set_selinux_security_context: match GNU's error

2025-07-07 21:45:01 +00:00 · 2025-04-26 11:16:22 +02:00 · 2025-04-26 11:16:22 +02:00 · 595f56a9e7
commit 595f56a9e7
parent 8d94add393
3 changed files with 8 additions and 7 deletions
--- a/src/uucore/src/lib/features/selinux.rs
+++ b/src/uucore/src/lib/features/selinux.rs
@ -19,8 +19,8 @@ pub enum SeLinuxError {
    #[error("Failed to retrieve the security context")]
    ContextRetrievalFailure,

-    #[error("Failed to set the security context")]
-    ContextSetFailure,
+    #[error("failed to set default file creation context to {0}")]
+    ContextSetFailure(String),

    #[error("Invalid context string or conversion failure")]
    ContextConversionFailure,
@ -32,7 +32,7 @@ impl From<SeLinuxError> for i32 {
            SeLinuxError::SELinuxNotEnabled => 1,
            SeLinuxError::FileOpenFailure => 2,
            SeLinuxError::ContextRetrievalFailure => 3,
-            SeLinuxError::ContextSetFailure => 4,
+            SeLinuxError::ContextSetFailure(_) => 4,
            SeLinuxError::ContextConversionFailure => 5,
        }
    }
@ -113,10 +113,11 @@ pub fn set_selinux_security_context(
            false,
        )
        .set_for_path(path, false, false)
-        .map_err(|_| SeLinuxError::ContextSetFailure)
+        .map_err(|_| SeLinuxError::ContextSetFailure(ctx_str.to_string()))
    } else {
        // If no context provided, set the default SELinux context for the path
-        SecurityContext::set_default_for_path(path).map_err(|_| SeLinuxError::ContextSetFailure)
+        SecurityContext::set_default_for_path(path)
+            .map_err(|_| SeLinuxError::ContextSetFailure("".to_string()))
    }
 }

--- a/tests/by-util/test_mkfifo.rs
+++ b/tests/by-util/test_mkfifo.rs
@ -160,7 +160,7 @@ fn test_mkfifo_selinux_invalid() {
            .arg(arg)
            .arg(dest)
            .fails()
-            .stderr_contains("Failed to");
+            .stderr_contains("failed to");
        if at.file_exists(dest) {
            at.remove(dest);
        }
--- a/tests/by-util/test_mknod.rs
+++ b/tests/by-util/test_mknod.rs
@ -187,7 +187,7 @@ fn test_mknod_selinux_invalid() {
            .arg(dest)
            .arg("p")
            .fails()
-            .stderr_contains("Failed to");
+            .stderr_contains("failed to");
        if at.file_exists(dest) {
            at.remove(dest);
        }