ln -s ../security-server-get-gid.socket %{buildroot}/usr/lib/systemd/system/sockets.target.wants/security-server-get-gid.socket
ln -s ../security-server-privilege-by-pid.socket %{buildroot}/usr/lib/systemd/system/sockets.target.wants/security-server-privilege-by-pid.socket
ln -s ../security-server-exec-path.socket %{buildroot}/usr/lib/systemd/system/sockets.target.wants/security-server-exec-path.socket
+ln -s ../security-server-get-object-name.socket %{buildroot}/usr/lib/systemd/system/sockets.target.wants/security-server-get-object-name.socket
%clean
rm -rf %{buildroot}
%attr(-,root,root) /usr/lib/systemd/system/security-server-privilege-by-pid.socket
%attr(-,root,root) /usr/lib/systemd/system/sockets.target.wants/security-server-exec-path.socket
%attr(-,root,root) /usr/lib/systemd/system/security-server-exec-path.socket
+%attr(-,root,root) /usr/lib/systemd/system/sockets.target.wants/security-server-get-object-name.socket
+%attr(-,root,root) /usr/lib/systemd/system/security-server-get-object-name.socket
%{_datadir}/license/%{name}
char const * const SERVICE_SOCKET_GET_GID =
"/tmp/.security-server-api-get-gid.sock";
char const * const SERVICE_SOCKET_PRIVILEGE_BY_PID =
- "/tmp/.security-server-api-privilege-by-pid";
+ "/tmp/.security-server-api-privilege-by-pid.sock";
char const * const SERVICE_SOCKET_EXEC_PATH =
"/tmp/.security-server-api-exec-path.sock";
char const * const SERVICE_SOCKET_GET_OBJECT_NAME =
struct smack_accesses *smack = NULL;
if (!buffer.Ready()) {
- LogDebug("Got part of message. Service is waiting for the rest.");
return false;
}
auto &buffer = m_socketBufferMap[event.connectionID.counter];
buffer.Push(event.rawBuffer);
- LogDebug("Pushed to buffer ptr: " << (void*)&buffer);
// We can get several requests in one package.
// Extract and process them all
while(readOne(event.connectionID, buffer));
char *exe;
if (!buffer.Ready()) {
- LogDebug("Got part of message. Service is waiting for the rest.");
return false;
}
auto &buffer = m_socketBufferMap[event.connectionID.counter];
buffer.Push(event.rawBuffer);
- LogDebug("Pushed to buffer ptr: " << (void*)&buffer);
// We can get several requests in one package.
// Extract and process them all
while(processOne(event.connectionID, buffer));
LogDebug("Iteration begin");
std::string objectName;
int retCode = SECURITY_SERVER_API_ERROR_SERVER_ERROR;
+
if (!buffer.Ready()) {
- LogDebug("Got part of message. Service is waiting for the rest.");
return false;
}
auto &buffer = m_socketBufferMap[event.connectionID.counter];
buffer.Push(event.rawBuffer);
- LogDebug("Pushed to buffer ptr: " << (void*)&buffer);
-
// We can get several requests in one package.
// Extract and process them all
while(readOne(event.connectionID, buffer));
LogDebug("Iteration begin");
gid_t gid;
int retCode = SECURITY_SERVER_API_ERROR_SERVER_ERROR;
+
if (!buffer.Ready()) {
- LogDebug("Got part of message. Service is waiting for the rest.");
return false;
}
auto &buffer = m_socketBufferMap[event.connectionID.counter];
buffer.Push(event.rawBuffer);
- LogDebug("Pushed to buffer ptr: " << (void*)&buffer);
-
// We can get several requests in one package.
// Extract and process them all
while(readOne(event.connectionID, buffer));
bool PrivilegeByPidService::readOne(const ConnectionID &conn, SocketBuffer &buffer) {
LogDebug("Iteration begin");
-
int retval;
int pid;
std::string object;
if (!buffer.Ready()) {
- LogDebug("Got part of message. Service is waiting for the rest.");
return false;
}
auto &buffer = m_socketBufferMap[event.connectionID.counter];
buffer.Push(event.rawBuffer);
- LogDebug("Pushed to buffer ptr: " << (void*)&buffer);
// We can get several requests in one package.
// Extract and process them all
while(readOne(event.connectionID, buffer));
${CMAKE_SOURCE_DIR}/systemd/security-server-get-gid.socket
${CMAKE_SOURCE_DIR}/systemd/security-server-privilege-by-pid.socket
${CMAKE_SOURCE_DIR}/systemd/security-server-exec-path.socket
+ ${CMAKE_SOURCE_DIR}/systemd/security-server-get-object-name.socket
DESTINATION
/usr/lib/systemd/system
)
--- /dev/null
+[Socket]
+ListenStream=/tmp/.security-server-api-get-object-name.sock
+SocketMode=0777
+SmackLabelIPIn=*
+SmackLabelIPOut=@
+
+Service=security-server.service
+
+[Install]
+WantedBy=sockets.target
[Socket]
-ListenStream=/tmp/.security-server-api-privilege-by-pid
+ListenStream=/tmp/.security-server-api-privilege-by-pid.sock
SocketMode=0777
SmackLabelIPIn=*
SmackLabelIPOut=@
Sockets=security-server-get-gid.socket
Sockets=security-server-privilege-by-pid.socket
Sockets=security-server-exec-path.socket
+Sockets=security-server-get-object-name.socket
[Install]
WantedBy=multi-user.target