summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* build: Look for mozjs17 toowip/mozjs17Colin Walters2013-04-121-1/+12
|
* Revert "Dynamically load libmozjs185.so and cope with it not being available"Colin Walters2013-04-122-304/+147
| | | | | | | | | | The new plan is to hard-require JS. See discussion in https://bugs.freedesktop.org/show_bug.cgi?id=59830 This reverts commit 34cb6353b9affd6c04ea480df5fc39d0ca72319d. Conflicts: src/polkitbackend/polkitbackendjsauthority.c
* Add missing #include <sys/wait.h>Samuli Suominen2013-04-111-0/+1
| | | | | | | | This is required for WIFEXITED, WEXITSTATUS, WIFSIGNALED, WTERMSIG. This must have been implicit and nobody noticed, but isn't with SH4 architecture (Linux, Gentoo, GNU gcc and glibc). http://bugs.freedesktop.org/show_bug.cgi?id=62220
* update types for js188darkxst2013-04-111-20/+20
| | | | | | | | | For esr17, mozilla have removed many of the custom typedefs and replaced them with standard types. For example jsuint -> guint32, uintN -> unsigned and int32 -> gint32. These changes are backwards compatible with js185 https://bugs.freedesktop.org/show_bug.cgi?id=59781
* mocklibc: Only require autoconf 2.63Colin Walters2013-04-111-1/+1
| | | | It still works, and this lets polkit build on RHEL6.
* pkexec: Set process environment from pam_getenvlist()Steve Langasek2013-04-111-0/+10
| | | | | | | | Various pam modules provide environment variables that are intended to be set in the environment of the pam session. pkexec needs to process the output of pam_getenvlist() to get these. https://bugs.freedesktop.org/show_bug.cgi?id=62016
* polkitagent, pkexec: Respect SUID_CFLAGS and SUID_LDFLAGSVincent Untz2013-04-113-0/+17
| | | | | | This is a good way for distributors to use -fPIE/-pie. https://bugs.freedesktop.org/attachment.cgi?id=57584
* build: try harder to avoid systemd/consolekit misconfigurationGiovanni Campagna2013-04-111-0/+20
| | | | | | | | Check if the system is booting systemd, and fail if the automatic configuration picks the wrong value. Emit a warning if the user explicitly chose one way or the other, to account for cross-building. https://bugs.freedesktop.org/show_bug.cgi?id=61127
* Fix the build with automake 1.13Nuno Araujo2013-04-102-2/+2
| | | | | | | In Automake 1.13, the long-deprecated macro AM_CONFIG_HEADER (deprecated since 2002) has been removed in favour of AC_CONFIG_HEADERS. Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* Post-release version bump to 0.111David Zeuthen2013-01-092-2/+29
| | | | Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* Update NEWS for release0.110David Zeuthen2013-01-091-3/+14
| | | | Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* Remove AM_PROG_CC_STDCDavid Zeuthen2013-01-091-1/+0
| | | | | | Part of https://bugs.freedesktop.org/show_bug.cgi?id=59091 Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* Use mutex and condition variables properlyDavid Zeuthen2013-01-091-4/+5
| | | | | | | | This was pointed out in bug 57325. https://bugs.freedesktop.org/show_bug.cgi?id=57325 Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* Fix build on GNU HurdEmilio Pozuelo Monfort2013-01-091-2/+3
| | | | | | https://bugs.freedesktop.org/show_bug.cgi?id=35685 Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* build: Remove generated introspection files on "make clean"Michael Biebl2013-01-091-0/+1
| | | | | | https://bugs.freedesktop.org/show_bug.cgi?id=58869 Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* Set XAUTHORITY environment variable if is unsetDavid Zeuthen2012-12-191-0/+22
| | | | | | | | | | | | | | | | | | | | The way it works is that if XAUTHORITY is unset, then its default value is $HOME/.Xauthority. But since we're changing user identity this will not work since $HOME will now change. Therefore, if XAUTHORITY is unset, just set its default value before changing identity. This bug only affected login managers using X Window Authorization but not explicitly setting the XAUTHORITY variable. You can argue that XAUTHORITY is broken since it forces uid-changing apps like pkexec(1) to do more work - and get involved in intimate details of how X works and so on - but that doesn't change how things work. Based on a patch from Peter Wu <lekensteyn@gmail.com>. https://bugs.freedesktop.org/show_bug.cgi?id=51623 Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* Post-release version bump to 0.110David Zeuthen2012-12-192-2/+29
| | | | Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* Update NEWS for release0.109David Zeuthen2012-12-191-0/+31
| | | | Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* Don't require libmozjs185 devel packages for polkit rules to workDavid Zeuthen2012-11-151-1/+1
| | | | | | | | | The SO-name rules for SpiderMonkey are a little bit weird and we were opening wrong file. This problem was reported in https://bugs.freedesktop.org/show_bug.cgi?id=57146 Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* Include gmodule-2.0 to avoid linker errorsDavid Zeuthen2012-11-141-1/+1
| | | | Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* Post-release version bump to 0.109David Zeuthen2012-11-141-2/+2
| | | | Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* Update NEWS for release0.108David Zeuthen2012-11-141-0/+38
| | | | Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* docs: mention the audience for authorization rulesDavid Zeuthen2012-11-142-0/+23
| | | | Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* Dynamically load libmozjs185.so and cope with it not being availableDavid Zeuthen2012-11-142-147/+304
| | | | | | | A number of downstream distributors have - one way or the other - requested this feature. Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* build: Fix .gir generation for parallel makeRyan Lortie2012-11-132-0/+4
| | | | | | | | | As per the intructions in the introspection Makefile, we should have a line declaring a dependency between the .gir and .la files. https://bugs.freedesktop.org/show_bug.cgi?id=57077 Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* PolkitAgent: Avoid crashing if initializing the server object failsAdam Jackson2012-10-091-2/+1
| | | | | | | | | | | Note that otherwise we return a freed server object. Since later in polkit_agent_listener_register_with_options we check against NULL to determine failure, this makes for sad times later when we call server_free() on it again. https://bugs.freedesktop.org/show_bug.cgi?id=55776 Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* Fall back to authenticating as uid 0 if the list of admin identities is emptyDavid Zeuthen2012-09-181-6/+6
| | | | | | | | | For example, this can happen if the wheel group has no members. This was reported in Red Hat bug 834494, see https://bugzilla.redhat.com/show_bug.cgi?id=834494 Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* Post-release version bump to 0.108David Zeuthen2012-07-111-2/+2
| | | | Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* Update NEWS for release0.107David Zeuthen2012-07-111-0/+37
| | | | Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* pkexec: add support for argv1 annotation and mention shebang-wrappersDavid Zeuthen2012-07-112-2/+55
| | | | Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* Introduce a polkit.Result enumeration for authorization rulesDavid Zeuthen2012-07-066-52/+74
| | | | | | | | | | | | | | This way an authorization rule can do this return polkit.Result.YES; which is slightly nicer than return "yes"; https://bugs.freedesktop.org/show_bug.cgi?id=50983 Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* Nuke --enable-verbose flagDavid Zeuthen2012-07-061-2/+0
| | | | | | | | It doesn't do anything. This was pointed out in https://bugs.freedesktop.org/show_bug.cgi?id=51470 Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* Nuke leftover polkit-backend-1.pc fileDavid Zeuthen2012-07-063-13/+1
| | | | | | This was reported in https://bugs.freedesktop.org/show_bug.cgi?id=51466 Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* Try harder to look up the right localizationMatthias Clasen2012-07-061-9/+7
| | | | | | | | | | | The code for looking up localized strings for action descriptions was manually trying to break locale names into pieces, but didn't get it right for e.g. zh_CN.utf-8. Instead, use the GLib function g_get_locale_variants(), which handles this (and more). This fixes the translation problem reported in https://bugzilla.gnome.org/show_bug.cgi?id=665497 Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* Update guidance on situations where there is no polkit authorityDavid Zeuthen2012-06-081-1/+6
| | | | | | | | | | | | | | | | | | Now that GDBusProxy does something reasonable for a masked systemd service, see https://bugzilla.gnome.org/show_bug.cgi?id=677718 construction of the PolkitAuthority object does not fail anymore. That doesn't mean the authority is available, though, so mention that users should check the result of the CheckAuthorization() call as well. Or in the case of PolkitAuthority, that the error is not a POLKIT_ERROR. This is actually a nice feature, it means that if you unmask polkit.service then mechanisms using PolkitAuthority will start using it without a restart. Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* Post-release version bump to 0.107David Zeuthen2012-06-071-2/+2
| | | | Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* Update NEWS for release0.106David Zeuthen2012-06-071-0/+103
| | | | Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* docs: add a "make sure your app works when there's no polkitd(8)" noteDavid Zeuthen2012-06-071-0/+22
| | | | Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* Mention the implications of returning *_keep in an authorization ruleDavid Zeuthen2012-06-071-2/+18
| | | | | | Pointed out by Dan Williams <dcbw@redhat.com> on IRC. Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* Make it work when using ConsoleKit instead of libsystemd-loginDavid Zeuthen2012-06-065-9/+59
| | | | | | | | ... although it would be nicer to just rip out the CK bits and simply hard-require libsystemd-login instead - it should work just fine on non-systemd systems, same way systemd-udev works fine there. Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* agenthelper-pam: Fix newline-trimming codeColin Walters2012-06-061-3/+8
| | | | | | | | First, we were using == instead of =, as the author probably intended. But after changing that, we're now assigning to const memory. Fix that by writing to a temporary string buffer. Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* autogen.sh: Fix check for libtool (we only need libtoolize)Colin Walters2012-06-061-1/+1
| | | | | | | A pre-built libtool copy may not be installed on all systems; all we need is libtoolize. Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* build: Check for mozjs185, not libjsColin Walters2012-06-061-1/+1
| | | | | | | libjs is a Fedora-specific invention; mozjs185.pc lives in the upstream tarball. Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* State that authorization rules must not rely on SpiderMonkey featureswip/js-rule-filesDavid Zeuthen2012-06-041-5/+13
| | | | | | ... e.g. we reserve the right to switch out the JS engine. Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* Small updates to the "Writing polkit applications" chapterDavid Zeuthen2012-06-041-74/+161
| | | | Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* Update pkexec(1) man page with exampleDavid Zeuthen2012-06-041-0/+1
| | | | Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* Update links to udisks docsDavid Zeuthen2012-06-041-4/+2
| | | | Signed-off-by: David Zeuthen <zeuthen@gmail.com>
* Rewrite the "Writing polkit applications" chapterDavid Zeuthen2012-05-251-38/+142
| | | | Signed-off-by: David Zeuthen <davidz@redhat.com>
* Log when the name org.fd.PolicyKit1 has been acquiredDavid Zeuthen2012-05-251-6/+6
| | | | Signed-off-by: David Zeuthen <davidz@redhat.com>
* Run polkitd as an unprivileged userDavid Zeuthen2012-05-257-14/+136
| | | | | | There's really no reason to run all this code as uid 0. Signed-off-by: David Zeuthen <davidz@redhat.com>
View Lorry Controller Status