[SSSD] [sssd PR#523][synchronized] IPA: Drop unused ifdef HAVE_SELINUX_LOGIN_DIR

[lslebodn]

   URL: https://github.com/SSSD/sssd/pull/523
Author: lslebodn
 Title: #523: IPA: Drop unused ifdef HAVE_SELINUX_LOGIN_DIR
Action: synchronized

To pull the PR as Git branch:
git remote add ghsssd https://github.com/SSSD/sssd
git fetch ghsssd pull/523/head:pr523
git checkout pr523

From 7a1fb530c6b47abb5ebfdb79f53bcf662956066b Mon Sep 17 00:00:00 2001
From: Lukas Slebodnik <lsleb...@redhat.com>
Date: Fri, 23 Feb 2018 19:54:19 +0100
Subject: [PATCH 1/2] IPA: Drop unused ifdef HAVE_SELINUX_LOGIN_DIR

Macros ALL_SERVICES and selogin_path were conditionally defined
in case of existing selinux login directory at configure time
(defined macro AVE_SELINUX_LOGIN_DIR)
However, these macros were unused for quite a long 2.5 year
and last usage was removed in commit 9c47c8c59b5c9078f342f82367cd0ad7857acef8
"IPA: Use set_seuser instead of writing selinux login file"
---
 configure.ac                    | 1 -
 src/external/selinux.m4         | 9 ---------
 src/providers/ipa/ipa_init.c    | 2 +-
 src/providers/ipa/ipa_selinux.h | 7 -------
 4 files changed, 1 insertion(+), 18 deletions(-)

diff --git a/configure.ac b/configure.ac
index fafb73500..69deb811e 100644
--- a/configure.ac
+++ b/configure.ac
@@ -377,7 +377,6 @@ AM_PYTHON2_MODULE([ldap])
 
 if test x$HAVE_SELINUX != x; then
     AM_CHECK_SELINUX
-    AM_CHECK_SELINUX_LOGIN_DIR
 fi
 
 if test x$HAVE_SEMANAGE != x -a x$HAVE_SELINUX != x; then
diff --git a/src/external/selinux.m4 b/src/external/selinux.m4
index 1f41b3128..d1b961a49 100644
--- a/src/external/selinux.m4
+++ b/src/external/selinux.m4
@@ -23,12 +23,3 @@ AC_DEFUN([AM_CHECK_SEMANAGE],
                      [AC_MSG_ERROR([libsemanage is missing])])
     AC_SUBST(SEMANAGE_LIBS)
 ])
-
-dnl Check if the SELinux login directory exists
-AC_DEFUN([AM_CHECK_SELINUX_LOGIN_DIR],
-[
-  AC_CHECK_FILE(/etc/selinux/targeted/logins/,
-                [AC_DEFINE([HAVE_SELINUX_LOGIN_DIR], [1],
-                           [The directory to store SELinux user login is available])],
-                [AC_MSG_WARN([SELinux login directory is not available])])
-])
diff --git a/src/providers/ipa/ipa_init.c b/src/providers/ipa/ipa_init.c
index 3edab59bb..cdf58b322 100644
--- a/src/providers/ipa/ipa_init.c
+++ b/src/providers/ipa/ipa_init.c
@@ -853,7 +853,7 @@ errno_t sssm_ipa_selinux_init(TALLOC_CTX *mem_ctx,
                               void *module_data,
                               struct dp_method *dp_methods)
 {
-#if defined HAVE_SELINUX && defined HAVE_SELINUX_LOGIN_DIR
+#if defined HAVE_SELINUX
     struct ipa_selinux_ctx *selinux_ctx;
     struct ipa_init_ctx *init_ctx;
     struct ipa_options *opts;
diff --git a/src/providers/ipa/ipa_selinux.h b/src/providers/ipa/ipa_selinux.h
index 65ca037ee..dea87759e 100644
--- a/src/providers/ipa/ipa_selinux.h
+++ b/src/providers/ipa/ipa_selinux.h
@@ -27,13 +27,6 @@
 
 #include "providers/ldap/ldap_common.h"
 
-#ifdef HAVE_SELINUX_LOGIN_DIR
-
-#define ALL_SERVICES "*"
-#define selogin_path(mem_ctx, username) \
-    talloc_asprintf(mem_ctx, "%s/logins/%s", selinux_policy_root(), username)
-#endif /* HAVE_SELINUX_LOGIN_DIR */
-
 struct ipa_selinux_ctx {
     struct ipa_id_ctx *id_ctx;
     time_t last_update;

From 23c34fcdb5ac10737492d83d0877337012cc3beb Mon Sep 17 00:00:00 2001
From: Lukas Slebodnik <lsleb...@redhat.com>
Date: Mon, 26 Feb 2018 13:04:01 +0100
Subject: [PATCH 2/2] IPA: Fix typo in debug message in sssm_ipa_selinux_init

It was probably a copy&paste mistake.
---
 src/providers/ipa/ipa_init.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/providers/ipa/ipa_init.c b/src/providers/ipa/ipa_init.c
index cdf58b322..cd2227896 100644
--- a/src/providers/ipa/ipa_init.c
+++ b/src/providers/ipa/ipa_init.c
@@ -879,7 +879,7 @@ errno_t sssm_ipa_selinux_init(TALLOC_CTX *mem_ctx,
     return EOK;
 #else
     DEBUG(SSSDBG_MINOR_FAILURE, "SELinux init handler called but SSSD is "
-                                "built without SSH support, ignoring\n");
+                                "built without SELinux support, ignoring\n");
     return EOK;
 #endif
 }

_______________________________________________
sssd-devel mailing list -- sssd-devel@lists.fedorahosted.org
To unsubscribe send an email to sssd-devel-le...@lists.fedorahosted.org