[libvirt] [PATCH] virSecurityManagerNew: Turn array of booleans into flags
Ján Tomko
jtomko at redhat.com
Wed Oct 7 13:33:31 UTC 2015
On Tue, Oct 06, 2015 at 05:14:04PM +0200, Michal Privoznik wrote:
> So imagine you want to crate new security manager:
>
> if (!(mgr = virSecurityManagerNew("selinux", "QEMU", false, true, false, true)));
>
> Hard to parse, right? What about this:
>
> if (!(mgr = virSecurityManagerNew("selinux", "QEMU",
> VIR_SECURITY_MANAGER_DEFAULT_CONFINED |
> VIR_SECURITY_MANAGER_PRIVILEGED)));
>
> Now that's better! This is what the commit does.
Yes, that's what we put in the commit message. What and why the commit
does it.
>
> Signed-off-by: Michal Privoznik <mprivozn at redhat.com>
> ---
> src/lxc/lxc_controller.c | 3 +-
> src/lxc/lxc_driver.c | 14 +++++---
> src/qemu/qemu_driver.c | 28 ++++++++--------
> src/security/security_manager.c | 70 +++++++++++++---------------------------
> src/security/security_manager.h | 25 ++++++++------
> tests/qemuhotplugtest.c | 3 +-
> tests/seclabeltest.c | 2 +-
> tests/securityselinuxlabeltest.c | 4 ++-
> tests/securityselinuxtest.c | 4 ++-
> 9 files changed, 72 insertions(+), 81 deletions(-)
>
> @@ -153,20 +140,13 @@ virSecurityManagerPtr
> virSecurityManagerNewDAC(const char *virtDriver,
> uid_t user,
> gid_t group,
> - bool allowDiskFormatProbing,
> - bool defaultConfined,
> - bool requireConfined,
> - bool dynamicOwnership,
> - bool privileged,
> + unsigned int flags,
> virSecurityManagerDACChownCallback chownCallback)
> {
virCheckFlags(VIR_SECURITY_MANAGER_NEW_MASK |
VIR_SECURITY_MANAGER_DYNAMIC_OWNERSHIP, NULL);
> virSecurityManagerPtr mgr =
> virSecurityManagerNewDriver(&virSecurityDriverDAC,
> virtDriver,
> - allowDiskFormatProbing,
> - defaultConfined,
> - requireConfined,
> - privileged);
> + flags & VIR_SECURITY_MANAGER_NEW_MASK);
>
> if (!mgr)
> return NULL;
> @@ -176,7 +156,7 @@ virSecurityManagerNewDAC(const char *virtDriver,
> return NULL;
> }
>
> - virSecurityDACSetDynamicOwnership(mgr, dynamicOwnership);
> + virSecurityDACSetDynamicOwnership(mgr, flags & VIR_SECURITY_MANAGER_DYNAMIC_OWNERSHIP);
> virSecurityDACSetChownCallback(mgr, chownCallback);
>
> return mgr;
ACK
Jan
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: Digital signature
URL: <http://listman.redhat.com/archives/libvir-list/attachments/20151007/c1ae8a6d/attachment-0001.sig>
More information about the libvir-list
mailing list