mirror of
https://gitlab.com/libvirt/libvirt.git
synced 2024-10-05 22:05:47 +00:00
798bf7588c
Signed-off-by: Jiri Denemark <jdenemar@redhat.com> Reviewed-by: Daniel P. Berrangé <berrange@redhat.com>
94 lines
2.6 KiB
C
94 lines
2.6 KiB
C
/*
|
|
* Copyright (C) 2008-2012 Red Hat, Inc.
|
|
*
|
|
* This library is free software; you can redistribute it and/or
|
|
* modify it under the terms of the GNU Lesser General Public
|
|
* License as published by the Free Software Foundation; either
|
|
* version 2.1 of the License, or (at your option) any later version.
|
|
*
|
|
* This library is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
* Lesser General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU Lesser General Public
|
|
* License along with this library. If not, see
|
|
* <http://www.gnu.org/licenses/>.
|
|
*/
|
|
#include <config.h>
|
|
|
|
#include "virerror.h"
|
|
#include "virlog.h"
|
|
|
|
#include "security_driver.h"
|
|
#ifdef WITH_SECDRIVER_SELINUX
|
|
# include "security_selinux.h"
|
|
#endif
|
|
|
|
#ifdef WITH_SECDRIVER_APPARMOR
|
|
# include "security_apparmor.h"
|
|
#endif
|
|
|
|
#include "security_nop.h"
|
|
|
|
#define VIR_FROM_THIS VIR_FROM_SECURITY
|
|
|
|
VIR_LOG_INIT("security.security_driver");
|
|
|
|
static virSecurityDriver *security_drivers[] = {
|
|
#ifdef WITH_SECDRIVER_SELINUX
|
|
&virSecurityDriverSELinux,
|
|
#endif
|
|
#ifdef WITH_SECDRIVER_APPARMOR
|
|
&virAppArmorSecurityDriver,
|
|
#endif
|
|
&virSecurityDriverNop, /* Must always be last, since it will always probe */
|
|
};
|
|
|
|
virSecurityDriver *virSecurityDriverLookup(const char *name,
|
|
const char *virtDriver)
|
|
{
|
|
virSecurityDriver *drv = NULL;
|
|
size_t i;
|
|
|
|
VIR_DEBUG("name=%s", NULLSTR(name));
|
|
|
|
for (i = 0; i < G_N_ELEMENTS(security_drivers) && !drv; i++) {
|
|
virSecurityDriver *tmp = security_drivers[i];
|
|
|
|
if (name &&
|
|
STRNEQ(tmp->name, name))
|
|
continue;
|
|
|
|
switch (tmp->probe(virtDriver)) {
|
|
case SECURITY_DRIVER_ENABLE:
|
|
VIR_DEBUG("Probed name=%s", tmp->name);
|
|
drv = tmp;
|
|
break;
|
|
|
|
case SECURITY_DRIVER_DISABLE:
|
|
VIR_DEBUG("Not enabled name=%s", tmp->name);
|
|
if (name && STREQ(tmp->name, name)) {
|
|
virReportError(VIR_ERR_CONFIG_UNSUPPORTED,
|
|
_("Security driver %1$s not enabled"),
|
|
name);
|
|
return NULL;
|
|
}
|
|
break;
|
|
|
|
case SECURITY_DRIVER_ERROR:
|
|
default:
|
|
return NULL;
|
|
}
|
|
}
|
|
|
|
if (!drv) {
|
|
virReportError(VIR_ERR_INTERNAL_ERROR,
|
|
_("Security driver %1$s not found"),
|
|
NULLSTR(name));
|
|
return NULL;
|
|
}
|
|
|
|
return drv;
|
|
}
|