# HG changeset patch
# User kaf24@firebug.cl.cam.ac.uk
# Node ID bcfbbca9cf08e89d7e8fd4301ee44def21794071
# Parent 0f5b8f1b0eace3b1677ac0250b72d6f118bdb94b
[SECURITY] Allow domid and ssidref args to get_decision in
util/security.py to be either strings or ints (previously only strings
would work due to the underlying call to lowlevel.acm).
Signed-off-by: Bryan D. Payne <bdpayne@us.ibm.com>
Signed-off-by: Reiner Sailer <sailer@us.ibm.com>
---
tools/python/xen/util/security.py | 9 +++++++++
1 files changed, 9 insertions(+)
diff -r 0f5b8f1b0eac -r bcfbbca9cf08 tools/python/xen/util/security.py
--- a/tools/python/xen/util/security.py Thu Jun 01 18:29:23 2006 +0100
+++ b/tools/python/xen/util/security.py Thu Jun 01 18:30:28 2006 +0100
@@ -426,6 +426,15 @@ def get_decision(arg1, arg2):
err("Argument type not supported.")
ssidref = label2ssidref(arg2[2][1], arg2[1][1])
arg2 = ['ssidref', str(ssidref)]
+
+ # accept only int or string types for domid and ssidref
+ if isinstance(arg1[1], int):
+ arg1[1] = str(arg1[1])
+ if isinstance(arg2[1], int):
+ arg2[1] = str(arg2[1])
+ if not isinstance(arg1[1], str) or not isinstance(arg2[1], str):
+ err("Invalid id or ssidref type, string or int required")
+
try:
decision = acm.getdecision(arg1[0], arg1[1], arg2[0], arg2[1])
except:
_______________________________________________
Xen-changelog mailing list
Xen-changelog@lists.xensource.com
http://lists.xensource.com/xen-changelog
# User kaf24@firebug.cl.cam.ac.uk
# Node ID bcfbbca9cf08e89d7e8fd4301ee44def21794071
# Parent 0f5b8f1b0eace3b1677ac0250b72d6f118bdb94b
[SECURITY] Allow domid and ssidref args to get_decision in
util/security.py to be either strings or ints (previously only strings
would work due to the underlying call to lowlevel.acm).
Signed-off-by: Bryan D. Payne <bdpayne@us.ibm.com>
Signed-off-by: Reiner Sailer <sailer@us.ibm.com>
---
tools/python/xen/util/security.py | 9 +++++++++
1 files changed, 9 insertions(+)
diff -r 0f5b8f1b0eac -r bcfbbca9cf08 tools/python/xen/util/security.py
--- a/tools/python/xen/util/security.py Thu Jun 01 18:29:23 2006 +0100
+++ b/tools/python/xen/util/security.py Thu Jun 01 18:30:28 2006 +0100
@@ -426,6 +426,15 @@ def get_decision(arg1, arg2):
err("Argument type not supported.")
ssidref = label2ssidref(arg2[2][1], arg2[1][1])
arg2 = ['ssidref', str(ssidref)]
+
+ # accept only int or string types for domid and ssidref
+ if isinstance(arg1[1], int):
+ arg1[1] = str(arg1[1])
+ if isinstance(arg2[1], int):
+ arg2[1] = str(arg2[1])
+ if not isinstance(arg1[1], str) or not isinstance(arg2[1], str):
+ err("Invalid id or ssidref type, string or int required")
+
try:
decision = acm.getdecision(arg1[0], arg1[1], arg2[0], arg2[1])
except:
_______________________________________________
Xen-changelog mailing list
Xen-changelog@lists.xensource.com
http://lists.xensource.com/xen-changelog