1 /* GIO - GLib Input, Output and Streaming Library
3 * Copyright (C) 2010 Red Hat, Inc.
4 * Copyright (C) 2009 Codethink Limited
6 * SPDX-License-Identifier: LGPL-2.1-or-later
8 * This library is free software; you can redistribute it and/or
9 * modify it under the terms of the GNU Lesser General Public
10 * License as published by the Free Software Foundation; either
11 * version 2.1 of the License, or (at your option) any later version.
13 * See the included COPYING file for more information.
15 * Authors: David Zeuthen <davidz@redhat.com>
19 * SECTION:gunixcredentialsmessage
20 * @title: GUnixCredentialsMessage
21 * @short_description: A GSocketControlMessage containing credentials
22 * @include: gio/gunixcredentialsmessage.h
23 * @see_also: #GUnixConnection, #GSocketControlMessage
25 * This #GSocketControlMessage contains a #GCredentials instance. It
26 * may be sent using g_socket_send_message() and received using
27 * g_socket_receive_message() over UNIX sockets (ie: sockets in the
28 * %G_SOCKET_FAMILY_UNIX family).
30 * For an easier way to send and receive credentials over
31 * stream-oriented UNIX sockets, see
32 * g_unix_connection_send_credentials() and
33 * g_unix_connection_receive_credentials(). To receive credentials of
34 * a foreign process connected to a socket, use
35 * g_socket_get_credentials().
37 * Since GLib 2.72, #GUnixCredentialMessage is available on all platforms. It
38 * requires underlying system support (such as Windows 10 with `AF_UNIX`) at run
41 * Before GLib 2.72, `<gio/gunixcredentialsmessage.h>` belonged to the UNIX-specific
42 * GIO interfaces, thus you had to use the `gio-unix-2.0.pc` pkg-config file
43 * when using it. This is no longer necessary since GLib 2.72.
48 /* ---------------------------------------------------------------------------------------------------- */
57 #include "gunixcredentialsmessage.h"
58 #include "gcredentials.h"
59 #include "gcredentialsprivate.h"
60 #include "gnetworking.h"
64 struct _GUnixCredentialsMessagePrivate
66 GCredentials *credentials;
75 G_DEFINE_TYPE_WITH_PRIVATE (GUnixCredentialsMessage, g_unix_credentials_message, G_TYPE_SOCKET_CONTROL_MESSAGE)
78 g_unix_credentials_message_get_size (GSocketControlMessage *message)
80 #if G_CREDENTIALS_UNIX_CREDENTIALS_MESSAGE_SUPPORTED
81 return G_CREDENTIALS_NATIVE_SIZE;
88 g_unix_credentials_message_get_level (GSocketControlMessage *message)
90 #if G_CREDENTIALS_UNIX_CREDENTIALS_MESSAGE_SUPPORTED
98 g_unix_credentials_message_get_msg_type (GSocketControlMessage *message)
100 #if G_CREDENTIALS_USE_LINUX_UCRED
101 return SCM_CREDENTIALS;
102 #elif G_CREDENTIALS_USE_FREEBSD_CMSGCRED
104 #elif G_CREDENTIALS_USE_NETBSD_UNPCBID
106 #elif G_CREDENTIALS_USE_SOLARIS_UCRED
108 #elif G_CREDENTIALS_UNIX_CREDENTIALS_MESSAGE_SUPPORTED
109 #error "G_CREDENTIALS_UNIX_CREDENTIALS_MESSAGE_SUPPORTED is set but there is no msg_type defined for this platform"
111 /* includes G_CREDENTIALS_USE_APPLE_XUCRED */
116 static GSocketControlMessage *
117 g_unix_credentials_message_deserialize (gint level,
122 #if G_CREDENTIALS_UNIX_CREDENTIALS_MESSAGE_SUPPORTED
123 GSocketControlMessage *message;
124 GCredentials *credentials;
126 if (level != SOL_SOCKET || type != g_unix_credentials_message_get_msg_type (NULL))
129 if (size != G_CREDENTIALS_NATIVE_SIZE)
131 g_warning ("Expected a credentials struct of %" G_GSIZE_FORMAT " bytes but "
132 "got %" G_GSIZE_FORMAT " bytes of data",
133 G_CREDENTIALS_NATIVE_SIZE, size);
137 credentials = g_credentials_new ();
138 g_credentials_set_native (credentials, G_CREDENTIALS_NATIVE_TYPE, data);
140 if (g_credentials_get_unix_user (credentials, NULL) == (uid_t) -1)
142 /* This happens on Linux if the remote side didn't pass the credentials */
143 g_object_unref (credentials);
147 message = g_unix_credentials_message_new_with_credentials (credentials);
148 g_object_unref (credentials);
152 #else /* !G_CREDENTIALS_UNIX_CREDENTIALS_MESSAGE_SUPPORTED */
159 g_unix_credentials_message_serialize (GSocketControlMessage *_message,
162 #if G_CREDENTIALS_UNIX_CREDENTIALS_MESSAGE_SUPPORTED
163 GUnixCredentialsMessage *message = G_UNIX_CREDENTIALS_MESSAGE (_message);
166 g_credentials_get_native (message->priv->credentials,
167 G_CREDENTIALS_NATIVE_TYPE),
168 G_CREDENTIALS_NATIVE_SIZE);
173 g_unix_credentials_message_finalize (GObject *object)
175 GUnixCredentialsMessage *message = G_UNIX_CREDENTIALS_MESSAGE (object);
177 if (message->priv->credentials != NULL)
178 g_object_unref (message->priv->credentials);
180 G_OBJECT_CLASS (g_unix_credentials_message_parent_class)->finalize (object);
184 g_unix_credentials_message_init (GUnixCredentialsMessage *message)
186 message->priv = g_unix_credentials_message_get_instance_private (message);
190 g_unix_credentials_message_get_property (GObject *object,
195 GUnixCredentialsMessage *message = G_UNIX_CREDENTIALS_MESSAGE (object);
199 case PROP_CREDENTIALS:
200 g_value_set_object (value, message->priv->credentials);
204 G_OBJECT_WARN_INVALID_PROPERTY_ID (object, prop_id, pspec);
210 g_unix_credentials_message_set_property (GObject *object,
215 GUnixCredentialsMessage *message = G_UNIX_CREDENTIALS_MESSAGE (object);
219 case PROP_CREDENTIALS:
220 message->priv->credentials = g_value_dup_object (value);
224 G_OBJECT_WARN_INVALID_PROPERTY_ID (object, prop_id, pspec);
230 g_unix_credentials_message_constructed (GObject *object)
232 GUnixCredentialsMessage *message = G_UNIX_CREDENTIALS_MESSAGE (object);
234 if (message->priv->credentials == NULL)
235 message->priv->credentials = g_credentials_new ();
237 if (G_OBJECT_CLASS (g_unix_credentials_message_parent_class)->constructed != NULL)
238 G_OBJECT_CLASS (g_unix_credentials_message_parent_class)->constructed (object);
242 g_unix_credentials_message_class_init (GUnixCredentialsMessageClass *class)
244 GSocketControlMessageClass *scm_class;
245 GObjectClass *gobject_class;
247 gobject_class = G_OBJECT_CLASS (class);
248 gobject_class->get_property = g_unix_credentials_message_get_property;
249 gobject_class->set_property = g_unix_credentials_message_set_property;
250 gobject_class->finalize = g_unix_credentials_message_finalize;
251 gobject_class->constructed = g_unix_credentials_message_constructed;
253 scm_class = G_SOCKET_CONTROL_MESSAGE_CLASS (class);
254 scm_class->get_size = g_unix_credentials_message_get_size;
255 scm_class->get_level = g_unix_credentials_message_get_level;
256 scm_class->get_type = g_unix_credentials_message_get_msg_type;
257 scm_class->serialize = g_unix_credentials_message_serialize;
258 scm_class->deserialize = g_unix_credentials_message_deserialize;
261 * GUnixCredentialsMessage:credentials:
263 * The credentials stored in the message.
267 g_object_class_install_property (gobject_class,
269 g_param_spec_object ("credentials",
271 P_("The credentials stored in the message"),
275 G_PARAM_CONSTRUCT_ONLY |
276 G_PARAM_STATIC_NAME |
277 G_PARAM_STATIC_BLURB |
278 G_PARAM_STATIC_NICK));
282 /* ---------------------------------------------------------------------------------------------------- */
285 * g_unix_credentials_message_is_supported:
287 * Checks if passing #GCredentials on a #GSocket is supported on this platform.
289 * Returns: %TRUE if supported, %FALSE otherwise
294 g_unix_credentials_message_is_supported (void)
296 #if G_CREDENTIALS_UNIX_CREDENTIALS_MESSAGE_SUPPORTED
303 /* ---------------------------------------------------------------------------------------------------- */
306 * g_unix_credentials_message_new:
308 * Creates a new #GUnixCredentialsMessage with credentials matching the current processes.
310 * Returns: a new #GUnixCredentialsMessage
314 GSocketControlMessage *
315 g_unix_credentials_message_new (void)
317 g_return_val_if_fail (g_unix_credentials_message_is_supported (), NULL);
318 return g_object_new (G_TYPE_UNIX_CREDENTIALS_MESSAGE,
323 * g_unix_credentials_message_new_with_credentials:
324 * @credentials: A #GCredentials object.
326 * Creates a new #GUnixCredentialsMessage holding @credentials.
328 * Returns: a new #GUnixCredentialsMessage
332 GSocketControlMessage *
333 g_unix_credentials_message_new_with_credentials (GCredentials *credentials)
335 g_return_val_if_fail (G_IS_CREDENTIALS (credentials), NULL);
336 g_return_val_if_fail (g_unix_credentials_message_is_supported (), NULL);
337 return g_object_new (G_TYPE_UNIX_CREDENTIALS_MESSAGE,
338 "credentials", credentials,
343 * g_unix_credentials_message_get_credentials:
344 * @message: A #GUnixCredentialsMessage.
346 * Gets the credentials stored in @message.
348 * Returns: (transfer none): A #GCredentials instance. Do not free, it is owned by @message.
353 g_unix_credentials_message_get_credentials (GUnixCredentialsMessage *message)
355 g_return_val_if_fail (G_IS_UNIX_CREDENTIALS_MESSAGE (message), NULL);
356 return message->priv->credentials;