colin/NetworkManager
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

merge: fix racing issues in NMManager/prop_filter (th/prop-filter-bgo753874)

Browse Source 
https://bugzilla.gnome.org/show_bug.cgi?id=753874
This commit is contained in:
Thomas Haller
2015-08-21 17:31:36 +02:00
parent 00b73a9f10 751c674643
commit d46a2c1af3
1 changed files with 101 additions and 38 deletions
Download Patch File Download Diff File Expand all files Collapse all files

139
src/nm-manager.c
View File

@@ -112,7 +112,10 @@ typedef struct {
NMPolicy *policy; NMPolicy *policy;
NMBusManager *dbus_mgr; NMBusManager *dbus_mgr;
guint prop_filter; struct {
GDBusConnection *connection;
guint id;
} prop_filter;
NMRfkillManager *rfkill_mgr; NMRfkillManager *rfkill_mgr;
NMSettings *settings; NMSettings *settings;
@@ -4378,6 +4381,7 @@ typedef struct {
NMAuthSubject *subject; NMAuthSubject *subject;
const char *permission; const char *permission;
const char *audit_op; const char *audit_op;
char *audit_prop_value;
GObject *object; GObject *object;
const char *property; const char *property;
gboolean set_enable; gboolean set_enable;
@@ -4390,8 +4394,10 @@ free_property_filter_data (PropertyFilterData *pfd)
g_object_unref (pfd->connection); g_object_unref (pfd->connection);
g_object_unref (pfd->message); g_object_unref (pfd->message);
g_object_unref (pfd->subject); g_object_unref (pfd->subject);
g_object_unref (pfd->object); if (pfd->object)
g_free (pfd); g_object_unref (pfd->object);
g_free (pfd->audit_prop_value);
g_slice_free (PropertyFilterData, pfd);
} }
static void static void
@@ -4403,23 +4409,20 @@ prop_set_auth_done_cb (NMAuthChain *chain,
PropertyFilterData *pfd = user_data; PropertyFilterData *pfd = user_data;
NMManagerPrivate *priv = NM_MANAGER_GET_PRIVATE (pfd->self); NMManagerPrivate *priv = NM_MANAGER_GET_PRIVATE (pfd->self);
NMAuthCallResult result; NMAuthCallResult result;
gs_free char *prop_value = NULL;
GDBusMessage *reply; GDBusMessage *reply;
prop_value = g_strdup_printf ("%s:%d", pfd->property, pfd->set_enable);
priv->auth_chains = g_slist_remove (priv->auth_chains, chain); priv->auth_chains = g_slist_remove (priv->auth_chains, chain);
result = nm_auth_chain_get_result (chain, pfd->permission); result = nm_auth_chain_get_result (chain, pfd->permission);
if (error || (result != NM_AUTH_CALL_RESULT_YES)) { if (error || (result != NM_AUTH_CALL_RESULT_YES)) {
reply = g_dbus_message_new_method_error (pfd->message, reply = g_dbus_message_new_method_error (pfd->message,
NM_PERM_DENIED_ERROR, NM_PERM_DENIED_ERROR,
"Not authorized to perform this operation"); "Not authorized to perform this operation");
nm_audit_log_control_op (pfd->audit_op, prop_value, FALSE, pfd->subject, error ? error->message : NULL); nm_audit_log_control_op (pfd->audit_op, pfd->audit_prop_value, FALSE, pfd->subject, error ? error->message : NULL);
} else { } else {
g_object_set (pfd->object, pfd->property, pfd->set_enable, NULL); g_object_set (pfd->object, pfd->property, pfd->set_enable, NULL);
reply = g_dbus_message_new_method_reply (pfd->message); reply = g_dbus_message_new_method_reply (pfd->message);
g_dbus_message_set_body (reply, g_variant_new_tuple (NULL, 0)); g_dbus_message_set_body (reply, g_variant_new_tuple (NULL, 0));
nm_audit_log_control_op (pfd->audit_op, prop_value, TRUE, pfd->subject, NULL); nm_audit_log_control_op (pfd->audit_op, pfd->audit_prop_value, TRUE, pfd->subject, NULL);
} }
g_dbus_connection_send_message (pfd->connection, reply, g_dbus_connection_send_message (pfd->connection, reply,
@@ -4438,12 +4441,33 @@ do_set_property_check (gpointer user_data)
NMManagerPrivate *priv = NM_MANAGER_GET_PRIVATE (pfd->self); NMManagerPrivate *priv = NM_MANAGER_GET_PRIVATE (pfd->self);
GDBusMessage *reply = NULL; GDBusMessage *reply = NULL;
NMAuthChain *chain; NMAuthChain *chain;
const char *error_message = NULL;
if (!pfd->object) {
pfd->object = nm_bus_manager_get_registered_object (nm_bus_manager_get (),
g_dbus_message_get_path (pfd->message));
if (!pfd->object) {
reply = g_dbus_message_new_method_error (pfd->message,
"org.freedesktop.DBus.Error.UnknownObject",
(error_message = "Object doesn't exist."));
goto out;
}
/* If we lookup the object, we expect the object to be of a certain type.
* Only NMDevice type have settable properties. */
if (!NM_IS_DEVICE (pfd->object)) {
reply = g_dbus_message_new_method_error (pfd->message,
"org.freedesktop.DBus.Error.InvalidArgs",
(error_message = "Object is of unexpected type."));
goto out;
}
g_object_ref (pfd->object);
}
pfd->subject = nm_auth_subject_new_unix_process_from_message (pfd->connection, pfd->message); pfd->subject = nm_auth_subject_new_unix_process_from_message (pfd->connection, pfd->message);
if (!pfd->subject) { if (!pfd->subject) {
reply = g_dbus_message_new_method_error (pfd->message, reply = g_dbus_message_new_method_error (pfd->message,
NM_PERM_DENIED_ERROR, NM_PERM_DENIED_ERROR,
"Could not determine request UID."); (error_message = "Could not determine request UID."));
goto out; goto out;
} }
@@ -4452,7 +4476,7 @@ do_set_property_check (gpointer user_data)
if (!chain) { if (!chain) {
reply = g_dbus_message_new_method_error (pfd->message, reply = g_dbus_message_new_method_error (pfd->message,
NM_PERM_DENIED_ERROR, NM_PERM_DENIED_ERROR,
"Could not authenticate request."); (error_message = "Could not authenticate request."));
goto out; goto out;
} }
@@ -4461,6 +4485,7 @@ do_set_property_check (gpointer user_data)
out: out:
if (reply) { if (reply) {
nm_audit_log_control_op (pfd->audit_op, pfd->audit_prop_value, FALSE, pfd->subject, error_message);
g_dbus_connection_send_message (pfd->connection, reply, g_dbus_connection_send_message (pfd->connection, reply,
G_DBUS_SEND_MESSAGE_FLAGS_NONE, G_DBUS_SEND_MESSAGE_FLAGS_NONE,
NULL, NULL); NULL, NULL);
@@ -4477,16 +4502,20 @@ prop_filter (GDBusConnection *connection,
gboolean incoming, gboolean incoming,
gpointer user_data) gpointer user_data)
{ {
NMManager *self = NM_MANAGER (user_data); gs_unref_object NMManager *self = NULL;
GVariant *args, *value = NULL; GVariant *args, *value = NULL;
const char *propiface = NULL; const char *propiface = NULL;
const char *propname = NULL; const char *propname = NULL;
const char *glib_propname = NULL, *permission = NULL; const char *glib_propname = NULL, *permission = NULL;
const char *audit_op = NULL; const char *audit_op = NULL;
gboolean set_enable; gboolean set_enable;
gpointer obj; GObject *object = NULL;
PropertyFilterData *pfd; PropertyFilterData *pfd;
self = g_weak_ref_get (user_data);
if (!self)
return message;
/* The sole purpose of this function is to validate property accesses on the /* The sole purpose of this function is to validate property accesses on the
* NMManager object since gdbus doesn't give us this functionality. * NMManager object since gdbus doesn't give us this functionality.
*/ */
@@ -4527,7 +4556,7 @@ prop_filter (GDBusConnection *connection,
} else } else
return message; return message;
obj = self; object = g_object_ref (self);
} else if (!strcmp (propiface, NM_DBUS_INTERFACE_DEVICE)) { } else if (!strcmp (propiface, NM_DBUS_INTERFACE_DEVICE)) {
if (!strcmp (propname, "Autoconnect")) { if (!strcmp (propname, "Autoconnect")) {
glib_propname = NM_DEVICE_AUTOCONNECT; glib_propname = NM_DEVICE_AUTOCONNECT;
@@ -4535,11 +4564,6 @@ prop_filter (GDBusConnection *connection,
audit_op = NM_AUDIT_OP_DEVICE_AUTOCONNECT; audit_op = NM_AUDIT_OP_DEVICE_AUTOCONNECT;
} else } else
return message; return message;
obj = nm_bus_manager_get_registered_object (nm_bus_manager_get (),
g_dbus_message_get_path (message));
if (!obj)
return message;
} else } else
return message; return message;
@@ -4547,20 +4571,71 @@ prop_filter (GDBusConnection *connection,
* make other D-Bus calls from. In particular, we cannot call * make other D-Bus calls from. In particular, we cannot call
* org.freedesktop.DBus.GetConnectionUnixUser to find the remote UID. * org.freedesktop.DBus.GetConnectionUnixUser to find the remote UID.
*/ */
pfd = g_new0 (PropertyFilterData, 1); pfd = g_slice_new0 (PropertyFilterData);
pfd->self = g_object_ref (self); pfd->self = self;
self = NULL;
pfd->connection = g_object_ref (connection); pfd->connection = g_object_ref (connection);
pfd->message = message; pfd->message = message;
pfd->permission = permission; pfd->permission = permission;
pfd->object = g_object_ref (obj); pfd->object = object;
pfd->property = glib_propname; pfd->property = glib_propname;
pfd->set_enable = set_enable; pfd->set_enable = set_enable;
pfd->audit_op = audit_op; pfd->audit_op = audit_op;
pfd->audit_prop_value = g_strdup_printf ("%s:%d", pfd->property, pfd->set_enable);
g_idle_add (do_set_property_check, pfd); g_idle_add (do_set_property_check, pfd);
return NULL; return NULL;
} }
/******************************************************************************/
static int
_set_prop_filter_free2 (gpointer user_data)
{
g_slice_free (GWeakRef, user_data);
return G_SOURCE_REMOVE;
}
static void
_set_prop_filter_free (gpointer user_data)
{
g_weak_ref_clear (user_data);
/* Delay the final deletion of the user_data. There is a race when
* calling g_dbus_connection_remove_filter() that the callback and user_data
* might have been copied and being executed after the destroy function
* runs (bgo #704568).
* This doesn't really fix the race, but it should work well enough. */
g_timeout_add_seconds (2, _set_prop_filter_free2, user_data);
}
static void
_set_prop_filter (NMManager *self, GDBusConnection *connection)
{
NMManagerPrivate *priv = NM_MANAGER_GET_PRIVATE (self);
nm_assert ((!priv->prop_filter.connection) == (!priv->prop_filter.id));
if (priv->prop_filter.connection == connection)
return;
if (priv->prop_filter.connection) {
g_dbus_connection_remove_filter (priv->prop_filter.connection, priv->prop_filter.id);
priv->prop_filter.id = 0;
g_clear_object (&priv->prop_filter.connection);
}
if (connection) {
GWeakRef *wptr;
wptr = g_slice_new (GWeakRef);
g_weak_ref_init (wptr, self);
priv->prop_filter.id = g_dbus_connection_add_filter (connection, prop_filter, wptr, _set_prop_filter_free);
priv->prop_filter.connection = g_object_ref (connection);
}
}
/******************************************************************************/
static void static void
authority_changed_cb (NMAuthManager *auth_manager, gpointer user_data) authority_changed_cb (NMAuthManager *auth_manager, gpointer user_data)
{ {
@@ -4710,11 +4785,7 @@ dbus_connection_changed_cb (NMBusManager *dbus_mgr,
GDBusConnection *connection, GDBusConnection *connection,
gpointer user_data) gpointer user_data)
{ {
NMManager *self = NM_MANAGER (user_data); _set_prop_filter (NM_MANAGER (user_data), connection);
NMManagerPrivate *priv = NM_MANAGER_GET_PRIVATE (self);
if (connection)
priv->prop_filter = g_dbus_connection_add_filter (connection, prop_filter, self, NULL);
} }
/**********************************************************************/ /**********************************************************************/
@@ -4744,7 +4815,6 @@ nm_manager_setup (const char *state_file,
{ {
NMManager *self; NMManager *self;
NMManagerPrivate *priv; NMManagerPrivate *priv;
GDBusConnection *bus;
NMConfigData *config_data; NMConfigData *config_data;
/* Can only be called once */ /* Can only be called once */
@@ -4754,9 +4824,7 @@ nm_manager_setup (const char *state_file,
priv = NM_MANAGER_GET_PRIVATE (self); priv = NM_MANAGER_GET_PRIVATE (self);
bus = nm_bus_manager_get_connection (priv->dbus_mgr); _set_prop_filter (self, nm_bus_manager_get_connection (priv->dbus_mgr));
if (bus)
priv->prop_filter = g_dbus_connection_add_filter (bus, prop_filter, self, NULL);
priv->settings = nm_settings_new (); priv->settings = nm_settings_new ();
g_signal_connect (priv->settings, "notify::" NM_SETTINGS_STARTUP_COMPLETE, g_signal_connect (priv->settings, "notify::" NM_SETTINGS_STARTUP_COMPLETE,
@@ -4857,7 +4925,7 @@ nm_manager_init (NMManager *manager)
priv->state = NM_STATE_DISCONNECTED; priv->state = NM_STATE_DISCONNECTED;
priv->startup = TRUE; priv->startup = TRUE;
priv->dbus_mgr = nm_bus_manager_get (); priv->dbus_mgr = g_object_ref (nm_bus_manager_get ());
g_signal_connect (priv->dbus_mgr, g_signal_connect (priv->dbus_mgr,
NM_BUS_MANAGER_DBUS_CONNECTION_CHANGED, NM_BUS_MANAGER_DBUS_CONNECTION_CHANGED,
G_CALLBACK (dbus_connection_changed_cb), G_CALLBACK (dbus_connection_changed_cb),
@@ -5017,7 +5085,6 @@ dispose (GObject *object)
{ {
NMManager *manager = NM_MANAGER (object); NMManager *manager = NM_MANAGER (object);
NMManagerPrivate *priv = NM_MANAGER_GET_PRIVATE (manager); NMManagerPrivate *priv = NM_MANAGER_GET_PRIVATE (manager);
GDBusConnection *bus;
g_slist_free_full (priv->auth_chains, (GDestroyNotify) nm_auth_chain_unref); g_slist_free_full (priv->auth_chains, (GDestroyNotify) nm_auth_chain_unref);
priv->auth_chains = NULL; priv->auth_chains = NULL;
@@ -5062,14 +5129,10 @@ dispose (GObject *object)
/* Unregister property filter */ /* Unregister property filter */
if (priv->dbus_mgr) { if (priv->dbus_mgr) {
bus = nm_bus_manager_get_connection (priv->dbus_mgr);
if (bus && priv->prop_filter) {
g_dbus_connection_remove_filter (bus, priv->prop_filter);
priv->prop_filter = 0;
}
g_signal_handlers_disconnect_by_func (priv->dbus_mgr, dbus_connection_changed_cb, manager); g_signal_handlers_disconnect_by_func (priv->dbus_mgr, dbus_connection_changed_cb, manager);
priv->dbus_mgr = NULL; g_clear_object (&priv->dbus_mgr);
} }
_set_prop_filter (manager, NULL);
if (priv->sleep_monitor) { if (priv->sleep_monitor) {
g_signal_handlers_disconnect_by_func (priv->sleep_monitor, sleeping_cb, manager); g_signal_handlers_disconnect_by_func (priv->sleep_monitor, sleeping_cb, manager);