D6709: [RFC] Add support for sharing file descriptor between KIO slave and KAuth helper
Chinmoy Ranjan Pradhan
noreply at phabricator.kde.org
Sat Jul 15 12:31:16 UTC 2017
chinmoyr added a comment.
And
In https://phabricator.kde.org/D6709#125610, @davidedmundson wrote:
> > The sequence would be, registering service in ioslave, setting euid of the helper process and sending the file descriptor over user's session bus
>
> I don't fully know this code, but that doesn't sound right.
>
> Your helper is running on the system bus, and shouldn't really have access to the user's session bus at all.
> Your client side ioslave will have connections to both busses, but only be talking to the helper on the system bus.
You can set the effective uid of the root process to the users process to connect to user's session bus and then reset it and gain back the privilege.
> With polkit you currently request something over DBus from a helper and you get a reply back. What you're describing you want is exactly that, except the reply happens a file descriptor. (which as you hint is a native DBus type) Why do you need to register a service in the ioslave?
QDBusUnixFileDescriptor object is required to send a file descriptor over dbus. The service must have a method accepting QDBusUnixFileDescriptor as an argument, QtDBus won't create it automatically. KAuth doesn't have any such method thats why the need for a separate service.
REPOSITORY
R241 KIO
REVISION DETAIL
https://phabricator.kde.org/D6709
To: chinmoyr, thiago, #frameworks
Cc: davidedmundson, elvisangelaccio, shortstheory
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.kde.org/pipermail/kde-frameworks-devel/attachments/20170715/1d977e04/attachment.html>
More information about the Kde-frameworks-devel
mailing list