4 * This file is part of the libvirt-go project
6 * Permission is hereby granted, free of charge, to any person obtaining a copy
7 * of this software and associated documentation files (the "Software"), to deal
8 * in the Software without restriction, including without limitation the rights
9 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
10 * copies of the Software, and to permit persons to whom the Software is
11 * furnished to do so, subject to the following conditions:
13 * The above copyright notice and this permission notice shall be included in
14 * all copies or substantial portions of the Software.
16 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
17 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
18 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
19 * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
20 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
21 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
24 * Copyright (c) 2013 Alex Zorin
25 * Copyright (C) 2016 Red Hat, Inc.
32 #cgo pkg-config: libvirt
33 // Can't rely on pkg-config for libvirt-lxc since it was not
34 // installed until 2.6.0 onwards
35 #cgo LDFLAGS: -lvirt-lxc
38 #include "lxc_wrapper.h"
47 func (d *Domain) LxcOpenNamespace(flags uint32) ([]os.File, error) {
51 ret := C.virDomainLxcOpenNamespaceWrapper(d.ptr, &cfdlist, C.uint(flags), &err)
53 return []os.File{}, makeError(&err)
55 fdlist := make([]os.File, ret)
56 for i := 0; i < int(ret); i++ {
58 cfd = *(*C.int)(unsafe.Pointer(uintptr(unsafe.Pointer(cfdlist)) + (unsafe.Sizeof(cfd) * uintptr(i))))
59 fdlist[i] = *os.NewFile(uintptr(cfd), "namespace")
61 defer C.free(unsafe.Pointer(cfdlist))
65 func (d *Domain) LxcEnterNamespace(fdlist []os.File, flags uint32) ([]os.File, error) {
67 var ncoldfdlist C.uint
68 cfdlist := make([]C.int, len(fdlist))
69 for i := 0; i < len(fdlist); i++ {
70 cfdlist[i] = C.int(fdlist[i].Fd())
74 ret := C.virDomainLxcEnterNamespaceWrapper(d.ptr, C.uint(len(fdlist)), &cfdlist[0], &ncoldfdlist, &coldfdlist, C.uint(flags), &err)
76 return []os.File{}, makeError(&err)
78 oldfdlist := make([]os.File, ncoldfdlist)
79 for i := 0; i < int(ncoldfdlist); i++ {
81 cfd = *(*C.int)(unsafe.Pointer(uintptr(unsafe.Pointer(coldfdlist)) + (unsafe.Sizeof(cfd) * uintptr(i))))
82 oldfdlist[i] = *os.NewFile(uintptr(cfd), "namespace")
84 defer C.free(unsafe.Pointer(coldfdlist))
88 func DomainLxcEnterSecurityLabel(model *NodeSecurityModel, label *SecurityLabel, flags uint32) (*SecurityLabel, error) {
89 var cmodel C.virSecurityModel
90 var clabel C.virSecurityLabel
91 var coldlabel C.virSecurityLabel
93 cmodelstrlen := len(model.Model)
94 if cmodelstrlen > (C.VIR_SECURITY_MODEL_BUFLEN - 1) {
95 cmodelstrlen = C.VIR_SECURITY_MODEL_BUFLEN - 1
97 cmodelstr := C.CString(model.Model)
98 defer C.free(unsafe.Pointer(cmodelstr))
100 cdoistrlen := len(model.Doi)
101 if cdoistrlen >= (C.VIR_SECURITY_DOI_BUFLEN - 1) {
102 cdoistrlen = C.VIR_SECURITY_DOI_BUFLEN - 1
104 cdoistr := C.CString(model.Doi)
105 defer C.free(unsafe.Pointer(cdoistr))
107 C.memcpy(unsafe.Pointer(&cmodel.model), unsafe.Pointer(cmodelstr), C.size_t(cmodelstrlen))
108 C.memcpy(unsafe.Pointer(&cmodel.doi), unsafe.Pointer(cdoistr), C.size_t(cdoistrlen))
110 clabelstrlen := len(label.Label)
111 if clabelstrlen > (C.VIR_SECURITY_LABEL_BUFLEN - 1) {
112 clabelstrlen = C.VIR_SECURITY_LABEL_BUFLEN - 1
114 clabelstr := C.CString(label.Label)
115 defer C.free(unsafe.Pointer(clabelstr))
117 C.memcpy(unsafe.Pointer(&clabel.label), unsafe.Pointer(clabelstr), C.size_t(clabelstrlen))
125 ret := C.virDomainLxcEnterSecurityLabelWrapper(&cmodel, &clabel, &coldlabel, C.uint(flags), &err)
127 return nil, makeError(&err)
130 var oldlabel SecurityLabel
132 oldlabel.Label = C.GoString((*C.char)(unsafe.Pointer(&coldlabel.label)))
133 if coldlabel.enforcing != 0 {
134 oldlabel.Enforcing = true
136 oldlabel.Enforcing = false
139 return &oldlabel, nil
142 func (d *Domain) DomainLxcEnterCGroup(flags uint32) error {
143 if C.LIBVIR_VERSION_NUMBER < 2000000 {
144 return makeNotImplementedError("virDomainLxcEnterCGroup")
148 ret := C.virDomainLxcEnterCGroupWrapper(d.ptr, C.uint(flags), &err)
151 return makeError(&err)