| ## domainsPage.py - show selinux domains |
| ## Copyright (C) 2009 Red Hat, Inc. |
| |
| ## This program is free software; you can redistribute it and/or modify |
| ## it under the terms of the GNU General Public License as published by |
| ## the Free Software Foundation; either version 2 of the License, or |
| ## (at your option) any later version. |
| |
| ## This program is distributed in the hope that it will be useful, |
| ## but WITHOUT ANY WARRANTY; without even the implied warranty of |
| ## MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the |
| ## GNU General Public License for more details. |
| |
| ## You should have received a copy of the GNU General Public License |
| ## along with this program; if not, write to the Free Software |
| ## Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA. |
| |
| ## Author: Dan Walsh |
| import string |
| import gtk |
| import gtk.glade |
| import os |
| import commands |
| import gobject |
| import sys |
| import seobject |
| import selinux |
| from semanagePage import * |
| from sepolicy import get_all_entrypoint_domains |
| |
| ## |
| ## I18N |
| ## |
| PROGNAME = "policycoreutils" |
| import gettext |
| gettext.bindtextdomain(PROGNAME, "/usr/share/locale") |
| gettext.textdomain(PROGNAME) |
| try: |
| gettext.install(PROGNAME, |
| localedir="/usr/share/locale", |
| unicode=False, |
| codeset='utf-8') |
| except IOError: |
| import __builtin__ |
| __builtin__.__dict__['_'] = unicode |
| |
| |
| class domainsPage(semanagePage): |
| |
| def __init__(self, xml): |
| semanagePage.__init__(self, xml, "domains", _("Process Domain")) |
| self.domain_filter = xml.get_widget("domainsFilterEntry") |
| self.domain_filter.connect("focus_out_event", self.filter_changed) |
| self.domain_filter.connect("activate", self.filter_changed) |
| |
| self.store = gtk.ListStore(gobject.TYPE_STRING, gobject.TYPE_STRING) |
| self.view.set_model(self.store) |
| self.store.set_sort_column_id(0, gtk.SORT_ASCENDING) |
| col = gtk.TreeViewColumn(_("Domain Name"), gtk.CellRendererText(), text=0) |
| col.set_sort_column_id(0) |
| col.set_resizable(True) |
| self.view.append_column(col) |
| self.store.set_sort_column_id(0, gtk.SORT_ASCENDING) |
| col = gtk.TreeViewColumn(_("Mode"), gtk.CellRendererText(), text=1) |
| col.set_sort_column_id(1) |
| col.set_resizable(True) |
| self.view.append_column(col) |
| self.view.get_selection().connect("changed", self.itemSelected) |
| |
| self.permissive_button = xml.get_widget("permissiveButton") |
| self.enforcing_button = xml.get_widget("enforcingButton") |
| |
| self.domains = get_all_entrypoint_domains() |
| self.load() |
| |
| def get_modules(self): |
| modules = [] |
| fd = os.popen("semodule -l") |
| mods = fd.readlines() |
| fd.close() |
| for l in mods: |
| modules.append(l.split()[0]) |
| return modules |
| |
| def load(self, filter=""): |
| self.filter = filter |
| self.store.clear() |
| try: |
| modules = self.get_modules() |
| for domain in self.domains: |
| if not self.match(domain, filter): |
| continue |
| iter = self.store.append() |
| self.store.set_value(iter, 0, domain) |
| t = "permissive_%s_t" % domain |
| if t in modules: |
| self.store.set_value(iter, 1, _("Permissive")) |
| else: |
| self.store.set_value(iter, 1, "") |
| except: |
| pass |
| self.view.get_selection().select_path((0,)) |
| |
| def itemSelected(self, selection): |
| store, iter = selection.get_selected() |
| if iter == None: |
| return |
| p = store.get_value(iter, 1) == _("Permissive") |
| self.permissive_button.set_sensitive(not p) |
| self.enforcing_button.set_sensitive(p) |
| |
| def deleteDialog(self): |
| # Do nothing |
| return self.delete() |
| |
| def delete(self): |
| selection = self.view.get_selection() |
| store, iter = selection.get_selected() |
| domain = store.get_value(iter, 0) |
| try: |
| self.wait() |
| status, output = commands.getstatusoutput("semanage permissive -d %s_t" % domain) |
| self.ready() |
| if status != 0: |
| self.error(output) |
| else: |
| domain = store.set_value(iter, 1, "") |
| self.itemSelected(selection) |
| |
| except ValueError, e: |
| self.error(e.args[0]) |
| |
| def propertiesDialog(self): |
| # Do nothing |
| return |
| |
| def addDialog(self): |
| # Do nothing |
| return self.add() |
| |
| def add(self): |
| selection = self.view.get_selection() |
| store, iter = selection.get_selected() |
| domain = store.get_value(iter, 0) |
| try: |
| self.wait() |
| status, output = commands.getstatusoutput("semanage permissive -a %s_t" % domain) |
| self.ready() |
| if status != 0: |
| self.error(output) |
| else: |
| domain = store.set_value(iter, 1, _("Permissive")) |
| self.itemSelected(selection) |
| |
| except ValueError, e: |
| self.error(e.args[0]) |