shaba/systemd
1
0
Fork 0
mirror of https://github.com/systemd/systemd.git synced 2024-11-15 07:24:00 +03:00
Code
19,638 Commits 3 Branches 392 Tags 541 MiB
32a568fb90
Commit Graph

13 Commits

Author SHA1 Message Date
Lukasz Skalski
52fa7a3af1 bus-proxy: add support for "GetConnectionCredentials" method 
GetConnectionCredentials method was added to dbus-1 specification
more than one year ago. This method should return "[...] as many
credentials as possible for the process connected to the server",
but at this moment only "UnixUserID", "LinuxSecurityLabel" and
"ProcessID" are defined by the specification. We should add support
for next credentials after extending dbus-1 spec.
 2015-03-10 16:12:14 +01:00
Thomas Hindoe Paaboel Andersen
2eec67acbb remove unused includes 
This patch removes includes that are not used. The removals were found with
include-what-you-use which checks if any of the symbols from a header is
in use.
 2015-02-23 23:53:42 +01:00
Lennart Poettering
1433efd219 bus-proxy: rename synthetic_reply_return_strv() to synthetic_reply_method_return_strv() 
That way it matches more closely the nomenclature of our other
success reply calls.
 2015-02-13 15:49:51 +01:00
Lennart Poettering
df3efc3c90 bus-proxyd: initialize ioctl structure only once 2015-02-10 20:46:09 +01:00
Lukasz Skalski
cfcc160f22 bus-proxyd: fix 'ListQueuedOwners' call 
Set proper kdbus_cmd_list object size, otherwise:

dbus-send --system --dest=org.freedesktop.DBus --type=method_call \
print-reply / org.freedesktop.DBus.ListQueuedOwners string:org.freedesktop.systemd1

Error org.freedesktop.DBus.Error.InvalidArgs: Invalid argument
 2015-02-07 10:27:45 +01:00
David Herrmann
b2086f601b bus: sync with kdbus (ABI break) 2015-02-05 16:52:42 +01:00
Thomas Hindoe Paaboel Andersen
fed6df828d remove unused variables 2015-02-02 22:58:06 +01:00
David Herrmann
50efadb0ae bus-proxy: don't pretend everyone is root 
While it's a lovely scenario, it's probably not really useful. Fix our
GetConnectionUnixUser() to return the actual 'euid' which we asked for,
not the possible uninitialized 'uid'.
 2015-01-18 21:34:33 +01:00
David Herrmann
05bae4a60c bus: use EUID over UID and fix unix-creds 
Whenever a process performs an action on an object, the kernel uses the
EUID of the process to do permission checks and to apply on any newly
created objects. The UID of a process is only used if someone *ELSE* acts
on the process. That is, the UID of a process defines who owns the
process, the EUID defines what privileges are used by this process when
performing an action.

Process limits, on the other hand, are always applied to the real UID, not
the effective UID. This is, because a process has a user object linked,
which always corresponds to its UID. A process never has a user object
linked for its EUID. Thus, accounting (and limits) is always done on the
real UID.

This commit fixes all sd-bus users to use the EUID when performing
privilege checks and alike. Furthermore, it fixes unix-creds to be parsed
as EUID, not UID (as the kernel always takes the EUID on UDS). Anyone
using UID (eg., to do user-accounting) has to fall back to the EUID as UDS
does not transmit the UID.
 2015-01-18 13:55:55 +01:00
David Herrmann
0d620e5336 bus-proxy: implement org.freedesktop.DBus.ReloadConfig() 
Make sure to reload our xml policy configuration if requested via the bus.
 2015-01-17 19:06:34 +01:00
David Herrmann
bae8352c1d bus-proxy: fix indentation 
Fix whitespace indentation.
 2015-01-17 18:54:09 +01:00
David Herrmann
c4bc1a8434 bus-proxy: share policy between threads 
This implements a shared policy cache with read-write locks. We no longer
parse the XML policy in each thread.

This will allow us to easily implement ReloadConfig().
 2015-01-17 18:27:23 +01:00
Daniel Mack
f3c4724635 bus-proxy: factor out code for driver handling and message synthesis 
Move synthesize_*() into synthesize.c and bus_proxy_process_driver() into
driver.c for better code separation.
 2015-01-15 14:08:05 +01:00