/* -*- mode: C; c-file-style: "gnu"; indent-tabs-mode: nil; -*- */ /* driver.c Bus client (driver) * * Copyright (C) 2003 CodeFactory AB * Copyright (C) 2003, 2004, 2005 Red Hat, Inc. * * Licensed under the Academic Free License version 2.1 * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation; either version 2 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program; if not, write to the Free Software * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA * */ #include #include "activation.h" #include "apparmor.h" #include "connection.h" #include "driver.h" #include "dispatch.h" #include "services.h" #include "selinux.h" #include "signals.h" #include "stats.h" #include "utils.h" #include #include #include #include #include #include #include #include static DBusConnection * bus_driver_get_owner_of_name (DBusConnection *connection, const char *name) { BusRegistry *registry; BusService *serv; DBusString str; registry = bus_connection_get_registry (connection); _dbus_string_init_const (&str, name); serv = bus_registry_lookup (registry, &str); if (serv == NULL) return NULL; return bus_service_get_primary_owners_connection (serv); } static DBusConnection * bus_driver_get_conn_helper (DBusConnection *connection, DBusMessage *message, const char *what_we_want, const char **name_p, DBusError *error) { DBusConnection *conn; const char *name; if (!dbus_message_get_args (message, error, DBUS_TYPE_STRING, &name, DBUS_TYPE_INVALID)) return NULL; _dbus_assert (name != NULL); _dbus_verbose ("asked for %s of connection %s\n", what_we_want, name); conn = bus_driver_get_owner_of_name (connection, name); if (conn == NULL) { dbus_set_error (error, DBUS_ERROR_NAME_HAS_NO_OWNER, "Could not get %s of name '%s': no such name", what_we_want, name); return NULL; } if (name_p != NULL) *name_p = name; return conn; } /* * Log a security warning and set error unless the uid of the connection * is either the uid of this process, or on Unix, uid 0 (root). * * This is intended to be a second line of defence after rules, * to mitigate incorrect system bus security policy configuration files * like the ones in CVE-2014-8148 and CVE-2014-8156, and (if present) * LSM rules; so it doesn't need to be perfect, but as long as we have * potentially dangerous functionality in the system bus, it does need * to exist. */ static dbus_bool_t bus_driver_check_caller_is_privileged (DBusConnection *connection, BusTransaction *transaction, DBusMessage *message, DBusError *error) { #ifdef DBUS_UNIX unsigned long uid; if (!dbus_connection_get_unix_user (connection, &uid)) { const char *method = dbus_message_get_member (message); bus_context_log_and_set_error (bus_transaction_get_context (transaction), DBUS_SYSTEM_LOG_SECURITY, error, DBUS_ERROR_ACCESS_DENIED, "rejected attempt to call %s by unknown uid", method); return FALSE; } /* I'm writing it in this slightly strange form so that it's more * obvious that this security-sensitive code is correct. */ if (_dbus_unix_user_is_process_owner (uid)) { /* OK */ } else if (uid == 0) { /* OK */ } else { const char *method = dbus_message_get_member (message); bus_context_log_and_set_error (bus_transaction_get_context (transaction), DBUS_SYSTEM_LOG_SECURITY, error, DBUS_ERROR_ACCESS_DENIED, "rejected attempt to call %s by uid %lu", method, uid); return FALSE; } return TRUE; #elif defined(DBUS_WIN) char *windows_sid = NULL; dbus_bool_t ret = FALSE; if (!dbus_connection_get_windows_user (connection, &windows_sid)) { const char *method = dbus_message_get_member (message); bus_context_log_and_set_error (bus_transaction_get_context (transaction), DBUS_SYSTEM_LOG_SECURITY, error, DBUS_ERROR_ACCESS_DENIED, "rejected attempt to call %s by unknown uid", method); goto out; } if (!_dbus_windows_user_is_process_owner (windows_sid)) { const char *method = dbus_message_get_member (message); bus_context_log_and_set_error (bus_transaction_get_context (transaction), DBUS_SYSTEM_LOG_SECURITY, error, DBUS_ERROR_ACCESS_DENIED, "rejected attempt to call %s by uid %s", method, windows_sid); goto out; } ret = TRUE; out: dbus_free (windows_sid); return ret; #else /* make sure we fail closed in the hypothetical case that we are neither * Unix nor Windows */ dbus_set_error (error, DBUS_ERROR_ACCESS_DENIED, "please teach bus/driver.c how uids work on this platform"); return FALSE; #endif } static dbus_bool_t bus_driver_send_welcome_message (DBusConnection *connection, DBusMessage *hello_message, BusTransaction *transaction, DBusError *error); dbus_bool_t bus_driver_send_service_owner_changed (const char *service_name, const char *old_owner, const char *new_owner, BusTransaction *transaction, DBusError *error) { DBusMessage *message; dbus_bool_t retval; const char *null_service; _DBUS_ASSERT_ERROR_IS_CLEAR (error); null_service = ""; _dbus_verbose ("sending name owner changed: %s [%s -> %s]\n", service_name, old_owner ? old_owner : null_service, new_owner ? new_owner : null_service); message = dbus_message_new_signal (DBUS_PATH_DBUS, DBUS_INTERFACE_DBUS, "NameOwnerChanged"); if (message == NULL) { BUS_SET_OOM (error); return FALSE; } if (!dbus_message_set_sender (message, DBUS_SERVICE_DBUS)) goto oom; if (!dbus_message_append_args (message, DBUS_TYPE_STRING, &service_name, DBUS_TYPE_STRING, old_owner ? &old_owner : &null_service, DBUS_TYPE_STRING, new_owner ? &new_owner : &null_service, DBUS_TYPE_INVALID)) goto oom; _dbus_assert (dbus_message_has_signature (message, "sss")); if (!bus_transaction_capture (transaction, NULL, message)) goto oom; retval = bus_dispatch_matches (transaction, NULL, NULL, message, error); dbus_message_unref (message); return retval; oom: dbus_message_unref (message); BUS_SET_OOM (error); return FALSE; } dbus_bool_t bus_driver_send_service_lost (DBusConnection *connection, const char *service_name, BusTransaction *transaction, DBusError *error) { DBusMessage *message; _DBUS_ASSERT_ERROR_IS_CLEAR (error); message = dbus_message_new_signal (DBUS_PATH_DBUS, DBUS_INTERFACE_DBUS, "NameLost"); if (message == NULL) { BUS_SET_OOM (error); return FALSE; } if (!dbus_message_set_destination (message, bus_connection_get_name (connection)) || !dbus_message_append_args (message, DBUS_TYPE_STRING, &service_name, DBUS_TYPE_INVALID)) { dbus_message_unref (message); BUS_SET_OOM (error); return FALSE; } if (!bus_transaction_send_from_driver (transaction, connection, message)) { dbus_message_unref (message); BUS_SET_OOM (error); return FALSE; } else { dbus_message_unref (message); return TRUE; } } dbus_bool_t bus_driver_send_service_acquired (DBusConnection *connection, const char *service_name, BusTransaction *transaction, DBusError *error) { DBusMessage *message; _DBUS_ASSERT_ERROR_IS_CLEAR (error); message = dbus_message_new_signal (DBUS_PATH_DBUS, DBUS_INTERFACE_DBUS, "NameAcquired"); if (message == NULL) { BUS_SET_OOM (error); return FALSE; } if (!dbus_message_set_destination (message, bus_connection_get_name (connection)) || !dbus_message_append_args (message, DBUS_TYPE_STRING, &service_name, DBUS_TYPE_INVALID)) { dbus_message_unref (message); BUS_SET_OOM (error); return FALSE; } if (!bus_transaction_send_from_driver (transaction, connection, message)) { dbus_message_unref (message); BUS_SET_OOM (error); return FALSE; } else { dbus_message_unref (message); return TRUE; } } static dbus_bool_t create_unique_client_name (BusRegistry *registry, DBusString *str) { /* We never want to use the same unique client name twice, because * we want to guarantee that if you send a message to a given unique * name, you always get the same application. So we use two numbers * for INT_MAX * INT_MAX combinations, should be pretty safe against * wraparound. */ /* FIXME these should be in BusRegistry rather than static vars */ static int next_major_number = 0; static int next_minor_number = 0; int len; len = _dbus_string_get_length (str); while (TRUE) { /* start out with 1-0, go to 1-1, 1-2, 1-3, * up to 1-MAXINT, then 2-0, 2-1, etc. */ if (next_minor_number <= 0) { next_major_number += 1; next_minor_number = 0; if (next_major_number <= 0) _dbus_assert_not_reached ("INT_MAX * INT_MAX clients were added"); } _dbus_assert (next_major_number > 0); _dbus_assert (next_minor_number >= 0); /* appname:MAJOR-MINOR */ if (!_dbus_string_append (str, ":")) return FALSE; if (!_dbus_string_append_int (str, next_major_number)) return FALSE; if (!_dbus_string_append (str, ".")) return FALSE; if (!_dbus_string_append_int (str, next_minor_number)) return FALSE; next_minor_number += 1; /* Check if a client with the name exists */ if (bus_registry_lookup (registry, str) == NULL) break; /* drop the number again, try the next one. */ _dbus_string_set_length (str, len); } return TRUE; } static dbus_bool_t bus_driver_handle_hello (DBusConnection *connection, BusTransaction *transaction, DBusMessage *message, DBusError *error) { DBusString unique_name; BusService *service; dbus_bool_t retval; BusRegistry *registry; BusConnections *connections; _DBUS_ASSERT_ERROR_IS_CLEAR (error); if (bus_connection_is_active (connection)) { /* We already handled an Hello message for this connection. */ dbus_set_error (error, DBUS_ERROR_FAILED, "Already handled an Hello message"); return FALSE; } /* Note that when these limits are exceeded we don't disconnect the * connection; we just sort of leave it hanging there until it times * out or disconnects itself or is dropped due to the max number of * incomplete connections. It's even OK if the connection wants to * retry the hello message, we support that. */ connections = bus_connection_get_connections (connection); if (!bus_connections_check_limits (connections, connection, error)) { _DBUS_ASSERT_ERROR_IS_SET (error); return FALSE; } if (!_dbus_string_init (&unique_name)) { BUS_SET_OOM (error); return FALSE; } retval = FALSE; registry = bus_connection_get_registry (connection); if (!create_unique_client_name (registry, &unique_name)) { BUS_SET_OOM (error); goto out_0; } if (!bus_connection_complete (connection, &unique_name, error)) { _DBUS_ASSERT_ERROR_IS_SET (error); goto out_0; } if (!dbus_message_set_sender (message, bus_connection_get_name (connection))) { BUS_SET_OOM (error); goto out_0; } if (!bus_driver_send_welcome_message (connection, message, transaction, error)) goto out_0; /* Create the service */ service = bus_registry_ensure (registry, &unique_name, connection, 0, transaction, error); if (service == NULL) goto out_0; _dbus_assert (bus_connection_is_active (connection)); retval = TRUE; out_0: _dbus_string_free (&unique_name); return retval; } static dbus_bool_t bus_driver_send_welcome_message (DBusConnection *connection, DBusMessage *hello_message, BusTransaction *transaction, DBusError *error) { DBusMessage *welcome; const char *name; _DBUS_ASSERT_ERROR_IS_CLEAR (error); name = bus_connection_get_name (connection); _dbus_assert (name != NULL); welcome = dbus_message_new_method_return (hello_message); if (welcome == NULL) { BUS_SET_OOM (error); return FALSE; } if (!dbus_message_append_args (welcome, DBUS_TYPE_STRING, &name, DBUS_TYPE_INVALID)) { dbus_message_unref (welcome); BUS_SET_OOM (error); return FALSE; } _dbus_assert (dbus_message_has_signature (welcome, DBUS_TYPE_STRING_AS_STRING)); if (!bus_transaction_send_from_driver (transaction, connection, welcome)) { dbus_message_unref (welcome); BUS_SET_OOM (error); return FALSE; } else { dbus_message_unref (welcome); return TRUE; } } static dbus_bool_t bus_driver_handle_list_services (DBusConnection *connection, BusTransaction *transaction, DBusMessage *message, DBusError *error) { DBusMessage *reply; int len; char **services; BusRegistry *registry; int i; DBusMessageIter iter; DBusMessageIter sub; _DBUS_ASSERT_ERROR_IS_CLEAR (error); registry = bus_connection_get_registry (connection); reply = dbus_message_new_method_return (message); if (reply == NULL) { BUS_SET_OOM (error); return FALSE; } if (!bus_registry_list_services (registry, &services, &len)) { dbus_message_unref (reply); BUS_SET_OOM (error); return FALSE; } dbus_message_iter_init_append (reply, &iter); if (!dbus_message_iter_open_container (&iter, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING_AS_STRING, &sub)) { dbus_free_string_array (services); dbus_message_unref (reply); BUS_SET_OOM (error); return FALSE; } { /* Include the bus driver in the list */ const char *v_STRING = DBUS_SERVICE_DBUS; if (!dbus_message_iter_append_basic (&sub, DBUS_TYPE_STRING, &v_STRING)) { dbus_free_string_array (services); dbus_message_unref (reply); BUS_SET_OOM (error); return FALSE; } } i = 0; while (i < len) { if (!dbus_message_iter_append_basic (&sub, DBUS_TYPE_STRING, &services[i])) { dbus_free_string_array (services); dbus_message_unref (reply); BUS_SET_OOM (error); return FALSE; } ++i; } dbus_free_string_array (services); if (!dbus_message_iter_close_container (&iter, &sub)) { dbus_message_unref (reply); BUS_SET_OOM (error); return FALSE; } if (!bus_transaction_send_from_driver (transaction, connection, reply)) { dbus_message_unref (reply); BUS_SET_OOM (error); return FALSE; } else { dbus_message_unref (reply); return TRUE; } } static dbus_bool_t bus_driver_handle_list_activatable_services (DBusConnection *connection, BusTransaction *transaction, DBusMessage *message, DBusError *error) { DBusMessage *reply; int len; char **services; BusActivation *activation; int i; DBusMessageIter iter; DBusMessageIter sub; _DBUS_ASSERT_ERROR_IS_CLEAR (error); activation = bus_connection_get_activation (connection); reply = dbus_message_new_method_return (message); if (reply == NULL) { BUS_SET_OOM (error); return FALSE; } if (!bus_activation_list_services (activation, &services, &len)) { dbus_message_unref (reply); BUS_SET_OOM (error); return FALSE; } dbus_message_iter_init_append (reply, &iter); if (!dbus_message_iter_open_container (&iter, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING_AS_STRING, &sub)) { dbus_free_string_array (services); dbus_message_unref (reply); BUS_SET_OOM (error); return FALSE; } { /* Include the bus driver in the list */ const char *v_STRING = DBUS_SERVICE_DBUS; if (!dbus_message_iter_append_basic (&sub, DBUS_TYPE_STRING, &v_STRING)) { dbus_free_string_array (services); dbus_message_unref (reply); BUS_SET_OOM (error); return FALSE; } } i = 0; while (i < len) { if (!dbus_message_iter_append_basic (&sub, DBUS_TYPE_STRING, &services[i])) { dbus_free_string_array (services); dbus_message_unref (reply); BUS_SET_OOM (error); return FALSE; } ++i; } dbus_free_string_array (services); if (!dbus_message_iter_close_container (&iter, &sub)) { dbus_message_unref (reply); BUS_SET_OOM (error); return FALSE; } if (!bus_transaction_send_from_driver (transaction, connection, reply)) { dbus_message_unref (reply); BUS_SET_OOM (error); return FALSE; } else { dbus_message_unref (reply); return TRUE; } } static dbus_bool_t bus_driver_handle_acquire_service (DBusConnection *connection, BusTransaction *transaction, DBusMessage *message, DBusError *error) { DBusMessage *reply; DBusString service_name; const char *name; dbus_uint32_t service_reply; dbus_uint32_t flags; dbus_bool_t retval; BusRegistry *registry; _DBUS_ASSERT_ERROR_IS_CLEAR (error); registry = bus_connection_get_registry (connection); if (!dbus_message_get_args (message, error, DBUS_TYPE_STRING, &name, DBUS_TYPE_UINT32, &flags, DBUS_TYPE_INVALID)) return FALSE; _dbus_verbose ("Trying to own name %s with flags 0x%x\n", name, flags); retval = FALSE; reply = NULL; _dbus_string_init_const (&service_name, name); if (!bus_registry_acquire_service (registry, connection, &service_name, flags, &service_reply, transaction, error)) goto out; reply = dbus_message_new_method_return (message); if (reply == NULL) { BUS_SET_OOM (error); goto out; } if (!dbus_message_append_args (reply, DBUS_TYPE_UINT32, &service_reply, DBUS_TYPE_INVALID)) { BUS_SET_OOM (error); goto out; } if (!bus_transaction_send_from_driver (transaction, connection, reply)) { BUS_SET_OOM (error); goto out; } retval = TRUE; out: if (reply) dbus_message_unref (reply); return retval; } static dbus_bool_t bus_driver_handle_release_service (DBusConnection *connection, BusTransaction *transaction, DBusMessage *message, DBusError *error) { DBusMessage *reply; DBusString service_name; const char *name; dbus_uint32_t service_reply; dbus_bool_t retval; BusRegistry *registry; _DBUS_ASSERT_ERROR_IS_CLEAR (error); registry = bus_connection_get_registry (connection); if (!dbus_message_get_args (message, error, DBUS_TYPE_STRING, &name, DBUS_TYPE_INVALID)) return FALSE; _dbus_verbose ("Trying to release name %s\n", name); retval = FALSE; reply = NULL; _dbus_string_init_const (&service_name, name); if (!bus_registry_release_service (registry, connection, &service_name, &service_reply, transaction, error)) goto out; reply = dbus_message_new_method_return (message); if (reply == NULL) { BUS_SET_OOM (error); goto out; } if (!dbus_message_append_args (reply, DBUS_TYPE_UINT32, &service_reply, DBUS_TYPE_INVALID)) { BUS_SET_OOM (error); goto out; } if (!bus_transaction_send_from_driver (transaction, connection, reply)) { BUS_SET_OOM (error); goto out; } retval = TRUE; out: if (reply) dbus_message_unref (reply); return retval; } static dbus_bool_t bus_driver_handle_service_exists (DBusConnection *connection, BusTransaction *transaction, DBusMessage *message, DBusError *error) { DBusMessage *reply; DBusString service_name; BusService *service; dbus_bool_t service_exists; const char *name; dbus_bool_t retval; BusRegistry *registry; _DBUS_ASSERT_ERROR_IS_CLEAR (error); registry = bus_connection_get_registry (connection); if (!dbus_message_get_args (message, error, DBUS_TYPE_STRING, &name, DBUS_TYPE_INVALID)) return FALSE; retval = FALSE; if (strcmp (name, DBUS_SERVICE_DBUS) == 0) { service_exists = TRUE; } else { _dbus_string_init_const (&service_name, name); service = bus_registry_lookup (registry, &service_name); service_exists = service != NULL; } reply = dbus_message_new_method_return (message); if (reply == NULL) { BUS_SET_OOM (error); goto out; } if (!dbus_message_append_args (reply, DBUS_TYPE_BOOLEAN, &service_exists, 0)) { BUS_SET_OOM (error); goto out; } if (!bus_transaction_send_from_driver (transaction, connection, reply)) { BUS_SET_OOM (error); goto out; } retval = TRUE; out: if (reply) dbus_message_unref (reply); return retval; } static dbus_bool_t bus_driver_handle_activate_service (DBusConnection *connection, BusTransaction *transaction, DBusMessage *message, DBusError *error) { dbus_uint32_t flags; const char *name; dbus_bool_t retval; BusActivation *activation; _DBUS_ASSERT_ERROR_IS_CLEAR (error); activation = bus_connection_get_activation (connection); if (!dbus_message_get_args (message, error, DBUS_TYPE_STRING, &name, DBUS_TYPE_UINT32, &flags, DBUS_TYPE_INVALID)) { _DBUS_ASSERT_ERROR_IS_SET (error); _dbus_verbose ("No memory to get arguments to StartServiceByName\n"); return FALSE; } retval = FALSE; if (!bus_activation_activate_service (activation, connection, transaction, FALSE, message, name, error)) { _DBUS_ASSERT_ERROR_IS_SET (error); _dbus_verbose ("bus_activation_activate_service() failed\n"); goto out; } retval = TRUE; out: return retval; } static dbus_bool_t send_ack_reply (DBusConnection *connection, BusTransaction *transaction, DBusMessage *message, DBusError *error) { DBusMessage *reply; if (dbus_message_get_no_reply (message)) return TRUE; reply = dbus_message_new_method_return (message); if (reply == NULL) { BUS_SET_OOM (error); return FALSE; } if (!bus_transaction_send_from_driver (transaction, connection, reply)) { BUS_SET_OOM (error); dbus_message_unref (reply); return FALSE; } dbus_message_unref (reply); return TRUE; } static dbus_bool_t bus_driver_handle_update_activation_environment (DBusConnection *connection, BusTransaction *transaction, DBusMessage *message, DBusError *error) { dbus_bool_t retval; BusActivation *activation; DBusMessageIter iter; DBusMessageIter dict_iter; DBusMessageIter dict_entry_iter; int array_type; int key_type; DBusList *keys, *key_link; DBusList *values, *value_link; _DBUS_ASSERT_ERROR_IS_CLEAR (error); if (!bus_driver_check_message_is_for_us (message, error)) return FALSE; #ifdef DBUS_UNIX { /* UpdateActivationEnvironment is basically a recipe for privilege * escalation so let's be extra-careful: do not allow the sysadmin * to shoot themselves in the foot. */ if (!bus_driver_check_caller_is_privileged (connection, transaction, message, error)) return FALSE; } #endif activation = bus_connection_get_activation (connection); dbus_message_iter_init (message, &iter); /* The message signature has already been checked for us, * so let's just assert it's right. */ _dbus_assert (dbus_message_iter_get_arg_type (&iter) == DBUS_TYPE_ARRAY); dbus_message_iter_recurse (&iter, &dict_iter); retval = FALSE; /* Then loop through the sent dictionary, add the location of * the environment keys and values to lists. The result will * be in reverse order, so we don't have to constantly search * for the end of the list in a loop. */ keys = NULL; values = NULL; while ((array_type = dbus_message_iter_get_arg_type (&dict_iter)) == DBUS_TYPE_DICT_ENTRY) { dbus_message_iter_recurse (&dict_iter, &dict_entry_iter); while ((key_type = dbus_message_iter_get_arg_type (&dict_entry_iter)) == DBUS_TYPE_STRING) { char *key; char *value; int value_type; dbus_message_iter_get_basic (&dict_entry_iter, &key); dbus_message_iter_next (&dict_entry_iter); value_type = dbus_message_iter_get_arg_type (&dict_entry_iter); if (value_type != DBUS_TYPE_STRING) break; dbus_message_iter_get_basic (&dict_entry_iter, &value); if (!_dbus_list_append (&keys, key)) { BUS_SET_OOM (error); break; } if (!_dbus_list_append (&values, value)) { BUS_SET_OOM (error); break; } dbus_message_iter_next (&dict_entry_iter); } if (key_type != DBUS_TYPE_INVALID) break; dbus_message_iter_next (&dict_iter); } if (array_type != DBUS_TYPE_INVALID) goto out; _dbus_assert (_dbus_list_get_length (&keys) == _dbus_list_get_length (&values)); key_link = keys; value_link = values; while (key_link != NULL) { const char *key; const char *value; key = key_link->data; value = value_link->data; if (!bus_activation_set_environment_variable (activation, key, value, error)) { _DBUS_ASSERT_ERROR_IS_SET (error); _dbus_verbose ("bus_activation_set_environment_variable() failed\n"); break; } key_link = _dbus_list_get_next_link (&keys, key_link); value_link = _dbus_list_get_next_link (&values, value_link); } /* FIXME: We can fail early having set only some of the environment variables, * (because of OOM failure). It's sort of hard to fix and it doesn't really * matter, so we're punting for now. */ if (key_link != NULL) goto out; if (!send_ack_reply (connection, transaction, message, error)) goto out; retval = TRUE; out: _dbus_list_clear (&keys); _dbus_list_clear (&values); return retval; } static dbus_bool_t bus_driver_handle_add_match (DBusConnection *connection, BusTransaction *transaction, DBusMessage *message, DBusError *error) { BusMatchRule *rule; const char *text, *bustype; DBusString str; BusMatchmaker *matchmaker; BusContext *context; _DBUS_ASSERT_ERROR_IS_CLEAR (error); text = NULL; rule = NULL; if (bus_connection_get_n_match_rules (connection) >= bus_context_get_max_match_rules_per_connection (bus_transaction_get_context (transaction))) { dbus_set_error (error, DBUS_ERROR_LIMITS_EXCEEDED, "Connection \"%s\" is not allowed to add more match rules " "(increase limits in configuration file if required)", bus_connection_is_active (connection) ? bus_connection_get_name (connection) : "(inactive)"); goto failed; } if (!dbus_message_get_args (message, error, DBUS_TYPE_STRING, &text, DBUS_TYPE_INVALID)) { _dbus_verbose ("No memory to get arguments to AddMatch\n"); goto failed; } _dbus_string_init_const (&str, text); rule = bus_match_rule_parse (connection, &str, error); if (rule == NULL) goto failed; context = bus_transaction_get_context (transaction); bustype = context ? bus_context_get_type (context) : NULL; if (bus_match_rule_get_client_is_eavesdropping (rule) && !bus_apparmor_allows_eavesdropping (connection, bustype, error)) goto failed; matchmaker = bus_connection_get_matchmaker (connection); if (!bus_matchmaker_add_rule (matchmaker, rule)) { BUS_SET_OOM (error); goto failed; } if (!send_ack_reply (connection, transaction, message, error)) { bus_matchmaker_remove_rule (matchmaker, rule); goto failed; } bus_match_rule_unref (rule); return TRUE; failed: _DBUS_ASSERT_ERROR_IS_SET (error); if (rule) bus_match_rule_unref (rule); return FALSE; } static dbus_bool_t bus_driver_handle_remove_match (DBusConnection *connection, BusTransaction *transaction, DBusMessage *message, DBusError *error) { BusMatchRule *rule; const char *text; DBusString str; BusMatchmaker *matchmaker; _DBUS_ASSERT_ERROR_IS_CLEAR (error); text = NULL; rule = NULL; if (!dbus_message_get_args (message, error, DBUS_TYPE_STRING, &text, DBUS_TYPE_INVALID)) { _dbus_verbose ("No memory to get arguments to RemoveMatch\n"); goto failed; } _dbus_string_init_const (&str, text); rule = bus_match_rule_parse (connection, &str, error); if (rule == NULL) goto failed; /* Send the ack before we remove the rule, since the ack is undone * on transaction cancel, but rule removal isn't. */ if (!send_ack_reply (connection, transaction, message, error)) goto failed; matchmaker = bus_connection_get_matchmaker (connection); if (!bus_matchmaker_remove_rule_by_value (matchmaker, rule, error)) goto failed; bus_match_rule_unref (rule); return TRUE; failed: _DBUS_ASSERT_ERROR_IS_SET (error); if (rule) bus_match_rule_unref (rule); return FALSE; } static dbus_bool_t bus_driver_handle_get_service_owner (DBusConnection *connection, BusTransaction *transaction, DBusMessage *message, DBusError *error) { const char *text; const char *base_name; DBusString str; BusRegistry *registry; BusService *service; DBusMessage *reply; _DBUS_ASSERT_ERROR_IS_CLEAR (error); registry = bus_connection_get_registry (connection); text = NULL; reply = NULL; if (! dbus_message_get_args (message, error, DBUS_TYPE_STRING, &text, DBUS_TYPE_INVALID)) goto failed; _dbus_string_init_const (&str, text); service = bus_registry_lookup (registry, &str); if (service == NULL && _dbus_string_equal_c_str (&str, DBUS_SERVICE_DBUS)) { /* ORG_FREEDESKTOP_DBUS owns itself */ base_name = DBUS_SERVICE_DBUS; } else if (service == NULL) { dbus_set_error (error, DBUS_ERROR_NAME_HAS_NO_OWNER, "Could not get owner of name '%s': no such name", text); goto failed; } else { base_name = bus_connection_get_name (bus_service_get_primary_owners_connection (service)); if (base_name == NULL) { /* FIXME - how is this error possible? */ dbus_set_error (error, DBUS_ERROR_FAILED, "Could not determine unique name for '%s'", text); goto failed; } _dbus_assert (*base_name == ':'); } _dbus_assert (base_name != NULL); reply = dbus_message_new_method_return (message); if (reply == NULL) goto oom; if (! dbus_message_append_args (reply, DBUS_TYPE_STRING, &base_name, DBUS_TYPE_INVALID)) goto oom; if (! bus_transaction_send_from_driver (transaction, connection, reply)) goto oom; dbus_message_unref (reply); return TRUE; oom: BUS_SET_OOM (error); failed: _DBUS_ASSERT_ERROR_IS_SET (error); if (reply) dbus_message_unref (reply); return FALSE; } static dbus_bool_t bus_driver_handle_list_queued_owners (DBusConnection *connection, BusTransaction *transaction, DBusMessage *message, DBusError *error) { const char *text; DBusList *base_names; DBusList *link; DBusString str; BusRegistry *registry; BusService *service; DBusMessage *reply; DBusMessageIter iter, array_iter; char *dbus_service_name = DBUS_SERVICE_DBUS; _DBUS_ASSERT_ERROR_IS_CLEAR (error); registry = bus_connection_get_registry (connection); base_names = NULL; text = NULL; reply = NULL; if (! dbus_message_get_args (message, error, DBUS_TYPE_STRING, &text, DBUS_TYPE_INVALID)) goto failed; _dbus_string_init_const (&str, text); service = bus_registry_lookup (registry, &str); if (service == NULL && _dbus_string_equal_c_str (&str, DBUS_SERVICE_DBUS)) { /* ORG_FREEDESKTOP_DBUS owns itself */ if (! _dbus_list_append (&base_names, dbus_service_name)) goto oom; } else if (service == NULL) { dbus_set_error (error, DBUS_ERROR_NAME_HAS_NO_OWNER, "Could not get owners of name '%s': no such name", text); goto failed; } else { if (!bus_service_list_queued_owners (service, &base_names, error)) goto failed; } _dbus_assert (base_names != NULL); reply = dbus_message_new_method_return (message); if (reply == NULL) goto oom; dbus_message_iter_init_append (reply, &iter); if (!dbus_message_iter_open_container (&iter, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING_AS_STRING, &array_iter)) goto oom; link = _dbus_list_get_first_link (&base_names); while (link != NULL) { char *uname; _dbus_assert (link->data != NULL); uname = (char *)link->data; if (!dbus_message_iter_append_basic (&array_iter, DBUS_TYPE_STRING, &uname)) goto oom; link = _dbus_list_get_next_link (&base_names, link); } if (! dbus_message_iter_close_container (&iter, &array_iter)) goto oom; if (! bus_transaction_send_from_driver (transaction, connection, reply)) goto oom; dbus_message_unref (reply); return TRUE; oom: BUS_SET_OOM (error); failed: _DBUS_ASSERT_ERROR_IS_SET (error); if (reply) dbus_message_unref (reply); if (base_names) _dbus_list_clear (&base_names); return FALSE; } static dbus_bool_t bus_driver_handle_get_connection_unix_user (DBusConnection *connection, BusTransaction *transaction, DBusMessage *message, DBusError *error) { DBusConnection *conn; DBusMessage *reply; unsigned long uid; dbus_uint32_t uid32; const char *service; _DBUS_ASSERT_ERROR_IS_CLEAR (error); reply = NULL; conn = bus_driver_get_conn_helper (connection, message, "UID", &service, error); if (conn == NULL) goto failed; reply = dbus_message_new_method_return (message); if (reply == NULL) goto oom; if (!dbus_connection_get_unix_user (conn, &uid)) { dbus_set_error (error, DBUS_ERROR_FAILED, "Could not determine UID for '%s'", service); goto failed; } uid32 = uid; if (! dbus_message_append_args (reply, DBUS_TYPE_UINT32, &uid32, DBUS_TYPE_INVALID)) goto oom; if (! bus_transaction_send_from_driver (transaction, connection, reply)) goto oom; dbus_message_unref (reply); return TRUE; oom: BUS_SET_OOM (error); failed: _DBUS_ASSERT_ERROR_IS_SET (error); if (reply) dbus_message_unref (reply); return FALSE; } static dbus_bool_t bus_driver_handle_get_connection_unix_process_id (DBusConnection *connection, BusTransaction *transaction, DBusMessage *message, DBusError *error) { DBusConnection *conn; DBusMessage *reply; unsigned long pid; dbus_uint32_t pid32; const char *service; _DBUS_ASSERT_ERROR_IS_CLEAR (error); reply = NULL; conn = bus_driver_get_conn_helper (connection, message, "PID", &service, error); if (conn == NULL) goto failed; reply = dbus_message_new_method_return (message); if (reply == NULL) goto oom; if (!dbus_connection_get_unix_process_id (conn, &pid)) { dbus_set_error (error, DBUS_ERROR_UNIX_PROCESS_ID_UNKNOWN, "Could not determine PID for '%s'", service); goto failed; } pid32 = pid; if (! dbus_message_append_args (reply, DBUS_TYPE_UINT32, &pid32, DBUS_TYPE_INVALID)) goto oom; if (! bus_transaction_send_from_driver (transaction, connection, reply)) goto oom; dbus_message_unref (reply); return TRUE; oom: BUS_SET_OOM (error); failed: _DBUS_ASSERT_ERROR_IS_SET (error); if (reply) dbus_message_unref (reply); return FALSE; } static dbus_bool_t bus_driver_handle_get_adt_audit_session_data (DBusConnection *connection, BusTransaction *transaction, DBusMessage *message, DBusError *error) { DBusConnection *conn; DBusMessage *reply; void *data = NULL; dbus_uint32_t data_size; const char *service; _DBUS_ASSERT_ERROR_IS_CLEAR (error); reply = NULL; conn = bus_driver_get_conn_helper (connection, message, "audit session data", &service, error); if (conn == NULL) goto failed; reply = dbus_message_new_method_return (message); if (reply == NULL) goto oom; if (!dbus_connection_get_adt_audit_session_data (conn, &data, &data_size) || data == NULL) { dbus_set_error (error, DBUS_ERROR_ADT_AUDIT_DATA_UNKNOWN, "Could not determine audit session data for '%s'", service); goto failed; } if (! dbus_message_append_args (reply, DBUS_TYPE_ARRAY, DBUS_TYPE_BYTE, &data, data_size, DBUS_TYPE_INVALID)) goto oom; if (! bus_transaction_send_from_driver (transaction, connection, reply)) goto oom; dbus_message_unref (reply); return TRUE; oom: BUS_SET_OOM (error); failed: _DBUS_ASSERT_ERROR_IS_SET (error); if (reply) dbus_message_unref (reply); return FALSE; } static dbus_bool_t bus_driver_handle_get_connection_selinux_security_context (DBusConnection *connection, BusTransaction *transaction, DBusMessage *message, DBusError *error) { DBusConnection *conn; DBusMessage *reply; BusSELinuxID *context; const char *service; _DBUS_ASSERT_ERROR_IS_CLEAR (error); reply = NULL; conn = bus_driver_get_conn_helper (connection, message, "security context", &service, error); if (conn == NULL) goto failed; reply = dbus_message_new_method_return (message); if (reply == NULL) goto oom; context = bus_connection_get_selinux_id (conn); if (!context) { dbus_set_error (error, DBUS_ERROR_SELINUX_SECURITY_CONTEXT_UNKNOWN, "Could not determine security context for '%s'", service); goto failed; } if (! bus_selinux_append_context (reply, context, error)) goto failed; if (! bus_transaction_send_from_driver (transaction, connection, reply)) goto oom; dbus_message_unref (reply); return TRUE; oom: BUS_SET_OOM (error); failed: _DBUS_ASSERT_ERROR_IS_SET (error); if (reply) dbus_message_unref (reply); return FALSE; } static dbus_bool_t bus_driver_handle_get_connection_credentials (DBusConnection *connection, BusTransaction *transaction, DBusMessage *message, DBusError *error) { DBusConnection *conn; DBusMessage *reply; DBusMessageIter reply_iter; DBusMessageIter array_iter; unsigned long ulong_val; char *s; const char *service; _DBUS_ASSERT_ERROR_IS_CLEAR (error); reply = NULL; conn = bus_driver_get_conn_helper (connection, message, "credentials", &service, error); if (conn == NULL) goto failed; reply = _dbus_asv_new_method_return (message, &reply_iter, &array_iter); if (reply == NULL) goto oom; /* we can't represent > 32-bit pids; if your system needs them, please * add ProcessID64 to the spec or something */ if (dbus_connection_get_unix_process_id (conn, &ulong_val) && ulong_val <= _DBUS_UINT32_MAX) { if (!_dbus_asv_add_uint32 (&array_iter, "ProcessID", ulong_val)) goto oom; } /* we can't represent > 32-bit uids; if your system needs them, please * add UnixUserID64 to the spec or something */ if (dbus_connection_get_unix_user (conn, &ulong_val) && ulong_val <= _DBUS_UINT32_MAX) { if (!_dbus_asv_add_uint32 (&array_iter, "UnixUserID", ulong_val)) goto oom; } if (dbus_connection_get_windows_user (conn, &s)) { DBusString str; dbus_bool_t result; if (s == NULL) goto oom; _dbus_string_init_const (&str, s); result = _dbus_validate_utf8 (&str, 0, _dbus_string_get_length (&str)); _dbus_string_free (&str); if (result) { if (!_dbus_asv_add_string (&array_iter, "WindowsSID", s)) { dbus_free (s); goto oom; } } dbus_free (s); } if (_dbus_connection_get_linux_security_label (conn, &s)) { if (s == NULL) goto oom; /* use the GVariant bytestring convention for strings of unknown * encoding: include the \0 in the payload, for zero-copy reading */ if (!_dbus_asv_add_byte_array (&array_iter, "LinuxSecurityLabel", s, strlen (s) + 1)) { dbus_free (s); goto oom; } dbus_free (s); } if (!_dbus_asv_close (&reply_iter, &array_iter)) goto oom; if (! bus_transaction_send_from_driver (transaction, connection, reply)) { /* this time we don't want to close the iterator again, so just * get rid of the message */ dbus_message_unref (reply); reply = NULL; goto oom; } return TRUE; oom: BUS_SET_OOM (error); failed: _DBUS_ASSERT_ERROR_IS_SET (error); if (reply) { _dbus_asv_abandon (&reply_iter, &array_iter); dbus_message_unref (reply); } return FALSE; } static dbus_bool_t bus_driver_handle_reload_config (DBusConnection *connection, BusTransaction *transaction, DBusMessage *message, DBusError *error) { BusContext *context; DBusMessage *reply; _DBUS_ASSERT_ERROR_IS_CLEAR (error); reply = NULL; context = bus_connection_get_context (connection); if (!bus_context_reload_config (context, error)) goto failed; reply = dbus_message_new_method_return (message); if (reply == NULL) goto oom; if (! bus_transaction_send_from_driver (transaction, connection, reply)) goto oom; dbus_message_unref (reply); return TRUE; oom: BUS_SET_OOM (error); failed: _DBUS_ASSERT_ERROR_IS_SET (error); if (reply) dbus_message_unref (reply); return FALSE; } #ifdef DBUS_ENABLE_VERBOSE_MODE static dbus_bool_t bus_driver_handle_enable_verbose (DBusConnection *connection, BusTransaction *transaction, DBusMessage *message, DBusError *error) { DBusMessage *reply = NULL; _DBUS_ASSERT_ERROR_IS_CLEAR (error); reply = dbus_message_new_method_return (message); if (reply == NULL) goto oom; if (! bus_transaction_send_from_driver (transaction, connection, reply)) goto oom; _dbus_set_verbose(TRUE); dbus_message_unref (reply); return TRUE; oom: _DBUS_ASSERT_ERROR_IS_CLEAR (error); BUS_SET_OOM (error); if (reply) dbus_message_unref (reply); return FALSE; } static dbus_bool_t bus_driver_handle_disable_verbose (DBusConnection *connection, BusTransaction *transaction, DBusMessage *message, DBusError *error) { DBusMessage *reply = NULL; _DBUS_ASSERT_ERROR_IS_CLEAR (error); reply = dbus_message_new_method_return (message); if (reply == NULL) goto oom; if (! bus_transaction_send_from_driver (transaction, connection, reply)) goto oom; _dbus_set_verbose(FALSE); dbus_message_unref (reply); return TRUE; oom: _DBUS_ASSERT_ERROR_IS_CLEAR (error); BUS_SET_OOM (error); if (reply) dbus_message_unref (reply); return FALSE; } #endif static dbus_bool_t bus_driver_handle_get_id (DBusConnection *connection, BusTransaction *transaction, DBusMessage *message, DBusError *error) { BusContext *context; DBusMessage *reply; DBusString uuid; const char *v_STRING; _DBUS_ASSERT_ERROR_IS_CLEAR (error); if (!_dbus_string_init (&uuid)) { BUS_SET_OOM (error); return FALSE; } reply = NULL; context = bus_connection_get_context (connection); if (!bus_context_get_id (context, &uuid)) goto oom; reply = dbus_message_new_method_return (message); if (reply == NULL) goto oom; v_STRING = _dbus_string_get_const_data (&uuid); if (!dbus_message_append_args (reply, DBUS_TYPE_STRING, &v_STRING, DBUS_TYPE_INVALID)) goto oom; _dbus_assert (dbus_message_has_signature (reply, "s")); if (! bus_transaction_send_from_driver (transaction, connection, reply)) goto oom; _dbus_string_free (&uuid); dbus_message_unref (reply); return TRUE; oom: _DBUS_ASSERT_ERROR_IS_CLEAR (error); BUS_SET_OOM (error); if (reply) dbus_message_unref (reply); _dbus_string_free (&uuid); return FALSE; } static dbus_bool_t bus_driver_handle_become_monitor (DBusConnection *connection, BusTransaction *transaction, DBusMessage *message, DBusError *error) { char **match_rules = NULL; const char *bustype; BusContext *context; BusMatchRule *rule; DBusList *rules = NULL; DBusList *iter; DBusString str; int i; int n_match_rules; dbus_uint32_t flags; dbus_bool_t ret = FALSE; _DBUS_ASSERT_ERROR_IS_CLEAR (error); if (!bus_driver_check_message_is_for_us (message, error)) goto out; context = bus_transaction_get_context (transaction); bustype = context ? bus_context_get_type (context) : NULL; if (!bus_apparmor_allows_eavesdropping (connection, bustype, error)) goto out; if (!bus_driver_check_caller_is_privileged (connection, transaction, message, error)) goto out; if (!dbus_message_get_args (message, error, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &match_rules, &n_match_rules, DBUS_TYPE_UINT32, &flags, DBUS_TYPE_INVALID)) goto out; if (flags != 0) { dbus_set_error (error, DBUS_ERROR_INVALID_ARGS, "BecomeMonitor does not support any flags yet"); goto out; } /* Special case: a zero-length array becomes [""] */ if (n_match_rules == 0) { match_rules = dbus_malloc (2 * sizeof (char *)); if (match_rules == NULL) { BUS_SET_OOM (error); goto out; } match_rules[0] = _dbus_strdup (""); if (match_rules[0] == NULL) { BUS_SET_OOM (error); goto out; } match_rules[1] = NULL; n_match_rules = 1; } for (i = 0; i < n_match_rules; i++) { _dbus_string_init_const (&str, match_rules[i]); rule = bus_match_rule_parse (connection, &str, error); if (rule == NULL) { BUS_SET_OOM (error); goto out; } /* monitors always eavesdrop */ bus_match_rule_set_client_is_eavesdropping (rule, TRUE); if (!_dbus_list_append (&rules, rule)) { BUS_SET_OOM (error); bus_match_rule_unref (rule); goto out; } } /* Send the ack before we remove the rule, since the ack is undone * on transaction cancel, but becoming a monitor isn't. */ if (!send_ack_reply (connection, transaction, message, error)) goto out; if (!bus_connection_be_monitor (connection, transaction, &rules, error)) goto out; ret = TRUE; out: if (ret) _DBUS_ASSERT_ERROR_IS_CLEAR (error); else _DBUS_ASSERT_ERROR_IS_SET (error); for (iter = _dbus_list_get_first_link (&rules); iter != NULL; iter = _dbus_list_get_next_link (&rules, iter)) bus_match_rule_unref (iter->data); _dbus_list_clear (&rules); dbus_free_string_array (match_rules); return ret; } typedef struct { const char *name; const char *in_args; const char *out_args; dbus_bool_t (* handler) (DBusConnection *connection, BusTransaction *transaction, DBusMessage *message, DBusError *error); } MessageHandler; /* For speed it might be useful to sort this in order of * frequency of use (but doesn't matter with only a few items * anyhow) */ static const MessageHandler dbus_message_handlers[] = { { "Hello", "", DBUS_TYPE_STRING_AS_STRING, bus_driver_handle_hello }, { "RequestName", DBUS_TYPE_STRING_AS_STRING DBUS_TYPE_UINT32_AS_STRING, DBUS_TYPE_UINT32_AS_STRING, bus_driver_handle_acquire_service }, { "ReleaseName", DBUS_TYPE_STRING_AS_STRING, DBUS_TYPE_UINT32_AS_STRING, bus_driver_handle_release_service }, { "StartServiceByName", DBUS_TYPE_STRING_AS_STRING DBUS_TYPE_UINT32_AS_STRING, DBUS_TYPE_UINT32_AS_STRING, bus_driver_handle_activate_service }, { "UpdateActivationEnvironment", DBUS_TYPE_ARRAY_AS_STRING DBUS_DICT_ENTRY_BEGIN_CHAR_AS_STRING DBUS_TYPE_STRING_AS_STRING DBUS_TYPE_STRING_AS_STRING DBUS_DICT_ENTRY_END_CHAR_AS_STRING, "", bus_driver_handle_update_activation_environment }, { "NameHasOwner", DBUS_TYPE_STRING_AS_STRING, DBUS_TYPE_BOOLEAN_AS_STRING, bus_driver_handle_service_exists }, { "ListNames", "", DBUS_TYPE_ARRAY_AS_STRING DBUS_TYPE_STRING_AS_STRING, bus_driver_handle_list_services }, { "ListActivatableNames", "", DBUS_TYPE_ARRAY_AS_STRING DBUS_TYPE_STRING_AS_STRING, bus_driver_handle_list_activatable_services }, { "AddMatch", DBUS_TYPE_STRING_AS_STRING, "", bus_driver_handle_add_match }, { "RemoveMatch", DBUS_TYPE_STRING_AS_STRING, "", bus_driver_handle_remove_match }, { "GetNameOwner", DBUS_TYPE_STRING_AS_STRING, DBUS_TYPE_STRING_AS_STRING, bus_driver_handle_get_service_owner }, { "ListQueuedOwners", DBUS_TYPE_STRING_AS_STRING, DBUS_TYPE_ARRAY_AS_STRING DBUS_TYPE_STRING_AS_STRING, bus_driver_handle_list_queued_owners }, { "GetConnectionUnixUser", DBUS_TYPE_STRING_AS_STRING, DBUS_TYPE_UINT32_AS_STRING, bus_driver_handle_get_connection_unix_user }, { "GetConnectionUnixProcessID", DBUS_TYPE_STRING_AS_STRING, DBUS_TYPE_UINT32_AS_STRING, bus_driver_handle_get_connection_unix_process_id }, { "GetAdtAuditSessionData", DBUS_TYPE_STRING_AS_STRING, DBUS_TYPE_ARRAY_AS_STRING DBUS_TYPE_BYTE_AS_STRING, bus_driver_handle_get_adt_audit_session_data }, { "GetConnectionSELinuxSecurityContext", DBUS_TYPE_STRING_AS_STRING, DBUS_TYPE_ARRAY_AS_STRING DBUS_TYPE_BYTE_AS_STRING, bus_driver_handle_get_connection_selinux_security_context }, { "ReloadConfig", "", "", bus_driver_handle_reload_config }, { "GetId", "", DBUS_TYPE_STRING_AS_STRING, bus_driver_handle_get_id }, { "GetConnectionCredentials", "s", "a{sv}", bus_driver_handle_get_connection_credentials }, { NULL, NULL, NULL, NULL } }; static dbus_bool_t bus_driver_handle_introspect (DBusConnection *, BusTransaction *, DBusMessage *, DBusError *); static const MessageHandler introspectable_message_handlers[] = { { "Introspect", "", DBUS_TYPE_STRING_AS_STRING, bus_driver_handle_introspect }, { NULL, NULL, NULL, NULL } }; static const MessageHandler monitoring_message_handlers[] = { { "BecomeMonitor", "asu", "", bus_driver_handle_become_monitor }, { NULL, NULL, NULL, NULL } }; #ifdef DBUS_ENABLE_VERBOSE_MODE static const MessageHandler verbose_message_handlers[] = { { "EnableVerbose", "", "", bus_driver_handle_enable_verbose}, { "DisableVerbose", "", "", bus_driver_handle_disable_verbose}, { NULL, NULL, NULL, NULL } }; #endif #ifdef DBUS_ENABLE_STATS static const MessageHandler stats_message_handlers[] = { { "GetStats", "", "a{sv}", bus_stats_handle_get_stats }, { "GetConnectionStats", "s", "a{sv}", bus_stats_handle_get_connection_stats }, { "GetAllMatchRules", "", "a{sas}", bus_stats_handle_get_all_match_rules }, { NULL, NULL, NULL, NULL } }; #endif typedef struct { const char *name; const MessageHandler *message_handlers; const char *extra_introspection; } InterfaceHandler; /* These should ideally be sorted by frequency of use, although it * probably doesn't matter with this few items */ static InterfaceHandler interface_handlers[] = { { DBUS_INTERFACE_DBUS, dbus_message_handlers, " \n" " \n" " \n" " \n" " \n" " \n" " \n" " \n" " \n" " \n" " \n" }, { DBUS_INTERFACE_INTROSPECTABLE, introspectable_message_handlers, NULL }, { DBUS_INTERFACE_MONITORING, monitoring_message_handlers, NULL }, #ifdef DBUS_ENABLE_VERBOSE_MODE { DBUS_INTERFACE_VERBOSE, verbose_message_handlers, NULL }, #endif #ifdef DBUS_ENABLE_STATS { BUS_INTERFACE_STATS, stats_message_handlers, NULL }, #endif { NULL, NULL, NULL } }; static dbus_bool_t write_args_for_direction (DBusString *xml, const char *signature, dbus_bool_t in) { DBusTypeReader typereader; DBusString sigstr; int current_type; _dbus_string_init_const (&sigstr, signature); _dbus_type_reader_init_types_only (&typereader, &sigstr, 0); while ((current_type = _dbus_type_reader_get_current_type (&typereader)) != DBUS_TYPE_INVALID) { const DBusString *subsig; int start, len; _dbus_type_reader_get_signature (&typereader, &subsig, &start, &len); if (!_dbus_string_append_printf (xml, " \n")) goto oom; _dbus_type_reader_next (&typereader); } return TRUE; oom: return FALSE; } dbus_bool_t bus_driver_generate_introspect_string (DBusString *xml) { const InterfaceHandler *ih; const MessageHandler *mh; if (!_dbus_string_append (xml, DBUS_INTROSPECT_1_0_XML_DOCTYPE_DECL_NODE)) return FALSE; if (!_dbus_string_append (xml, "\n")) return FALSE; for (ih = interface_handlers; ih->name != NULL; ih++) { if (!_dbus_string_append_printf (xml, " \n", ih->name)) return FALSE; for (mh = ih->message_handlers; mh->name != NULL; mh++) { if (!_dbus_string_append_printf (xml, " \n", mh->name)) return FALSE; if (!write_args_for_direction (xml, mh->in_args, TRUE)) return FALSE; if (!write_args_for_direction (xml, mh->out_args, FALSE)) return FALSE; if (!_dbus_string_append (xml, " \n")) return FALSE; } if (ih->extra_introspection != NULL && !_dbus_string_append (xml, ih->extra_introspection)) return FALSE; if (!_dbus_string_append (xml, " \n")) return FALSE; } if (!_dbus_string_append (xml, "\n")) return FALSE; return TRUE; } static dbus_bool_t bus_driver_handle_introspect (DBusConnection *connection, BusTransaction *transaction, DBusMessage *message, DBusError *error) { DBusString xml; DBusMessage *reply; const char *v_STRING; _dbus_verbose ("Introspect() on bus driver\n"); _DBUS_ASSERT_ERROR_IS_CLEAR (error); reply = NULL; if (! dbus_message_get_args (message, error, DBUS_TYPE_INVALID)) { _DBUS_ASSERT_ERROR_IS_SET (error); return FALSE; } if (!_dbus_string_init (&xml)) { BUS_SET_OOM (error); return FALSE; } if (!bus_driver_generate_introspect_string (&xml)) goto oom; v_STRING = _dbus_string_get_const_data (&xml); reply = dbus_message_new_method_return (message); if (reply == NULL) goto oom; if (! dbus_message_append_args (reply, DBUS_TYPE_STRING, &v_STRING, DBUS_TYPE_INVALID)) goto oom; if (! bus_transaction_send_from_driver (transaction, connection, reply)) goto oom; dbus_message_unref (reply); _dbus_string_free (&xml); return TRUE; oom: BUS_SET_OOM (error); if (reply) dbus_message_unref (reply); _dbus_string_free (&xml); return FALSE; } /* * Set @error and return FALSE if the message is not directed to the * dbus-daemon by its canonical object path. This is hardening against * system services with poorly-written security policy files, which * might allow sending dangerously broad equivalence classes of messages * such as "anything with this assumed-to-be-safe object path". * * dbus-daemon is unusual in that it normally ignores the object path * of incoming messages; we need to keep that behaviour for the "read" * read-only method calls like GetConnectionUnixUser for backwards * compatibility, but it seems safer to be more restrictive for things * intended to be root-only or privileged-developers-only. * * It is possible that there are other system services with the same * quirk as dbus-daemon. */ dbus_bool_t bus_driver_check_message_is_for_us (DBusMessage *message, DBusError *error) { if (!dbus_message_has_path (message, DBUS_PATH_DBUS)) { dbus_set_error (error, DBUS_ERROR_ACCESS_DENIED, "Method '%s' is only available at the canonical object path '%s'", dbus_message_get_member (message), DBUS_PATH_DBUS); return FALSE; } return TRUE; } dbus_bool_t bus_driver_handle_message (DBusConnection *connection, BusTransaction *transaction, DBusMessage *message, DBusError *error) { const char *name, *interface; const InterfaceHandler *ih; const MessageHandler *mh; dbus_bool_t found_interface = FALSE; _DBUS_ASSERT_ERROR_IS_CLEAR (error); if (dbus_message_is_signal (message, "org.freedesktop.systemd1.Activator", "ActivationFailure")) { BusContext *context; DBusConnection *systemd; context = bus_connection_get_context (connection); systemd = bus_driver_get_owner_of_name (connection, "org.freedesktop.systemd1"); if (systemd != connection) { const char *attacker; attacker = bus_connection_get_name (connection); bus_context_log (context, DBUS_SYSTEM_LOG_SECURITY, "Ignoring forged ActivationFailure message from " "connection %s (%s)", attacker ? attacker : "(unauthenticated)", bus_connection_get_loginfo (connection)); /* ignore it */ return TRUE; } return dbus_activation_systemd_failure(bus_context_get_activation(context), message); } if (dbus_message_get_type (message) != DBUS_MESSAGE_TYPE_METHOD_CALL) { _dbus_verbose ("Driver got a non-method-call message, ignoring\n"); return TRUE; /* we just ignore this */ } /* may be NULL, which means "any interface will do" */ interface = dbus_message_get_interface (message); _dbus_assert (dbus_message_get_member (message) != NULL); name = dbus_message_get_member (message); _dbus_verbose ("Driver got a method call: %s\n", name); /* security checks should have kept this from getting here */ _dbus_assert (dbus_message_get_sender (message) != NULL || strcmp (name, "Hello") == 0); for (ih = interface_handlers; ih->name != NULL; ih++) { if (interface != NULL && strcmp (interface, ih->name) != 0) continue; found_interface = TRUE; for (mh = ih->message_handlers; mh->name != NULL; mh++) { if (strcmp (mh->name, name) != 0) continue; _dbus_verbose ("Found driver handler for %s\n", name); if (!dbus_message_has_signature (message, mh->in_args)) { _DBUS_ASSERT_ERROR_IS_CLEAR (error); _dbus_verbose ("Call to %s has wrong args (%s, expected %s)\n", name, dbus_message_get_signature (message), mh->in_args); dbus_set_error (error, DBUS_ERROR_INVALID_ARGS, "Call to %s has wrong args (%s, expected %s)\n", name, dbus_message_get_signature (message), mh->in_args); _DBUS_ASSERT_ERROR_IS_SET (error); return FALSE; } if ((* mh->handler) (connection, transaction, message, error)) { _DBUS_ASSERT_ERROR_IS_CLEAR (error); _dbus_verbose ("Driver handler succeeded\n"); return TRUE; } else { _DBUS_ASSERT_ERROR_IS_SET (error); _dbus_verbose ("Driver handler returned failure\n"); return FALSE; } } } _dbus_verbose ("No driver handler for message \"%s\"\n", name); dbus_set_error (error, found_interface ? DBUS_ERROR_UNKNOWN_METHOD : DBUS_ERROR_UNKNOWN_INTERFACE, "%s does not understand message %s", DBUS_SERVICE_DBUS, name); return FALSE; } void bus_driver_remove_connection (DBusConnection *connection) { /* FIXME 1.0 Does nothing for now, should unregister the connection * with the bus driver. */ }