xenbits.xensource.com Git - libvirt.git/commit

author	Peter Krempa <pkrempa@redhat.com>
	Fri, 2 Aug 2024 13:23:43 +0000 (15:23 +0200)
committer	Andrea Bolognani <abologna@redhat.com>
	Thu, 3 Oct 2024 11:29:26 +0000 (13:29 +0200)
commit	b581045520171b2a08c845762aa910e7d328d1b3
tree	818434c172c2a2be597a8f46f4be42600be1058c	tree
parent	eabeae605f234a5c14411e04c22a4ff1238963d2	commit \| diff

storage_source: Add field for skipping seclabel remembering

In case of incoming migration where a local directory is shared to other
hosts we'll need to avoid seclabel remembering as the code would
remember the seclabel already allowing access to the image.

As the decision requires a lot of information not available in the
security driver it would either require plumbing in unpleasant callbacks
able to pass in the data or alternatively we can mark this in the
'virStorageSource' struct.

This patch chose to do the latter approach by adding a field called
'seclabelSkipRemember' which will be filled before starting the process
in cases when it will be required.

Signed-off-by: Peter Krempa <pkrempa@redhat.com>
Reviewed-by: Andrea Bolognani <abologna@redhat.com>

src/conf/storage_source_conf.c		diff \| blob \| blame \| history
src/conf/storage_source_conf.h		diff \| blob \| blame \| history
src/security/security_dac.c		diff \| blob \| blame \| history
src/security/security_selinux.c		diff \| blob \| blame \| history