/* SSSD Data Provider Helpers Copyright (C) Stephen Gallagher 2009 This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 3 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program. If not, see . */ #include #include "util/util.h" #include "sbus_client.h" int sbus_client_init(TALLOC_CTX *mem_ctx, struct tevent_context *ev, const char *server_address, struct sbus_connection **_conn) { struct sbus_connection *conn = NULL; int ret; char *filename; uid_t check_uid; gid_t check_gid; /* Validate input */ if (server_address == NULL) { return EINVAL; } filename = strchr(server_address, '/'); if (filename == NULL) { DEBUG(SSSDBG_CRIT_FAILURE, "Unexpected dbus address [%s].\n", server_address); return EIO; } check_uid = geteuid(); check_gid = getegid(); /* Ignore ownership checks when the server runs as root. This is the * case when privileged monitor is setting up sockets for unprivileged * responders */ if (check_uid == 0) check_uid = -1; if (check_gid == 0) check_gid = -1; ret = check_file(filename, check_uid, check_gid, S_IFSOCK|S_IRUSR|S_IWUSR, 0, NULL, true); if (ret != EOK) { DEBUG(SSSDBG_CRIT_FAILURE, "check_file failed for [%s].\n", filename); return EIO; } ret = sbus_new_connection(mem_ctx, ev, server_address, &conn); if (ret != EOK) { goto fail; } *_conn = conn; return EOK; fail: talloc_free(conn); return ret; }