qemu: security: Replace and remove qemuSecurity[Set|Restore]DiskLabel

author Peter Krempa <pkrempa@redhat.com>

Wed, 23 Jan 2019 12:39:32 +0000 (13:39 +0100)

committer Peter Krempa <pkrempa@redhat.com>

Wed, 30 Jan 2019 16:20:38 +0000 (17:20 +0100)
author Peter Krempa <pkrempa@redhat.com>
Wed, 23 Jan 2019 12:39:32 +0000 (13:39 +0100)
committer Peter Krempa <pkrempa@redhat.com>
Wed, 30 Jan 2019 16:20:38 +0000 (17:20 +0100)
diff --git a/src/qemu/qemu_driver.c b/src/qemu/qemu_driver.c

index e604911f7544deccb6a6d6eea00c78040a407a4b..79f77bfa2ff61b742a09c807859ea70dfc990f44 100644 (file)
--- a/src/qemu/qemu_driver.c
+++ b/src/qemu/qemu_driver.c
@@ -17170,7 +17170,7 @@ qemuDomainBlockPivot(virQEMUDriverPtr driver,
              disk->mirror->format != VIR_STORAGE_FILE_RAW &&
              (qemuDomainNamespaceSetupDisk(vm, disk->src) < 0 ||
               qemuSetupImageChainCgroup(vm, disk->src) < 0 ||
-             qemuSecuritySetDiskLabel(driver, vm, disk) < 0))
+             qemuSecuritySetImageLabel(driver, vm, disk->src, true) < 0))
              goto cleanup;
  
          disk->src = oldsrc;
diff --git a/src/qemu/qemu_hotplug.c b/src/qemu/qemu_hotplug.c

index ca0b22aa7cd6c0cf99592d67b359f21596da5f84..cf088632dcd600b25916dd7606e2aa6ce36410ae 100644 (file)
--- a/src/qemu/qemu_hotplug.c
+++ b/src/qemu/qemu_hotplug.c
@@ -113,7 +113,7 @@ qemuHotplugPrepareDiskAccess(virQEMUDriverPtr driver,
      if (qemuDomainNamespaceSetupDisk(vm, disk->src) < 0)
          goto rollback_lock;
  
-    if (qemuSecuritySetDiskLabel(driver, vm, disk) < 0)
+    if (qemuSecuritySetImageLabel(driver, vm, disk->src, true) < 0)
          goto rollback_namespace;
  
      if (qemuSetupImageChainCgroup(vm, disk->src) < 0)
@@ -127,7 +127,7 @@ qemuHotplugPrepareDiskAccess(virQEMUDriverPtr driver,
          VIR_WARN("Unable to tear down cgroup access on %s",
                   NULLSTR(virDomainDiskGetSource(disk)));
   rollback_label:
-    if (qemuSecurityRestoreDiskLabel(driver, vm, disk) < 0)
+    if (qemuSecurityRestoreImageLabel(driver, vm, disk->src, true) < 0)
          VIR_WARN("Unable to restore security label on %s",
                   NULLSTR(virDomainDiskGetSource(disk)));
  
diff --git a/src/qemu/qemu_security.c b/src/qemu/qemu_security.c

index 2bc21b55a4e37b73cad2b4cc0e6080670ddb1cb2..229581a7577ff4bf238d930eec2227fead0ff427 100644 (file)
--- a/src/qemu/qemu_security.c
+++ b/src/qemu/qemu_security.c
@@ -92,68 +92,6 @@ qemuSecurityRestoreAllLabel(virQEMUDriverPtr driver,
  }
  
  
-int
-qemuSecuritySetDiskLabel(virQEMUDriverPtr driver,
-                         virDomainObjPtr vm,
-                         virDomainDiskDefPtr disk)
-{
-    qemuDomainObjPrivatePtr priv = vm->privateData;
-    pid_t pid = -1;
-    int ret = -1;
-
-    if (qemuDomainNamespaceEnabled(vm, QEMU_DOMAIN_NS_MOUNT))
-        pid = vm->pid;
-
-    if (virSecurityManagerTransactionStart(driver->securityManager) < 0)
-        goto cleanup;
-
-    if (virSecurityManagerSetDiskLabel(driver->securityManager,
-                                       vm->def,
-                                       disk) < 0)
-        goto cleanup;
-
-    if (virSecurityManagerTransactionCommit(driver->securityManager,
-                                            pid, priv->rememberOwner) < 0)
-        goto cleanup;
-
-    ret = 0;
- cleanup:
-    virSecurityManagerTransactionAbort(driver->securityManager);
-    return ret;
-}
-
-
-int
-qemuSecurityRestoreDiskLabel(virQEMUDriverPtr driver,
-                             virDomainObjPtr vm,
-                             virDomainDiskDefPtr disk)
-{
-    qemuDomainObjPrivatePtr priv = vm->privateData;
-    pid_t pid = -1;
-    int ret = -1;
-
-    if (qemuDomainNamespaceEnabled(vm, QEMU_DOMAIN_NS_MOUNT))
-        pid = vm->pid;
-
-    if (virSecurityManagerTransactionStart(driver->securityManager) < 0)
-        goto cleanup;
-
-    if (virSecurityManagerRestoreDiskLabel(driver->securityManager,
-                                           vm->def,
-                                           disk) < 0)
-        goto cleanup;
-
-    if (virSecurityManagerTransactionCommit(driver->securityManager,
-                                            pid, priv->rememberOwner) < 0)
-        goto cleanup;
-
-    ret = 0;
- cleanup:
-    virSecurityManagerTransactionAbort(driver->securityManager);
-    return ret;
-}
-
-
  int
  qemuSecuritySetImageLabel(virQEMUDriverPtr driver,
                            virDomainObjPtr vm,
diff --git a/src/qemu/qemu_security.h b/src/qemu/qemu_security.h

index 2a916f51692b99942f927a9fab49969d4bc9dbbb..546a66f284035c741b7b2ef548bba65a7e182282 100644 (file)
--- a/src/qemu/qemu_security.h
+++ b/src/qemu/qemu_security.h
@@ -34,14 +34,6 @@ void qemuSecurityRestoreAllLabel(virQEMUDriverPtr driver,
                                   virDomainObjPtr vm,
                                   bool migrated);
  
-int qemuSecuritySetDiskLabel(virQEMUDriverPtr driver,
-                             virDomainObjPtr vm,
-                             virDomainDiskDefPtr disk);
-
-int qemuSecurityRestoreDiskLabel(virQEMUDriverPtr driver,
-                                 virDomainObjPtr vm,
-                                 virDomainDiskDefPtr disk);
-
  int qemuSecuritySetImageLabel(virQEMUDriverPtr driver,
                                virDomainObjPtr vm,
                                virStorageSourcePtr src,
author	Peter Krempa <pkrempa@redhat.com>
	Wed, 23 Jan 2019 12:39:32 +0000 (13:39 +0100)
committer	Peter Krempa <pkrempa@redhat.com>
	Wed, 30 Jan 2019 16:20:38 +0000 (17:20 +0100)
src/qemu/qemu_driver.c		patch \| blob \| blame \| history
src/qemu/qemu_hotplug.c		patch \| blob \| blame \| history
src/qemu/qemu_security.c		patch \| blob \| blame \| history
src/qemu/qemu_security.h		patch \| blob \| blame \| history