mirror of
https://gitlab.com/libvirt/libvirt.git
synced 2025-01-06 04:55:22 +00:00
62a01d84a3
Don't hide our use of GHashTable behind our typedef. This will also promote the use of glibs hash function directly. Signed-off-by: Peter Krempa <pkrempa@redhat.com> Reviewed-by: Daniel Henrique Barboza <danielhb413@gmail.com> Reviewed-by: Matt Coleman <matt@datto.com>
931 lines
22 KiB
C
931 lines
22 KiB
C
/*
|
|
* virsecretobj.c: internal <secret> objects handling
|
|
*
|
|
* Copyright (C) 2009-2016 Red Hat, Inc.
|
|
*
|
|
* This library is free software; you can redistribute it and/or
|
|
* modify it under the terms of the GNU Lesser General Public
|
|
* License as published by the Free Software Foundation; either
|
|
* version 2.1 of the License, or (at your option) any later version.
|
|
*
|
|
* This library is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
* Lesser General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU Lesser General Public
|
|
* License along with this library. If not, see
|
|
* <http://www.gnu.org/licenses/>.
|
|
*/
|
|
|
|
#include <config.h>
|
|
#include <dirent.h>
|
|
#include <fcntl.h>
|
|
#include <sys/stat.h>
|
|
|
|
#include "datatypes.h"
|
|
#include "virsecretobj.h"
|
|
#include "viralloc.h"
|
|
#include "virerror.h"
|
|
#include "virfile.h"
|
|
#include "virhash.h"
|
|
#include "virlog.h"
|
|
#include "virstring.h"
|
|
|
|
#define VIR_FROM_THIS VIR_FROM_SECRET
|
|
|
|
VIR_LOG_INIT("conf.virsecretobj");
|
|
|
|
struct _virSecretObj {
|
|
virObjectLockable parent;
|
|
char *configFile;
|
|
char *base64File;
|
|
virSecretDefPtr def;
|
|
unsigned char *value; /* May be NULL */
|
|
size_t value_size;
|
|
};
|
|
|
|
static virClassPtr virSecretObjClass;
|
|
static virClassPtr virSecretObjListClass;
|
|
static void virSecretObjDispose(void *obj);
|
|
static void virSecretObjListDispose(void *obj);
|
|
|
|
struct _virSecretObjList {
|
|
virObjectRWLockable parent;
|
|
|
|
/* uuid string -> virSecretObj mapping
|
|
* for O(1), lockless lookup-by-uuid */
|
|
GHashTable *objs;
|
|
};
|
|
|
|
struct virSecretSearchData {
|
|
int usageType;
|
|
const char *usageID;
|
|
};
|
|
|
|
|
|
static int
|
|
virSecretObjOnceInit(void)
|
|
{
|
|
if (!VIR_CLASS_NEW(virSecretObj, virClassForObjectLockable()))
|
|
return -1;
|
|
|
|
if (!VIR_CLASS_NEW(virSecretObjList, virClassForObjectRWLockable()))
|
|
return -1;
|
|
|
|
return 0;
|
|
}
|
|
|
|
|
|
VIR_ONCE_GLOBAL_INIT(virSecretObj);
|
|
|
|
static virSecretObjPtr
|
|
virSecretObjNew(void)
|
|
{
|
|
virSecretObjPtr obj;
|
|
|
|
if (virSecretObjInitialize() < 0)
|
|
return NULL;
|
|
|
|
if (!(obj = virObjectLockableNew(virSecretObjClass)))
|
|
return NULL;
|
|
|
|
virObjectLock(obj);
|
|
|
|
return obj;
|
|
}
|
|
|
|
|
|
void
|
|
virSecretObjEndAPI(virSecretObjPtr *obj)
|
|
{
|
|
if (!*obj)
|
|
return;
|
|
|
|
virObjectUnlock(*obj);
|
|
virObjectUnref(*obj);
|
|
*obj = NULL;
|
|
}
|
|
|
|
|
|
virSecretObjListPtr
|
|
virSecretObjListNew(void)
|
|
{
|
|
virSecretObjListPtr secrets;
|
|
|
|
if (virSecretObjInitialize() < 0)
|
|
return NULL;
|
|
|
|
if (!(secrets = virObjectRWLockableNew(virSecretObjListClass)))
|
|
return NULL;
|
|
|
|
if (!(secrets->objs = virHashNew(virObjectFreeHashData))) {
|
|
virObjectUnref(secrets);
|
|
return NULL;
|
|
}
|
|
|
|
return secrets;
|
|
}
|
|
|
|
|
|
static void
|
|
virSecretObjDispose(void *opaque)
|
|
{
|
|
virSecretObjPtr obj = opaque;
|
|
|
|
virSecretDefFree(obj->def);
|
|
if (obj->value) {
|
|
/* Wipe before free to ensure we don't leave a secret on the heap */
|
|
memset(obj->value, 0, obj->value_size);
|
|
VIR_FREE(obj->value);
|
|
}
|
|
VIR_FREE(obj->configFile);
|
|
VIR_FREE(obj->base64File);
|
|
}
|
|
|
|
|
|
static void
|
|
virSecretObjListDispose(void *obj)
|
|
{
|
|
virSecretObjListPtr secrets = obj;
|
|
|
|
virHashFree(secrets->objs);
|
|
}
|
|
|
|
|
|
/**
|
|
* virSecretObjFindByUUIDLocked:
|
|
* @secrets: list of secret objects
|
|
* @uuid: secret uuid to find
|
|
*
|
|
* This functions requires @secrets to be locked already!
|
|
*
|
|
* Returns: not locked, but ref'd secret object.
|
|
*/
|
|
static virSecretObjPtr
|
|
virSecretObjListFindByUUIDLocked(virSecretObjListPtr secrets,
|
|
const char *uuidstr)
|
|
{
|
|
return virObjectRef(virHashLookup(secrets->objs, uuidstr));
|
|
}
|
|
|
|
|
|
/**
|
|
* virSecretObjFindByUUID:
|
|
* @secrets: list of secret objects
|
|
* @uuidstr: secret uuid to find
|
|
*
|
|
* This function locks @secrets and finds the secret object which
|
|
* corresponds to @uuid.
|
|
*
|
|
* Returns: locked and ref'd secret object.
|
|
*/
|
|
virSecretObjPtr
|
|
virSecretObjListFindByUUID(virSecretObjListPtr secrets,
|
|
const char *uuidstr)
|
|
{
|
|
virSecretObjPtr obj;
|
|
|
|
virObjectRWLockRead(secrets);
|
|
obj = virSecretObjListFindByUUIDLocked(secrets, uuidstr);
|
|
virObjectRWUnlock(secrets);
|
|
if (obj)
|
|
virObjectLock(obj);
|
|
return obj;
|
|
}
|
|
|
|
|
|
static int
|
|
virSecretObjSearchName(const void *payload,
|
|
const char *name G_GNUC_UNUSED,
|
|
const void *opaque)
|
|
{
|
|
virSecretObjPtr obj = (virSecretObjPtr) payload;
|
|
virSecretDefPtr def;
|
|
struct virSecretSearchData *data = (struct virSecretSearchData *) opaque;
|
|
int found = 0;
|
|
|
|
virObjectLock(obj);
|
|
def = obj->def;
|
|
|
|
if (def->usage_type != data->usageType)
|
|
goto cleanup;
|
|
|
|
if (data->usageType != VIR_SECRET_USAGE_TYPE_NONE &&
|
|
STREQ(def->usage_id, data->usageID))
|
|
found = 1;
|
|
|
|
cleanup:
|
|
virObjectUnlock(obj);
|
|
return found;
|
|
}
|
|
|
|
|
|
/**
|
|
* virSecretObjFindByUsageLocked:
|
|
* @secrets: list of secret objects
|
|
* @usageType: secret usageType to find
|
|
* @usageID: secret usage string
|
|
*
|
|
* This functions requires @secrets to be locked already!
|
|
*
|
|
* Returns: not locked, but ref'd secret object.
|
|
*/
|
|
static virSecretObjPtr
|
|
virSecretObjListFindByUsageLocked(virSecretObjListPtr secrets,
|
|
int usageType,
|
|
const char *usageID)
|
|
{
|
|
virSecretObjPtr obj = NULL;
|
|
struct virSecretSearchData data = { .usageType = usageType,
|
|
.usageID = usageID };
|
|
|
|
obj = virHashSearch(secrets->objs, virSecretObjSearchName, &data, NULL);
|
|
if (obj)
|
|
virObjectRef(obj);
|
|
return obj;
|
|
}
|
|
|
|
|
|
/**
|
|
* virSecretObjFindByUsage:
|
|
* @secrets: list of secret objects
|
|
* @usageType: secret usageType to find
|
|
* @usageID: secret usage string
|
|
*
|
|
* This function locks @secrets and finds the secret object which
|
|
* corresponds to @usageID of @usageType.
|
|
*
|
|
* Returns: locked and ref'd secret object.
|
|
*/
|
|
virSecretObjPtr
|
|
virSecretObjListFindByUsage(virSecretObjListPtr secrets,
|
|
int usageType,
|
|
const char *usageID)
|
|
{
|
|
virSecretObjPtr obj;
|
|
|
|
virObjectRWLockRead(secrets);
|
|
obj = virSecretObjListFindByUsageLocked(secrets, usageType, usageID);
|
|
virObjectRWUnlock(secrets);
|
|
if (obj)
|
|
virObjectLock(obj);
|
|
return obj;
|
|
}
|
|
|
|
|
|
/*
|
|
* virSecretObjListRemove:
|
|
* @secrets: list of secret objects
|
|
* @secret: a secret object
|
|
*
|
|
* Remove the object from the hash table. The caller must hold the lock
|
|
* on the driver owning @secrets and must have also locked @secret to
|
|
* ensure no one else is either waiting for @secret or still using it.
|
|
*/
|
|
void
|
|
virSecretObjListRemove(virSecretObjListPtr secrets,
|
|
virSecretObjPtr obj)
|
|
{
|
|
char uuidstr[VIR_UUID_STRING_BUFLEN];
|
|
virSecretDefPtr def;
|
|
|
|
if (!obj)
|
|
return;
|
|
def = obj->def;
|
|
|
|
virUUIDFormat(def->uuid, uuidstr);
|
|
virObjectRef(obj);
|
|
virObjectUnlock(obj);
|
|
|
|
virObjectRWLockWrite(secrets);
|
|
virObjectLock(obj);
|
|
virHashRemoveEntry(secrets->objs, uuidstr);
|
|
virObjectUnlock(obj);
|
|
virObjectUnref(obj);
|
|
virObjectRWUnlock(secrets);
|
|
}
|
|
|
|
|
|
/*
|
|
* virSecretObjListAdd:
|
|
* @secrets: list of secret objects
|
|
* @newdef: new secret definition
|
|
* @configDir: directory to place secret config files
|
|
* @oldDef: Former secret def (e.g. a reload path perhaps)
|
|
*
|
|
* Add the new @newdef to the secret obj table hash
|
|
*
|
|
* Returns: locked and ref'd secret or NULL if failure to add
|
|
*/
|
|
virSecretObjPtr
|
|
virSecretObjListAdd(virSecretObjListPtr secrets,
|
|
virSecretDefPtr newdef,
|
|
const char *configDir,
|
|
virSecretDefPtr *oldDef)
|
|
{
|
|
virSecretObjPtr obj;
|
|
virSecretDefPtr objdef;
|
|
virSecretObjPtr ret = NULL;
|
|
char uuidstr[VIR_UUID_STRING_BUFLEN];
|
|
|
|
virObjectRWLockWrite(secrets);
|
|
|
|
if (oldDef)
|
|
*oldDef = NULL;
|
|
|
|
virUUIDFormat(newdef->uuid, uuidstr);
|
|
|
|
/* Is there a secret already matching this UUID */
|
|
if ((obj = virSecretObjListFindByUUIDLocked(secrets, uuidstr))) {
|
|
virObjectLock(obj);
|
|
objdef = obj->def;
|
|
|
|
if (STRNEQ_NULLABLE(objdef->usage_id, newdef->usage_id)) {
|
|
virReportError(VIR_ERR_INTERNAL_ERROR,
|
|
_("a secret with UUID %s is already defined for "
|
|
"use with %s"),
|
|
uuidstr, objdef->usage_id);
|
|
goto cleanup;
|
|
}
|
|
|
|
if (objdef->isprivate && !newdef->isprivate) {
|
|
virReportError(VIR_ERR_INTERNAL_ERROR, "%s",
|
|
_("cannot change private flag on existing secret"));
|
|
goto cleanup;
|
|
}
|
|
|
|
if (oldDef)
|
|
*oldDef = objdef;
|
|
else
|
|
virSecretDefFree(objdef);
|
|
obj->def = newdef;
|
|
} else {
|
|
/* No existing secret with same UUID,
|
|
* try look for matching usage instead */
|
|
if ((obj = virSecretObjListFindByUsageLocked(secrets,
|
|
newdef->usage_type,
|
|
newdef->usage_id))) {
|
|
virObjectLock(obj);
|
|
objdef = obj->def;
|
|
virUUIDFormat(objdef->uuid, uuidstr);
|
|
virReportError(VIR_ERR_INTERNAL_ERROR,
|
|
_("a secret with UUID %s already defined for "
|
|
"use with %s"),
|
|
uuidstr, newdef->usage_id);
|
|
goto cleanup;
|
|
}
|
|
|
|
if (!(obj = virSecretObjNew()))
|
|
goto cleanup;
|
|
|
|
/* Generate the possible configFile and base64File strings
|
|
* using the configDir, uuidstr, and appropriate suffix
|
|
*/
|
|
if (!(obj->configFile = virFileBuildPath(configDir, uuidstr, ".xml")) ||
|
|
!(obj->base64File = virFileBuildPath(configDir, uuidstr, ".base64")))
|
|
goto cleanup;
|
|
|
|
if (virHashAddEntry(secrets->objs, uuidstr, obj) < 0)
|
|
goto cleanup;
|
|
|
|
obj->def = newdef;
|
|
virObjectRef(obj);
|
|
}
|
|
|
|
ret = g_steal_pointer(&obj);
|
|
|
|
cleanup:
|
|
virSecretObjEndAPI(&obj);
|
|
virObjectRWUnlock(secrets);
|
|
return ret;
|
|
}
|
|
|
|
|
|
struct virSecretCountData {
|
|
virConnectPtr conn;
|
|
virSecretObjListACLFilter filter;
|
|
int count;
|
|
};
|
|
|
|
static int
|
|
virSecretObjListNumOfSecretsCallback(void *payload,
|
|
const char *name G_GNUC_UNUSED,
|
|
void *opaque)
|
|
{
|
|
struct virSecretCountData *data = opaque;
|
|
virSecretObjPtr obj = payload;
|
|
virSecretDefPtr def;
|
|
|
|
virObjectLock(obj);
|
|
def = obj->def;
|
|
|
|
if (data->filter && !data->filter(data->conn, def))
|
|
goto cleanup;
|
|
|
|
data->count++;
|
|
|
|
cleanup:
|
|
virObjectUnlock(obj);
|
|
return 0;
|
|
}
|
|
|
|
|
|
struct virSecretListData {
|
|
virConnectPtr conn;
|
|
virSecretObjListACLFilter filter;
|
|
int nuuids;
|
|
char **uuids;
|
|
int maxuuids;
|
|
bool error;
|
|
};
|
|
|
|
|
|
static int
|
|
virSecretObjListGetUUIDsCallback(void *payload,
|
|
const char *name G_GNUC_UNUSED,
|
|
void *opaque)
|
|
{
|
|
struct virSecretListData *data = opaque;
|
|
virSecretObjPtr obj = payload;
|
|
virSecretDefPtr def;
|
|
|
|
if (data->error)
|
|
return 0;
|
|
|
|
if (data->maxuuids >= 0 && data->nuuids == data->maxuuids)
|
|
return 0;
|
|
|
|
virObjectLock(obj);
|
|
def = obj->def;
|
|
|
|
if (data->filter && !data->filter(data->conn, def))
|
|
goto cleanup;
|
|
|
|
if (data->uuids) {
|
|
char *uuidstr;
|
|
|
|
uuidstr = g_new0(char, VIR_UUID_STRING_BUFLEN);
|
|
|
|
virUUIDFormat(def->uuid, uuidstr);
|
|
data->uuids[data->nuuids++] = uuidstr;
|
|
}
|
|
|
|
cleanup:
|
|
virObjectUnlock(obj);
|
|
return 0;
|
|
}
|
|
|
|
|
|
int
|
|
virSecretObjListNumOfSecrets(virSecretObjListPtr secrets,
|
|
virSecretObjListACLFilter filter,
|
|
virConnectPtr conn)
|
|
{
|
|
struct virSecretCountData data = {
|
|
.conn = conn, .filter = filter, .count = 0 };
|
|
|
|
virObjectRWLockRead(secrets);
|
|
virHashForEach(secrets->objs, virSecretObjListNumOfSecretsCallback, &data);
|
|
virObjectRWUnlock(secrets);
|
|
|
|
return data.count;
|
|
}
|
|
|
|
|
|
#define MATCH(FLAG) (flags & (FLAG))
|
|
static bool
|
|
virSecretObjMatch(virSecretObjPtr obj,
|
|
unsigned int flags)
|
|
{
|
|
virSecretDefPtr def = obj->def;
|
|
|
|
/* filter by whether it's ephemeral */
|
|
if (MATCH(VIR_CONNECT_LIST_SECRETS_FILTERS_EPHEMERAL) &&
|
|
!((MATCH(VIR_CONNECT_LIST_SECRETS_EPHEMERAL) &&
|
|
def->isephemeral) ||
|
|
(MATCH(VIR_CONNECT_LIST_SECRETS_NO_EPHEMERAL) &&
|
|
!def->isephemeral)))
|
|
return false;
|
|
|
|
/* filter by whether it's private */
|
|
if (MATCH(VIR_CONNECT_LIST_SECRETS_FILTERS_PRIVATE) &&
|
|
!((MATCH(VIR_CONNECT_LIST_SECRETS_PRIVATE) &&
|
|
def->isprivate) ||
|
|
(MATCH(VIR_CONNECT_LIST_SECRETS_NO_PRIVATE) &&
|
|
!def->isprivate)))
|
|
return false;
|
|
|
|
return true;
|
|
}
|
|
#undef MATCH
|
|
|
|
|
|
typedef struct _virSecretObjListExportData virSecretObjListExportData;
|
|
typedef virSecretObjListExportData *virSecretObjListExportDataPtr;
|
|
struct _virSecretObjListExportData {
|
|
virConnectPtr conn;
|
|
virSecretPtr *secrets;
|
|
virSecretObjListACLFilter filter;
|
|
unsigned int flags;
|
|
int nsecrets;
|
|
bool error;
|
|
};
|
|
|
|
static int
|
|
virSecretObjListExportCallback(void *payload,
|
|
const char *name G_GNUC_UNUSED,
|
|
void *opaque)
|
|
{
|
|
virSecretObjListExportDataPtr data = opaque;
|
|
virSecretObjPtr obj = payload;
|
|
virSecretDefPtr def;
|
|
virSecretPtr secret = NULL;
|
|
|
|
if (data->error)
|
|
return 0;
|
|
|
|
virObjectLock(obj);
|
|
def = obj->def;
|
|
|
|
if (data->filter && !data->filter(data->conn, def))
|
|
goto cleanup;
|
|
|
|
if (!virSecretObjMatch(obj, data->flags))
|
|
goto cleanup;
|
|
|
|
if (!data->secrets) {
|
|
data->nsecrets++;
|
|
goto cleanup;
|
|
}
|
|
|
|
if (!(secret = virGetSecret(data->conn, def->uuid,
|
|
def->usage_type,
|
|
def->usage_id))) {
|
|
data->error = true;
|
|
goto cleanup;
|
|
}
|
|
|
|
data->secrets[data->nsecrets++] = secret;
|
|
|
|
cleanup:
|
|
virObjectUnlock(obj);
|
|
return 0;
|
|
}
|
|
|
|
|
|
int
|
|
virSecretObjListExport(virConnectPtr conn,
|
|
virSecretObjListPtr secretobjs,
|
|
virSecretPtr **secrets,
|
|
virSecretObjListACLFilter filter,
|
|
unsigned int flags)
|
|
{
|
|
virSecretObjListExportData data = {
|
|
.conn = conn, .secrets = NULL,
|
|
.filter = filter, .flags = flags,
|
|
.nsecrets = 0, .error = false };
|
|
|
|
virObjectRWLockRead(secretobjs);
|
|
if (secrets)
|
|
data.secrets = g_new0(virSecretPtr, virHashSize(secretobjs->objs) + 1);
|
|
|
|
virHashForEach(secretobjs->objs, virSecretObjListExportCallback, &data);
|
|
virObjectRWUnlock(secretobjs);
|
|
|
|
if (data.error)
|
|
goto error;
|
|
|
|
if (data.secrets) {
|
|
/* trim the array to the final size */
|
|
ignore_value(VIR_REALLOC_N(data.secrets, data.nsecrets + 1));
|
|
*secrets = data.secrets;
|
|
}
|
|
|
|
return data.nsecrets;
|
|
|
|
error:
|
|
virObjectListFree(data.secrets);
|
|
return -1;
|
|
}
|
|
|
|
|
|
int
|
|
virSecretObjListGetUUIDs(virSecretObjListPtr secrets,
|
|
char **uuids,
|
|
int maxuuids,
|
|
virSecretObjListACLFilter filter,
|
|
virConnectPtr conn)
|
|
{
|
|
struct virSecretListData data = {
|
|
.conn = conn, .filter = filter, .uuids = uuids, .nuuids = 0,
|
|
.maxuuids = maxuuids, .error = false };
|
|
|
|
virObjectRWLockRead(secrets);
|
|
virHashForEach(secrets->objs, virSecretObjListGetUUIDsCallback, &data);
|
|
virObjectRWUnlock(secrets);
|
|
|
|
if (data.error)
|
|
goto error;
|
|
|
|
return data.nuuids;
|
|
|
|
error:
|
|
while (--data.nuuids)
|
|
VIR_FREE(data.uuids[data.nuuids]);
|
|
return -1;
|
|
}
|
|
|
|
|
|
int
|
|
virSecretObjDeleteConfig(virSecretObjPtr obj)
|
|
{
|
|
virSecretDefPtr def = obj->def;
|
|
|
|
if (!def->isephemeral &&
|
|
unlink(obj->configFile) < 0 && errno != ENOENT) {
|
|
virReportSystemError(errno, _("cannot unlink '%s'"),
|
|
obj->configFile);
|
|
return -1;
|
|
}
|
|
|
|
return 0;
|
|
}
|
|
|
|
|
|
void
|
|
virSecretObjDeleteData(virSecretObjPtr obj)
|
|
{
|
|
/* The configFile will already be removed, so secret won't be
|
|
* loaded again if this fails */
|
|
unlink(obj->base64File);
|
|
}
|
|
|
|
|
|
/* Permanent secret storage */
|
|
|
|
/* Secrets are stored in virSecretDriverStatePtr->configDir. Each secret
|
|
has virSecretDef stored as XML in "$basename.xml". If a value of the
|
|
secret is defined, it is stored as base64 (with no formatting) in
|
|
"$basename.base64". "$basename" is in both cases the base64-encoded UUID. */
|
|
int
|
|
virSecretObjSaveConfig(virSecretObjPtr obj)
|
|
{
|
|
g_autofree char *xml = NULL;
|
|
|
|
if (!(xml = virSecretDefFormat(obj->def)))
|
|
return -1;
|
|
|
|
if (virFileRewriteStr(obj->configFile, S_IRUSR | S_IWUSR, xml) < 0)
|
|
return -1;
|
|
|
|
return 0;
|
|
}
|
|
|
|
|
|
int
|
|
virSecretObjSaveData(virSecretObjPtr obj)
|
|
{
|
|
g_autofree char *base64 = NULL;
|
|
|
|
if (!obj->value)
|
|
return 0;
|
|
|
|
base64 = g_base64_encode(obj->value, obj->value_size);
|
|
|
|
if (virFileRewriteStr(obj->base64File, S_IRUSR | S_IWUSR, base64) < 0)
|
|
return -1;
|
|
|
|
return 0;
|
|
}
|
|
|
|
|
|
virSecretDefPtr
|
|
virSecretObjGetDef(virSecretObjPtr obj)
|
|
{
|
|
return obj->def;
|
|
}
|
|
|
|
|
|
void
|
|
virSecretObjSetDef(virSecretObjPtr obj,
|
|
virSecretDefPtr def)
|
|
{
|
|
obj->def = def;
|
|
}
|
|
|
|
|
|
unsigned char *
|
|
virSecretObjGetValue(virSecretObjPtr obj)
|
|
{
|
|
virSecretDefPtr def = obj->def;
|
|
unsigned char *ret = NULL;
|
|
|
|
if (!obj->value) {
|
|
char uuidstr[VIR_UUID_STRING_BUFLEN];
|
|
virUUIDFormat(def->uuid, uuidstr);
|
|
virReportError(VIR_ERR_NO_SECRET,
|
|
_("secret '%s' does not have a value"), uuidstr);
|
|
return NULL;
|
|
}
|
|
|
|
ret = g_new0(unsigned char, obj->value_size);
|
|
memcpy(ret, obj->value, obj->value_size);
|
|
|
|
return ret;
|
|
}
|
|
|
|
|
|
int
|
|
virSecretObjSetValue(virSecretObjPtr obj,
|
|
const unsigned char *value,
|
|
size_t value_size)
|
|
{
|
|
virSecretDefPtr def = obj->def;
|
|
g_autofree unsigned char *old_value = NULL;
|
|
g_autofree unsigned char *new_value = NULL;
|
|
size_t old_value_size;
|
|
|
|
new_value = g_new0(unsigned char, value_size);
|
|
|
|
old_value = obj->value;
|
|
old_value_size = obj->value_size;
|
|
|
|
memcpy(new_value, value, value_size);
|
|
obj->value = g_steal_pointer(&new_value);
|
|
obj->value_size = value_size;
|
|
|
|
if (!def->isephemeral && virSecretObjSaveData(obj) < 0)
|
|
goto error;
|
|
|
|
/* Saved successfully - drop old value */
|
|
if (old_value)
|
|
memset(old_value, 0, old_value_size);
|
|
|
|
return 0;
|
|
|
|
error:
|
|
/* Error - restore previous state and free new value */
|
|
new_value = g_steal_pointer(&obj->value);
|
|
obj->value = g_steal_pointer(&old_value);
|
|
obj->value_size = old_value_size;
|
|
memset(new_value, 0, value_size);
|
|
return -1;
|
|
}
|
|
|
|
|
|
size_t
|
|
virSecretObjGetValueSize(virSecretObjPtr obj)
|
|
{
|
|
return obj->value_size;
|
|
}
|
|
|
|
|
|
void
|
|
virSecretObjSetValueSize(virSecretObjPtr obj,
|
|
size_t value_size)
|
|
{
|
|
obj->value_size = value_size;
|
|
}
|
|
|
|
|
|
static int
|
|
virSecretLoadValidateUUID(virSecretDefPtr def,
|
|
const char *file)
|
|
{
|
|
char uuidstr[VIR_UUID_STRING_BUFLEN];
|
|
|
|
virUUIDFormat(def->uuid, uuidstr);
|
|
|
|
if (!virStringMatchesNameSuffix(file, uuidstr, ".xml")) {
|
|
virReportError(VIR_ERR_INTERNAL_ERROR,
|
|
_("<uuid> does not match secret file name '%s'"),
|
|
file);
|
|
return -1;
|
|
}
|
|
|
|
return 0;
|
|
}
|
|
|
|
|
|
static int
|
|
virSecretLoadValue(virSecretObjPtr obj)
|
|
{
|
|
int ret = -1, fd = -1;
|
|
struct stat st;
|
|
g_autofree char *contents = NULL;
|
|
|
|
if ((fd = open(obj->base64File, O_RDONLY)) == -1) {
|
|
if (errno == ENOENT) {
|
|
ret = 0;
|
|
goto cleanup;
|
|
}
|
|
virReportSystemError(errno, _("cannot open '%s'"),
|
|
obj->base64File);
|
|
goto cleanup;
|
|
}
|
|
|
|
if (fstat(fd, &st) < 0) {
|
|
virReportSystemError(errno, _("cannot stat '%s'"),
|
|
obj->base64File);
|
|
goto cleanup;
|
|
}
|
|
|
|
if ((size_t)st.st_size != st.st_size) {
|
|
virReportError(VIR_ERR_INTERNAL_ERROR,
|
|
_("'%s' file does not fit in memory"),
|
|
obj->base64File);
|
|
goto cleanup;
|
|
}
|
|
|
|
contents = g_new0(char, st.st_size + 1);
|
|
|
|
if (saferead(fd, contents, st.st_size) != st.st_size) {
|
|
virReportSystemError(errno, _("cannot read '%s'"),
|
|
obj->base64File);
|
|
goto cleanup;
|
|
}
|
|
contents[st.st_size] = '\0';
|
|
|
|
VIR_FORCE_CLOSE(fd);
|
|
|
|
obj->value = g_base64_decode(contents, &obj->value_size);
|
|
|
|
ret = 0;
|
|
|
|
cleanup:
|
|
if (contents != NULL)
|
|
memset(contents, 0, st.st_size);
|
|
VIR_FORCE_CLOSE(fd);
|
|
return ret;
|
|
}
|
|
|
|
|
|
static virSecretObjPtr
|
|
virSecretLoad(virSecretObjListPtr secrets,
|
|
const char *file,
|
|
const char *path,
|
|
const char *configDir)
|
|
{
|
|
virSecretDefPtr def = NULL;
|
|
virSecretObjPtr obj = NULL;
|
|
|
|
if (!(def = virSecretDefParseFile(path)))
|
|
goto cleanup;
|
|
|
|
if (virSecretLoadValidateUUID(def, file) < 0)
|
|
goto cleanup;
|
|
|
|
if (!(obj = virSecretObjListAdd(secrets, def, configDir, NULL)))
|
|
goto cleanup;
|
|
def = NULL;
|
|
|
|
if (virSecretLoadValue(obj) < 0) {
|
|
virSecretObjListRemove(secrets, obj);
|
|
virObjectUnref(obj);
|
|
obj = NULL;
|
|
}
|
|
|
|
cleanup:
|
|
virSecretDefFree(def);
|
|
return obj;
|
|
}
|
|
|
|
|
|
int
|
|
virSecretLoadAllConfigs(virSecretObjListPtr secrets,
|
|
const char *configDir)
|
|
{
|
|
g_autoptr(DIR) dir = NULL;
|
|
struct dirent *de;
|
|
int rc;
|
|
|
|
if ((rc = virDirOpenIfExists(&dir, configDir)) <= 0)
|
|
return rc;
|
|
|
|
/* Ignore errors reported by readdir or other calls within the
|
|
* loop (if any). It's better to keep the secrets we managed to find. */
|
|
while (virDirRead(dir, &de, NULL) > 0) {
|
|
char *path;
|
|
virSecretObjPtr obj;
|
|
|
|
if (!virStringHasSuffix(de->d_name, ".xml"))
|
|
continue;
|
|
|
|
if (!(path = virFileBuildPath(configDir, de->d_name, NULL)))
|
|
continue;
|
|
|
|
if (!(obj = virSecretLoad(secrets, de->d_name, path, configDir))) {
|
|
VIR_ERROR(_("Error reading secret: %s"),
|
|
virGetLastErrorMessage());
|
|
VIR_FREE(path);
|
|
continue;
|
|
}
|
|
|
|
VIR_FREE(path);
|
|
virSecretObjEndAPI(&obj);
|
|
}
|
|
|
|
return 0;
|
|
}
|