From 397137b8158298cae14efae330abc57ba11630a5 Mon Sep 17 00:00:00 2001 From: Denis Vlasenko Date: Mon, 23 Jul 2007 14:03:30 +0000 Subject: setfiles,restorecon: new SELinux applets by Yuichi Nakamura --- include/applets.h | 2 ++ include/usage.h | 41 +++++++++++++++++++++++++++++++++++++++++ 2 files changed, 43 insertions(+) (limited to 'include') diff --git a/include/applets.h b/include/applets.h index a05f74a..b5e1e4c 100644 --- a/include/applets.h +++ b/include/applets.h @@ -270,6 +270,7 @@ USE_HALT(APPLET_ODDNAME(reboot, halt, _BB_DIR_SBIN, _BB_SUID_NEVER, reboot)) USE_RENICE(APPLET(renice, _BB_DIR_USR_BIN, _BB_SUID_NEVER)) USE_RESET(APPLET(reset, _BB_DIR_USR_BIN, _BB_SUID_NEVER)) USE_RESIZE(APPLET(resize, _BB_DIR_USR_BIN, _BB_SUID_NEVER)) +USE_RESTORECON(APPLET_ODDNAME(restorecon, setfiles, _BB_DIR_SBIN, _BB_SUID_NEVER, restorecon)) USE_RM(APPLET_NOFORK(rm, rm, _BB_DIR_BIN, _BB_SUID_NEVER, rm)) USE_RMDIR(APPLET_NOFORK(rmdir, rmdir, _BB_DIR_BIN, _BB_SUID_NEVER, rmdir)) USE_RMMOD(APPLET(rmmod, _BB_DIR_SBIN, _BB_SUID_NEVER)) @@ -288,6 +289,7 @@ USE_SEQ(APPLET_NOFORK(seq, seq, _BB_DIR_USR_BIN, _BB_SUID_NEVER, seq)) USE_SETARCH(APPLET(setarch, _BB_DIR_BIN, _BB_SUID_NEVER)) USE_SETCONSOLE(APPLET(setconsole, _BB_DIR_SBIN, _BB_SUID_NEVER)) USE_SETENFORCE(APPLET(setenforce, _BB_DIR_USR_SBIN, _BB_SUID_NEVER)) +USE_SETFILES(APPLET(setfiles, _BB_DIR_SBIN, _BB_SUID_NEVER)) USE_SETKEYCODES(APPLET(setkeycodes, _BB_DIR_USR_BIN, _BB_SUID_NEVER)) USE_SETLOGCONS(APPLET(setlogcons, _BB_DIR_USR_SBIN, _BB_SUID_NEVER)) USE_SETSID(APPLET(setsid, _BB_DIR_USR_BIN, _BB_SUID_NEVER)) diff --git a/include/usage.h b/include/usage.h index 679c347..6608938 100644 --- a/include/usage.h +++ b/include/usage.h @@ -2783,6 +2783,22 @@ #define resize_full_usage \ "Resize the screen" +#define restorecon_trivial_usage \ + "[-iFnrRv] [-e excludedir]... [-o filename] [-f filename | pathname]" +#define restorecon_full_usage \ + "Reset security contexts of files in pathname\n" \ + "\n -i Ignore files that do not exist" \ + "\n -f filename File with list of files to process. Use - for stdin" \ + "\n -e directory Directory to exclude" \ + "\n -R,-r Recurse directories" \ + "\n -n Don't change any file labels" \ + "\n -o filename Save list of files with incorrect context" \ + "\n -v Verbose" \ + "\n -vv Show changed labels" \ + "\n -F Force reset of context to match file_context" \ + "\n for customizable files, or the user section," \ + "\n if it has changed" + #define rm_trivial_usage \ "[OPTION]... FILE..." #define rm_full_usage \ @@ -2947,6 +2963,31 @@ USE_FEATURE_RUN_PARTS_FANCY("\n -l Prints names of all matching files even when "[Enforcing | Permissive | 1 | 0]" #define setenforce_full_usage +#define setfiles_trivial_usage \ + "[-dnpqsvW] [-e dir]... [-o filename] [-r alt_root_path]" \ + USE_FEATURE_SETFILES_CHECK_OPTION( \ + " [-c policyfile] spec_file" \ + ) \ + " pathname" + +#define setfiles_full_usage \ + "Reset file contexts under pathname according to spec_file" \ + USE_FEATURE_SETFILES_CHECK_OPTION( \ + "\n -c file Check the validity of the contexts against the specified binary policy" \ + ) \ + "\n -d Show which specification matched each file" \ + "\n -l Log changes in file labels to syslog" \ + "\n -n Don't change any file labels" \ + "\n -q Suppress no-error output" \ + "\n -r dir Use an altenate root path" \ + "\n -e dir Exclude directory" \ + "\n -F Force reset of context to match file_context for customizable files" \ + "\n -o file Save list of files with incorrect context" \ + "\n -s Take a list of files from standard input (instead of command line)" \ + "\n -v Show changes in file labels, if type or role are changing" \ + "\n -vv Show changes in file labels, if type, role, or user are changing" \ + "\n -W Display warnings about entries that had no matching files" + #define setkeycodes_trivial_usage \ "SCANCODE KEYCODE ..." #define setkeycodes_full_usage \ -- cgit v1.1