Only sign modules if --unprivileged is specified.

Don't generate an error message for unsigned modules. Make sure module signature exists before attempting to copy to the cache. Allow timer p[robes for unprivileged users.
author: Dave Brolley <brolley@redhat.com> 2009-06-11 11:58:55 -0400
committer: Dave Brolley <brolley@redhat.com> 2009-06-11 11:58:55 -0400
commit: b12c8986778619db5bec0a5e52f2d49247e6b5ba (patch)
tree: b5136adab377bb897ca7d132b1807487c19d61db /buildrun.cxx
parent: 36b66efaae572dddcfb04e9a995ca69063d0e1ff (diff)
download: systemtap-steved-b12c8986778619db5bec0a5e52f2d49247e6b5ba.tar.gz
systemtap-steved-b12c8986778619db5bec0a5e52f2d49247e6b5ba.tar.xz
systemtap-steved-b12c8986778619db5bec0a5e52f2d49247e6b5ba.zip
1 files changed, 3 insertions, 2 deletions
diff --git a/buildrun.cxx b/buildrun.cxx
index 54aa5d4f..effc6cd8 100644
--- a/buildrun.cxx
+++ b/buildrun.cxx
@@ -223,11 +223,12 @@ compile_pass (systemtap_session& s)
   rc = run_make_cmd(s, make_cmd);
 
 #if HAVE_NSS
-  // If a certificate database was specified, then try to sign the module.
+  // If a certificate database was specified, and we're in unprivileged
+  // mode, then try to sign the module.
   // Failure to do so is not a fatal error. If the signature is actually needed,
   // staprun will complain at that time.
   assert (! s.cert_db_path.empty());
-  if (!rc)
+  if (s.unprivileged && ! rc)
     sign_module (s);
 #endif
author	Dave Brolley <brolley@redhat.com>	2009-06-11 11:58:55 -0400
committer	Dave Brolley <brolley@redhat.com>	2009-06-11 11:58:55 -0400
commit	b12c8986778619db5bec0a5e52f2d49247e6b5ba (patch)
tree	b5136adab377bb897ca7d132b1807487c19d61db /buildrun.cxx
parent	36b66efaae572dddcfb04e9a995ca69063d0e1ff (diff)
download	systemtap-steved-b12c8986778619db5bec0a5e52f2d49247e6b5ba.tar.gz systemtap-steved-b12c8986778619db5bec0a5e52f2d49247e6b5ba.tar.xz systemtap-steved-b12c8986778619db5bec0a5e52f2d49247e6b5ba.zip