATH, $PATH and $PYTHONPATH. This can be done using ./scripts/env_use_destdir:

DESTDIR=~/obj ./scripts/env_use_destdir make test

Some tests require the reference policy to be installed (for example in python/sepolgen).

To install as the default system libraries and binaries (overwriting any previously installed ones - dangerous!), on x86_64, run:

make LIBDIR=/usr/lib64 SHLIBDIR=/lib64 install install-pywrap relabel

or on x86 (32-bit), run:

make install install-pywrap relabel

This may render your system unusable if the upstream SELinux userspace lacks library functions or other dependencies relied upon by your distribution. If it breaks, you get to keep both pieces.

Setting CFLAGS

Setting CFLAGS during the make process will cause the omission of many defaults. While the project strives to provide a reasonable set of default flags, custom CFLAGS could break the build, or have other undesired changes on the build output. Thus, be very careful when setting CFLAGS. CFLAGS that are encouraged to be set when overriding are:

  • -fno-semantic-interposition for gcc or compilers that do not do this. clang does this by default. clang-10 and up will support passing this flag, but ignore it. Previous clang versions fail.

macOS

To install libsepol on macOS (mainly for policy analysis):

cd libsepol; make PREFIX=/usr/local install

This requires GNU coreutils:

brew install coreutils