1. 02 Nov, 2015 1 commit
  2. 16 Apr, 2015 1 commit
  3. 25 Feb, 2015 1 commit
  4. 18 Feb, 2015 1 commit
  5. 22 Nov, 2014 1 commit
    • Simon McVittie's avatar
      Revert "config: change default auth_timeout to 5 seconds" · 02e1ddf9
      Simon McVittie authored
      This reverts commit 54d26df5.
      
      It appears this change may cause intermittent slow or failed boot,
      more commonly on slower/older machines, in at least Mageia and
      possibly also Debian. This would indicate that while the system
      is under load, system services are not completing authentication
      within 5 seconds.
      
      This change was not the main part of fixing CVE-2014-3639, but does
      help to mitigate that attack. As such, increasing this timeout makes
      the denial of service attack described by CVE-2014-3639 somewhat
      more effective: a local user connecting to the system bus repeatedly
      from many parallel processes can cause other users' attempts to
      connect to take longer.
      
      If your machine boots reliably with the shorter timeout, and
      resilience against local denial of service attacks is important
      to you, putting this in /etc/dbus-1/system-local.conf
      or a file matching /etc/dbus-1/system.d/*.conf can restore
      the lower limit:
      
          <busconfig>
            <limit name="auth_timeout">5000</limit>
          </busconfig>
      
      Bug: https://bugs.freedesktop.org/show_bug.cgi?id=86431
      02e1ddf9
  6. 15 Sep, 2014 3 commits
  7. 14 Jan, 2014 1 commit
  8. 23 Aug, 2013 1 commit
  9. 28 Jun, 2013 1 commit
  10. 11 Apr, 2013 1 commit
    • Matt Fischer's avatar
      Set default maximum number of Unix fds according to OS · 97729354
      Matt Fischer authored
      QNX has an arbitrary limit to the number of file descriptors
      which may be passed in a message, which is smaller than the
      current default.  This patch therefore changes the default from
      a hardcoded constant to a macro, which is determined at configure
      time by looking at the host operating system.
      
      [This reduces the limit from 4096 (session)/1024 (system) to 128 fds
      per message on QNX, and 1024 fds per message on other operating systems.
      I think the reduced session bus limit on other OSs is a reasonable change
      too, given that the default hard/soft ulimits in Linux are only 4096/1024
      fds per process. -smcv]
      
      Bug: https://bugs.freedesktop.org/show_bug.cgi?id=61176
      Reviewed-by: Simon McVittie <simon.mcvittie.collabora.co.uk>
      97729354
  11. 12 Feb, 2013 1 commit
  12. 22 Mar, 2012 1 commit
  13. 04 Mar, 2012 1 commit
  14. 08 Feb, 2012 1 commit
  15. 04 Jan, 2012 1 commit
    • Simon McVittie's avatar
      Revert all changes since a36d4918 · 5df8c3db
      Simon McVittie authored
      Someone seems to have merged part of master into 1.4. Again. Let's go
      back to the "last known good" point (the branch-point of some 1.4
      branches I had locally), then we can cherry-pick the changes that
      should have gone in.
      5df8c3db
  16. 05 Aug, 2011 1 commit
  17. 28 Jul, 2011 1 commit
    • Lennart Poettering's avatar
      activation: add /lib/dbus-1/system-services to the search path for services · d837d937
      Lennart Poettering authored
      In order to allow D-Bus usage during early boot (where /usr is not
      accessible) also search for bus activation files in
      /lib/dbus-1/system-services/. This is only a first step in the right
      direction, before we really can boot without /usr we'd need to move all
      current activation files (or possibly replace
      /usr/dbus-1/system-services to a symlink to
      /lib/dbus-1/system-services).
      d837d937
  18. 07 Apr, 2011 1 commit
  19. 07 Mar, 2011 1 commit
  20. 24 Feb, 2011 1 commit
  21. 31 Jan, 2011 1 commit
  22. 29 Dec, 2010 1 commit
  23. 19 Mar, 2010 1 commit
  24. 01 Dec, 2009 1 commit
  25. 14 Jul, 2009 2 commits
  26. 10 Jul, 2009 1 commit
  27. 28 May, 2009 1 commit
  28. 20 May, 2009 1 commit
  29. 06 Jan, 2009 1 commit
  30. 16 Dec, 2008 2 commits
  31. 12 Dec, 2008 2 commits
  32. 12 Nov, 2008 1 commit
  33. 10 Nov, 2008 1 commit
  34. 15 Jan, 2008 1 commit
    • John Palmieri's avatar
      remove dead code · f72bb380
      John Palmieri authored
      2008-01-15  John (J5) Palmieri  <johnp@redhat.com>
      
      	* patch by Kimmo Hämäläinen <kimmo dot hamalainen at nokia dot com>
      
      	* bus/config-parser.c (locate_attributes): remove dead code which
      	always evaluated to TRUE
      
      	* dbus/dbus-shell.c (_dbus_shell_quote): remove unused code
      f72bb380
  35. 24 Jul, 2007 1 commit
    • Havoc Pennington's avatar
      2007-07-24 Havoc Pennington <hp@redhat.com> · 79d3004e
      Havoc Pennington authored
      	* configure.in: add AM_PROG_CC_C_O to allow per-target CPPFLAGS
      
      	* bus/dispatch.c (bus_dispatch_test_conf): Fix up setting
      	TEST_LAUNCH_HELPER_CONFIG to include the full path, and enable
      	test shell_fail_service_auto_start when use_launcher==TRUE
      
      	* bus/activation-helper-bin.c (convert_error_to_exit_code): pass
      	through the INVALID_ARGS error so the test suite works
      
      	* bus/activation.c (handle_activation_exit_error): return
      	DBUS_ERROR_NO_MEMORY if we get BUS_SPAWN_EXIT_CODE_NO_MEMORY
      
      	* dbus/dbus-spawn.c (_dbus_babysitter_get_child_exit_status):
      	return only the exit code of the child, not the entire thingy from
      	waitpid(), and make the return value indicate whether the child
      	exited normally (with a status code)
      
      	* bus/bus.c (process_config_first_time_only): _dbus_strdup works
      	on NULL so no need to check
      	(process_config_every_time): move servicehelper init here, so we
      	reload it on HUP or config file change
      
      	* bus/Makefile.am (install-data-hook): remove comment because
      	Emacs make mode seems to be grumpy about it
      79d3004e