1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
4 This file is part of systemd.
6 Copyright 2010 Lennart Poettering
7 Copyright 2013 Daniel Mack
8 Copyright 2014 Kay Sievers
10 systemd is free software; you can redistribute it and/or modify it
11 under the terms of the GNU Lesser General Public License as published by
12 the Free Software Foundation; either version 2.1 of the License, or
13 (at your option) any later version.
15 systemd is distributed in the hope that it will be useful, but
16 WITHOUT ANY WARRANTY; without even the implied warranty of
17 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
18 Lesser General Public License for more details.
20 You should have received a copy of the GNU Lesser General Public License
21 along with systemd; If not, see <http://www.gnu.org/licenses/>.
24 #include <sys/socket.h>
26 #include <sys/types.h>
37 #include "socket-util.h"
38 #include "sd-daemon.h"
40 #include "bus-internal.h"
41 #include "bus-message.h"
46 #include "capability.h"
47 #include "bus-policy.h"
49 static char *arg_address = NULL;
50 static char *arg_command_line_buffer = NULL;
51 static bool arg_drop_privileges = false;
52 static char **arg_configuration = NULL;
54 static int help(void) {
56 printf("%s [OPTIONS...]\n\n"
57 "Connect STDIO or a socket to a given bus address.\n\n"
58 " -h --help Show this help\n"
59 " --version Show package version\n"
60 " --drop-privileges Drop privileges\n"
61 " --configuration=PATH Configuration file or directory\n"
62 " --machine=MACHINE Connect to specified machine\n"
63 " --address=ADDRESS Connect to the bus specified by ADDRESS\n"
64 " (default: " DEFAULT_SYSTEM_BUS_PATH ")\n",
65 program_invocation_short_name);
70 static int parse_argv(int argc, char *argv[]) {
80 static const struct option options[] = {
81 { "help", no_argument, NULL, 'h' },
82 { "version", no_argument, NULL, ARG_VERSION },
83 { "address", required_argument, NULL, ARG_ADDRESS },
84 { "drop-privileges", no_argument, NULL, ARG_DROP_PRIVILEGES },
85 { "configuration", required_argument, NULL, ARG_CONFIGURATION },
86 { "machine", required_argument, NULL, ARG_MACHINE },
95 while ((c = getopt_long(argc, argv, "h", options, NULL)) >= 0)
104 puts(PACKAGE_STRING);
105 puts(SYSTEMD_FEATURES);
120 case ARG_DROP_PRIVILEGES:
121 arg_drop_privileges = true;
124 case ARG_CONFIGURATION:
125 r = strv_extend(&arg_configuration, optarg);
131 _cleanup_free_ char *e = NULL;
134 e = bus_address_escape(optarg);
139 a = strjoin("x-container-kernel:machine=", e, ";x-container-unix:machine=", e, NULL);
141 a = strjoin("x-container-unix:machine=", e, NULL);
156 assert_not_reached("Unhandled option");
159 /* If the first command line argument is only "x" characters
160 * we'll write who we are talking to into it, so that "ps" is
162 arg_command_line_buffer = argv[optind];
163 if (argc > optind + 1 || (arg_command_line_buffer && !in_charset(arg_command_line_buffer, "x"))) {
164 log_error("Too many arguments");
169 arg_address = strdup(DEFAULT_SYSTEM_BUS_PATH);
177 static int rename_service(sd_bus *a, sd_bus *b) {
178 _cleanup_bus_creds_unref_ sd_bus_creds *creds = NULL;
179 _cleanup_free_ char *p = NULL, *name = NULL;
189 r = sd_bus_get_peer_creds(b, SD_BUS_CREDS_UID|SD_BUS_CREDS_PID|SD_BUS_CREDS_CMDLINE|SD_BUS_CREDS_COMM, &creds);
193 r = sd_bus_creds_get_uid(creds, &uid);
197 r = sd_bus_creds_get_pid(creds, &pid);
201 r = sd_bus_creds_get_cmdline(creds, &cmdline);
205 r = sd_bus_creds_get_comm(creds, &comm);
209 name = uid_to_name(uid);
213 p = strv_join(cmdline, " ");
217 /* The status string gets the full command line ... */
219 "STATUS=Processing requests from client PID "PID_FMT" (%s); UID "UID_FMT" (%s)",
223 /* ... and the argv line only the short comm */
224 if (arg_command_line_buffer) {
227 m = strlen(arg_command_line_buffer);
228 w = snprintf(arg_command_line_buffer, m,
229 "[PID "PID_FMT"/%s; UID "UID_FMT"/%s]",
234 memzero(arg_command_line_buffer + w, m - w);
237 log_debug("Running on behalf of PID "PID_FMT" (%s), UID "UID_FMT" (%s), %s",
245 static int synthesize_name_acquired(sd_bus *a, sd_bus *b, sd_bus_message *m) {
246 _cleanup_bus_message_unref_ sd_bus_message *n = NULL;
247 const char *name, *old_owner, *new_owner;
254 /* If we get NameOwnerChanged for our own name, we need to
255 * synthesize NameLost/NameAcquired, since socket clients need
256 * that, even though it is obsoleted on kdbus */
261 if (!sd_bus_message_is_signal(m, "org.freedesktop.DBus", "NameOwnerChanged") ||
262 !streq_ptr(m->path, "/org/freedesktop/DBus") ||
263 !streq_ptr(m->sender, "org.freedesktop.DBus"))
266 r = sd_bus_message_read(m, "sss", &name, &old_owner, &new_owner);
270 r = sd_bus_message_rewind(m, true);
274 if (streq(old_owner, a->unique_name)) {
276 r = sd_bus_message_new_signal(
279 "/org/freedesktop/DBus",
280 "org.freedesktop.DBus",
283 } else if (streq(new_owner, a->unique_name)) {
285 r = sd_bus_message_new_signal(
288 "/org/freedesktop/DBus",
289 "org.freedesktop.DBus",
297 r = sd_bus_message_append(n, "s", name);
301 r = bus_message_append_sender(n, "org.freedesktop.DBus");
305 r = bus_seal_synthetic_message(b, n);
309 return sd_bus_send(b, n, NULL);
312 static int process_policy(sd_bus *a, sd_bus *b, sd_bus_message *m) {
313 _cleanup_bus_message_unref_ sd_bus_message *n = NULL;
323 if (!sd_bus_message_is_method_call(m, "org.freedesktop.DBus.Properties", "GetAll"))
326 if (!streq_ptr(m->path, "/org/gnome/DisplayManager/Slave"))
329 r = sd_bus_message_new_method_errorf(m, &n, SD_BUS_ERROR_ACCESS_DENIED, "gdm, you are stupid");
333 r = bus_message_append_sender(n, "org.freedesktop.DBus");
335 log_error("Failed to append sender to gdm reply: %s", strerror(-r));
339 r = bus_seal_synthetic_message(b, n);
341 log_error("Failed to seal gdm reply: %s", strerror(-r));
345 r = sd_bus_send(b, n, NULL);
347 log_error("Failed to send gdm reply: %s", strerror(-r));
354 static int synthetic_driver_send(sd_bus *b, sd_bus_message *m) {
360 r = bus_message_append_sender(m, "org.freedesktop.DBus");
364 r = bus_seal_synthetic_message(b, m);
368 return sd_bus_send(b, m, NULL);
371 static int synthetic_reply_method_error(sd_bus_message *call, const sd_bus_error *e) {
372 _cleanup_bus_message_unref_ sd_bus_message *m = NULL;
377 if (call->header->flags & BUS_MESSAGE_NO_REPLY_EXPECTED)
380 r = sd_bus_message_new_method_error(call, &m, e);
384 return synthetic_driver_send(call->bus, m);
387 static int synthetic_reply_method_errno(sd_bus_message *call, int error, const sd_bus_error *p) {
389 _cleanup_bus_error_free_ sd_bus_error berror = SD_BUS_ERROR_NULL;
393 if (call->header->flags & BUS_MESSAGE_NO_REPLY_EXPECTED)
396 if (sd_bus_error_is_set(p))
397 return synthetic_reply_method_error(call, p);
399 sd_bus_error_set_errno(&berror, error);
401 return synthetic_reply_method_error(call, &berror);
404 static int synthetic_reply_method_return(sd_bus_message *call, const char *types, ...) {
405 _cleanup_bus_message_unref_ sd_bus_message *m = NULL;
410 if (call->header->flags & BUS_MESSAGE_NO_REPLY_EXPECTED)
413 r = sd_bus_message_new_method_return(call, &m);
417 if (!isempty(types)) {
421 r = bus_message_append_ap(m, types, ap);
427 return synthetic_driver_send(call->bus, m);
430 static int synthetic_reply_return_strv(sd_bus_message *call, char **l) {
431 _cleanup_bus_message_unref_ sd_bus_message *m = NULL;
436 r = sd_bus_message_new_method_return(call, &m);
438 return synthetic_reply_method_errno(call, r, NULL);
440 r = sd_bus_message_append_strv(m, l);
442 return synthetic_reply_method_errno(call, r, NULL);
444 return synthetic_driver_send(call->bus, m);
447 static int get_creds_by_name(sd_bus *bus, const char *name, uint64_t mask, sd_bus_creds **_creds, sd_bus_error *error) {
448 _cleanup_bus_creds_unref_ sd_bus_creds *c = NULL;
455 assert_return(service_name_is_valid(name), -EINVAL);
457 r = sd_bus_get_owner(bus, name, mask, &c);
458 if (r == -ESRCH || r == -ENXIO)
459 return sd_bus_error_setf(error, SD_BUS_ERROR_NAME_HAS_NO_OWNER, "Name %s is currently not owned by anyone.", name);
463 if ((c->mask & mask) != mask)
472 static int get_creds_by_message(sd_bus *bus, sd_bus_message *m, uint64_t mask, sd_bus_creds **_creds, sd_bus_error *error) {
480 r = sd_bus_message_read(m, "s", &name);
484 return get_creds_by_name(bus, name, mask, _creds, error);
487 static int peer_is_privileged(sd_bus *bus, sd_bus_message *m) {
488 _cleanup_bus_creds_unref_ sd_bus_creds *creds = NULL;
492 r = get_creds_by_message(bus, m, SD_BUS_CREDS_UID, &creds, NULL);
496 r = sd_bus_creds_get_uid(creds, &uid);
500 r = sd_bus_creds_has_effective_cap(creds, CAP_SYS_ADMIN);
510 static int process_driver(sd_bus *a, sd_bus *b, sd_bus_message *m) {
520 if (!streq_ptr(sd_bus_message_get_destination(m), "org.freedesktop.DBus"))
523 if (sd_bus_message_is_method_call(m, "org.freedesktop.DBus.Introspectable", "Introspect")) {
524 if (0 && !isempty(sd_bus_message_get_signature(m, true))) {
525 _cleanup_bus_error_free_ sd_bus_error error = SD_BUS_ERROR_NULL;
527 r = sd_bus_error_setf(&error, SD_BUS_ERROR_INVALID_ARGS, "Expected no parameters");
529 return synthetic_reply_method_errno(m, r, &error);
532 return synthetic_reply_method_return(m, "s",
533 "<!DOCTYPE node PUBLIC \"-//freedesktop//DTD D-BUS Object Introspection 1.0//EN\" "
534 "\"http://www.freedesktop.org/standards/dbus/1.0/introspect.dtd\">\n"
536 " <interface name=\"org.freedesktop.DBus.Introspectable\">\n"
537 " <method name=\"Introspect\">\n"
538 " <arg name=\"data\" type=\"s\" direction=\"out\"/>\n"
541 " <interface name=\"org.freedesktop.DBus\">\n"
542 " <method name=\"AddMatch\">\n"
543 " <arg type=\"s\" direction=\"in\"/>\n"
545 " <method name=\"RemoveMatch\">\n"
546 " <arg type=\"s\" direction=\"in\"/>\n"
548 " <method name=\"GetConnectionSELinuxSecurityContext\">\n"
549 " <arg type=\"s\" direction=\"in\"/>\n"
550 " <arg type=\"ay\" direction=\"out\"/>\n"
552 " <method name=\"GetConnectionUnixProcessID\">\n"
553 " <arg type=\"s\" direction=\"in\"/>\n"
554 " <arg type=\"u\" direction=\"out\"/>\n"
556 " <method name=\"GetConnectionUnixUser\">\n"
557 " <arg type=\"s\" direction=\"in\"/>\n"
558 " <arg type=\"u\" direction=\"out\"/>\n"
560 " <method name=\"GetId\">\n"
561 " <arg type=\"s\" direction=\"out\"/>\n"
563 " <method name=\"GetNameOwner\">\n"
564 " <arg type=\"s\" direction=\"in\"/>\n"
565 " <arg type=\"s\" direction=\"out\"/>\n"
567 " <method name=\"Hello\">\n"
568 " <arg type=\"s\" direction=\"out\"/>\n"
570 " <method name=\"ListActivatableNames\">\n"
571 " <arg type=\"as\" direction=\"out\"/>\n"
573 " <method name=\"ListNames\">\n"
574 " <arg type=\"as\" direction=\"out\"/>\n"
576 " <method name=\"ListQueuedOwners\">\n"
577 " <arg type=\"s\" direction=\"in\"/>\n"
578 " <arg type=\"as\" direction=\"out\"/>\n"
580 " <method name=\"NameHasOwner\">\n"
581 " <arg type=\"s\" direction=\"in\"/>\n"
582 " <arg type=\"b\" direction=\"out\"/>\n"
584 " <method name=\"ReleaseName\">\n"
585 " <arg type=\"s\" direction=\"in\"/>\n"
586 " <arg type=\"u\" direction=\"out\"/>\n"
588 " <method name=\"ReloadConfig\">\n"
590 " <method name=\"RequestName\">\n"
591 " <arg type=\"s\" direction=\"in\"/>\n"
592 " <arg type=\"u\" direction=\"in\"/>\n"
593 " <arg type=\"u\" direction=\"out\"/>\n"
595 " <method name=\"StartServiceByName\">\n"
596 " <arg type=\"s\" direction=\"in\"/>\n"
597 " <arg type=\"u\" direction=\"in\"/>\n"
598 " <arg type=\"u\" direction=\"out\"/>\n"
600 " <method name=\"UpdateActivationEnvironment\">\n"
601 " <arg type=\"a{ss}\" direction=\"in\"/>\n"
603 " <signal name=\"NameAcquired\">\n"
604 " <arg type=\"s\"/>\n"
606 " <signal name=\"NameLost\">\n"
607 " <arg type=\"s\"/>\n"
609 " <signal name=\"NameOwnerChanged\">\n"
610 " <arg type=\"s\"/>\n"
611 " <arg type=\"s\"/>\n"
612 " <arg type=\"s\"/>\n"
617 } else if (sd_bus_message_is_method_call(m, "org.freedesktop.DBus", "AddMatch")) {
620 r = sd_bus_message_read(m, "s", &match);
622 return synthetic_reply_method_errno(m, r, NULL);
624 r = sd_bus_add_match(a, NULL, match, NULL, NULL);
626 return synthetic_reply_method_errno(m, r, NULL);
628 return synthetic_reply_method_return(m, NULL);
630 } else if (sd_bus_message_is_method_call(m, "org.freedesktop.DBus", "RemoveMatch")) {
633 r = sd_bus_message_read(m, "s", &match);
635 return synthetic_reply_method_errno(m, r, NULL);
637 r = bus_remove_match_by_string(a, match, NULL, NULL);
639 return synthetic_reply_method_error(m, &SD_BUS_ERROR_MAKE_CONST(SD_BUS_ERROR_MATCH_RULE_NOT_FOUND, "Match rule not found"));
641 return synthetic_reply_method_errno(m, r, NULL);
643 return synthetic_reply_method_return(m, NULL);
645 } else if (sd_bus_message_is_method_call(m, "org.freedesktop.DBus", "GetConnectionSELinuxSecurityContext")) {
646 _cleanup_bus_creds_unref_ sd_bus_creds *creds = NULL;
648 r = get_creds_by_message(a, m, SD_BUS_CREDS_SELINUX_CONTEXT, &creds, NULL);
650 return synthetic_reply_method_errno(m, r, NULL);
652 return synthetic_reply_method_return(m, "y", creds->label, strlen(creds->label));
654 } else if (sd_bus_message_is_method_call(m, "org.freedesktop.DBus", "GetConnectionUnixProcessID")) {
655 _cleanup_bus_creds_unref_ sd_bus_creds *creds = NULL;
657 r = get_creds_by_message(a, m, SD_BUS_CREDS_PID, &creds, NULL);
659 return synthetic_reply_method_errno(m, r, NULL);
661 return synthetic_reply_method_return(m, "u", (uint32_t) creds->pid);
663 } else if (sd_bus_message_is_method_call(m, "org.freedesktop.DBus", "GetConnectionUnixUser")) {
664 _cleanup_bus_creds_unref_ sd_bus_creds *creds = NULL;
666 r = get_creds_by_message(a, m, SD_BUS_CREDS_UID, &creds, NULL);
668 return synthetic_reply_method_errno(m, r, NULL);
670 return synthetic_reply_method_return(m, "u", (uint32_t) creds->uid);
672 } else if (sd_bus_message_is_method_call(m, "org.freedesktop.DBus", "GetId")) {
673 sd_id128_t server_id;
674 char buf[SD_ID128_STRING_MAX];
676 r = sd_bus_get_server_id(a, &server_id);
678 return synthetic_reply_method_errno(m, r, NULL);
680 return synthetic_reply_method_return(m, "s", sd_id128_to_string(server_id, buf));
682 } else if (sd_bus_message_is_method_call(m, "org.freedesktop.DBus", "GetNameOwner")) {
684 _cleanup_bus_creds_unref_ sd_bus_creds *creds = NULL;
685 _cleanup_bus_error_free_ sd_bus_error error = SD_BUS_ERROR_NULL;
687 r = sd_bus_message_read(m, "s", &name);
689 return synthetic_reply_method_errno(m, r, NULL);
691 if (streq(name, "org.freedesktop.DBus"))
692 return synthetic_reply_method_return(m, "s", "org.freedesktop.DBus");
694 r = get_creds_by_name(a, name, SD_BUS_CREDS_UNIQUE_NAME, &creds, &error);
696 return synthetic_reply_method_errno(m, r, &error);
698 return synthetic_reply_method_return(m, "s", creds->unique_name);
700 /* "Hello" is handled in process_hello() */
702 } else if (sd_bus_message_is_method_call(m, "org.freedesktop.DBus", "ListActivatableNames")) {
703 _cleanup_strv_free_ char **names = NULL;
705 r = sd_bus_list_names(a, NULL, &names);
707 return synthetic_reply_method_errno(m, r, NULL);
709 /* Let's sort the names list to make it stable */
712 return synthetic_reply_return_strv(m, names);
714 } else if (sd_bus_message_is_method_call(m, "org.freedesktop.DBus", "ListNames")) {
715 _cleanup_strv_free_ char **names = NULL;
717 r = sd_bus_list_names(a, &names, NULL);
719 return synthetic_reply_method_errno(m, r, NULL);
721 r = strv_extend(&names, "org.freedesktop.DBus");
723 return synthetic_reply_method_errno(m, r, NULL);
725 /* Let's sort the names list to make it stable */
728 return synthetic_reply_return_strv(m, names);
730 } else if (sd_bus_message_is_method_call(m, "org.freedesktop.DBus", "ListQueuedOwners")) {
731 struct kdbus_cmd_name_list cmd = {};
732 struct kdbus_name_list *name_list;
733 struct kdbus_cmd_free cmd_free;
734 struct kdbus_cmd_name *name;
735 _cleanup_strv_free_ char **owners = NULL;
736 _cleanup_bus_error_free_ sd_bus_error error = SD_BUS_ERROR_NULL;
740 r = sd_bus_message_read(m, "s", &arg0);
742 return synthetic_reply_method_errno(m, r, NULL);
744 if (!service_name_is_valid(arg0))
745 return synthetic_reply_method_errno(m, -EINVAL, NULL);
747 r = sd_bus_get_owner(a, arg0, 0, NULL);
748 if (r == -ESRCH || r == -ENXIO) {
749 sd_bus_error_setf(&error, SD_BUS_ERROR_NAME_HAS_NO_OWNER, "Could not get owners of name '%s': no such name.", arg0);
750 return synthetic_reply_method_errno(m, r, &error);
753 return synthetic_reply_method_errno(m, r, NULL);
755 cmd.flags = KDBUS_NAME_LIST_QUEUED;
756 r = ioctl(a->input_fd, KDBUS_CMD_NAME_LIST, &cmd);
758 return synthetic_reply_method_errno(m, -errno, NULL);
760 name_list = (struct kdbus_name_list *) ((uint8_t *) a->kdbus_buffer + cmd.offset);
762 KDBUS_ITEM_FOREACH(name, name_list, names) {
763 const char *entry_name = NULL;
764 struct kdbus_item *item;
767 KDBUS_ITEM_FOREACH(item, name, items)
768 if (item->type == KDBUS_ITEM_NAME)
769 entry_name = item->str;
771 if (!streq_ptr(entry_name, arg0))
774 if (asprintf(&n, ":1.%llu", (unsigned long long) name->owner_id) < 0) {
779 r = strv_consume(&owners, n);
787 cmd_free.offset = cmd.offset;
789 r = ioctl(a->input_fd, KDBUS_CMD_FREE, &cmd_free);
791 return synthetic_reply_method_errno(m, r, NULL);
794 return synthetic_reply_method_errno(m, err, NULL);
796 return synthetic_reply_return_strv(m, owners);
798 } else if (sd_bus_message_is_method_call(m, "org.freedesktop.DBus", "NameHasOwner")) {
801 r = sd_bus_message_read(m, "s", &name);
803 return synthetic_reply_method_errno(m, r, NULL);
805 if (!service_name_is_valid(name))
806 return synthetic_reply_method_errno(m, -EINVAL, NULL);
808 if (streq(name, "org.freedesktop.DBus"))
809 return synthetic_reply_method_return(m, "b", true);
811 r = sd_bus_get_owner(a, name, 0, NULL);
812 if (r < 0 && r != -ESRCH && r != -ENXIO)
813 return synthetic_reply_method_errno(m, r, NULL);
815 return synthetic_reply_method_return(m, "b", r >= 0);
817 } else if (sd_bus_message_is_method_call(m, "org.freedesktop.DBus", "ReleaseName")) {
820 r = sd_bus_message_read(m, "s", &name);
822 return synthetic_reply_method_errno(m, r, NULL);
824 if (!service_name_is_valid(name))
825 return synthetic_reply_method_errno(m, -EINVAL, NULL);
827 r = sd_bus_release_name(a, name);
830 return synthetic_reply_method_return(m, "u", BUS_NAME_NON_EXISTENT);
831 if (r == -EADDRINUSE)
832 return synthetic_reply_method_return(m, "u", BUS_NAME_NOT_OWNER);
834 return synthetic_reply_method_errno(m, r, NULL);
837 return synthetic_reply_method_return(m, "u", BUS_NAME_RELEASED);
839 } else if (sd_bus_message_is_method_call(m, "org.freedesktop.DBus", "ReloadConfig")) {
840 _cleanup_bus_error_free_ sd_bus_error error = SD_BUS_ERROR_NULL;
842 r = sd_bus_error_setf(&error, SD_BUS_ERROR_NOT_SUPPORTED, "%s() is not supported", sd_bus_message_get_member(m));
844 return synthetic_reply_method_errno(m, r, &error);
846 } else if (sd_bus_message_is_method_call(m, "org.freedesktop.DBus", "RequestName")) {
848 uint32_t flags, param;
850 r = sd_bus_message_read(m, "su", &name, &flags);
852 return synthetic_reply_method_errno(m, r, NULL);
854 if (!service_name_is_valid(name))
855 return synthetic_reply_method_errno(m, -EINVAL, NULL);
856 if ((flags & ~(BUS_NAME_ALLOW_REPLACEMENT|BUS_NAME_REPLACE_EXISTING|BUS_NAME_DO_NOT_QUEUE)) != 0)
857 return synthetic_reply_method_errno(m, -EINVAL, NULL);
860 if (flags & BUS_NAME_ALLOW_REPLACEMENT)
861 param |= SD_BUS_NAME_ALLOW_REPLACEMENT;
862 if (flags & BUS_NAME_REPLACE_EXISTING)
863 param |= SD_BUS_NAME_REPLACE_EXISTING;
864 if (!(flags & BUS_NAME_DO_NOT_QUEUE))
865 param |= SD_BUS_NAME_QUEUE;
867 r = sd_bus_request_name(a, name, param);
870 return synthetic_reply_method_return(m, "u", BUS_NAME_EXISTS);
872 return synthetic_reply_method_return(m, "u", BUS_NAME_ALREADY_OWNER);
873 return synthetic_reply_method_errno(m, r, NULL);
877 return synthetic_reply_method_return(m, "u", BUS_NAME_IN_QUEUE);
879 return synthetic_reply_method_return(m, "u", BUS_NAME_PRIMARY_OWNER);
881 } else if (sd_bus_message_is_method_call(m, "org.freedesktop.DBus", "StartServiceByName")) {
882 _cleanup_bus_message_unref_ sd_bus_message *msg = NULL;
886 r = sd_bus_message_read(m, "su", &name, &flags);
888 return synthetic_reply_method_errno(m, r, NULL);
890 if (!service_name_is_valid(name))
891 return synthetic_reply_method_errno(m, -EINVAL, NULL);
893 return synthetic_reply_method_errno(m, -EINVAL, NULL);
895 r = sd_bus_get_owner(a, name, 0, NULL);
896 if (r >= 0 || streq(name, "org.freedesktop.DBus"))
897 return synthetic_reply_method_return(m, "u", BUS_START_REPLY_ALREADY_RUNNING);
899 return synthetic_reply_method_errno(m, r, NULL);
901 r = sd_bus_message_new_method_call(
906 "org.freedesktop.DBus.Peer",
909 return synthetic_reply_method_errno(m, r, NULL);
911 r = sd_bus_send(a, msg, NULL);
913 return synthetic_reply_method_errno(m, r, NULL);
915 return synthetic_reply_method_return(m, "u", BUS_START_REPLY_SUCCESS);
917 } else if (sd_bus_message_is_method_call(m, "org.freedesktop.DBus", "UpdateActivationEnvironment")) {
918 _cleanup_bus_message_unref_ sd_bus_message *msg = NULL;
919 _cleanup_strv_free_ char **args = NULL;
921 if (!peer_is_privileged(a, m))
922 return synthetic_reply_method_errno(m, -EPERM, NULL);
924 r = sd_bus_message_enter_container(m, SD_BUS_TYPE_ARRAY, "{ss}");
926 return synthetic_reply_method_errno(m, r, NULL);
928 while ((r = sd_bus_message_enter_container(m, SD_BUS_TYPE_DICT_ENTRY, "ss")) > 0) {
929 _cleanup_free_ char *s = NULL;
933 r = sd_bus_message_read(m, "ss", &key, &value);
935 return synthetic_reply_method_errno(m, r, NULL);
937 s = strjoin(key, "=", value, NULL);
939 return synthetic_reply_method_errno(m, -ENOMEM, NULL);
941 r = strv_extend(&args, s);
943 return synthetic_reply_method_errno(m, r, NULL);
945 r = sd_bus_message_exit_container(m);
947 return synthetic_reply_method_errno(m, r, NULL);
950 r = sd_bus_message_exit_container(m);
952 return synthetic_reply_method_errno(m, r, NULL);
955 return synthetic_reply_method_errno(m, -EINVAL, NULL);
957 r = sd_bus_message_new_method_call(
960 "org.freedesktop.systemd1",
961 "/org/freedesktop/systemd1",
962 "org.freedesktop.systemd1.Manager",
965 return synthetic_reply_method_errno(m, r, NULL);
967 r = sd_bus_message_append_strv(msg, args);
969 return synthetic_reply_method_errno(m, r, NULL);
971 r = sd_bus_call(a, msg, 0, NULL, NULL);
973 return synthetic_reply_method_errno(m, r, NULL);
975 return synthetic_reply_method_return(m, NULL);
978 _cleanup_bus_error_free_ sd_bus_error error = SD_BUS_ERROR_NULL;
980 r = sd_bus_error_setf(&error, SD_BUS_ERROR_UNKNOWN_METHOD, "Unknown method '%s'.", m->member);
982 return synthetic_reply_method_errno(m, r, &error);
986 static int process_hello(sd_bus *a, sd_bus *b, sd_bus_message *m, bool *got_hello) {
987 _cleanup_bus_message_unref_ sd_bus_message *n = NULL;
996 /* As reaction to hello we need to respond with two messages:
997 * the callback reply and the NameAcquired for the unique
998 * name, since hello is otherwise obsolete on kdbus. */
1001 sd_bus_message_is_method_call(m, "org.freedesktop.DBus", "Hello") &&
1002 streq_ptr(m->destination, "org.freedesktop.DBus");
1009 log_error("First packet isn't hello (it's %s.%s), aborting.", m->interface, m->member);
1014 log_error("Got duplicate hello, aborting.");
1023 r = sd_bus_message_new_method_return(m, &n);
1025 log_error("Failed to generate HELLO reply: %s", strerror(-r));
1029 r = sd_bus_message_append(n, "s", a->unique_name);
1031 log_error("Failed to append unique name to HELLO reply: %s", strerror(-r));
1035 r = bus_message_append_sender(n, "org.freedesktop.DBus");
1037 log_error("Failed to append sender to HELLO reply: %s", strerror(-r));
1041 r = bus_seal_synthetic_message(b, n);
1043 log_error("Failed to seal HELLO reply: %s", strerror(-r));
1047 r = sd_bus_send(b, n, NULL);
1049 log_error("Failed to send HELLO reply: %s", strerror(-r));
1053 n = sd_bus_message_unref(n);
1054 r = sd_bus_message_new_signal(
1057 "/org/freedesktop/DBus",
1058 "org.freedesktop.DBus",
1061 log_error("Failed to allocate initial NameAcquired message: %s", strerror(-r));
1065 r = sd_bus_message_append(n, "s", a->unique_name);
1067 log_error("Failed to append unique name to NameAcquired message: %s", strerror(-r));
1071 r = bus_message_append_sender(n, "org.freedesktop.DBus");
1073 log_error("Failed to append sender to NameAcquired message: %s", strerror(-r));
1077 r = bus_seal_synthetic_message(b, n);
1079 log_error("Failed to seal NameAcquired message: %s", strerror(-r));
1083 r = sd_bus_send(b, n, NULL);
1085 log_error("Failed to send NameAcquired message: %s", strerror(-r));
1092 static int patch_sender(sd_bus *a, sd_bus_message *m) {
1093 char **well_known = NULL;
1103 /* We will change the sender of messages from the bus driver
1104 * so that they originate from the bus driver. This is a
1105 * speciality originating from dbus1, where the bus driver did
1106 * not have a unique id, but only the well-known name. */
1108 c = sd_bus_message_get_creds(m);
1112 r = sd_bus_creds_get_well_known_names(c, &well_known);
1116 if (strv_contains(well_known, "org.freedesktop.DBus"))
1117 m->sender = "org.freedesktop.DBus";
1122 int main(int argc, char *argv[]) {
1124 _cleanup_bus_close_unref_ sd_bus *a = NULL, *b = NULL;
1125 sd_id128_t server_id;
1126 int r, in_fd, out_fd;
1127 bool got_hello = false;
1129 struct ucred ucred = {};
1130 _cleanup_free_ char *peersec = NULL;
1133 log_set_target(LOG_TARGET_JOURNAL_OR_KMSG);
1134 log_parse_environment();
1137 r = parse_argv(argc, argv);
1141 r = policy_load(&policy, arg_configuration);
1143 log_error("Failed to load policy: %s", strerror(-r));
1147 /* policy_dump(&policy); */
1149 r = sd_listen_fds(0);
1151 in_fd = STDIN_FILENO;
1152 out_fd = STDOUT_FILENO;
1153 } else if (r == 1) {
1154 in_fd = SD_LISTEN_FDS_START;
1155 out_fd = SD_LISTEN_FDS_START;
1157 log_error("Illegal number of file descriptors passed");
1162 sd_is_socket(in_fd, AF_UNIX, 0, 0) > 0 &&
1163 sd_is_socket(out_fd, AF_UNIX, 0, 0) > 0;
1166 r = getpeercred(in_fd, &ucred);
1168 log_error("Failed to get peer creds: %s", strerror(-r));
1172 (void) getpeersec(in_fd, &peersec);
1175 if (arg_drop_privileges) {
1176 const char *user = "systemd-bus-proxy";
1180 r = get_user_creds(&user, &uid, &gid, NULL, NULL);
1182 log_error("Cannot resolve user name %s: %s", user, strerror(-r));
1186 r = drop_privileges(uid, gid, 1ULL << CAP_IPC_OWNER);
1193 log_error("Failed to allocate bus: %s", strerror(-r));
1197 r = sd_bus_set_name(a, "sd-proxy");
1199 log_error("Failed to set bus name: %s", strerror(-r));
1203 r = sd_bus_set_address(a, arg_address);
1205 log_error("Failed to set address to connect to: %s", strerror(-r));
1209 r = sd_bus_negotiate_fds(a, is_unix);
1211 log_error("Failed to set FD negotiation: %s", strerror(-r));
1215 if (ucred.pid > 0) {
1216 a->fake_creds.pid = ucred.pid;
1217 a->fake_creds.uid = ucred.uid;
1218 a->fake_creds.gid = ucred.gid;
1219 a->fake_creds_valid = true;
1223 a->fake_label = peersec;
1227 a->manual_peer_interface = true;
1229 r = sd_bus_start(a);
1231 log_error("Failed to start bus client: %s", strerror(-r));
1235 r = sd_bus_get_server_id(a, &server_id);
1237 log_error("Failed to get server ID: %s", strerror(-r));
1243 log_error("Failed to allocate bus: %s", strerror(-r));
1247 r = sd_bus_set_fd(b, in_fd, out_fd);
1249 log_error("Failed to set fds: %s", strerror(-r));
1253 r = sd_bus_set_server(b, 1, server_id);
1255 log_error("Failed to set server mode: %s", strerror(-r));
1259 r = sd_bus_negotiate_fds(b, is_unix);
1261 log_error("Failed to set FD negotiation: %s", strerror(-r));
1265 r = sd_bus_set_anonymous(b, true);
1267 log_error("Failed to set anonymous authentication: %s", strerror(-r));
1271 b->manual_peer_interface = true;
1273 r = sd_bus_start(b);
1275 log_error("Failed to start bus client: %s", strerror(-r));
1279 r = rename_service(a, b);
1281 log_debug("Failed to rename process: %s", strerror(-r));
1284 _cleanup_free_ char *match = NULL;
1287 r = sd_bus_get_unique_name(a, &unique);
1289 log_error("Failed to get unique name: %s", strerror(-r));
1293 match = strjoin("type='signal',"
1294 "sender='org.freedesktop.DBus',"
1295 "path='/org/freedesktop/DBus',"
1296 "interface='org.freedesktop.DBus',"
1297 "member='NameOwnerChanged',"
1307 r = sd_bus_add_match(a, NULL, match, NULL, NULL);
1309 log_error("Failed to add match for NameLost: %s", strerror(-r));
1314 match = strjoin("type='signal',"
1315 "sender='org.freedesktop.DBus',"
1316 "path='/org/freedesktop/DBus',"
1317 "interface='org.freedesktop.DBus',"
1318 "member='NameOwnerChanged',"
1328 r = sd_bus_add_match(a, NULL, match, NULL, NULL);
1330 log_error("Failed to add match for NameAcquired: %s", strerror(-r));
1336 _cleanup_bus_message_unref_ sd_bus_message *m = NULL;
1337 int events_a, events_b, fd;
1338 uint64_t timeout_a, timeout_b, t;
1339 struct timespec _ts, *ts;
1340 struct pollfd *pollfd;
1344 r = sd_bus_process(a, &m);
1346 /* treat 'connection reset by peer' as clean exit condition */
1347 if (r == -ECONNRESET)
1350 log_error("Failed to process bus a: %s", strerror(-r));
1356 /* We officially got EOF, let's quit */
1357 if (sd_bus_message_is_signal(m, "org.freedesktop.DBus.Local", "Disconnected")) {
1362 k = synthesize_name_acquired(a, b, m);
1365 log_error("Failed to synthesize message: %s", strerror(-r));
1371 k = sd_bus_send(b, m, NULL);
1373 if (k == -ECONNRESET)
1377 log_error("Failed to send message: %s", strerror(-r));
1388 r = sd_bus_process(b, &m);
1390 /* treat 'connection reset by peer' as clean exit condition */
1391 if (r == -ECONNRESET)
1394 log_error("Failed to process bus b: %s", strerror(-r));
1400 /* We officially got EOF, let's quit */
1401 if (sd_bus_message_is_signal(m, "org.freedesktop.DBus.Local", "Disconnected")) {
1406 k = process_hello(a, b, m, &got_hello);
1409 log_error("Failed to process HELLO: %s", strerror(-r));
1416 k = process_policy(a, b, m);
1419 log_error("Failed to process policy: %s", strerror(-r));
1423 k = process_driver(a, b, m);
1426 log_error("Failed to process driver calls: %s", strerror(-r));
1433 k = sd_bus_send(a, m, NULL);
1435 if (k == -ECONNRESET)
1439 log_error("Failed to send message: %s", strerror(-r));
1451 fd = sd_bus_get_fd(a);
1453 log_error("Failed to get fd: %s", strerror(-r));
1457 events_a = sd_bus_get_events(a);
1459 log_error("Failed to get events mask: %s", strerror(-r));
1463 r = sd_bus_get_timeout(a, &timeout_a);
1465 log_error("Failed to get timeout: %s", strerror(-r));
1469 events_b = sd_bus_get_events(b);
1471 log_error("Failed to get events mask: %s", strerror(-r));
1475 r = sd_bus_get_timeout(b, &timeout_b);
1477 log_error("Failed to get timeout: %s", strerror(-r));
1482 if (t == (uint64_t) -1 || (timeout_b != (uint64_t) -1 && timeout_b < timeout_a))
1485 if (t == (uint64_t) -1)
1490 nw = now(CLOCK_MONOTONIC);
1496 ts = timespec_store(&_ts, t);
1499 pollfd = (struct pollfd[3]) {
1500 {.fd = fd, .events = events_a, },
1501 {.fd = in_fd, .events = events_b & POLLIN, },
1502 {.fd = out_fd, .events = events_b & POLLOUT, }
1505 r = ppoll(pollfd, 3, ts, NULL);
1507 log_error("ppoll() failed: %m");
1515 "STATUS=Shutting down.");
1517 policy_free(&policy);
1518 strv_free(arg_configuration);
1521 return r < 0 ? EXIT_FAILURE : EXIT_SUCCESS;
~ianmdlvl / elogind.git / blob