security: apparmor: Push virStorageSource checks to add_file_path

This mirrors the code layout in security_selinux.c. It will also make it easier to share the checks for qcow2 external data_file support eventually Reviewed-by: N Michal Privoznik <mprivozn@redhat.com> Signed-off-by: N Cole Robinson <crobinso@redhat.com>

security: apparmor: Push virStorageSource checks to add_file_path
This mirrors the code layout in security_selinux.c. It will also make it easier to share the checks for qcow2 external data_file support eventually Reviewed-by: N Michal Privoznik <mprivozn@redhat.com> Signed-off-by: N Cole Robinson <crobinso@redhat.com>
c7eea3f5 · Cole Robinson · 7c0bf48b · c7eea3f5
隐藏空白更改
内联并排

Showing with 6 addition and 6 deletion

src/security/virt-aa-helper.c src/security/virt-aa-helper.c +6 -6

未找到文件。
--- a/src/security/virt-aa-helper.c
+++ b/src/security/virt-aa-helper.c
@@ -917,6 +917,10 @@ add_file_path(virStorageSourcePtr src,
 {
    int ret;

+    /* execute the callback only for local storage */
+    if (!src->path || !virStorageSourceIsLocalStorage(src))
+        return 0;
+
    if (depth == 0) {
        if (src->readonly)
            ret = vah_add_file(buf, src->path, "rk");
@@ -941,12 +945,8 @@ disk_add_files(virDomainDiskDefPtr disk,
    virStorageSourcePtr tmp;

    for (tmp = disk->src; virStorageSourceIsBacking(tmp); tmp = tmp->backingStore) {
-        /* execute the callback only for local storage */
-        if (virStorageSourceIsLocalStorage(tmp) &&
-            tmp->path) {
-            if (add_file_path(tmp, depth, buf) < 0)
-                return -1;
-        }
+        if (add_file_path(tmp, depth, buf) < 0)
+            return -1;

        depth++;
    }