2012-09-20 13:21:48 +01:00
|
|
|
dnl The libselinux.so library
|
|
|
|
dnl
|
2016-02-24 15:02:44 -07:00
|
|
|
dnl Copyright (C) 2012-2014, 2016 Red Hat, Inc.
|
2012-09-20 13:21:48 +01:00
|
|
|
dnl
|
|
|
|
dnl This library is free software; you can redistribute it and/or
|
|
|
|
dnl modify it under the terms of the GNU Lesser General Public
|
|
|
|
dnl License as published by the Free Software Foundation; either
|
|
|
|
dnl version 2.1 of the License, or (at your option) any later version.
|
|
|
|
dnl
|
|
|
|
dnl This library is distributed in the hope that it will be useful,
|
|
|
|
dnl but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
dnl MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
|
|
dnl Lesser General Public License for more details.
|
|
|
|
dnl
|
|
|
|
dnl You should have received a copy of the GNU Lesser General Public
|
|
|
|
dnl License along with this library. If not, see
|
|
|
|
dnl <http://www.gnu.org/licenses/>.
|
|
|
|
dnl
|
|
|
|
|
2016-12-12 18:11:51 +01:00
|
|
|
AC_DEFUN([LIBVIRT_ARG_SELINUX],[
|
2016-12-22 12:49:51 +01:00
|
|
|
LIBVIRT_ARG_WITH_FEATURE([SELINUX], [SELinux], [check])
|
|
|
|
LIBVIRT_ARG_WITH([SELINUX_MOUNT], [set SELinux mount point], [check])
|
2016-12-12 18:11:51 +01:00
|
|
|
])
|
|
|
|
|
|
|
|
AC_DEFUN([LIBVIRT_CHECK_SELINUX],[
|
2012-09-20 13:21:48 +01:00
|
|
|
LIBVIRT_CHECK_LIB([SELINUX], [selinux],
|
|
|
|
[fgetfilecon_raw], [selinux/selinux.h])
|
|
|
|
|
|
|
|
if test "$with_selinux" = "yes"; then
|
2014-05-28 14:44:08 +02:00
|
|
|
# libselinux changed signatures between 2.2 and 2.3
|
2014-05-28 16:10:26 -06:00
|
|
|
AC_CACHE_CHECK([for selinux setcon parameter type], [lv_cv_setcon_const],
|
2014-05-28 14:44:08 +02:00
|
|
|
[AC_COMPILE_IFELSE(
|
|
|
|
[AC_LANG_PROGRAM(
|
|
|
|
[[
|
|
|
|
#include <selinux/selinux.h>
|
2014-05-28 13:48:21 -06:00
|
|
|
int setcon(char *context);
|
2014-05-28 14:44:08 +02:00
|
|
|
]])],
|
2014-05-28 13:48:21 -06:00
|
|
|
[lv_cv_setcon_const=''],
|
|
|
|
[lv_cv_setcon_const='const'])])
|
|
|
|
AC_DEFINE_UNQUOTED([VIR_SELINUX_CTX_CONST], [$lv_cv_setcon_const],
|
|
|
|
[Define to empty or 'const' depending on how SELinux qualifies its
|
|
|
|
security context parameters])
|
2016-02-24 15:02:44 -07:00
|
|
|
# ...and again for 2.5
|
|
|
|
AC_CACHE_CHECK([for selinux selabel_open parameter type],
|
|
|
|
[lv_cv_selabel_open_const],
|
|
|
|
[AC_COMPILE_IFELSE(
|
|
|
|
[AC_LANG_PROGRAM(
|
|
|
|
[[
|
|
|
|
#include <selinux/selinux.h>
|
|
|
|
#include <selinux/label.h>
|
|
|
|
struct selabel_handle *selabel_open(unsigned, struct selinux_opt *, unsigned);
|
|
|
|
]])],
|
|
|
|
[lv_cv_selabel_open_const=''],
|
|
|
|
[lv_cv_selabel_open_const='const'])])
|
|
|
|
AC_DEFINE_UNQUOTED([VIR_SELINUX_OPEN_CONST], [$lv_cv_selabel_open_const],
|
|
|
|
[Define to empty or 'const' depending on how SELinux qualifies its
|
|
|
|
selabel_open parameter])
|
2014-05-28 14:44:08 +02:00
|
|
|
|
2012-09-20 13:21:48 +01:00
|
|
|
AC_MSG_CHECKING([SELinux mount point])
|
|
|
|
if test "$with_selinux_mount" = "check" || test -z "$with_selinux_mount"; then
|
|
|
|
if test -d /sys/fs/selinux ; then
|
|
|
|
SELINUX_MOUNT=/sys/fs/selinux
|
|
|
|
else
|
|
|
|
SELINUX_MOUNT=/selinux
|
|
|
|
fi
|
|
|
|
else
|
|
|
|
SELINUX_MOUNT=$with_selinux_mount
|
|
|
|
fi
|
|
|
|
AC_MSG_RESULT([$SELINUX_MOUNT])
|
|
|
|
AC_DEFINE_UNQUOTED([SELINUX_MOUNT], ["$SELINUX_MOUNT"], [SELinux mount point])
|
|
|
|
|
|
|
|
dnl We prefer to use <selinux/label.h> and selabel_open, but can fall
|
|
|
|
dnl back to matchpathcon for the sake of RHEL 5's version of libselinux.
|
|
|
|
AC_CHECK_HEADERS([selinux/label.h])
|
|
|
|
fi
|
|
|
|
])
|
|
|
|
|
|
|
|
AC_DEFUN([LIBVIRT_RESULT_SELINUX],[
|
|
|
|
LIBVIRT_RESULT_LIB([SELINUX])
|
|
|
|
])
|