1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
4 This file is part of systemd.
6 Copyright 2010 Lennart Poettering
7 Copyright 2013 Daniel Mack
8 Copyright 2014 Kay Sievers
9 Copyright 2015 David Herrmann
11 systemd is free software; you can redistribute it and/or modify it
12 under the terms of the GNU Lesser General Public License as published by
13 the Free Software Foundation; either version 2.1 of the License, or
14 (at your option) any later version.
16 systemd is distributed in the hope that it will be useful, but
17 WITHOUT ANY WARRANTY; without even the implied warranty of
18 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
19 Lesser General Public License for more details.
21 You should have received a copy of the GNU Lesser General Public License
22 along with systemd; If not, see <http://www.gnu.org/licenses/>.
30 #include <sys/prctl.h>
31 #include <sys/socket.h>
34 #include "sd-daemon.h"
36 #include "bus-internal.h"
37 #include "bus-xml-policy.h"
38 #include "capability.h"
40 #include "formats-util.h"
43 #include "string-util.h"
47 static char *arg_address
= NULL
;
48 static char **arg_configuration
= NULL
;
56 static ClientContext
*client_context_free(ClientContext
*c
) {
66 DEFINE_TRIVIAL_CLEANUP_FUNC(ClientContext
*, client_context_free
);
68 static int client_context_new(ClientContext
**out
) {
69 _cleanup_(client_context_freep
) ClientContext
*c
= NULL
;
71 c
= new0(ClientContext
, 1);
82 static void *run_client(void *userdata
) {
83 _cleanup_(client_context_freep
) ClientContext
*c
= userdata
;
84 _cleanup_(proxy_freep
) Proxy
*p
= NULL
;
88 r
= proxy_new(&p
, c
->fd
, c
->fd
, arg_address
);
94 /* set comm to "p$PIDu$UID" and suffix with '*' if truncated */
95 r
= snprintf(comm
, sizeof(comm
), "p" PID_FMT
"u" UID_FMT
, p
->local_creds
.pid
, p
->local_creds
.uid
);
96 if (r
>= (ssize_t
)sizeof(comm
))
97 comm
[sizeof(comm
) - 2] = '*';
98 (void) prctl(PR_SET_NAME
, comm
);
100 r
= proxy_set_policy(p
, c
->policy
, arg_configuration
);
104 r
= proxy_hello_policy(p
, c
->bus_uid
);
114 static int loop_clients(int accept_fd
, uid_t bus_uid
) {
115 _cleanup_(shared_policy_freep
) SharedPolicy
*sp
= NULL
;
119 r
= pthread_attr_init(&attr
);
121 return log_error_errno(r
, "Cannot initialize pthread attributes: %m");
123 r
= pthread_attr_setdetachstate(&attr
, PTHREAD_CREATE_DETACHED
);
125 r
= log_error_errno(r
, "Cannot mark pthread attributes as detached: %m");
129 r
= shared_policy_new(&sp
);
138 fd
= accept4(accept_fd
, NULL
, NULL
, SOCK_NONBLOCK
| SOCK_CLOEXEC
);
140 if (errno
== EAGAIN
|| errno
== EINTR
)
143 r
= log_error_errno(errno
, "accept4() failed: %m");
147 r
= client_context_new(&c
);
156 c
->bus_uid
= bus_uid
;
158 r
= pthread_create(&tid
, &attr
, run_client
, c
);
160 log_warning_errno(r
, "Cannot spawn thread, ignoring: %m");
161 client_context_free(c
);
167 pthread_attr_destroy(&attr
);
171 static int help(void) {
173 printf("%s [OPTIONS...]\n\n"
174 "DBus proxy server.\n\n"
175 " -h --help Show this help\n"
176 " --version Show package version\n"
177 " --configuration=PATH Configuration file or directory\n"
178 " --machine=MACHINE Connect to specified machine\n"
179 " --address=ADDRESS Connect to the bus specified by ADDRESS\n"
180 " (default: " DEFAULT_SYSTEM_BUS_ADDRESS
")\n",
181 program_invocation_short_name
);
186 static int parse_argv(int argc
, char *argv
[]) {
195 static const struct option options
[] = {
196 { "help", no_argument
, NULL
, 'h' },
197 { "version", no_argument
, NULL
, ARG_VERSION
},
198 { "address", required_argument
, NULL
, ARG_ADDRESS
},
199 { "configuration", required_argument
, NULL
, ARG_CONFIGURATION
},
200 { "machine", required_argument
, NULL
, ARG_MACHINE
},
209 while ((c
= getopt_long(argc
, argv
, "h", options
, NULL
)) >= 0)
221 r
= free_and_strdup(&arg_address
, optarg
);
226 case ARG_CONFIGURATION
:
227 r
= strv_extend(&arg_configuration
, optarg
);
233 _cleanup_free_
char *e
= NULL
;
236 e
= bus_address_escape(optarg
);
240 a
= strjoin("x-machine-kernel:machine=", e
, ";x-machine-unix:machine=", e
, NULL
);
254 assert_not_reached("Unhandled option");
258 log_error("Too many arguments");
263 arg_address
= strdup(DEFAULT_SYSTEM_BUS_ADDRESS
);
271 int main(int argc
, char *argv
[]) {
276 log_set_target(LOG_TARGET_JOURNAL_OR_KMSG
);
277 log_parse_environment();
282 if (geteuid() == 0) {
283 const char *user
= "systemd-bus-proxy";
285 r
= get_user_creds(&user
, &uid
, &gid
, NULL
, NULL
);
287 log_error_errno(r
, "Cannot resolve user name %s: %m", user
);
291 r
= drop_privileges(uid
, gid
, 1ULL << CAP_IPC_OWNER
);
293 log_error_errno(r
, "Cannot drop privileges: %m");
298 r
= parse_argv(argc
, argv
);
302 r
= sd_listen_fds(0);
304 log_error("Illegal number of file descriptors passed");
308 accept_fd
= SD_LISTEN_FDS_START
;
310 r
= fd_nonblock(accept_fd
, false);
312 log_error_errno(r
, "Cannot mark accept-fd non-blocking: %m");
316 r
= loop_clients(accept_fd
, bus_uid
);
321 "STATUS=Shutting down.");
323 strv_free(arg_configuration
);
326 return r
< 0 ? EXIT_FAILURE
: EXIT_SUCCESS
;