add lsm op for getting name of enabled lsm

Signed-off-by: Dwight Engen <dwight.engen@oracle.com> Signed-off-by: Serge Hallyn <serge.hallyn@ubuntu.com>

add lsm op for getting name of enabled lsm
41ca8908 · Dwight Engen · Serge Hallyn · 3d460a38 · 41ca8908 · 41ca8908
Commit 41ca8908 authored Oct 18, 2013 by Dwight Engen Committed by Serge Hallyn Oct 18, 2013
Show whitespace changes
Inline Side-by-side

Showing with 10 additions and 1 deletion

lsm.c src/lxc/lsm/lsm.c +8 -1

lsm.h src/lxc/lsm/lsm.h +2 -0

No files found.
--- a/src/lxc/lsm/lsm.c
+++ b/src/lxc/lsm/lsm.c
@@ -62,13 +62,20 @@ void lsm_init(void)
 	INFO("Initialized LSM security driver %s", drv->name);
 }
-int lsm_enabled()
+int lsm_enabled(void)
 {
 	if (drv)
 		return drv->enabled();
 	return 0;
 }
+const char *lsm_name(void)
+{
+	if (drv)
+		return drv->name;
+	return "none";
+}
 char *lsm_process_label_get(pid_t pid)
 {
 	if (!drv) {

--- a/src/lxc/lsm/lsm.h
+++ b/src/lxc/lsm/lsm.h
@@ -39,6 +39,7 @@ struct lsm_drv {
 #if HAVE_APPARMOR || HAVE_SELINUX
 void        lsm_init(void);
 int         lsm_enabled(void);
+const char *lsm_name(void);
 char       *lsm_process_label_get(pid_t pid);
 int         lsm_process_label_set(const char *label, int use_default);
 int         lsm_proc_mount(struct lxc_conf *lxc_conf);
@@ -46,6 +47,7 @@ void  lsm_proc_unmount(struct lxc_conf *lxc_conf);
 #else
 static inline void        lsm_init(void) { }
 static inline int         lsm_enabled(void) { return 0; }
+static inline const char *lsm_name(void) { return "none"; }
 static inline char       *lsm_process_label_get(pid_t pid) { return NULL; }
 static inline int         lsm_process_label_set(char *label, int use_default) { return 0; }
 static inline int         lsm_proc_mount(struct lxc_conf *lxc_conf) { return 0; }