1. 08 Jun, 2015 1 commit
  2. 03 Jun, 2015 1 commit
  3. 31 Mar, 2015 1 commit
  4. 12 Jan, 2015 1 commit
  5. 11 Nov, 2013 3 commits
    • Colin Walters's avatar
      Use G_GNUC_BEGIN_IGNORE_DEPRECATIONS to avoid warning spam · a4f1c2a5
      Colin Walters authored
      In these cases, we can't every drop use of our API which we deprecated
      for external callers; for example where a (deprecated) command line is
      invoking the deprecated API.
      
      This patch avoids having polkit developers get spammed by unfixable
      warnings.
      a4f1c2a5
    • Colin Walters's avatar
      Port internals non-deprecated PolkitProcess API where possible · 6d3d0a8f
      Colin Walters authored
      We can't port everything, but in PolkitPermission and these test
      cases, we can use _for_owner() with the right information.
      6d3d0a8f
    • Colin Walters's avatar
      PolkitSystemBusName: Retrieve both pid and uid · bfa5036b
      Colin Walters authored
      For polkit_system_bus_name_get_process_sync(), as pointed out by
      Miloslav Trmac, we can securely retrieve the owner uid as well from
      the system bus, rather than (racily) looking it up internally.
      
      This avoids use of a deprecated API.
      
      However, this is not a security fix because nothing in the polkit
      codebase itself actually retrieves the uid from the result of this API
      call.  But, it might be useful in the future.
      bfa5036b
  6. 07 Nov, 2013 1 commit
  7. 18 Sep, 2013 1 commit
    • Colin Walters's avatar
      polkitunixprocess: Deprecate racy APIs · 08291789
      Colin Walters authored
      It's only safe for processes to be created with their owning uid,
      (without kernel support, which we don't have).  Anything else is
      subject to clients exec()ing setuid binaries after the fact.
      08291789
  8. 29 May, 2013 1 commit
  9. 18 Apr, 2013 1 commit
  10. 15 Apr, 2013 5 commits
  11. 13 Nov, 2012 1 commit
  12. 23 May, 2012 2 commits
  13. 12 Apr, 2012 1 commit
  14. 06 Feb, 2012 2 commits
  15. 10 Jan, 2012 1 commit
  16. 03 Jan, 2012 1 commit
  17. 22 Dec, 2011 1 commit
  18. 01 Aug, 2011 1 commit
  19. 01 Apr, 2011 1 commit
  20. 31 Mar, 2011 1 commit
  21. 11 Mar, 2011 1 commit
  22. 03 Mar, 2011 2 commits
    • David Zeuthen's avatar
      302d2b6a
    • David Zeuthen's avatar
      Deprecated PolkitBackendActionLookup · 02cebdb0
      David Zeuthen authored
      Instead, pass the untranslated message as polkit.message and set the
      gettext domain on polkit.gettext_domain. For printf()-style messages,
      occurences of the form $(name_of_key) in the translated version of
      polkit.message are expanded with the value of the property
      name_of_key. See the pkexec(1) mechanism for an example of how to use
      this.
      
      Additionally, the property polkit.icon_name can be set to the
      icon. Note that not all authentication agents use this - in
      particular, gnome-shell does not.
      
      It is no longer possible to set the details to be shown in the
      authentication dialog. It was never a good idea to hide information
      there anyway. Instead, the mechanism should format a meaningful
      message.
      Signed-off-by: default avatarDavid Zeuthen <davidz@redhat.com>
      02cebdb0
  23. 23 Feb, 2011 4 commits
  24. 22 Feb, 2011 1 commit
  25. 17 Feb, 2011 1 commit
  26. 10 Sep, 2010 1 commit
  27. 20 Aug, 2010 1 commit
  28. 12 Aug, 2010 1 commit