1 /*-*- Mode: C; c-basic-offset: 8; indent-tabs-mode: nil -*-*/
4 This file is part of systemd.
6 Copyright 2010 Lennart Poettering
7 Copyright 2013 Daniel Mack
8 Copyright 2014 Kay Sievers
9 Copyright 2015 David Herrmann
11 systemd is free software; you can redistribute it and/or modify it
12 under the terms of the GNU Lesser General Public License as published by
13 the Free Software Foundation; either version 2.1 of the License, or
14 (at your option) any later version.
16 systemd is distributed in the hope that it will be useful, but
17 WITHOUT ANY WARRANTY; without even the implied warranty of
18 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
19 Lesser General Public License for more details.
21 You should have received a copy of the GNU Lesser General Public License
22 along with systemd; If not, see <http://www.gnu.org/licenses/>.
25 #include <sys/socket.h>
29 #include <sys/prctl.h>
36 #include "sd-daemon.h"
37 #include "bus-internal.h"
41 #include "capability.h"
42 #include "bus-xml-policy.h"
44 #include "formats-util.h"
46 static char *arg_address
= NULL
;
47 static char **arg_configuration
= NULL
;
55 static ClientContext
*client_context_free(ClientContext
*c
) {
65 DEFINE_TRIVIAL_CLEANUP_FUNC(ClientContext
*, client_context_free
);
67 static int client_context_new(ClientContext
**out
) {
68 _cleanup_(client_context_freep
) ClientContext
*c
= NULL
;
70 c
= new0(ClientContext
, 1);
81 static void *run_client(void *userdata
) {
82 _cleanup_(client_context_freep
) ClientContext
*c
= userdata
;
83 _cleanup_(proxy_freep
) Proxy
*p
= NULL
;
87 r
= proxy_new(&p
, c
->fd
, c
->fd
, arg_address
);
93 /* set comm to "p$PIDu$UID" and suffix with '*' if truncated */
94 r
= snprintf(comm
, sizeof(comm
), "p" PID_FMT
"u" UID_FMT
, p
->local_creds
.pid
, p
->local_creds
.uid
);
95 if (r
>= (ssize_t
)sizeof(comm
))
96 comm
[sizeof(comm
) - 2] = '*';
97 (void) prctl(PR_SET_NAME
, comm
);
99 r
= proxy_set_policy(p
, c
->policy
, arg_configuration
);
103 r
= proxy_hello_policy(p
, c
->bus_uid
);
113 static int loop_clients(int accept_fd
, uid_t bus_uid
) {
114 _cleanup_(shared_policy_freep
) SharedPolicy
*sp
= NULL
;
118 r
= pthread_attr_init(&attr
);
120 return log_error_errno(errno
, "Cannot initialize pthread attributes: %m");
123 r
= pthread_attr_setdetachstate(&attr
, PTHREAD_CREATE_DETACHED
);
125 r
= log_error_errno(errno
, "Cannot mark pthread attributes as detached: %m");
129 r
= shared_policy_new(&sp
);
138 fd
= accept4(accept_fd
, NULL
, NULL
, SOCK_NONBLOCK
| SOCK_CLOEXEC
);
140 if (errno
== EAGAIN
|| errno
== EINTR
)
143 r
= log_error_errno(errno
, "accept4() failed: %m");
147 r
= client_context_new(&c
);
156 c
->bus_uid
= bus_uid
;
158 r
= pthread_create(&tid
, &attr
, run_client
, c
);
160 log_error("Cannot spawn thread: %m");
161 client_context_free(c
);
167 pthread_attr_destroy(&attr
);
171 static int help(void) {
173 printf("%s [OPTIONS...]\n\n"
174 "DBus proxy server.\n\n"
175 " -h --help Show this help\n"
176 " --version Show package version\n"
177 " --configuration=PATH Configuration file or directory\n"
178 " --machine=MACHINE Connect to specified machine\n"
179 " --address=ADDRESS Connect to the bus specified by ADDRESS\n"
180 " (default: " DEFAULT_SYSTEM_BUS_ADDRESS
")\n",
181 program_invocation_short_name
);
186 static int parse_argv(int argc
, char *argv
[]) {
195 static const struct option options
[] = {
196 { "help", no_argument
, NULL
, 'h' },
197 { "version", no_argument
, NULL
, ARG_VERSION
},
198 { "address", required_argument
, NULL
, ARG_ADDRESS
},
199 { "configuration", required_argument
, NULL
, ARG_CONFIGURATION
},
200 { "machine", required_argument
, NULL
, ARG_MACHINE
},
209 while ((c
= getopt_long(argc
, argv
, "h", options
, NULL
)) >= 0)
218 puts(PACKAGE_STRING
);
219 puts(SYSTEMD_FEATURES
);
223 r
= free_and_strdup(&arg_address
, optarg
);
228 case ARG_CONFIGURATION
:
229 r
= strv_extend(&arg_configuration
, optarg
);
235 _cleanup_free_
char *e
= NULL
;
238 e
= bus_address_escape(optarg
);
242 a
= strjoin("x-machine-kernel:machine=", e
, ";x-machine-unix:machine=", e
, NULL
);
256 assert_not_reached("Unhandled option");
260 log_error("Too many arguments");
265 arg_address
= strdup(DEFAULT_SYSTEM_BUS_ADDRESS
);
273 int main(int argc
, char *argv
[]) {
278 log_set_target(LOG_TARGET_JOURNAL_OR_KMSG
);
279 log_parse_environment();
284 if (geteuid() == 0) {
285 const char *user
= "systemd-bus-proxy";
287 r
= get_user_creds(&user
, &uid
, &gid
, NULL
, NULL
);
289 log_error_errno(r
, "Cannot resolve user name %s: %m", user
);
293 r
= drop_privileges(uid
, gid
, 1ULL << CAP_IPC_OWNER
);
295 log_error_errno(r
, "Cannot drop privileges: %m");
300 r
= parse_argv(argc
, argv
);
304 r
= sd_listen_fds(0);
306 log_error("Illegal number of file descriptors passed");
310 accept_fd
= SD_LISTEN_FDS_START
;
312 r
= fd_nonblock(accept_fd
, false);
314 log_error_errno(r
, "Cannot mark accept-fd non-blocking: %m");
318 r
= loop_clients(accept_fd
, bus_uid
);
323 "STATUS=Shutting down.");
325 strv_free(arg_configuration
);
328 return r
< 0 ? EXIT_FAILURE
: EXIT_SUCCESS
;