agent: Keep CAP_DAC_OVERRIDE to connect to ssh-agent socket
[strongswan.git] / src / libstrongswan / plugins / agent / agent_plugin.c
1 /*
2 * Copyright (C) 2008-2009 Martin Willi
3 * Hochschule fuer Technik Rapperswil
4 *
5 * This program is free software; you can redistribute it and/or modify it
6 * under the terms of the GNU General Public License as published by the
7 * Free Software Foundation; either version 2 of the License, or (at your
8 * option) any later version. See <http://www.fsf.org/copyleft/gpl.txt>.
9 *
10 * This program is distributed in the hope that it will be useful, but
11 * WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
12 * or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
13 * for more details.
14 */
15
16 #include "agent_plugin.h"
17
18 #include <library.h>
19 #include "agent_private_key.h"
20
21 typedef struct private_agent_plugin_t private_agent_plugin_t;
22
23 /**
24 * private data of agent_plugin
25 */
26 struct private_agent_plugin_t {
27
28 /**
29 * public functions
30 */
31 agent_plugin_t public;
32 };
33
34 METHOD(plugin_t, get_name, char*,
35 private_agent_plugin_t *this)
36 {
37 return "agent";
38 }
39
40 METHOD(plugin_t, get_features, int,
41 private_agent_plugin_t *this, plugin_feature_t *features[])
42 {
43 static plugin_feature_t f[] = {
44 PLUGIN_REGISTER(PRIVKEY, agent_private_key_open, FALSE),
45 PLUGIN_PROVIDE(PRIVKEY, KEY_ANY),
46 PLUGIN_PROVIDE(PRIVKEY, KEY_RSA),
47 PLUGIN_PROVIDE(PRIVKEY, KEY_ECDSA),
48 };
49 *features = f;
50 return countof(f);
51 }
52
53 METHOD(plugin_t, destroy, void,
54 private_agent_plugin_t *this)
55 {
56 free(this);
57 }
58
59 /*
60 * see header file
61 */
62 plugin_t *agent_plugin_create()
63 {
64 private_agent_plugin_t *this;
65
66 /* required to connect to ssh-agent socket */
67 if (!lib->caps->keep(lib->caps, CAP_DAC_OVERRIDE))
68 {
69 DBG1(DBG_DMN, "agent plugin requires CAP_DAC_OVERRIDE capability");
70 return NULL;
71 }
72
73 INIT(this,
74 .public = {
75 .plugin = {
76 .get_name = _get_name,
77 .get_features = _get_features,
78 .destroy = _destroy,
79 },
80 },
81 );
82
83 return &this->public.plugin;
84 }