/* -*- Mode: C; tab-width: 8; indent-tabs-mode: t; c-basic-offset: 8 -*- * * Copyright (C) 2008 David Zeuthen * Copyright (C) 2008 Richard Hughes * * Licensed under the GNU General Public License Version 2 * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation; either version 2 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program; if not, write to the Free Software * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #ifdef HAVE_CONFIG_H # include #endif #include #include #include #include #include "egg-debug.h" #include "dkp-polkit.h" #include "dkp-daemon.h" #define DKP_POLKIT_GET_PRIVATE(o) (G_TYPE_INSTANCE_GET_PRIVATE ((o), DKP_TYPE_POLKIT, DkpPolkitPrivate)) struct DkpPolkitPrivate { DBusGConnection *connection; PolkitAuthority *authority; }; G_DEFINE_TYPE (DkpPolkit, dkp_polkit, G_TYPE_OBJECT) static gpointer dkp_polkit_object = NULL; /** * dkp_polkit_get_subject: **/ PolkitSubject * dkp_polkit_get_subject (DkpPolkit *polkit, DBusGMethodInvocation *context) { const gchar *sender; PolkitSubject *subject; sender = dbus_g_method_get_sender (context); subject = polkit_system_bus_name_new (sender); return subject; } /** * dkp_polkit_check_auth: **/ gboolean dkp_polkit_check_auth (DkpPolkit *polkit, PolkitSubject *subject, const gchar *action_id, DBusGMethodInvocation *context) { gboolean ret = FALSE; GError *error; GError *error_local; PolkitAuthorizationResult *result; /* check auth */ result = polkit_authority_check_authorization_sync (polkit->priv->authority, subject, action_id, NULL, POLKIT_CHECK_AUTHORIZATION_FLAGS_ALLOW_USER_INTERACTION, NULL, &error_local); if (result == NULL) { error = g_error_new (DKP_DAEMON_ERROR, DKP_DAEMON_ERROR_GENERAL, "failed to check authorisation: %s", error_local->message); dbus_g_method_return_error (context, error); g_error_free (error_local); g_error_free (error); goto out; } /* okay? */ if (polkit_authorization_result_get_is_authorized (result)) { ret = TRUE; } else { error = g_error_new (DKP_DAEMON_ERROR, DKP_DAEMON_ERROR_GENERAL, "not authorized"); dbus_g_method_return_error (context, error); g_error_free (error); } out: if (result != NULL) g_object_unref (result); return ret; } /** * dkp_polkit_get_uid: **/ gboolean dkp_polkit_get_uid (DkpPolkit *polkit, PolkitSubject *subject, uid_t *uid) { DBusConnection *connection; const gchar *name; if (!POLKIT_IS_SYSTEM_BUS_NAME (subject)) { egg_debug ("not system bus name"); return FALSE; } connection = dbus_g_connection_get_connection (polkit->priv->connection); name = polkit_system_bus_name_get_name (POLKIT_SYSTEM_BUS_NAME (subject)); *uid = dbus_bus_get_unix_user (connection, name, NULL); return TRUE; } /** * dkp_polkit_get_pid: **/ gboolean dkp_polkit_get_pid (DkpPolkit *polkit, PolkitSubject *subject, pid_t *pid) { gboolean ret = FALSE; GError *error = NULL; const gchar *name; DBusGProxy *proxy = NULL; /* bus name? */ if (!POLKIT_IS_SYSTEM_BUS_NAME (subject)) { egg_debug ("not system bus name"); goto out; } name = polkit_system_bus_name_get_name (POLKIT_SYSTEM_BUS_NAME (subject)); proxy = dbus_g_proxy_new_for_name_owner (polkit->priv->connection, "org.freedesktop.DBus", "/org/freedesktop/DBus/Bus", "org.freedesktop.DBus", &error); if (proxy == NULL) { egg_warning ("DBUS error: %s", error->message); g_error_free (error); goto out; } /* get pid from DBus (quite slow) */ ret = dbus_g_proxy_call (proxy, "GetConnectionUnixProcessID", &error, G_TYPE_STRING, name, G_TYPE_INVALID, G_TYPE_UINT, pid, G_TYPE_INVALID); if (!ret) { egg_warning ("failed to get pid: %s", error->message); g_error_free (error); goto out; } out: if (proxy != NULL) g_object_unref (proxy); return ret; } /** * dkp_polkit_finalize: **/ static void dkp_polkit_finalize (GObject *object) { DkpPolkit *polkit; g_return_if_fail (DKP_IS_POLKIT (object)); polkit = DKP_POLKIT (object); if (polkit->priv->connection != NULL) dbus_g_connection_unref (polkit->priv->connection); g_object_unref (polkit->priv->authority); G_OBJECT_CLASS (dkp_polkit_parent_class)->finalize (object); } /** * dkp_polkit_class_init: **/ static void dkp_polkit_class_init (DkpPolkitClass *klass) { GObjectClass *object_class = G_OBJECT_CLASS (klass); object_class->finalize = dkp_polkit_finalize; g_type_class_add_private (klass, sizeof (DkpPolkitPrivate)); } /** * dkp_polkit_init: * * initializes the polkit class. NOTE: We expect polkit objects * to *NOT* be removed or added during the session. * We only control the first polkit object if there are more than one. **/ static void dkp_polkit_init (DkpPolkit *polkit) { GError *error = NULL; polkit->priv = DKP_POLKIT_GET_PRIVATE (polkit); polkit->priv->connection = dbus_g_bus_get (DBUS_BUS_SYSTEM, &error); if (polkit->priv->connection == NULL) { if (error != NULL) { g_critical ("error getting system bus: %s", error->message); g_error_free (error); } goto out; } polkit->priv->authority = polkit_authority_get (); out: return; } /** * dkp_polkit_new: * Return value: A new polkit class instance. **/ DkpPolkit * dkp_polkit_new (void) { if (dkp_polkit_object != NULL) { g_object_ref (dkp_polkit_object); } else { dkp_polkit_object = g_object_new (DKP_TYPE_POLKIT, NULL); g_object_add_weak_pointer (dkp_polkit_object, &dkp_polkit_object); } return DKP_POLKIT (dkp_polkit_object); } /*************************************************************************** *** MAKE CHECK TESTS *** ***************************************************************************/ #ifdef EGG_TEST #include "egg-test.h" void dkp_polkit_test (gpointer user_data) { EggTest *test = (EggTest *) user_data; DkpPolkit *polkit; if (!egg_test_start (test, "DkpPolkit")) return; /************************************************************/ egg_test_title (test, "get instance"); polkit = dkp_polkit_new (); egg_test_assert (test, polkit != NULL); /* unref */ g_object_unref (polkit); egg_test_end (test); } #endif