| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
On at least Linux/musl and Linux/uclibc, netgroup support is not
available. PolKit fails to compile on these systems for that reason.
This change makes netgroup support conditional on the presence of the
setnetgrent(3) function which is required for the support to work. If
that function is not available on the system, an error will be returned
to the administrator if unix-netgroup: is specified in configuration.
(sam: rebased for Meson and Duktape.)
Closes: https://gitlab.freedesktop.org/polkit/polkit/-/issues/14
Closes: https://gitlab.freedesktop.org/polkit/polkit/-/issues/163
Closes: https://gitlab.freedesktop.org/polkit/polkit/-/merge_requests/52
Signed-off-by: A. Wilcox <AWilcox@Wilcox-Tech.com>
|
| | |
|
| | |
|
| |
|
|
|
| |
Original author: Wu Xiaotian (@yetist)
Resurrection author, runaway-killer author: Gustavo Lima Chaves (@limachaves)
|
| |
|
|
|
| |
into 'master'"
This reverts merge request !75
|
| |
|
|
| |
Signed-off-by: Philip Withnall <withnall@endlessm.com>
|
| |
|
|
|
|
| |
meson is a build system focused on speed an ease of use, which
helps speeding up the software development. This patch adds meson
support along autotools.
|
| | |
|
| |
|
|
| |
Just compiles and installs polkit
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
| |
An implicit authorization parameter is provided to
polkit_backend_js_authority_check_authorization_sync() for actions
without corresponding explicit rules. Assure that is honored rather
than simply being denied.
Signed-off-by: Jeremy Linton <jeremy.linton@arm.com>
https://bugs.freedesktop.org/show_bug.cgi?id=105865
|
| |
|
|
|
|
| |
The offset has to be strictly less than the max.
https://bugs.freedesktop.org/show_bug.cgi?id=87716
|
| |
|
|
|
|
|
|
|
|
| |
Set up glib to use the installed version for deprecation warnings
instead of limiting ourselves to [2.30,2.34]; this will let us use
newer API, and help us keep up to date with future deprecations.
Then fix all the warnings (as of GLib 2.44.1).
https://bugs.freedesktop.org/show_bug.cgi?id=91198
|
| |
|
|
|
|
|
|
| |
The JSAPI is now a full C++ interface. Convert the polkit
to JavaScript interface module to C++ compilation in order to
support newer versions of spidermonkey.
Signed-off-by: Jeremy Linton <jeremy.linton@arm.com>
|
| |
|
|
|
|
|
| |
to silence
warning: 'INCLUDES' is the old name for 'AM_CPPFLAGS' (or '*_CPPFLAGS')
https://bugs.freedesktop.org/show_bug.cgi?id=80767
|
| |
|
|
|
|
|
|
| |
I was looking at:
https://bugs.freedesktop.org/show_bug.cgi?id=85504
But polkit, particularly because of its use of recursive make, is a
good fit for git.mk.
|
| |
|
|
|
| |
We can't port everything, but in PolkitPermission and these test
cases, we can use _for_owner() with the right information.
|
| |
|
|
|
|
|
|
|
|
|
|
| |
The XML_ParserCreate_MM one was found by Florian Weimer in
https://bugzilla.redhat.com/show_bug.cgi?id=888728 .
This should cover everything found by valgrind on the JS authority
test, augmented with a call to
polkit_backend_authority_enumerate_actions() to verify the
XML_ParserCreate_MM case.
https://bugs.freedesktop.org/show_bug.cgi?id=63492
|
| |
|
|
|
|
| |
Mainly to avoid deprecation warnings about g_type_init().
https://bugs.freedesktop.org/show_bug.cgi?id=63440
|
| |
|
|
| |
It still works, and this lets polkit build on RHEL6.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
This way an authorization rule can do this
return polkit.Result.YES;
which is slightly nicer than
return "yes";
https://bugs.freedesktop.org/show_bug.cgi?id=50983
Signed-off-by: David Zeuthen <zeuthen@gmail.com>
|
| |
|
|
|
|
|
|
| |
... although it would be nicer to just rip out the CK bits and simply
hard-require libsystemd-login instead - it should work just fine on
non-systemd systems, same way systemd-udev works fine there.
Signed-off-by: David Zeuthen <zeuthen@gmail.com>
|
| |
|
|
|
|
|
|
|
|
| |
This also removes the ability to change detail parameters which is
actually a good thing. If we later need a way to change the
authentication message, we can always add something like
polkit.addAuthenticationMessageRule() so the user can register a
function returning a string.
Signed-off-by: David Zeuthen <davidz@redhat.com>
|
| |
|
|
| |
Signed-off-by: David Zeuthen <davidz@redhat.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
Any backend can now be implemented in JavaScript (if so desired) so we
don't need any of this any more.
Note that the libpolkitbackend library was never declared stable (the
preprocessor symbol POLKIT_BACKEND_I_KNOW_API_IS_SUBJECT_TO_CHANGE had
to be defined) so removing it is not an API/ABI break.
Signed-off-by: David Zeuthen <davidz@redhat.com>
|
| |
|
|
| |
Signed-off-by: David Zeuthen <davidz@redhat.com>
|
| |
|
|
| |
Signed-off-by: David Zeuthen <davidz@redhat.com>
|
| |
|
|
| |
Signed-off-by: David Zeuthen <davidz@redhat.com>
|
| |
|
|
|
|
|
| |
In fact, this test uncovered that we were evaluating the rules in the
wrong order. Fix this.
Signed-off-by: David Zeuthen <davidz@redhat.com>
|
| |
|
|
|
|
| |
... as the man page already says.
Signed-off-by: David Zeuthen <davidz@redhat.com>
|
| |
|
|
|
|
| |
... in addition to /etc/polkit/rules.d.
Signed-off-by: David Zeuthen <davidz@redhat.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
For example, to set the authentication message, a JS function can
simply do
details["polkit.message"] = "Hey dude, XYZ, I need your password";
This can also be used to pass data back to the mechanism.
To make this work properly, we also introduce a slight change: the
a{ss} passed back to the mechanism (part of the AuthorizationResult
structure) will be initialized with the a{ss} the app passed itself in
the CheckAuthorization() call.
Signed-off-by: David Zeuthen <davidz@redhat.com>
|
| |
|
|
|
|
|
| |
Also, move init code into init.js instead of using a C string for
it...
Signed-off-by: David Zeuthen <davidz@redhat.com>
|
| |
|
|
| |
Signed-off-by: David Zeuthen <davidz@redhat.com>
|
| |
|
|
| |
Signed-off-by: David Zeuthen <davidz@redhat.com>
|
| |
|
|
|
|
|
|
| |
https://bugs.freedesktop.org/show_bug.cgi?id=43610
Added netgroup support and additional unit tests with MockLibc support.
Signed-off-by: David Zeuthen <davidz@redhat.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
https://bugs.freedesktop.org/show_bug.cgi?id=43608
Basic unittest support and a few tests. Adds basic unit tests for:
PolkitIdentity, PolkitUnixUser, PolkitUnixGroup,
PolkitBackendLocalAuthorizationStore, and PolkitBackendLocalAuthority.
Signed-off-by: David Zeuthen <davidz@redhat.com>
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This is the first move towards 1.0; also
- kill the config file
- merge libpolkit and libpolkit-dbus
Now to write a system daemon that libpolkit will use for the
backend. Expect HEAD to be broken for a few weeks at least.
Also see http://ometer.com/parallel.html for what "parallel
installable" means. As a result, all the binaries, man pages, .policy
file dir and so forth have been renamed too. I expect the API to
change a bit. So some (not much though) porting to PolicyKit 1.0 will
be required by current users.
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
|
|
This is what it looks like
==============================================================================
Test coverage for module polkit:
==============================================================================
polkit-sysdeps.c : 0% (0 of 38)
polkit-error.c : 0% (0 of 44)
polkit-result.c : 0% (0 of 16)
polkit-context.c : 0% (0 of 213)
polkit-action.c : 34% (20 of 58)
polkit-seat.c : 0% (0 of 34)
polkit-session.c : 0% (0 of 97)
polkit-caller.c : 0% (0 of 81)
polkit-policy-file-entry.c : 0% (0 of 72)
polkit-policy-file.c : 0% (0 of 220)
polkit-policy-cache.c : 0% (0 of 98)
polkit-policy-default.c : 0% (0 of 67)
polkit-debug.c : 0% (0 of 15)
polkit-utils.c : 0% (0 of 42)
polkit-config.c : 0% (0 of 263)
polkit-authorization.c : 0% (0 of 162)
polkit-authorization-constraint.c : 0% (0 of 107)
polkit-authorization-db.c : 0% (0 of 222)
Source lines : 6919
Actual statements : 1849
Executed statements : 20
Test coverage : 1%
|
