1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
4 This file is part of systemd.
6 Copyright 2010 Lennart Poettering
7 Copyright 2013 Daniel Mack
8 Copyright 2014 Kay Sievers
9 Copyright 2015 David Herrmann
11 systemd is free software; you can redistribute it and/or modify it
12 under the terms of the GNU Lesser General Public License as published by
13 the Free Software Foundation; either version 2.1 of the License, or
14 (at your option) any later version.
16 systemd is distributed in the hope that it will be useful, but
17 WITHOUT ANY WARRANTY; without even the implied warranty of
18 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
19 Lesser General Public License for more details.
21 You should have received a copy of the GNU Lesser General Public License
22 along with systemd; If not, see <http://www.gnu.org/licenses/>.
25 #include <sys/socket.h>
29 #include <sys/prctl.h>
36 #include "sd-daemon.h"
37 #include "bus-internal.h"
41 #include "capability.h"
42 #include "bus-xml-policy.h"
44 #include "formats-util.h"
46 static char *arg_address
= NULL
;
47 static char **arg_configuration
= NULL
;
55 static ClientContext
*client_context_free(ClientContext
*c
) {
65 DEFINE_TRIVIAL_CLEANUP_FUNC(ClientContext
*, client_context_free
);
67 static int client_context_new(ClientContext
**out
) {
68 _cleanup_(client_context_freep
) ClientContext
*c
= NULL
;
70 c
= new0(ClientContext
, 1);
81 static void *run_client(void *userdata
) {
82 _cleanup_(client_context_freep
) ClientContext
*c
= userdata
;
83 _cleanup_(proxy_freep
) Proxy
*p
= NULL
;
87 r
= proxy_new(&p
, c
->fd
, c
->fd
, arg_address
);
93 /* set comm to "p$PIDu$UID" and suffix with '*' if truncated */
94 r
= snprintf(comm
, sizeof(comm
), "p" PID_FMT
"u" UID_FMT
, p
->local_creds
.pid
, p
->local_creds
.uid
);
95 if (r
>= (ssize_t
)sizeof(comm
))
96 comm
[sizeof(comm
) - 2] = '*';
97 (void) prctl(PR_SET_NAME
, comm
);
99 r
= proxy_set_policy(p
, c
->policy
, arg_configuration
);
103 r
= proxy_hello_policy(p
, c
->bus_uid
);
113 static int loop_clients(int accept_fd
, uid_t bus_uid
) {
114 _cleanup_(shared_policy_freep
) SharedPolicy
*sp
= NULL
;
118 r
= pthread_attr_init(&attr
);
120 return log_error_errno(errno
, "Cannot initialize pthread attributes: %m");
123 r
= pthread_attr_setdetachstate(&attr
, PTHREAD_CREATE_DETACHED
);
125 r
= log_error_errno(errno
, "Cannot mark pthread attributes as detached: %m");
129 r
= shared_policy_new(&sp
);
138 fd
= accept4(accept_fd
, NULL
, NULL
, SOCK_NONBLOCK
| SOCK_CLOEXEC
);
140 if (errno
== EAGAIN
|| errno
== EINTR
)
143 r
= log_error_errno(errno
, "accept4() failed: %m");
147 r
= client_context_new(&c
);
156 c
->bus_uid
= bus_uid
;
158 r
= pthread_create(&tid
, &attr
, run_client
, c
);
160 log_error("Cannot spawn thread: %m");
161 client_context_free(c
);
167 pthread_attr_destroy(&attr
);
171 static int help(void) {
173 printf("%s [OPTIONS...]\n\n"
174 "DBus proxy server.\n\n"
175 " -h --help Show this help\n"
176 " --version Show package version\n"
177 " --configuration=PATH Configuration file or directory\n"
178 " --machine=MACHINE Connect to specified machine\n"
179 " --address=ADDRESS Connect to the bus specified by ADDRESS\n"
181 program_invocation_short_name
,
182 is_kdbus_available() ? KERNEL_SYSTEM_BUS_ADDRESS
: UNIX_SYSTEM_BUS_ADDRESS
);
187 static int parse_argv(int argc
, char *argv
[]) {
196 static const struct option options
[] = {
197 { "help", no_argument
, NULL
, 'h' },
198 { "version", no_argument
, NULL
, ARG_VERSION
},
199 { "address", required_argument
, NULL
, ARG_ADDRESS
},
200 { "configuration", required_argument
, NULL
, ARG_CONFIGURATION
},
201 { "machine", required_argument
, NULL
, ARG_MACHINE
},
210 while ((c
= getopt_long(argc
, argv
, "h", options
, NULL
)) >= 0)
219 puts(PACKAGE_STRING
);
220 puts(SYSTEMD_FEATURES
);
224 r
= free_and_strdup(&arg_address
, optarg
);
229 case ARG_CONFIGURATION
:
230 r
= strv_extend(&arg_configuration
, optarg
);
236 _cleanup_free_
char *e
= NULL
;
239 e
= bus_address_escape(optarg
);
243 a
= strjoin("x-machine-kernel:machine=", e
, ";x-machine-unix:machine=", e
, NULL
);
257 assert_not_reached("Unhandled option");
261 log_error("Too many arguments");
266 arg_address
= strdup(is_kdbus_available() ? KERNEL_SYSTEM_BUS_ADDRESS
: UNIX_SYSTEM_BUS_ADDRESS
);
274 int main(int argc
, char *argv
[]) {
279 log_set_target(LOG_TARGET_JOURNAL_OR_KMSG
);
280 log_parse_environment();
285 if (geteuid() == 0) {
286 const char *user
= "systemd-bus-proxy";
288 r
= get_user_creds(&user
, &uid
, &gid
, NULL
, NULL
);
290 log_error_errno(r
, "Cannot resolve user name %s: %m", user
);
294 r
= drop_privileges(uid
, gid
, 1ULL << CAP_IPC_OWNER
);
296 log_error_errno(r
, "Cannot drop privileges: %m");
301 r
= parse_argv(argc
, argv
);
305 r
= sd_listen_fds(0);
307 log_error("Illegal number of file descriptors passed");
311 accept_fd
= SD_LISTEN_FDS_START
;
313 r
= fd_nonblock(accept_fd
, false);
315 log_error_errno(r
, "Cannot mark accept-fd non-blocking: %m");
319 r
= loop_clients(accept_fd
, bus_uid
);
324 "STATUS=Shutting down.");
326 strv_free(arg_configuration
);
329 return r
< 0 ? EXIT_FAILURE
: EXIT_SUCCESS
;