mirror of
https://gitlab.com/libvirt/libvirt.git
synced 2024-11-02 19:31:18 +00:00
5165ff0971
All of the ones being removed are pulled in by internal.h. The only exception is sanlock which expects the application to include <stdint.h> before sanlock's headers, because sanlock prototypes use fixed width int, but they don't include stdint.h themselves, so we have to leave that one in place. Signed-off-by: Erik Skultety <eskultet@redhat.com> Acked-by: Michal Privoznik <mprivozn@redhat.com>
99 lines
2.7 KiB
C
99 lines
2.7 KiB
C
/*
|
|
* Copyright (C) 2008-2012 Red Hat, Inc.
|
|
*
|
|
* This library is free software; you can redistribute it and/or
|
|
* modify it under the terms of the GNU Lesser General Public
|
|
* License as published by the Free Software Foundation; either
|
|
* version 2.1 of the License, or (at your option) any later version.
|
|
*
|
|
* This library is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
* Lesser General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU Lesser General Public
|
|
* License along with this library. If not, see
|
|
* <http://www.gnu.org/licenses/>.
|
|
*
|
|
* Authors:
|
|
* James Morris <jmorris@namei.org>
|
|
* Dan Walsh <dwalsh@redhat.com>
|
|
*
|
|
*/
|
|
#include <config.h>
|
|
|
|
#include "virerror.h"
|
|
#include "virlog.h"
|
|
|
|
#include "security_driver.h"
|
|
#ifdef WITH_SECDRIVER_SELINUX
|
|
# include "security_selinux.h"
|
|
#endif
|
|
|
|
#ifdef WITH_SECDRIVER_APPARMOR
|
|
# include "security_apparmor.h"
|
|
#endif
|
|
|
|
#include "security_nop.h"
|
|
|
|
#define VIR_FROM_THIS VIR_FROM_SECURITY
|
|
|
|
VIR_LOG_INIT("security.security_driver");
|
|
|
|
static virSecurityDriverPtr security_drivers[] = {
|
|
#ifdef WITH_SECDRIVER_SELINUX
|
|
&virSecurityDriverSELinux,
|
|
#endif
|
|
#ifdef WITH_SECDRIVER_APPARMOR
|
|
&virAppArmorSecurityDriver,
|
|
#endif
|
|
&virSecurityDriverNop, /* Must always be last, since it will always probe */
|
|
};
|
|
|
|
virSecurityDriverPtr virSecurityDriverLookup(const char *name,
|
|
const char *virtDriver)
|
|
{
|
|
virSecurityDriverPtr drv = NULL;
|
|
size_t i;
|
|
|
|
VIR_DEBUG("name=%s", NULLSTR(name));
|
|
|
|
for (i = 0; i < ARRAY_CARDINALITY(security_drivers) && !drv; i++) {
|
|
virSecurityDriverPtr tmp = security_drivers[i];
|
|
|
|
if (name &&
|
|
STRNEQ(tmp->name, name))
|
|
continue;
|
|
|
|
switch (tmp->probe(virtDriver)) {
|
|
case SECURITY_DRIVER_ENABLE:
|
|
VIR_DEBUG("Probed name=%s", tmp->name);
|
|
drv = tmp;
|
|
break;
|
|
|
|
case SECURITY_DRIVER_DISABLE:
|
|
VIR_DEBUG("Not enabled name=%s", tmp->name);
|
|
if (name && STREQ(tmp->name, name)) {
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED,
|
|
_("Security driver %s not enabled"),
|
|
name);
|
|
return NULL;
|
|
}
|
|
break;
|
|
|
|
case SECURITY_DRIVER_ERROR:
|
|
default:
|
|
return NULL;
|
|
}
|
|
}
|
|
|
|
if (!drv) {
|
|
virReportError(VIR_ERR_INTERNAL_ERROR,
|
|
_("Security driver %s not found"),
|
|
NULLSTR(name));
|
|
return NULL;
|
|
}
|
|
|
|
return drv;
|
|
}
|