*
* Author: Daniel P. Berrange <berrange@redhat.com>
*/
-
#include <config.h>
-
#include "security_driver.h"
#include "security_stack.h"
#include "security_dac.h"
}
-static int virSecurityManagerOnceInit(void)
+static int
+virSecurityManagerOnceInit(void)
{
if (!(virSecurityManagerClass = virClassNew(virClassForObjectLockable(),
"virSecurityManagerClass",
VIR_ONCE_GLOBAL_INIT(virSecurityManager);
-static virSecurityManagerPtr virSecurityManagerNewDriver(virSecurityDriverPtr drv,
- const char *virtDriver,
- bool allowDiskFormatProbing,
- bool defaultConfined,
- bool requireConfined)
+
+static virSecurityManagerPtr
+virSecurityManagerNewDriver(virSecurityDriverPtr drv,
+ const char *virtDriver,
+ bool allowDiskFormatProbing,
+ bool defaultConfined,
+ bool requireConfined)
{
virSecurityManagerPtr mgr;
char *privateData;
return mgr;
}
-virSecurityManagerPtr virSecurityManagerNewStack(virSecurityManagerPtr primary)
+
+virSecurityManagerPtr
+virSecurityManagerNewStack(virSecurityManagerPtr primary)
{
virSecurityManagerPtr mgr =
virSecurityManagerNewDriver(&virSecurityDriverStack,
return mgr;
}
-int virSecurityManagerStackAddNested(virSecurityManagerPtr stack,
- virSecurityManagerPtr nested)
+
+int
+virSecurityManagerStackAddNested(virSecurityManagerPtr stack,
+ virSecurityManagerPtr nested)
{
if (!STREQ("stack", stack->drv->name))
return -1;
return virSecurityStackAddNested(stack, nested);
}
-virSecurityManagerPtr virSecurityManagerNewDAC(const char *virtDriver,
- uid_t user,
- gid_t group,
- bool allowDiskFormatProbing,
- bool defaultConfined,
- bool requireConfined,
- bool dynamicOwnership)
+
+virSecurityManagerPtr
+virSecurityManagerNewDAC(const char *virtDriver,
+ uid_t user,
+ gid_t group,
+ bool allowDiskFormatProbing,
+ bool defaultConfined,
+ bool requireConfined,
+ bool dynamicOwnership)
{
virSecurityManagerPtr mgr =
virSecurityManagerNewDriver(&virSecurityDriverDAC,
virSecurityManagerDispose(mgr);
return NULL;
}
+
virSecurityDACSetDynamicOwnership(mgr, dynamicOwnership);
return mgr;
}
-virSecurityManagerPtr virSecurityManagerNew(const char *name,
- const char *virtDriver,
- bool allowDiskFormatProbing,
- bool defaultConfined,
- bool requireConfined)
+
+virSecurityManagerPtr
+virSecurityManagerNew(const char *name,
+ const char *virtDriver,
+ bool allowDiskFormatProbing,
+ bool defaultConfined,
+ bool requireConfined)
{
virSecurityDriverPtr drv = virSecurityDriverLookup(name, virtDriver);
if (!drv)
* followed by a call to virSecurityManagerPostFork() in both
* parent and child.
*/
-int virSecurityManagerPreFork(virSecurityManagerPtr mgr)
+int
+virSecurityManagerPreFork(virSecurityManagerPtr mgr)
{
int ret = 0;
* Must be called after fork()'ing in both parent and child
* to ensure mutex state is sane for the child to use
*/
-void virSecurityManagerPostFork(virSecurityManagerPtr mgr)
+void
+virSecurityManagerPostFork(virSecurityManagerPtr mgr)
{
virObjectUnlock(mgr);
}
-void *virSecurityManagerGetPrivateData(virSecurityManagerPtr mgr)
+void *
+virSecurityManagerGetPrivateData(virSecurityManagerPtr mgr)
{
return mgr->privateData;
}
return mgr->virtDriver;
}
+
const char *
virSecurityManagerGetDOI(virSecurityManagerPtr mgr)
{
return NULL;
}
+
const char *
virSecurityManagerGetModel(virSecurityManagerPtr mgr)
{
return NULL;
}
+
/* return NULL if a base label is not present */
const char *
-virSecurityManagerGetBaseLabel(virSecurityManagerPtr mgr, int virtType)
+virSecurityManagerGetBaseLabel(virSecurityManagerPtr mgr,
+ int virtType)
{
if (mgr->drv->getBaseLabel) {
const char *ret;
return NULL;
}
-bool virSecurityManagerGetAllowDiskFormatProbing(virSecurityManagerPtr mgr)
+
+bool
+virSecurityManagerGetAllowDiskFormatProbing(virSecurityManagerPtr mgr)
{
return mgr->allowDiskFormatProbing;
}
-bool virSecurityManagerGetDefaultConfined(virSecurityManagerPtr mgr)
+
+bool
+virSecurityManagerGetDefaultConfined(virSecurityManagerPtr mgr)
{
return mgr->defaultConfined;
}
-bool virSecurityManagerGetRequireConfined(virSecurityManagerPtr mgr)
+
+bool
+virSecurityManagerGetRequireConfined(virSecurityManagerPtr mgr)
{
return mgr->requireConfined;
}
-int virSecurityManagerRestoreDiskLabel(virSecurityManagerPtr mgr,
- virDomainDefPtr vm,
- virDomainDiskDefPtr disk)
+
+int
+virSecurityManagerRestoreDiskLabel(virSecurityManagerPtr mgr,
+ virDomainDefPtr vm,
+ virDomainDiskDefPtr disk)
{
if (mgr->drv->domainRestoreSecurityDiskLabel) {
int ret;
return -1;
}
-int virSecurityManagerSetDaemonSocketLabel(virSecurityManagerPtr mgr,
- virDomainDefPtr vm)
+
+int
+virSecurityManagerSetDaemonSocketLabel(virSecurityManagerPtr mgr,
+ virDomainDefPtr vm)
{
if (mgr->drv->domainSetSecurityDaemonSocketLabel) {
int ret;
return -1;
}
-int virSecurityManagerSetSocketLabel(virSecurityManagerPtr mgr,
- virDomainDefPtr vm)
+
+int
+virSecurityManagerSetSocketLabel(virSecurityManagerPtr mgr,
+ virDomainDefPtr vm)
{
if (mgr->drv->domainSetSecuritySocketLabel) {
int ret;
return -1;
}
-int virSecurityManagerClearSocketLabel(virSecurityManagerPtr mgr,
- virDomainDefPtr vm)
+
+int
+virSecurityManagerClearSocketLabel(virSecurityManagerPtr mgr,
+ virDomainDefPtr vm)
{
if (mgr->drv->domainClearSecuritySocketLabel) {
int ret;
return -1;
}
-int virSecurityManagerSetDiskLabel(virSecurityManagerPtr mgr,
- virDomainDefPtr vm,
- virDomainDiskDefPtr disk)
+
+int
+virSecurityManagerSetDiskLabel(virSecurityManagerPtr mgr,
+ virDomainDefPtr vm,
+ virDomainDiskDefPtr disk)
{
if (mgr->drv->domainSetSecurityDiskLabel) {
int ret;
return -1;
}
-int virSecurityManagerRestoreHostdevLabel(virSecurityManagerPtr mgr,
- virDomainDefPtr vm,
- virDomainHostdevDefPtr dev,
- const char *vroot)
+
+int
+virSecurityManagerRestoreHostdevLabel(virSecurityManagerPtr mgr,
+ virDomainDefPtr vm,
+ virDomainHostdevDefPtr dev,
+ const char *vroot)
{
if (mgr->drv->domainRestoreSecurityHostdevLabel) {
int ret;
return -1;
}
-int virSecurityManagerSetHostdevLabel(virSecurityManagerPtr mgr,
- virDomainDefPtr vm,
- virDomainHostdevDefPtr dev,
- const char *vroot)
+
+int
+virSecurityManagerSetHostdevLabel(virSecurityManagerPtr mgr,
+ virDomainDefPtr vm,
+ virDomainHostdevDefPtr dev,
+ const char *vroot)
{
if (mgr->drv->domainSetSecurityHostdevLabel) {
int ret;
return -1;
}
-int virSecurityManagerSetSavedStateLabel(virSecurityManagerPtr mgr,
- virDomainDefPtr vm,
- const char *savefile)
+
+int
+virSecurityManagerSetSavedStateLabel(virSecurityManagerPtr mgr,
+ virDomainDefPtr vm,
+ const char *savefile)
{
if (mgr->drv->domainSetSavedStateLabel) {
int ret;
return -1;
}
-int virSecurityManagerRestoreSavedStateLabel(virSecurityManagerPtr mgr,
- virDomainDefPtr vm,
- const char *savefile)
+int
+virSecurityManagerRestoreSavedStateLabel(virSecurityManagerPtr mgr,
+ virDomainDefPtr vm,
+ const char *savefile)
{
if (mgr->drv->domainRestoreSavedStateLabel) {
int ret;
return -1;
}
-int virSecurityManagerGenLabel(virSecurityManagerPtr mgr,
- virDomainDefPtr vm)
+
+int
+virSecurityManagerGenLabel(virSecurityManagerPtr mgr,
+ virDomainDefPtr vm)
{
int ret = -1;
size_t i, j;
return ret;
}
-int virSecurityManagerReserveLabel(virSecurityManagerPtr mgr,
- virDomainDefPtr vm,
- pid_t pid)
+
+int
+virSecurityManagerReserveLabel(virSecurityManagerPtr mgr,
+ virDomainDefPtr vm,
+ pid_t pid)
{
if (mgr->drv->domainReserveSecurityLabel) {
int ret;
return -1;
}
-int virSecurityManagerReleaseLabel(virSecurityManagerPtr mgr,
- virDomainDefPtr vm)
+
+int
+virSecurityManagerReleaseLabel(virSecurityManagerPtr mgr,
+ virDomainDefPtr vm)
{
if (mgr->drv->domainReleaseSecurityLabel) {
int ret;
return -1;
}
-int virSecurityManagerSetAllLabel(virSecurityManagerPtr mgr,
- virDomainDefPtr vm,
- const char *stdin_path)
+
+int
+virSecurityManagerSetAllLabel(virSecurityManagerPtr mgr,
+ virDomainDefPtr vm,
+ const char *stdin_path)
{
if (mgr->drv->domainSetSecurityAllLabel) {
int ret;
return -1;
}
-int virSecurityManagerRestoreAllLabel(virSecurityManagerPtr mgr,
- virDomainDefPtr vm,
- bool migrated)
+
+int
+virSecurityManagerRestoreAllLabel(virSecurityManagerPtr mgr,
+ virDomainDefPtr vm,
+ bool migrated)
{
if (mgr->drv->domainRestoreSecurityAllLabel) {
int ret;
return -1;
}
-int virSecurityManagerGetProcessLabel(virSecurityManagerPtr mgr,
- virDomainDefPtr vm,
- pid_t pid,
- virSecurityLabelPtr sec)
+int
+virSecurityManagerGetProcessLabel(virSecurityManagerPtr mgr,
+ virDomainDefPtr vm,
+ pid_t pid,
+ virSecurityLabelPtr sec)
{
if (mgr->drv->domainGetSecurityProcessLabel) {
int ret;
return -1;
}
-int virSecurityManagerSetProcessLabel(virSecurityManagerPtr mgr,
- virDomainDefPtr vm)
+
+int
+virSecurityManagerSetProcessLabel(virSecurityManagerPtr mgr,
+ virDomainDefPtr vm)
{
if (mgr->drv->domainSetSecurityProcessLabel) {
int ret;
return -1;
}
-int virSecurityManagerSetChildProcessLabel(virSecurityManagerPtr mgr,
- virDomainDefPtr vm,
- virCommandPtr cmd)
+
+int
+virSecurityManagerSetChildProcessLabel(virSecurityManagerPtr mgr,
+ virDomainDefPtr vm,
+ virCommandPtr cmd)
{
if (mgr->drv->domainSetSecurityChildProcessLabel)
return mgr->drv->domainSetSecurityChildProcessLabel(mgr, vm, cmd);
return -1;
}
-int virSecurityManagerVerify(virSecurityManagerPtr mgr,
- virDomainDefPtr def)
+
+int
+virSecurityManagerVerify(virSecurityManagerPtr mgr,
+ virDomainDefPtr def)
{
virSecurityLabelDefPtr secdef;
return -1;
}
-int virSecurityManagerSetImageFDLabel(virSecurityManagerPtr mgr,
- virDomainDefPtr vm,
- int fd)
+
+int
+virSecurityManagerSetImageFDLabel(virSecurityManagerPtr mgr,
+ virDomainDefPtr vm,
+ int fd)
{
if (mgr->drv->domainSetSecurityImageFDLabel) {
int ret;
return -1;
}
-int virSecurityManagerSetTapFDLabel(virSecurityManagerPtr mgr,
- virDomainDefPtr vm,
- int fd)
+
+int
+virSecurityManagerSetTapFDLabel(virSecurityManagerPtr mgr,
+ virDomainDefPtr vm,
+ int fd)
{
if (mgr->drv->domainSetSecurityTapFDLabel) {
int ret;
return -1;
}
-char *virSecurityManagerGetMountOptions(virSecurityManagerPtr mgr,
- virDomainDefPtr vm)
+
+char *
+virSecurityManagerGetMountOptions(virSecurityManagerPtr mgr,
+ virDomainDefPtr vm)
{
if (mgr->drv->domainGetSecurityMountOptions) {
char *ret;
return NULL;
}
+
virSecurityManagerPtr*
virSecurityManagerGetNested(virSecurityManagerPtr mgr)
{
return list;
}
-int virSecurityManagerSetHugepages(virSecurityManagerPtr mgr,
- virDomainDefPtr vm,
- const char *path)
+
+int
+virSecurityManagerSetHugepages(virSecurityManagerPtr mgr,
+ virDomainDefPtr vm,
+ const char *path)
{
if (mgr->drv->domainSetSecurityHugepages) {
int ret;
projects / people / liuw / libxenctrl-split / libvirt.git / commitdiff