ThrowMsg(CynaraException::InvalidParam, "User type incorrect");
}
+ if (!smack_simple_check()) {
+ policies.emplace_back(CynaraAdminPolicy(
+ CYNARA_ADMIN_WILDCARD, userStr, CYNARA_ADMIN_WILDCARD,
+ static_cast<int>(CynaraAdminPolicy::Operation::Allow),
+ Buckets.at(Bucket::MANIFESTS_GLOBAL)));
+ }
+
policies.push_back(CynaraAdminPolicy(CYNARA_ADMIN_WILDCARD,
userStr,
CYNARA_ADMIN_WILDCARD,
int call_type_int;
Deserialization::Deserialize(msg.buffer, call_type_int);
SecurityModuleCall call_type = static_cast<SecurityModuleCall>(call_type_int);
- if (!smack_simple_check()) {
- LogWarning("Running in no-smack mode, treating connection as authenticated - privileges will not be checked!");
- msg.creds.authenticated = true;
- }
- LogWarning("Processing event from client - smack label: " << msg.creds.label << ", pid: " << msg.creds.pid);
+ LogWarning("Processing event from client - smack label: " << msg.creds.label << ", pid: "
+ << msg.creds.pid << ", uid: " << msg.creds.uid);
LOG_EXECUTION_TIME(SecurityModuleCallToString(call_type), msg.creds);
switch (call_type) {
case SecurityModuleCall::NOOP:
projects / platform / core / security / security-manager.git / commitdiff