1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
4 This file is part of systemd.
6 Copyright 2010 Lennart Poettering
7 Copyright 2013 Daniel Mack
8 Copyright 2014 Kay Sievers
10 systemd is free software; you can redistribute it and/or modify it
11 under the terms of the GNU Lesser General Public License as published by
12 the Free Software Foundation; either version 2.1 of the License, or
13 (at your option) any later version.
15 systemd is distributed in the hope that it will be useful, but
16 WITHOUT ANY WARRANTY; without even the implied warranty of
17 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
18 Lesser General Public License for more details.
20 You should have received a copy of the GNU Lesser General Public License
21 along with systemd; If not, see <http://www.gnu.org/licenses/>.
24 #include <sys/socket.h>
26 #include <sys/types.h>
37 #include "socket-util.h"
38 #include "sd-daemon.h"
40 #include "bus-internal.h"
41 #include "bus-message.h"
46 #include "capability.h"
47 #include "bus-policy.h"
49 static char *arg_address = NULL;
50 static char *arg_command_line_buffer = NULL;
51 static bool arg_drop_privileges = false;
52 static char **arg_configuration = NULL;
54 static Hashmap *names_hash = NULL;
56 static int help(void) {
58 printf("%s [OPTIONS...]\n\n"
59 "Connect STDIO or a socket to a given bus address.\n\n"
60 " -h --help Show this help\n"
61 " --version Show package version\n"
62 " --drop-privileges Drop privileges\n"
63 " --configuration=PATH Configuration file or directory\n"
64 " --machine=MACHINE Connect to specified machine\n"
65 " --address=ADDRESS Connect to the bus specified by ADDRESS\n"
66 " (default: " DEFAULT_SYSTEM_BUS_PATH ")\n",
67 program_invocation_short_name);
72 static int parse_argv(int argc, char *argv[]) {
82 static const struct option options[] = {
83 { "help", no_argument, NULL, 'h' },
84 { "version", no_argument, NULL, ARG_VERSION },
85 { "address", required_argument, NULL, ARG_ADDRESS },
86 { "drop-privileges", no_argument, NULL, ARG_DROP_PRIVILEGES },
87 { "configuration", required_argument, NULL, ARG_CONFIGURATION },
88 { "machine", required_argument, NULL, ARG_MACHINE },
97 while ((c = getopt_long(argc, argv, "h", options, NULL)) >= 0)
106 puts(PACKAGE_STRING);
107 puts(SYSTEMD_FEATURES);
122 case ARG_DROP_PRIVILEGES:
123 arg_drop_privileges = true;
126 case ARG_CONFIGURATION:
127 r = strv_extend(&arg_configuration, optarg);
133 _cleanup_free_ char *e = NULL;
136 e = bus_address_escape(optarg);
141 a = strjoin("x-container-kernel:machine=", e, ";x-container-unix:machine=", e, NULL);
143 a = strjoin("x-container-unix:machine=", e, NULL);
158 assert_not_reached("Unhandled option");
161 /* If the first command line argument is only "x" characters
162 * we'll write who we are talking to into it, so that "ps" is
164 arg_command_line_buffer = argv[optind];
165 if (argc > optind + 1 || (arg_command_line_buffer && !in_charset(arg_command_line_buffer, "x"))) {
166 log_error("Too many arguments");
171 arg_address = strdup(DEFAULT_SYSTEM_BUS_PATH);
179 static int rename_service(sd_bus *a, sd_bus *b) {
180 _cleanup_bus_creds_unref_ sd_bus_creds *creds = NULL;
181 _cleanup_free_ char *p = NULL, *name = NULL;
191 r = sd_bus_get_owner_creds(b, SD_BUS_CREDS_UID|SD_BUS_CREDS_PID|SD_BUS_CREDS_CMDLINE|SD_BUS_CREDS_COMM, &creds);
195 r = sd_bus_creds_get_uid(creds, &uid);
199 r = sd_bus_creds_get_pid(creds, &pid);
203 r = sd_bus_creds_get_cmdline(creds, &cmdline);
207 r = sd_bus_creds_get_comm(creds, &comm);
211 name = uid_to_name(uid);
215 p = strv_join(cmdline, " ");
219 /* The status string gets the full command line ... */
221 "STATUS=Processing requests from client PID "PID_FMT" (%s); UID "UID_FMT" (%s)",
225 /* ... and the argv line only the short comm */
226 if (arg_command_line_buffer) {
229 m = strlen(arg_command_line_buffer);
230 w = snprintf(arg_command_line_buffer, m,
231 "[PID "PID_FMT"/%s; UID "UID_FMT"/%s]",
236 memzero(arg_command_line_buffer + w, m - w);
239 log_debug("Running on behalf of PID "PID_FMT" (%s), UID "UID_FMT" (%s), %s",
247 static int synthesize_name_acquired(sd_bus *a, sd_bus *b, sd_bus_message *m) {
248 _cleanup_bus_message_unref_ sd_bus_message *n = NULL;
249 const char *name, *old_owner, *new_owner;
256 /* If we get NameOwnerChanged for our own name, we need to
257 * synthesize NameLost/NameAcquired, since socket clients need
258 * that, even though it is obsoleted on kdbus */
263 if (!sd_bus_message_is_signal(m, "org.freedesktop.DBus", "NameOwnerChanged") ||
264 !streq_ptr(m->path, "/org/freedesktop/DBus") ||
265 !streq_ptr(m->sender, "org.freedesktop.DBus"))
268 r = sd_bus_message_read(m, "sss", &name, &old_owner, &new_owner);
272 r = sd_bus_message_rewind(m, true);
276 if (streq(old_owner, a->unique_name)) {
278 r = sd_bus_message_new_signal(
281 "/org/freedesktop/DBus",
282 "org.freedesktop.DBus",
285 } else if (streq(new_owner, a->unique_name)) {
287 r = sd_bus_message_new_signal(
290 "/org/freedesktop/DBus",
291 "org.freedesktop.DBus",
299 r = sd_bus_message_append(n, "s", name);
303 r = bus_message_append_sender(n, "org.freedesktop.DBus");
307 r = bus_seal_synthetic_message(b, n);
311 return sd_bus_send(b, n, NULL);
314 static int process_policy(sd_bus *a, sd_bus *b, sd_bus_message *m) {
315 _cleanup_bus_message_unref_ sd_bus_message *n = NULL;
325 if (!sd_bus_message_is_method_call(m, "org.freedesktop.DBus.Properties", "GetAll"))
328 if (!streq_ptr(m->path, "/org/gnome/DisplayManager/Slave"))
331 r = sd_bus_message_new_method_errorf(m, &n, SD_BUS_ERROR_ACCESS_DENIED, "gdm, you are stupid");
335 r = bus_message_append_sender(n, "org.freedesktop.DBus");
337 log_error("Failed to append sender to gdm reply: %s", strerror(-r));
341 r = bus_seal_synthetic_message(b, n);
343 log_error("Failed to seal gdm reply: %s", strerror(-r));
347 r = sd_bus_send(b, n, NULL);
349 log_error("Failed to send gdm reply: %s", strerror(-r));
356 static int synthetic_driver_send(sd_bus *b, sd_bus_message *m) {
362 r = bus_message_append_sender(m, "org.freedesktop.DBus");
366 r = bus_seal_synthetic_message(b, m);
370 return sd_bus_send(b, m, NULL);
373 static int synthetic_reply_method_error(sd_bus_message *call, const sd_bus_error *e) {
374 _cleanup_bus_message_unref_ sd_bus_message *m = NULL;
379 if (call->header->flags & BUS_MESSAGE_NO_REPLY_EXPECTED)
382 r = sd_bus_message_new_method_error(call, &m, e);
386 return synthetic_driver_send(call->bus, m);
389 static int synthetic_reply_method_errno(sd_bus_message *call, int error, const sd_bus_error *p) {
391 _cleanup_bus_error_free_ sd_bus_error berror = SD_BUS_ERROR_NULL;
395 if (call->header->flags & BUS_MESSAGE_NO_REPLY_EXPECTED)
398 if (sd_bus_error_is_set(p))
399 return synthetic_reply_method_error(call, p);
401 sd_bus_error_set_errno(&berror, error);
403 return synthetic_reply_method_error(call, &berror);
406 static int synthetic_reply_method_return(sd_bus_message *call, const char *types, ...) {
407 _cleanup_bus_message_unref_ sd_bus_message *m = NULL;
412 if (call->header->flags & BUS_MESSAGE_NO_REPLY_EXPECTED)
415 r = sd_bus_message_new_method_return(call, &m);
419 if (!isempty(types)) {
423 r = bus_message_append_ap(m, types, ap);
429 return synthetic_driver_send(call->bus, m);
432 static int synthetic_reply_return_strv(sd_bus_message *call, char **l) {
433 _cleanup_bus_message_unref_ sd_bus_message *m = NULL;
438 r = sd_bus_message_new_method_return(call, &m);
440 return synthetic_reply_method_errno(call, r, NULL);
442 r = sd_bus_message_append_strv(m, l);
444 return synthetic_reply_method_errno(call, r, NULL);
446 return synthetic_driver_send(call->bus, m);
449 static int get_creds_by_name(sd_bus *bus, const char *name, uint64_t mask, sd_bus_creds **_creds, sd_bus_error *error) {
450 _cleanup_bus_creds_unref_ sd_bus_creds *c = NULL;
457 assert_return(service_name_is_valid(name), -EINVAL);
459 r = sd_bus_get_name_creds(bus, name, mask, &c);
460 if (r == -ESRCH || r == -ENXIO)
461 return sd_bus_error_setf(error, SD_BUS_ERROR_NAME_HAS_NO_OWNER, "Name %s is currently not owned by anyone.", name);
465 if ((c->mask & mask) != mask)
474 static int get_creds_by_message(sd_bus *bus, sd_bus_message *m, uint64_t mask, sd_bus_creds **_creds, sd_bus_error *error) {
482 r = sd_bus_message_read(m, "s", &name);
486 return get_creds_by_name(bus, name, mask, _creds, error);
489 static int peer_is_privileged(sd_bus *bus, sd_bus_message *m) {
490 _cleanup_bus_creds_unref_ sd_bus_creds *creds = NULL;
494 r = get_creds_by_message(bus, m, SD_BUS_CREDS_UID, &creds, NULL);
498 r = sd_bus_creds_get_uid(creds, &uid);
502 r = sd_bus_creds_has_effective_cap(creds, CAP_SYS_ADMIN);
512 static int process_driver(sd_bus *a, sd_bus *b, sd_bus_message *m) {
522 if (!streq_ptr(sd_bus_message_get_destination(m), "org.freedesktop.DBus"))
525 if (sd_bus_message_is_method_call(m, "org.freedesktop.DBus.Introspectable", "Introspect")) {
526 if (0 && !isempty(sd_bus_message_get_signature(m, true))) {
527 _cleanup_bus_error_free_ sd_bus_error error = SD_BUS_ERROR_NULL;
529 r = sd_bus_error_setf(&error, SD_BUS_ERROR_INVALID_ARGS, "Expected no parameters");
531 return synthetic_reply_method_errno(m, r, &error);
534 return synthetic_reply_method_return(m, "s",
535 "<!DOCTYPE node PUBLIC \"-//freedesktop//DTD D-BUS Object Introspection 1.0//EN\" "
536 "\"http://www.freedesktop.org/standards/dbus/1.0/introspect.dtd\">\n"
538 " <interface name=\"org.freedesktop.DBus.Introspectable\">\n"
539 " <method name=\"Introspect\">\n"
540 " <arg name=\"data\" type=\"s\" direction=\"out\"/>\n"
543 " <interface name=\"org.freedesktop.DBus\">\n"
544 " <method name=\"AddMatch\">\n"
545 " <arg type=\"s\" direction=\"in\"/>\n"
547 " <method name=\"RemoveMatch\">\n"
548 " <arg type=\"s\" direction=\"in\"/>\n"
550 " <method name=\"GetConnectionSELinuxSecurityContext\">\n"
551 " <arg type=\"s\" direction=\"in\"/>\n"
552 " <arg type=\"ay\" direction=\"out\"/>\n"
554 " <method name=\"GetConnectionUnixProcessID\">\n"
555 " <arg type=\"s\" direction=\"in\"/>\n"
556 " <arg type=\"u\" direction=\"out\"/>\n"
558 " <method name=\"GetConnectionUnixUser\">\n"
559 " <arg type=\"s\" direction=\"in\"/>\n"
560 " <arg type=\"u\" direction=\"out\"/>\n"
562 " <method name=\"GetId\">\n"
563 " <arg type=\"s\" direction=\"out\"/>\n"
565 " <method name=\"GetNameOwner\">\n"
566 " <arg type=\"s\" direction=\"in\"/>\n"
567 " <arg type=\"s\" direction=\"out\"/>\n"
569 " <method name=\"Hello\">\n"
570 " <arg type=\"s\" direction=\"out\"/>\n"
572 " <method name=\"ListActivatableNames\">\n"
573 " <arg type=\"as\" direction=\"out\"/>\n"
575 " <method name=\"ListNames\">\n"
576 " <arg type=\"as\" direction=\"out\"/>\n"
578 " <method name=\"ListQueuedOwners\">\n"
579 " <arg type=\"s\" direction=\"in\"/>\n"
580 " <arg type=\"as\" direction=\"out\"/>\n"
582 " <method name=\"NameHasOwner\">\n"
583 " <arg type=\"s\" direction=\"in\"/>\n"
584 " <arg type=\"b\" direction=\"out\"/>\n"
586 " <method name=\"ReleaseName\">\n"
587 " <arg type=\"s\" direction=\"in\"/>\n"
588 " <arg type=\"u\" direction=\"out\"/>\n"
590 " <method name=\"ReloadConfig\">\n"
592 " <method name=\"RequestName\">\n"
593 " <arg type=\"s\" direction=\"in\"/>\n"
594 " <arg type=\"u\" direction=\"in\"/>\n"
595 " <arg type=\"u\" direction=\"out\"/>\n"
597 " <method name=\"StartServiceByName\">\n"
598 " <arg type=\"s\" direction=\"in\"/>\n"
599 " <arg type=\"u\" direction=\"in\"/>\n"
600 " <arg type=\"u\" direction=\"out\"/>\n"
602 " <method name=\"UpdateActivationEnvironment\">\n"
603 " <arg type=\"a{ss}\" direction=\"in\"/>\n"
605 " <signal name=\"NameAcquired\">\n"
606 " <arg type=\"s\"/>\n"
608 " <signal name=\"NameLost\">\n"
609 " <arg type=\"s\"/>\n"
611 " <signal name=\"NameOwnerChanged\">\n"
612 " <arg type=\"s\"/>\n"
613 " <arg type=\"s\"/>\n"
614 " <arg type=\"s\"/>\n"
619 } else if (sd_bus_message_is_method_call(m, "org.freedesktop.DBus", "AddMatch")) {
622 r = sd_bus_message_read(m, "s", &match);
624 return synthetic_reply_method_errno(m, r, NULL);
626 r = sd_bus_add_match(a, NULL, match, NULL, NULL);
628 return synthetic_reply_method_errno(m, r, NULL);
630 return synthetic_reply_method_return(m, NULL);
632 } else if (sd_bus_message_is_method_call(m, "org.freedesktop.DBus", "RemoveMatch")) {
635 r = sd_bus_message_read(m, "s", &match);
637 return synthetic_reply_method_errno(m, r, NULL);
639 r = bus_remove_match_by_string(a, match, NULL, NULL);
641 return synthetic_reply_method_error(m, &SD_BUS_ERROR_MAKE_CONST(SD_BUS_ERROR_MATCH_RULE_NOT_FOUND, "Match rule not found"));
643 return synthetic_reply_method_errno(m, r, NULL);
645 return synthetic_reply_method_return(m, NULL);
647 } else if (sd_bus_message_is_method_call(m, "org.freedesktop.DBus", "GetConnectionSELinuxSecurityContext")) {
648 _cleanup_bus_creds_unref_ sd_bus_creds *creds = NULL;
649 _cleanup_bus_error_free_ sd_bus_error error = SD_BUS_ERROR_NULL;
651 r = get_creds_by_message(a, m, SD_BUS_CREDS_SELINUX_CONTEXT, &creds, &error);
653 return synthetic_reply_method_errno(m, r, &error);
655 return synthetic_reply_method_return(m, "y", creds->label, strlen(creds->label));
657 } else if (sd_bus_message_is_method_call(m, "org.freedesktop.DBus", "GetConnectionUnixProcessID")) {
658 _cleanup_bus_creds_unref_ sd_bus_creds *creds = NULL;
659 _cleanup_bus_error_free_ sd_bus_error error = SD_BUS_ERROR_NULL;
661 r = get_creds_by_message(a, m, SD_BUS_CREDS_PID, &creds, &error);
663 return synthetic_reply_method_errno(m, r, &error);
665 return synthetic_reply_method_return(m, "u", (uint32_t) creds->pid);
667 } else if (sd_bus_message_is_method_call(m, "org.freedesktop.DBus", "GetConnectionUnixUser")) {
668 _cleanup_bus_creds_unref_ sd_bus_creds *creds = NULL;
669 _cleanup_bus_error_free_ sd_bus_error error = SD_BUS_ERROR_NULL;
671 r = get_creds_by_message(a, m, SD_BUS_CREDS_UID, &creds, &error);
673 return synthetic_reply_method_errno(m, r, &error);
675 return synthetic_reply_method_return(m, "u", (uint32_t) creds->uid);
677 } else if (sd_bus_message_is_method_call(m, "org.freedesktop.DBus", "GetId")) {
678 sd_id128_t server_id;
679 char buf[SD_ID128_STRING_MAX];
681 r = sd_bus_get_owner_id(a, &server_id);
683 return synthetic_reply_method_errno(m, r, NULL);
685 return synthetic_reply_method_return(m, "s", sd_id128_to_string(server_id, buf));
687 } else if (sd_bus_message_is_method_call(m, "org.freedesktop.DBus", "GetNameOwner")) {
689 _cleanup_bus_creds_unref_ sd_bus_creds *creds = NULL;
690 _cleanup_bus_error_free_ sd_bus_error error = SD_BUS_ERROR_NULL;
692 r = sd_bus_message_read(m, "s", &name);
694 return synthetic_reply_method_errno(m, r, NULL);
696 if (streq(name, "org.freedesktop.DBus"))
697 return synthetic_reply_method_return(m, "s", "org.freedesktop.DBus");
699 r = get_creds_by_name(a, name, SD_BUS_CREDS_UNIQUE_NAME, &creds, &error);
701 return synthetic_reply_method_errno(m, r, &error);
703 return synthetic_reply_method_return(m, "s", creds->unique_name);
705 /* "Hello" is handled in process_hello() */
707 } else if (sd_bus_message_is_method_call(m, "org.freedesktop.DBus", "ListActivatableNames")) {
708 _cleanup_strv_free_ char **names = NULL;
710 r = sd_bus_list_names(a, NULL, &names);
712 return synthetic_reply_method_errno(m, r, NULL);
714 /* Let's sort the names list to make it stable */
717 return synthetic_reply_return_strv(m, names);
719 } else if (sd_bus_message_is_method_call(m, "org.freedesktop.DBus", "ListNames")) {
720 _cleanup_strv_free_ char **names = NULL;
722 r = sd_bus_list_names(a, &names, NULL);
724 return synthetic_reply_method_errno(m, r, NULL);
726 r = strv_extend(&names, "org.freedesktop.DBus");
728 return synthetic_reply_method_errno(m, r, NULL);
730 /* Let's sort the names list to make it stable */
733 return synthetic_reply_return_strv(m, names);
735 } else if (sd_bus_message_is_method_call(m, "org.freedesktop.DBus", "ListQueuedOwners")) {
736 struct kdbus_cmd_name_list cmd = {};
737 struct kdbus_name_list *name_list;
738 struct kdbus_cmd_free cmd_free;
739 struct kdbus_name_info *name;
740 _cleanup_strv_free_ char **owners = NULL;
741 _cleanup_bus_error_free_ sd_bus_error error = SD_BUS_ERROR_NULL;
745 r = sd_bus_message_read(m, "s", &arg0);
747 return synthetic_reply_method_errno(m, r, NULL);
749 if (!service_name_is_valid(arg0))
750 return synthetic_reply_method_errno(m, -EINVAL, NULL);
752 r = sd_bus_get_name_creds(a, arg0, 0, NULL);
753 if (r == -ESRCH || r == -ENXIO) {
754 sd_bus_error_setf(&error, SD_BUS_ERROR_NAME_HAS_NO_OWNER, "Could not get owners of name '%s': no such name.", arg0);
755 return synthetic_reply_method_errno(m, r, &error);
758 return synthetic_reply_method_errno(m, r, NULL);
760 cmd.flags = KDBUS_NAME_LIST_QUEUED;
761 r = ioctl(a->input_fd, KDBUS_CMD_NAME_LIST, &cmd);
763 return synthetic_reply_method_errno(m, -errno, NULL);
765 name_list = (struct kdbus_name_list *) ((uint8_t *) a->kdbus_buffer + cmd.offset);
767 KDBUS_ITEM_FOREACH(name, name_list, names) {
768 const char *entry_name = NULL;
769 struct kdbus_item *item;
772 KDBUS_ITEM_FOREACH(item, name, items)
773 if (item->type == KDBUS_ITEM_OWNED_NAME)
774 entry_name = item->name.name;
776 if (!streq_ptr(entry_name, arg0))
779 if (asprintf(&n, ":1.%llu", (unsigned long long) name->owner_id) < 0) {
784 r = strv_consume(&owners, n);
792 cmd_free.offset = cmd.offset;
794 r = ioctl(a->input_fd, KDBUS_CMD_FREE, &cmd_free);
796 return synthetic_reply_method_errno(m, r, NULL);
799 return synthetic_reply_method_errno(m, err, NULL);
801 return synthetic_reply_return_strv(m, owners);
803 } else if (sd_bus_message_is_method_call(m, "org.freedesktop.DBus", "NameHasOwner")) {
806 r = sd_bus_message_read(m, "s", &name);
808 return synthetic_reply_method_errno(m, r, NULL);
810 if (!service_name_is_valid(name))
811 return synthetic_reply_method_errno(m, -EINVAL, NULL);
813 if (streq(name, "org.freedesktop.DBus"))
814 return synthetic_reply_method_return(m, "b", true);
816 r = sd_bus_get_name_creds(a, name, 0, NULL);
817 if (r < 0 && r != -ESRCH && r != -ENXIO)
818 return synthetic_reply_method_errno(m, r, NULL);
820 return synthetic_reply_method_return(m, "b", r >= 0);
822 } else if (sd_bus_message_is_method_call(m, "org.freedesktop.DBus", "ReleaseName")) {
825 r = sd_bus_message_read(m, "s", &name);
827 return synthetic_reply_method_errno(m, r, NULL);
829 if (!service_name_is_valid(name))
830 return synthetic_reply_method_errno(m, -EINVAL, NULL);
832 r = sd_bus_release_name(a, name);
835 return synthetic_reply_method_return(m, "u", BUS_NAME_NON_EXISTENT);
836 if (r == -EADDRINUSE)
837 return synthetic_reply_method_return(m, "u", BUS_NAME_NOT_OWNER);
839 return synthetic_reply_method_errno(m, r, NULL);
842 hashmap_remove(names_hash, name);
844 return synthetic_reply_method_return(m, "u", BUS_NAME_RELEASED);
846 } else if (sd_bus_message_is_method_call(m, "org.freedesktop.DBus", "ReloadConfig")) {
847 _cleanup_bus_error_free_ sd_bus_error error = SD_BUS_ERROR_NULL;
849 r = sd_bus_error_setf(&error, SD_BUS_ERROR_NOT_SUPPORTED, "%s() is not supported", sd_bus_message_get_member(m));
851 return synthetic_reply_method_errno(m, r, &error);
853 } else if (sd_bus_message_is_method_call(m, "org.freedesktop.DBus", "RequestName")) {
855 uint32_t flags, param;
858 r = sd_bus_message_read(m, "su", &name, &flags);
860 return synthetic_reply_method_errno(m, r, NULL);
862 if (!service_name_is_valid(name))
863 return synthetic_reply_method_errno(m, -EINVAL, NULL);
864 if ((flags & ~(BUS_NAME_ALLOW_REPLACEMENT|BUS_NAME_REPLACE_EXISTING|BUS_NAME_DO_NOT_QUEUE)) != 0)
865 return synthetic_reply_method_errno(m, -EINVAL, NULL);
868 if (flags & BUS_NAME_ALLOW_REPLACEMENT)
869 param |= SD_BUS_NAME_ALLOW_REPLACEMENT;
870 if (flags & BUS_NAME_REPLACE_EXISTING)
871 param |= SD_BUS_NAME_REPLACE_EXISTING;
872 if (!(flags & BUS_NAME_DO_NOT_QUEUE))
873 param |= SD_BUS_NAME_QUEUE;
875 r = sd_bus_request_name(a, name, param);
878 return synthetic_reply_method_return(m, "u", BUS_NAME_EXISTS);
880 return synthetic_reply_method_return(m, "u", BUS_NAME_ALREADY_OWNER);
881 return synthetic_reply_method_errno(m, r, NULL);
886 r = hashmap_put(names_hash, name, NULL);
888 return synthetic_reply_method_errno(m, r, NULL);
891 return synthetic_reply_method_return(m, "u", BUS_NAME_IN_QUEUE);
893 return synthetic_reply_method_return(m, "u", BUS_NAME_PRIMARY_OWNER);
895 } else if (sd_bus_message_is_method_call(m, "org.freedesktop.DBus", "StartServiceByName")) {
896 _cleanup_bus_message_unref_ sd_bus_message *msg = NULL;
900 r = sd_bus_message_read(m, "su", &name, &flags);
902 return synthetic_reply_method_errno(m, r, NULL);
904 if (!service_name_is_valid(name))
905 return synthetic_reply_method_errno(m, -EINVAL, NULL);
907 return synthetic_reply_method_errno(m, -EINVAL, NULL);
909 r = sd_bus_get_name_creds(a, name, 0, NULL);
910 if (r >= 0 || streq(name, "org.freedesktop.DBus"))
911 return synthetic_reply_method_return(m, "u", BUS_START_REPLY_ALREADY_RUNNING);
913 return synthetic_reply_method_errno(m, r, NULL);
915 r = sd_bus_message_new_method_call(
920 "org.freedesktop.DBus.Peer",
923 return synthetic_reply_method_errno(m, r, NULL);
925 r = sd_bus_send(a, msg, NULL);
927 return synthetic_reply_method_errno(m, r, NULL);
929 return synthetic_reply_method_return(m, "u", BUS_START_REPLY_SUCCESS);
931 } else if (sd_bus_message_is_method_call(m, "org.freedesktop.DBus", "UpdateActivationEnvironment")) {
932 _cleanup_bus_message_unref_ sd_bus_message *msg = NULL;
933 _cleanup_strv_free_ char **args = NULL;
935 if (!peer_is_privileged(a, m))
936 return synthetic_reply_method_errno(m, -EPERM, NULL);
938 r = sd_bus_message_enter_container(m, SD_BUS_TYPE_ARRAY, "{ss}");
940 return synthetic_reply_method_errno(m, r, NULL);
942 while ((r = sd_bus_message_enter_container(m, SD_BUS_TYPE_DICT_ENTRY, "ss")) > 0) {
943 _cleanup_free_ char *s = NULL;
947 r = sd_bus_message_read(m, "ss", &key, &value);
949 return synthetic_reply_method_errno(m, r, NULL);
951 s = strjoin(key, "=", value, NULL);
953 return synthetic_reply_method_errno(m, -ENOMEM, NULL);
955 r = strv_extend(&args, s);
957 return synthetic_reply_method_errno(m, r, NULL);
959 r = sd_bus_message_exit_container(m);
961 return synthetic_reply_method_errno(m, r, NULL);
964 r = sd_bus_message_exit_container(m);
966 return synthetic_reply_method_errno(m, r, NULL);
969 return synthetic_reply_method_errno(m, -EINVAL, NULL);
971 r = sd_bus_message_new_method_call(
974 "org.freedesktop.systemd1",
975 "/org/freedesktop/systemd1",
976 "org.freedesktop.systemd1.Manager",
979 return synthetic_reply_method_errno(m, r, NULL);
981 r = sd_bus_message_append_strv(msg, args);
983 return synthetic_reply_method_errno(m, r, NULL);
985 r = sd_bus_call(a, msg, 0, NULL, NULL);
987 return synthetic_reply_method_errno(m, r, NULL);
989 return synthetic_reply_method_return(m, NULL);
992 _cleanup_bus_error_free_ sd_bus_error error = SD_BUS_ERROR_NULL;
994 r = sd_bus_error_setf(&error, SD_BUS_ERROR_UNKNOWN_METHOD, "Unknown method '%s'.", m->member);
996 return synthetic_reply_method_errno(m, r, &error);
1000 static int process_hello(sd_bus *a, sd_bus *b, sd_bus_message *m, Policy *policy, const struct ucred *ucred, bool *got_hello) {
1001 _cleanup_bus_message_unref_ sd_bus_message *n = NULL;
1010 /* As reaction to hello we need to respond with two messages:
1011 * the callback reply and the NameAcquired for the unique
1012 * name, since hello is otherwise obsolete on kdbus. */
1015 sd_bus_message_is_method_call(m, "org.freedesktop.DBus", "Hello") &&
1016 streq_ptr(m->destination, "org.freedesktop.DBus");
1023 log_error("First packet isn't hello (it's %s.%s), aborting.", m->interface, m->member);
1028 log_error("Got duplicate hello, aborting.");
1032 if (!policy_check_hello(policy, ucred)) {
1033 log_error("Policy denied HELLO");
1042 r = sd_bus_message_new_method_return(m, &n);
1044 log_error("Failed to generate HELLO reply: %s", strerror(-r));
1048 r = sd_bus_message_append(n, "s", a->unique_name);
1050 log_error("Failed to append unique name to HELLO reply: %s", strerror(-r));
1054 r = bus_message_append_sender(n, "org.freedesktop.DBus");
1056 log_error("Failed to append sender to HELLO reply: %s", strerror(-r));
1060 r = bus_seal_synthetic_message(b, n);
1062 log_error("Failed to seal HELLO reply: %s", strerror(-r));
1066 r = sd_bus_send(b, n, NULL);
1068 log_error("Failed to send HELLO reply: %s", strerror(-r));
1072 n = sd_bus_message_unref(n);
1073 r = sd_bus_message_new_signal(
1076 "/org/freedesktop/DBus",
1077 "org.freedesktop.DBus",
1080 log_error("Failed to allocate initial NameAcquired message: %s", strerror(-r));
1084 r = sd_bus_message_append(n, "s", a->unique_name);
1086 log_error("Failed to append unique name to NameAcquired message: %s", strerror(-r));
1090 r = bus_message_append_sender(n, "org.freedesktop.DBus");
1092 log_error("Failed to append sender to NameAcquired message: %s", strerror(-r));
1096 r = bus_seal_synthetic_message(b, n);
1098 log_error("Failed to seal NameAcquired message: %s", strerror(-r));
1102 r = sd_bus_send(b, n, NULL);
1104 log_error("Failed to send NameAcquired message: %s", strerror(-r));
1111 static int patch_sender(sd_bus *a, sd_bus_message *m) {
1112 char **well_known = NULL;
1122 /* We will change the sender of messages from the bus driver
1123 * so that they originate from the bus driver. This is a
1124 * speciality originating from dbus1, where the bus driver did
1125 * not have a unique id, but only the well-known name. */
1127 c = sd_bus_message_get_creds(m);
1131 r = sd_bus_creds_get_well_known_names(c, &well_known);
1135 if (strv_contains(well_known, "org.freedesktop.DBus"))
1136 m->sender = "org.freedesktop.DBus";
1141 int main(int argc, char *argv[]) {
1143 _cleanup_bus_close_unref_ sd_bus *a = NULL, *b = NULL;
1144 sd_id128_t server_id;
1145 int r, in_fd, out_fd;
1146 bool got_hello = false;
1148 struct ucred ucred = {};
1149 _cleanup_free_ char *peersec = NULL;
1152 log_set_target(LOG_TARGET_JOURNAL_OR_KMSG);
1153 log_parse_environment();
1156 r = parse_argv(argc, argv);
1160 r = policy_load(&policy, arg_configuration);
1162 log_error("Failed to load policy: %s", strerror(-r));
1166 /* policy_dump(&policy); */
1168 r = sd_listen_fds(0);
1170 in_fd = STDIN_FILENO;
1171 out_fd = STDOUT_FILENO;
1172 } else if (r == 1) {
1173 in_fd = SD_LISTEN_FDS_START;
1174 out_fd = SD_LISTEN_FDS_START;
1176 log_error("Illegal number of file descriptors passed");
1181 sd_is_socket(in_fd, AF_UNIX, 0, 0) > 0 &&
1182 sd_is_socket(out_fd, AF_UNIX, 0, 0) > 0;
1185 (void) getpeercred(in_fd, &ucred);
1186 (void) getpeersec(in_fd, &peersec);
1189 if (arg_drop_privileges) {
1190 const char *user = "systemd-bus-proxy";
1194 r = get_user_creds(&user, &uid, &gid, NULL, NULL);
1196 log_error("Cannot resolve user name %s: %s", user, strerror(-r));
1200 r = drop_privileges(uid, gid, 1ULL << CAP_IPC_OWNER);
1205 names_hash = hashmap_new(&string_hash_ops);
1213 log_error("Failed to allocate bus: %s", strerror(-r));
1217 r = sd_bus_set_description(a, "sd-proxy");
1219 log_error("Failed to set bus name: %s", strerror(-r));
1223 r = sd_bus_set_address(a, arg_address);
1225 log_error("Failed to set address to connect to: %s", strerror(-r));
1229 r = sd_bus_negotiate_fds(a, is_unix);
1231 log_error("Failed to set FD negotiation: %s", strerror(-r));
1235 if (ucred.pid > 0) {
1236 a->fake_creds.pid = ucred.pid;
1237 a->fake_creds.uid = ucred.uid;
1238 a->fake_creds.gid = ucred.gid;
1239 a->fake_creds_valid = true;
1243 a->fake_label = peersec;
1247 a->manual_peer_interface = true;
1249 r = sd_bus_start(a);
1251 log_error("Failed to start bus client: %s", strerror(-r));
1255 r = sd_bus_get_owner_id(a, &server_id);
1257 log_error("Failed to get server ID: %s", strerror(-r));
1263 log_error("Failed to allocate bus: %s", strerror(-r));
1267 r = sd_bus_set_fd(b, in_fd, out_fd);
1269 log_error("Failed to set fds: %s", strerror(-r));
1273 r = sd_bus_set_server(b, 1, server_id);
1275 log_error("Failed to set server mode: %s", strerror(-r));
1279 r = sd_bus_negotiate_fds(b, is_unix);
1281 log_error("Failed to set FD negotiation: %s", strerror(-r));
1285 r = sd_bus_set_anonymous(b, true);
1287 log_error("Failed to set anonymous authentication: %s", strerror(-r));
1291 b->manual_peer_interface = true;
1293 r = sd_bus_start(b);
1295 log_error("Failed to start bus client: %s", strerror(-r));
1299 r = rename_service(a, b);
1301 log_debug("Failed to rename process: %s", strerror(-r));
1304 _cleanup_free_ char *match = NULL;
1307 r = sd_bus_get_unique_name(a, &unique);
1309 log_error("Failed to get unique name: %s", strerror(-r));
1313 match = strjoin("type='signal',"
1314 "sender='org.freedesktop.DBus',"
1315 "path='/org/freedesktop/DBus',"
1316 "interface='org.freedesktop.DBus',"
1317 "member='NameOwnerChanged',"
1327 r = sd_bus_add_match(a, NULL, match, NULL, NULL);
1329 log_error("Failed to add match for NameLost: %s", strerror(-r));
1334 match = strjoin("type='signal',"
1335 "sender='org.freedesktop.DBus',"
1336 "path='/org/freedesktop/DBus',"
1337 "interface='org.freedesktop.DBus',"
1338 "member='NameOwnerChanged',"
1348 r = sd_bus_add_match(a, NULL, match, NULL, NULL);
1350 log_error("Failed to add match for NameAcquired: %s", strerror(-r));
1356 _cleanup_bus_message_unref_ sd_bus_message *m = NULL;
1357 int events_a, events_b, fd;
1358 uint64_t timeout_a, timeout_b, t;
1359 struct timespec _ts, *ts;
1360 struct pollfd *pollfd;
1364 r = sd_bus_process(a, &m);
1366 /* treat 'connection reset by peer' as clean exit condition */
1367 if (r == -ECONNRESET)
1370 log_error("Failed to process bus a: %s", strerror(-r));
1376 /* We officially got EOF, let's quit */
1377 if (sd_bus_message_is_signal(m, "org.freedesktop.DBus.Local", "Disconnected")) {
1382 k = synthesize_name_acquired(a, b, m);
1385 log_error("Failed to synthesize message: %s", strerror(-r));
1391 k = sd_bus_send(b, m, NULL);
1393 if (k == -ECONNRESET)
1397 log_error("Failed to send message: %s", strerror(-r));
1408 r = sd_bus_process(b, &m);
1410 /* treat 'connection reset by peer' as clean exit condition */
1411 if (r == -ECONNRESET)
1414 log_error("Failed to process bus b: %s", strerror(-r));
1420 /* We officially got EOF, let's quit */
1421 if (sd_bus_message_is_signal(m, "org.freedesktop.DBus.Local", "Disconnected")) {
1426 k = process_hello(a, b, m, &policy, &ucred, &got_hello);
1429 log_error("Failed to process HELLO: %s", strerror(-r));
1436 k = process_policy(a, b, m);
1439 log_error("Failed to process policy: %s", strerror(-r));
1443 k = process_driver(a, b, m);
1446 log_error("Failed to process driver calls: %s", strerror(-r));
1453 k = sd_bus_send(a, m, NULL);
1455 if (k == -ECONNRESET)
1459 log_error("Failed to send message: %s", strerror(-r));
1471 fd = sd_bus_get_fd(a);
1473 log_error("Failed to get fd: %s", strerror(-r));
1477 events_a = sd_bus_get_events(a);
1479 log_error("Failed to get events mask: %s", strerror(-r));
1483 r = sd_bus_get_timeout(a, &timeout_a);
1485 log_error("Failed to get timeout: %s", strerror(-r));
1489 events_b = sd_bus_get_events(b);
1491 log_error("Failed to get events mask: %s", strerror(-r));
1495 r = sd_bus_get_timeout(b, &timeout_b);
1497 log_error("Failed to get timeout: %s", strerror(-r));
1502 if (t == (uint64_t) -1 || (timeout_b != (uint64_t) -1 && timeout_b < timeout_a))
1505 if (t == (uint64_t) -1)
1510 nw = now(CLOCK_MONOTONIC);
1516 ts = timespec_store(&_ts, t);
1519 pollfd = (struct pollfd[3]) {
1520 {.fd = fd, .events = events_a, },
1521 {.fd = in_fd, .events = events_b & POLLIN, },
1522 {.fd = out_fd, .events = events_b & POLLOUT, }
1525 r = ppoll(pollfd, 3, ts, NULL);
1527 log_error("ppoll() failed: %m");
1535 "STATUS=Shutting down.");
1537 policy_free(&policy);
1538 strv_free(arg_configuration);
1539 hashmap_free(names_hash);
1542 return r < 0 ? EXIT_FAILURE : EXIT_SUCCESS;
~ianmdlvl / elogind.git / blob