1*2d543d20SAndroid Build Coastguard Worker #include <unistd.h>
2*2d543d20SAndroid Build Coastguard Worker #include <fcntl.h>
3*2d543d20SAndroid Build Coastguard Worker #include <string.h>
4*2d543d20SAndroid Build Coastguard Worker #include <stdlib.h>
5*2d543d20SAndroid Build Coastguard Worker #include <errno.h>
6*2d543d20SAndroid Build Coastguard Worker #include <sys/socket.h>
7*2d543d20SAndroid Build Coastguard Worker #include "selinux_internal.h"
8*2d543d20SAndroid Build Coastguard Worker #include "policy.h"
9*2d543d20SAndroid Build Coastguard Worker
10*2d543d20SAndroid Build Coastguard Worker #ifndef SO_PEERSEC
11*2d543d20SAndroid Build Coastguard Worker #define SO_PEERSEC 31
12*2d543d20SAndroid Build Coastguard Worker #endif
13*2d543d20SAndroid Build Coastguard Worker
getpeercon_raw(int fd,char ** context)14*2d543d20SAndroid Build Coastguard Worker int getpeercon_raw(int fd, char ** context)
15*2d543d20SAndroid Build Coastguard Worker {
16*2d543d20SAndroid Build Coastguard Worker char *buf;
17*2d543d20SAndroid Build Coastguard Worker socklen_t size;
18*2d543d20SAndroid Build Coastguard Worker ssize_t ret;
19*2d543d20SAndroid Build Coastguard Worker
20*2d543d20SAndroid Build Coastguard Worker size = INITCONTEXTLEN + 1;
21*2d543d20SAndroid Build Coastguard Worker buf = malloc(size);
22*2d543d20SAndroid Build Coastguard Worker if (!buf)
23*2d543d20SAndroid Build Coastguard Worker return -1;
24*2d543d20SAndroid Build Coastguard Worker memset(buf, 0, size);
25*2d543d20SAndroid Build Coastguard Worker
26*2d543d20SAndroid Build Coastguard Worker ret = getsockopt(fd, SOL_SOCKET, SO_PEERSEC, buf, &size);
27*2d543d20SAndroid Build Coastguard Worker if (ret < 0 && errno == ERANGE) {
28*2d543d20SAndroid Build Coastguard Worker char *newbuf;
29*2d543d20SAndroid Build Coastguard Worker
30*2d543d20SAndroid Build Coastguard Worker newbuf = realloc(buf, size);
31*2d543d20SAndroid Build Coastguard Worker if (!newbuf)
32*2d543d20SAndroid Build Coastguard Worker goto out;
33*2d543d20SAndroid Build Coastguard Worker
34*2d543d20SAndroid Build Coastguard Worker buf = newbuf;
35*2d543d20SAndroid Build Coastguard Worker memset(buf, 0, size);
36*2d543d20SAndroid Build Coastguard Worker ret = getsockopt(fd, SOL_SOCKET, SO_PEERSEC, buf, &size);
37*2d543d20SAndroid Build Coastguard Worker }
38*2d543d20SAndroid Build Coastguard Worker out:
39*2d543d20SAndroid Build Coastguard Worker if (ret < 0)
40*2d543d20SAndroid Build Coastguard Worker free(buf);
41*2d543d20SAndroid Build Coastguard Worker else
42*2d543d20SAndroid Build Coastguard Worker *context = buf;
43*2d543d20SAndroid Build Coastguard Worker return ret;
44*2d543d20SAndroid Build Coastguard Worker }
45*2d543d20SAndroid Build Coastguard Worker
46*2d543d20SAndroid Build Coastguard Worker
getpeercon(int fd,char ** context)47*2d543d20SAndroid Build Coastguard Worker int getpeercon(int fd, char ** context)
48*2d543d20SAndroid Build Coastguard Worker {
49*2d543d20SAndroid Build Coastguard Worker int ret;
50*2d543d20SAndroid Build Coastguard Worker char * rcontext;
51*2d543d20SAndroid Build Coastguard Worker
52*2d543d20SAndroid Build Coastguard Worker ret = getpeercon_raw(fd, &rcontext);
53*2d543d20SAndroid Build Coastguard Worker
54*2d543d20SAndroid Build Coastguard Worker if (!ret) {
55*2d543d20SAndroid Build Coastguard Worker ret = selinux_raw_to_trans_context(rcontext, context);
56*2d543d20SAndroid Build Coastguard Worker freecon(rcontext);
57*2d543d20SAndroid Build Coastguard Worker }
58*2d543d20SAndroid Build Coastguard Worker
59*2d543d20SAndroid Build Coastguard Worker return ret;
60*2d543d20SAndroid Build Coastguard Worker }
61