Skip to content

GitLab

D
dbus
Switch branch/tag
  1. 02 Nov, 2015 1 commit
  3. 16 Apr, 2015 1 commit
  5. 25 Feb, 2015 1 commit
  7. 18 Feb, 2015 1 commit
  9. 22 Nov, 2014 1 commit
    • Simon McVittie's avatar
      Revert "config: change default auth_timeout to 5 seconds" · 02e1ddf9
      Simon McVittie authored 
      This reverts commit 54d26df5.

It appears this change may cause intermittent slow or failed boot,
more commonly on slower/older machines, in at least Mageia and
possibly also Debian. This would indicate that while the system
is under load, system services are not completing authentication
within 5 seconds.

This change was not the main part of fixing CVE-2014-3639, but does
help to mitigate that attack. As such, increasing this timeout makes
the denial of service attack described by CVE-2014-3639 somewhat
more effective: a local user connecting to the system bus repeatedly
from many parallel processes can cause other users' attempts to
connect to take longer.

If your machine boots reliably with the shorter timeout, and
resilience against local denial of service attacks is important
to you, putting this in /etc/dbus-1/system-local.conf
or a file matching /etc/dbus-1/system.d/*.conf can restore
the lower limit:

    <busconfig>
      <limit name="auth_timeout">5000</limit>
    </busconfig>

Bug: https://bugs.freedesktop.org/show_bug.cgi?id=86431
      02e1ddf9
  11. 15 Sep, 2014 3 commits
  13. 14 Jan, 2014 1 commit
  15. 23 Aug, 2013 1 commit
  17. 28 Jun, 2013 1 commit
  19. 11 Apr, 2013 1 commit
    • Matt Fischer's avatar
      Set default maximum number of Unix fds according to OS · 97729354
      Matt Fischer authored 
      QNX has an arbitrary limit to the number of file descriptors
which may be passed in a message, which is smaller than the
current default.  This patch therefore changes the default from
a hardcoded constant to a macro, which is determined at configure
time by looking at the host operating system.

[This reduces the limit from 4096 (session)/1024 (system) to 128 fds
per message on QNX, and 1024 fds per message on other operating systems.
I think the reduced session bus limit on other OSs is a reasonable change
too, given that the default hard/soft ulimits in Linux are only 4096/1024
fds per process. -smcv]

Bug: https://bugs.freedesktop.org/show_bug.cgi?id=61176
Reviewed-by: Simon McVittie <simon.mcvittie.collabora.co.uk>
      97729354
  21. 12 Feb, 2013 1 commit
  23. 22 Mar, 2012 1 commit
  25. 04 Mar, 2012 1 commit
  27. 08 Feb, 2012 1 commit
  29. 04 Jan, 2012 1 commit
    • Simon McVittie's avatar
      Revert all changes since a36d4918 · 5df8c3db
      Simon McVittie authored 
      Someone seems to have merged part of master into 1.4. Again. Let's go
back to the "last known good" point (the branch-point of some 1.4
branches I had locally), then we can cherry-pick the changes that
should have gone in.
      5df8c3db
  31. 05 Aug, 2011 1 commit
  33. 28 Jul, 2011 1 commit
    • Lennart Poettering's avatar
      activation: add /lib/dbus-1/system-services to the search path for services · d837d937
      Lennart Poettering authored 
      In order to allow D-Bus usage during early boot (where /usr is not
accessible) also search for bus activation files in
/lib/dbus-1/system-services/. This is only a first step in the right
direction, before we really can boot without /usr we'd need to move all
current activation files (or possibly replace
/usr/dbus-1/system-services to a symlink to
/lib/dbus-1/system-services).
      d837d937
  35. 07 Apr, 2011 1 commit
  37. 07 Mar, 2011 1 commit
  39. 24 Feb, 2011 1 commit
  41. 31 Jan, 2011 1 commit
  43. 29 Dec, 2010 1 commit
  45. 19 Mar, 2010 1 commit
  47. 01 Dec, 2009 1 commit
  49. 14 Jul, 2009 2 commits
  51. 10 Jul, 2009 1 commit
  53. 28 May, 2009 1 commit
  55. 20 May, 2009 1 commit
  57. 06 Jan, 2009 1 commit
  59. 16 Dec, 2008 2 commits
  61. 12 Dec, 2008 2 commits
  63. 12 Nov, 2008 1 commit
  65. 10 Nov, 2008 1 commit
  67. 15 Jan, 2008 1 commit
    • John Palmieri's avatar
      remove dead code · f72bb380
      John Palmieri authored 
      2008-01-15  John (J5) Palmieri  <johnp@redhat.com>

	* patch by Kimmo Hämäläinen <kimmo dot hamalainen at nokia dot com>

	* bus/config-parser.c (locate_attributes): remove dead code which
	always evaluated to TRUE

	* dbus/dbus-shell.c (_dbus_shell_quote): remove unused code
      f72bb380
  69. 24 Jul, 2007 1 commit
    • Havoc Pennington's avatar
      2007-07-24 Havoc Pennington <hp@redhat.com> · 79d3004e
      Havoc Pennington authored 
      	* configure.in: add AM_PROG_CC_C_O to allow per-target CPPFLAGS

	* bus/dispatch.c (bus_dispatch_test_conf): Fix up setting
	TEST_LAUNCH_HELPER_CONFIG to include the full path, and enable
	test shell_fail_service_auto_start when use_launcher==TRUE

	* bus/activation-helper-bin.c (convert_error_to_exit_code): pass
	through the INVALID_ARGS error so the test suite works

	* bus/activation.c (handle_activation_exit_error): return
	DBUS_ERROR_NO_MEMORY if we get BUS_SPAWN_EXIT_CODE_NO_MEMORY

	* dbus/dbus-spawn.c (_dbus_babysitter_get_child_exit_status):
	return only the exit code of the child, not the entire thingy from
	waitpid(), and make the return value indicate whether the child
	exited normally (with a status code)

	* bus/bus.c (process_config_first_time_only): _dbus_strdup works
	on NULL so no need to check
	(process_config_every_time): move servicehelper init here, so we
	reload it on HUP or config file change

	* bus/Makefile.am (install-data-hook): remove comment because
	Emacs make mode seems to be grumpy about it
      79d3004e