if (r < 0)
return r;
+ /* Don't trust augmented credentials for authorization */
+ assert_return((sd_bus_creds_get_augmented_mask(creds) & SD_BUS_CREDS_EUID) == 0, -EPERM);
+
r = sd_bus_creds_get_euid(creds, &sender_uid);
if (r < 0)
return r;
static const struct {
const char *result, *explanation;
} explanations [] = {
- { "resources", "configured resource limit was exceeded" },
- { "timeout", "timeout was exceeded" },
- { "exit-code", "control process exited with error code" },
- { "signal", "fatal signal was delivered to the control process" },
- { "core-dump", "fatal signal was delivered to the control process. Core dumped" },
- { "watchdog", "service failed to send watchdog ping" },
- { "start-limit", "start of the service was attempted too often too quickly" }
+ { "resources", "a configured resource limit was exceeded" },
+ { "timeout", "a timeout was exceeded" },
+ { "exit-code", "the control process exited with error code" },
+ { "signal", "a fatal signal was delivered to the control process" },
+ { "core-dump", "a fatal signal was delivered causing the control process to dump core" },
+ { "watchdog", "the service failed to send watchdog ping" },
+ { "start-limit", "start of the service was attempted too often" }
};
static void log_job_error_with_service_result(const char* service, const char *result) {
/* For some results maybe additional explanation is required */
if (streq_ptr(result, "start-limit"))
- log_info("To force a start please invoke \"systemctl reset-failed %s\" followed by \"systemctl start %s\" again.",
- strna(service_shell_quoted),
+ log_info("To force a start use \"systemctl reset-failed %1$s\" followed by \"systemctl start %1$s\" again.",
strna(service_shell_quoted));
}
~ianmdlvl / elogind.git / blobdiff