25 #include "dbus-credentials.h"
26 #include "dbus-internals.h"
54 BusPDPLinuxID* credential_parsecid;
57 char *linux_security_label;
59 dbus_int32_t adt_audit_data_size;
87 creds->credential_parsecid =
NULL;
89 creds->windows_sid =
NULL;
90 creds->linux_security_label =
NULL;
91 creds->adt_audit_data =
NULL;
92 creds->adt_audit_data_size = 0;
128 credentials->refcount += 1;
141 credentials->refcount -= 1;
142 if (credentials->refcount == 0)
145 dbus_free (credentials->linux_security_label);
148 if (credentials->credential_parsecid)
dbus_free(credentials->credential_parsecid);
149 credentials->credential_parsecid=
NULL;
168 _dbus_verbose(
"***** Add PID to credentials (%p)! %ld\n",credentials,pid);
170 credentials->pid = pid;
185 credentials->unix_uid = uid;
199 const char *windows_sid)
208 credentials->windows_sid = copy;
231 dbus_free (credentials->linux_security_label);
232 credentials->linux_security_label = copy;
256 credentials->adt_audit_data = copy;
257 credentials->adt_audit_data_size = size;
271 DBusCredentialType type)
275 case DBUS_CREDENTIAL_UNIX_PROCESS_ID:
277 case DBUS_CREDENTIAL_UNIX_USER_ID:
279 case DBUS_CREDENTIAL_WINDOWS_SID:
280 return credentials->windows_sid !=
NULL;
281 case DBUS_CREDENTIAL_LINUX_SECURITY_LABEL:
282 return credentials->linux_security_label !=
NULL;
283 case DBUS_CREDENTIAL_ADT_AUDIT_DATA_ID:
284 return credentials->adt_audit_data !=
NULL;
286 case DBUS_CREDENTIAL_UNIX_PARSEC:
287 return credentials->credential_parsecid !=
NULL;
305 return credentials->pid;
318 return credentials->unix_uid;
331 return credentials->windows_sid;
344 return credentials->linux_security_label;
357 return credentials->adt_audit_data;
370 return credentials->adt_audit_data_size;
387 possible_subset->pid == credentials->pid) &&
389 (possible_subset->credential_parsecid ==
NULL ||
390 (credentials->credential_parsecid && possible_subset->credential_parsecid &&
391 credentials->credential_parsecid->sz_pdplinux_context==possible_subset->credential_parsecid->sz_pdplinux_context &&
392 (0==memcmp(possible_subset->credential_parsecid,credentials->credential_parsecid,
393 sizeof(*(credentials->credential_parsecid))+credentials->credential_parsecid->sz_pdplinux_context))) ) &&
396 possible_subset->unix_uid == credentials->unix_uid) &&
397 (possible_subset->windows_sid ==
NULL ||
398 (credentials->windows_sid && strcmp (possible_subset->windows_sid,
399 credentials->windows_sid) == 0)) &&
400 (possible_subset->linux_security_label ==
NULL ||
401 (credentials->linux_security_label !=
NULL &&
402 strcmp (possible_subset->linux_security_label,
403 credentials->linux_security_label) == 0)) &&
404 (possible_subset->adt_audit_data ==
NULL ||
405 (credentials->adt_audit_data && memcmp (possible_subset->adt_audit_data,
406 credentials->adt_audit_data,
407 credentials->adt_audit_data_size) == 0));
422 (credentials->credential_parsecid==
NULL) &&
425 credentials->windows_sid ==
NULL &&
426 credentials->linux_security_label ==
NULL &&
427 credentials->adt_audit_data ==
NULL;
441 credentials->windows_sid ==
NULL;
458 DBUS_CREDENTIAL_UNIX_PROCESS_ID,
459 other_credentials) &&
461 DBUS_CREDENTIAL_UNIX_USER_ID,
462 other_credentials) &&
464 DBUS_CREDENTIAL_ADT_AUDIT_DATA_ID,
465 other_credentials) &&
467 DBUS_CREDENTIAL_LINUX_SECURITY_LABEL,
468 other_credentials) &&
470 DBUS_CREDENTIAL_WINDOWS_SID,
474 DBUS_CREDENTIAL_UNIX_PARSEC,
496 DBusCredentialType which,
499 if (which == DBUS_CREDENTIAL_UNIX_PROCESS_ID &&
505 else if (which == DBUS_CREDENTIAL_UNIX_USER_ID &&
511 else if (which == DBUS_CREDENTIAL_WINDOWS_SID &&
512 other_credentials->windows_sid !=
NULL)
517 else if (which == DBUS_CREDENTIAL_LINUX_SECURITY_LABEL &&
518 other_credentials->linux_security_label !=
NULL)
521 other_credentials->linux_security_label))
524 else if (which == DBUS_CREDENTIAL_ADT_AUDIT_DATA_ID &&
525 other_credentials->adt_audit_data !=
NULL)
531 else if (which == DBUS_CREDENTIAL_UNIX_PARSEC){
533 _dbus_verbose(
"***** Asked to add credential DBUS_CREDENTIAL_UNIX_PARSEC (%d))\n", which);
535 if (other_credentials->credential_parsecid !=
NULL) {
536 if (!_dbus_credentials_pdplinux_add_unix_parsec (credentials, other_credentials->credential_parsecid)){
537 _dbus_verbose(
"Return FAILED (can't set credentials to this one from other_credentials)\n");
541 _dbus_verbose(
"Return OK (credentials successful copied to this one from other_credentials)\n");
545 _dbus_verbose(
"Return OK (but other_cred not set pid=%ld, uid=%lu). So do not add, pdp_credential=%p\n",
546 other_credentials->pid,
547 other_credentials->unix_uid,
548 credentials->credential_parsecid);
566 if (credentials->credential_parsecid)
dbus_free(credentials->credential_parsecid);
567 credentials->credential_parsecid=
NULL;
572 credentials->windows_sid =
NULL;
573 dbus_free (credentials->linux_security_label);
574 credentials->linux_security_label =
NULL;
576 credentials->adt_audit_data =
NULL;
577 credentials->adt_audit_data_size = 0;
622 return credentials->unix_uid == other_credentials->unix_uid &&
623 ((!(credentials->windows_sid || other_credentials->windows_sid)) ||
624 (credentials->windows_sid && other_credentials->windows_sid &&
625 strcmp (credentials->windows_sid, other_credentials->windows_sid) == 0));
657 if (credentials->windows_sid !=
NULL)
666 if (credentials->linux_security_label !=
NULL)
670 credentials->linux_security_label))
675 if (credentials->credential_parsecid !=
NULL)
677 char* pdplinux_context_string=
NULL;
679 if (_dbus_pdplinux_context_to_name(credentials->credential_parsecid,&pdplinux_context_string)){
683 pdplinux_context_string)){
689 if (pdplinux_context_string)
dbus_free(pdplinux_context_string);
705 _dbus_credentials_pdplinux_get_unix_parsec (
DBusCredentials *credentials, BusPDPLinuxID** pparsecid)
707 *pparsecid=credentials->credential_parsecid;
712 _dbus_credentials_pdplinux_add_unix_parsec (
DBusCredentials *credentials,
713 BusPDPLinuxID* parsecid)
715 if (!parsecid)
return FALSE;
716 if (!credentials)
return FALSE;
718 if (credentials->credential_parsecid)
dbus_free(credentials->credential_parsecid);
719 credentials->credential_parsecid=
NULL;
722 sizeof(*(parsecid))+parsecid->sz_pdplinux_context);
724 if (credentials->credential_parsecid){
725 memcpy(credentials->credential_parsecid,parsecid,
726 sizeof(*(parsecid))+parsecid->sz_pdplinux_context);
729 _dbus_verbose(
"No memory!\n");