~ubuntu-branches/ubuntu/maverick/dbus/maverick-proposed

Committer: Bazaar Package Importer
Author(s): Sebastien Bacher
Date: 2010-08-09 16:09:57 UTC
mfrom: (1.3.8 sid)
Revision ID: james.westby@ubuntu.com-20100809160957-3xh1a1tnhxebs159

Tags: 1.2.24-3ubuntu1

* Resync on Debian
* Remaining Ubuntu Changes:
  - Install into / rather than /usr.
  - debian/control: Depend on ConsoleKit for "at_console" policy stanza.
  - debian/dbus.postinst: Do not restart dbus on upgrades, since it breaks
    too many applications. Instead, trigger a "reboot required" notification.
  - debian/dbus.postinst: Create /var/run/dbus in postinst to handle system
    being rebooted before package is configured.  LP: #275229.
  - Add debian/dbus.upstart and bump debhelper b-dep to ensure that it is
    properly installed.
  - 20_system_conf_limit.patch: Increase max_match_rules_per_connection for
    the system bus to 5000 (LP #454093)
  - 81-session.conf-timeout.patch: Raise the service startup timeout from 25
    to 60 seconds. It may be too short on the live CD with slow machines.

files added:
.pc

.pc/.version

.pc/00_dbus-quiesce-startup-errors.patch

.pc/00_dbus-quiesce-startup-errors.patch/bus

.pc/00_dbus-quiesce-startup-errors.patch/bus/config-parser.c

.pc/01_no-fatal-warnings.patch

.pc/01_no-fatal-warnings.patch/dbus

.pc/01_no-fatal-warnings.patch/dbus/dbus-internals.c

.pc/10_dbus-1.0.1-generate-xml-docs.patch

.pc/10_dbus-1.0.1-generate-xml-docs.patch/Doxyfile.in

.pc/11-589662-reload-kqueue.patch

.pc/11-589662-reload-kqueue.patch/bus

.pc/11-589662-reload-kqueue.patch/bus/dir-watch-kqueue.c

.pc/20_system_conf_limit.patch

.pc/20_system_conf_limit.patch/bus

.pc/20_system_conf_limit.patch/bus/system.conf.in

.pc/81-session.conf-timeout.patch

.pc/81-session.conf-timeout.patch/bus

.pc/81-session.conf-timeout.patch/bus/session.conf.in

.pc/applied-patches

debian/patches/11-589662-reload-kqueue.patch

debian/source

debian/source/format

doc/diagram.png

doc/diagram.svg

test/data/valid-service-files/org.freedesktop.DBus.TestSuiteForkingEchoService.service

test/data/valid-service-files/org.freedesktop.DBus.TestSuiteForkingEchoService.service.in

test/name-test/test-activation-forking.py

files removed:
debian/dbus.links

debian/patches/02_dbus_monitor_no_sigint_handler.patch

debian/patches/11_timeout_handling.patch

debian/patches/20_kbsd_cmsgcred.patch

debian/patches/30_rt-as-needed.patch

test/name-test/test-names.c

files modified:
Doxyfile.in

HACKING

Makefile.in

aclocal.m4

bus/Makefile.am

bus/Makefile.in

bus/activation.c

bus/activation.h

bus/bus.c

bus/bus.h

bus/config-parser.c

bus/dir-watch-default.c

bus/dir-watch-inotify.c

bus/dir-watch-kqueue.c

bus/dir-watch.h

bus/dispatch.c

bus/driver.c

bus/main.c

bus/messagebus.in

bus/selinux.c

bus/session.conf.in

bus/system.conf.in

compile

config.guess

config.h.in

config.sub

configure

configure.in

dbus/Makefile.am

dbus/Makefile.in

dbus/dbus-arch-deps.h

dbus/dbus-connection.c

dbus/dbus-credentials.c

dbus/dbus-credentials.h

dbus/dbus-errors.c

dbus/dbus-internals.c

dbus/dbus-marshal-basic.c

dbus/dbus-marshal-recursive-util.c

dbus/dbus-message-internal.h

dbus/dbus-message.c

dbus/dbus-spawn.c

dbus/dbus-string.c

dbus/dbus-sysdeps-unix.c

dbus/dbus-sysdeps-util-unix.c

dbus/dbus-sysdeps.h

dbus/dbus-transport-socket.c

dbus/dbus-transport.c

dbus/dbus-userdb.c

debian/changelog

debian/control

debian/dbus.init

debian/dbus.postinst

debian/patches/series

debian/rules

doc/Makefile.am

doc/Makefile.in

doc/dbus-faq.html

doc/dbus-specification.html

doc/dbus-specification.xml

doc/dbus-test-plan.html

doc/dbus-tutorial.html

ltmain.sh

test/Makefile.am

test/Makefile.in

test/name-test/Makefile.am

test/name-test/Makefile.in

test/name-test/run-test.sh

test/name-test/run-with-tmp-session-bus.conf

test/test-service.c

tools/Makefile.in

tools/dbus-launch.c

tools/dbus-monitor.c

tools/dbus-print-message.c

Show diffs side-by-side

added added

removed removed

bus/selinux.c

#include <dbus/dbus-internals.h>

#include <dbus/dbus-string.h>

#include <dbus/dbus-userdb.h>

#include "selinux.h"

#include "services.h"

#include "policy.h"

#include "utils.h"

#include "config-parser.h"

#ifdef HAVE_ERRNO_H

#include <errno.h>

#endif

#ifdef HAVE_SELINUX

#include <sys/types.h>

#include <unistd.h>

#ifdef HAVE_ERRNO_H

#include <errno.h>

#endif

#include <limits.h>

#include <pthread.h>

#include <syslog.h>

#include <signal.h>

#include <stdarg.h>

#include <stdio.h>

#include <grp.h>

#endif /* HAVE_SELINUX */

#ifdef HAVE_LIBAUDIT

#include <cap-ng.h>

#include <libaudit.h>

#endif /* HAVE_LIBAUDIT */

#endif /* HAVE_SELINUX */

#define BUS_SID_FROM_SELINUX(sid) ((BusSELinuxID*) (sid))

#define SELINUX_SID_FROM_BUS(sid) ((security_id_t) (sid))

143

146

#ifdef HAVE_LIBAUDIT

144

147

if (audit_fd >= 0)

145

148

{

146

char buf[PATH_MAX*2];

149

capng_get_caps_process();

150

if (capng_have_capability(CAPNG_EFFECTIVE, CAP_AUDIT_WRITE))

151

{

152

char buf[PATH_MAX*2];

147

153

148

/* FIXME: need to change this to show real user */

149

vsnprintf(buf, sizeof(buf), fmt, ap);

150

audit_log_user_avc_message(audit_fd, AUDIT_USER_AVC, buf, NULL, NULL,

154

/* FIXME: need to change this to show real user */

155

vsnprintf(buf, sizeof(buf), fmt, ap);

156

audit_log_user_avc_message(audit_fd, AUDIT_USER_AVC, buf, NULL, NULL,

151

157

NULL, getuid());

152

return;

158

return;

159

}

153

160

}

154

161

#endif /* HAVE_LIBAUDIT */

155

162

1010

1017

#endif /* HAVE_SELINUX */

1011

1018

}

1012

1019

1020

/* The !HAVE_LIBAUDIT case lives in dbus-sysdeps-util-unix.c */

1021

#ifdef HAVE_LIBAUDIT

1022

/**

1023

* Changes the user and group the bus is running as.

1024

1025

* @param user the user to become

1026

* @param error return location for errors

1027

* @returns #FALSE on failure

1028

1029

dbus_bool_t

1030

_dbus_change_to_daemon_user (const char *user,

1031

DBusError *error)

1032

{

1033

dbus_uid_t uid;

1034

dbus_gid_t gid;

1035

DBusString u;

1036

1037

_dbus_string_init_const (&u, user);

1038

1039

if (!_dbus_get_user_id_and_primary_group (&u, &uid, &gid))

1040

{

1041

dbus_set_error (error, DBUS_ERROR_FAILED,

1042

"User '%s' does not appear to exist?",

1043

user);

1044

return FALSE;

1045

}

1046

1047

/* If we were root */

1048

if (_dbus_geteuid () == 0)

1049

{

1050

int rc;

1051

1052

capng_clear (CAPNG_SELECT_BOTH);

1053

capng_update (CAPNG_ADD, CAPNG_EFFECTIVE | CAPNG_PERMITTED,

1054

CAP_AUDIT_WRITE);

1055

rc = capng_change_id (uid, gid, 0);

1056

if (rc)

1057

{

1058

switch (rc) {

1059

default:

1060

dbus_set_error (error, DBUS_ERROR_FAILED,

1061

"Failed to drop capabilities: %s\n",

1062

_dbus_strerror (errno));

1063

break;

1064

case -4:

1065

dbus_set_error (error, _dbus_error_from_errno (errno),

1066

"Failed to set GID to %lu: %s", gid,

1067

_dbus_strerror (errno));

1068

break;

1069

case -5:

1070

_dbus_warn ("Failed to drop supplementary groups: %s\n",

1071

_dbus_strerror (errno));

1072

break;

1073

case -6:

1074

dbus_set_error (error, _dbus_error_from_errno (errno),

1075

"Failed to set UID to %lu: %s", uid,

1076

_dbus_strerror (errno));

1077

break;

1078

case -7:

1079

dbus_set_error (error, _dbus_error_from_errno (errno),

1080

"Failed to unset keep-capabilities: %s\n",

1081

_dbus_strerror (errno));

1082

break;

1083

}

1084

return FALSE;

1085

}

1086

}

1087

1088

return TRUE;

1089

}

1090

#endif

1091

Older »