add lsm op for getting name of enabled lsm

author Dwight Engen <dwight.engen@oracle.com>

Fri, 18 Oct 2013 17:44:56 +0000 (13:44 -0400)

committer Serge Hallyn <serge.hallyn@ubuntu.com>

Fri, 18 Oct 2013 18:57:33 +0000 (13:57 -0500)
author Dwight Engen <dwight.engen@oracle.com>
Fri, 18 Oct 2013 17:44:56 +0000 (13:44 -0400)
committer Serge Hallyn <serge.hallyn@ubuntu.com>
Fri, 18 Oct 2013 18:57:33 +0000 (13:57 -0500)
diff --git a/src/lxc/lsm/lsm.c b/src/lxc/lsm/lsm.c

index f022de980adc523903911d74aba6874c6cd57e05..066102bb54b8e03362c664d3847bea4c1e2cb07a 100644 (file)
--- a/src/lxc/lsm/lsm.c
+++ b/src/lxc/lsm/lsm.c
@@ -62,13 +62,20 @@ void lsm_init(void)
         INFO("Initialized LSM security driver %s", drv->name);
  }
  
-int lsm_enabled()
+int lsm_enabled(void)
  {
         if (drv)
                 return drv->enabled();
         return 0;
  }
  
+const char *lsm_name(void)
+{
+       if (drv)
+               return drv->name;
+       return "none";
+}
+
  char *lsm_process_label_get(pid_t pid)
  {
         if (!drv) {
diff --git a/src/lxc/lsm/lsm.h b/src/lxc/lsm/lsm.h

index ee093da09c896f8b1370af0137344399ec9cab6c..621e1af0afd87ed1af8f2abdb3f56f15c4de6445 100644 (file)
--- a/src/lxc/lsm/lsm.h
+++ b/src/lxc/lsm/lsm.h
@@ -37,19 +37,21 @@ struct lsm_drv {
  };
  
  #if HAVE_APPARMOR || HAVE_SELINUX
-void  lsm_init(void);
-int   lsm_enabled(void);
-char *lsm_process_label_get(pid_t pid);
-int   lsm_process_label_set(const char *label, int use_default);
-int   lsm_proc_mount(struct lxc_conf *lxc_conf);
-void  lsm_proc_unmount(struct lxc_conf *lxc_conf);
+void        lsm_init(void);
+int         lsm_enabled(void);
+const char *lsm_name(void);
+char       *lsm_process_label_get(pid_t pid);
+int         lsm_process_label_set(const char *label, int use_default);
+int         lsm_proc_mount(struct lxc_conf *lxc_conf);
+void        lsm_proc_unmount(struct lxc_conf *lxc_conf);
  #else
-static inline void  lsm_init(void) { }
-static inline int   lsm_enabled(void) { return 0; }
-static inline char *lsm_process_label_get(pid_t pid) { return NULL; }
-static inline int   lsm_process_label_set(char *label, int use_default) { return 0; }
-static inline int   lsm_proc_mount(struct lxc_conf *lxc_conf) { return 0; }
-static inline void  lsm_proc_unmount(struct lxc_conf *lxc_conf) { }
+static inline void        lsm_init(void) { }
+static inline int         lsm_enabled(void) { return 0; }
+static inline const char *lsm_name(void) { return "none"; }
+static inline char       *lsm_process_label_get(pid_t pid) { return NULL; }
+static inline int         lsm_process_label_set(char *label, int use_default) { return 0; }
+static inline int         lsm_proc_mount(struct lxc_conf *lxc_conf) { return 0; }
+static inline void        lsm_proc_unmount(struct lxc_conf *lxc_conf) { }
  #endif
  
  #endif
author	Dwight Engen <dwight.engen@oracle.com>
	Fri, 18 Oct 2013 17:44:56 +0000 (13:44 -0400)
committer	Serge Hallyn <serge.hallyn@ubuntu.com>
	Fri, 18 Oct 2013 18:57:33 +0000 (13:57 -0500)
src/lxc/lsm/lsm.c		patch \| blob \| blame \| history
src/lxc/lsm/lsm.h		patch \| blob \| blame \| history