X-Git-Url: http://git.archive.openwrt.org/?p=project%2Fubus.git;a=blobdiff_plain;f=ubusd_proto.c;h=0af11f2742d10eb7af069d521842fc668815607d;hp=fd38dbdafc920ac196dd991e8d75c5d7e5177fe8;hb=b958a9aa60a683a4e4cc1882cb13fd00c8622be6;hpb=79c40c95dbe27e165631d88b9080ad3df80cd30a diff --git a/ubusd_proto.c b/ubusd_proto.c index fd38dbd..0af11f2 100644 --- a/ubusd_proto.c +++ b/ubusd_proto.c @@ -1,5 +1,5 @@ /* - * Copyright (C) 2011 Felix Fietkau + * Copyright (C) 2011-2014 Felix Fietkau * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU Lesser General Public License version 2.1 @@ -12,6 +12,8 @@ */ #include +#include + #include "ubusd.h" struct blob_buf b; @@ -30,14 +32,25 @@ static const struct blob_attr_info ubus_policy[UBUS_ATTR_MAX] = { [UBUS_ATTR_OBJID] = { .type = BLOB_ATTR_INT32 }, [UBUS_ATTR_STATUS] = { .type = BLOB_ATTR_INT32 }, [UBUS_ATTR_METHOD] = { .type = BLOB_ATTR_STRING }, + [UBUS_ATTR_USER] = { .type = BLOB_ATTR_STRING }, + [UBUS_ATTR_GROUP] = { .type = BLOB_ATTR_STRING }, }; -static struct blob_attr **ubus_parse_msg(struct blob_attr *msg) +struct blob_attr **ubus_parse_msg(struct blob_attr *msg) { blob_parse(msg, attrbuf, ubus_policy, UBUS_ATTR_MAX); return attrbuf; } +static void ubus_msg_close_fd(struct ubus_msg_buf *ub) +{ + if (ub->fd < 0) + return; + + close(ub->fd); + ub->fd = -1; +} + static void ubus_msg_init(struct ubus_msg_buf *ub, uint8_t type, uint16_t seq, uint32_t peer) { ub->hdr.version = 0; @@ -63,8 +76,8 @@ static struct ubus_msg_buf *ubus_reply_from_blob(struct ubus_msg_buf *ub, bool s return new; } -static void -ubus_send_msg_from_blob(struct ubus_client *cl, struct ubus_msg_buf *ub, +void +ubus_proto_send_msg_from_blob(struct ubus_client *cl, struct ubus_msg_buf *ub, uint8_t type) { ub = ubus_reply_from_blob(ub, true); @@ -118,7 +131,7 @@ static int ubusd_handle_remove_object(struct ubus_client *cl, struct ubus_msg_bu blob_put_int32(&b, UBUS_ATTR_OBJTYPE, obj->type->id.id); ubusd_free_object(obj); - ubus_send_msg_from_blob(cl, ub, UBUS_MSG_DATA); + ubus_proto_send_msg_from_blob(cl, ub, UBUS_MSG_DATA); return 0; } @@ -136,28 +149,33 @@ static int ubusd_handle_add_object(struct ubus_client *cl, struct ubus_msg_buf * if (attr[UBUS_ATTR_SIGNATURE]) blob_put_int32(&b, UBUS_ATTR_OBJTYPE, obj->type->id.id); - ubus_send_msg_from_blob(cl, ub, UBUS_MSG_DATA); + ubus_proto_send_msg_from_blob(cl, ub, UBUS_MSG_DATA); return 0; } static void ubusd_send_obj(struct ubus_client *cl, struct ubus_msg_buf *ub, struct ubus_object *obj) { struct ubus_method *m; + int cnt = 0; void *s; blob_buf_init(&b, 0); - if (obj->path.key) - blob_put_string(&b, UBUS_ATTR_OBJPATH, obj->path.key); + blob_put_string(&b, UBUS_ATTR_OBJPATH, obj->path.key); blob_put_int32(&b, UBUS_ATTR_OBJID, obj->id.id); blob_put_int32(&b, UBUS_ATTR_OBJTYPE, obj->type->id.id); s = blob_nest_start(&b, UBUS_ATTR_SIGNATURE); - list_for_each_entry(m, &obj->type->methods, list) - blob_put(&b, blob_id(m->data), blob_data(m->data), blob_len(m->data)); + list_for_each_entry(m, &obj->type->methods, list) { + if (!ubusd_acl_check(cl, obj->path.key, blobmsg_name(m->data), UBUS_ACL_ACCESS)) { + blobmsg_add_blob(&b, m->data); + cnt++; + } + } blob_nest_end(&b, s); - ubus_send_msg_from_blob(cl, ub, UBUS_MSG_DATA); + if (cnt) + ubus_proto_send_msg_from_blob(cl, ub, UBUS_MSG_DATA); } static int ubusd_handle_lookup(struct ubus_client *cl, struct ubus_msg_buf *ub, struct blob_attr **attr) @@ -205,15 +223,20 @@ static int ubusd_handle_lookup(struct ubus_client *cl, struct ubus_msg_buf *ub, } static void -ubusd_forward_invoke(struct ubus_object *obj, const char *method, - struct ubus_msg_buf *ub, struct blob_attr *data) +ubusd_forward_invoke(struct ubus_client *cl, struct ubus_object *obj, + const char *method, struct ubus_msg_buf *ub, + struct blob_attr *data) { blob_put_int32(&b, UBUS_ATTR_OBJID, obj->id.id); blob_put_string(&b, UBUS_ATTR_METHOD, method); + if (cl->user) + blob_put_string(&b, UBUS_ATTR_USER, cl->user); + if (cl->group) + blob_put_string(&b, UBUS_ATTR_GROUP, cl->group); if (data) blob_put(&b, UBUS_ATTR_DATA, blob_data(data), blob_len(data)); - ubus_send_msg_from_blob(obj->client, ub, UBUS_MSG_INVOKE); + ubus_proto_send_msg_from_blob(obj->client, ub, UBUS_MSG_INVOKE); } static int ubusd_handle_invoke(struct ubus_client *cl, struct ubus_msg_buf *ub, struct blob_attr **attr) @@ -233,12 +256,16 @@ static int ubusd_handle_invoke(struct ubus_client *cl, struct ubus_msg_buf *ub, method = blob_data(attr[UBUS_ATTR_METHOD]); + if (ubusd_acl_check(cl, obj->path.key, method, UBUS_ACL_ACCESS)) + return UBUS_STATUS_PERMISSION_DENIED; + if (!obj->client) - return obj->recv_msg(cl, method, attr[UBUS_ATTR_DATA]); + return obj->recv_msg(cl, ub, method, attr[UBUS_ATTR_DATA]); ub->hdr.peer = cl->id.id; blob_buf_init(&b, 0); - ubusd_forward_invoke(obj, method, ub, attr[UBUS_ATTR_DATA]); + + ubusd_forward_invoke(cl, obj, method, ub, attr[UBUS_ATTR_DATA]); ubus_msg_free(ub); return -1; @@ -276,7 +303,7 @@ static int ubusd_handle_notify(struct ubus_client *cl, struct ubus_msg_buf *ub, } blob_nest_end(&b, c); blob_put_int32(&b, UBUS_ATTR_STATUS, 0); - ubus_send_msg_from_blob(cl, ub, UBUS_MSG_STATUS); + ubus_proto_send_msg_from_blob(cl, ub, UBUS_MSG_STATUS); } ub->hdr.peer = cl->id.id; @@ -285,7 +312,7 @@ static int ubusd_handle_notify(struct ubus_client *cl, struct ubus_msg_buf *ub, blob_buf_init(&b, 0); if (no_reply) blob_put_int8(&b, UBUS_ATTR_NO_REPLY, 1); - ubusd_forward_invoke(s->subscriber, method, ub, attr[UBUS_ATTR_DATA]); + ubusd_forward_invoke(cl, s->subscriber, method, ub, attr[UBUS_ATTR_DATA]); } ubus_msg_free(ub); @@ -353,6 +380,13 @@ static int ubusd_handle_add_watch(struct ubus_client *cl, struct ubus_msg_buf *u if (cl == target->client) return UBUS_STATUS_INVALID_ARGUMENT; + if (!target->path.key) { + if (strcmp(target->client->user, cl->user) && strcmp(target->client->group, cl->group)) + return UBUS_STATUS_NOT_FOUND; + } else if (ubusd_acl_check(cl, target->path.key, NULL, UBUS_ACL_SUBSCRIBE)) { + return UBUS_STATUS_NOT_FOUND; + } + ubus_subscribe(obj, target); return 0; } @@ -409,6 +443,9 @@ void ubusd_proto_receive_message(struct ubus_client *cl, struct ubus_msg_buf *ub if (ub->hdr.type < __UBUS_MSG_LAST) cb = handlers[ub->hdr.type]; + if (ub->hdr.type != UBUS_MSG_STATUS) + ubus_msg_close_fd(ub); + if (cb) ret = cb(cl, ub, ubus_parse_msg(ub->data)); else @@ -431,9 +468,13 @@ struct ubus_client *ubusd_proto_new_client(int fd, uloop_fd_handler cb) if (!cl) return NULL; + if (ubusd_acl_init_client(cl, fd)) + goto free; + INIT_LIST_HEAD(&cl->objects); cl->sock.fd = fd; cl->sock.cb = cb; + cl->pending_msg_fd = -1; if (!ubus_alloc_id(&clients, &cl->id, 0)) goto free; @@ -459,6 +500,7 @@ void ubusd_proto_free_client(struct ubus_client *cl) ubusd_free_object(obj); } + ubusd_acl_free_client(cl); ubus_free_id(&clients, &cl->id); } @@ -472,6 +514,9 @@ void ubus_notify_subscription(struct ubus_object *obj) blob_put_int8(&b, UBUS_ATTR_ACTIVE, active); ub = ubus_msg_from_blob(false); + if (!ub) + return; + ubus_msg_init(ub, UBUS_MSG_NOTIFY, ++obj->invoke_seq, 0); ubus_msg_send(obj->client, ub, true); } @@ -485,13 +530,15 @@ void ubus_notify_unsubscribe(struct ubus_subscription *s) blob_put_int32(&b, UBUS_ATTR_TARGET, s->target->id.id); ub = ubus_msg_from_blob(false); - ubus_msg_init(ub, UBUS_MSG_UNSUBSCRIBE, ++s->subscriber->invoke_seq, 0); - ubus_msg_send(s->subscriber->client, ub, true); + if (ub != NULL) { + ubus_msg_init(ub, UBUS_MSG_UNSUBSCRIBE, ++s->subscriber->invoke_seq, 0); + ubus_msg_send(s->subscriber->client, ub, true); + } ubus_unsubscribe(s); } -static void __init ubusd_proto_init(void) +static void __constructor ubusd_proto_init(void) { ubus_init_id_tree(&clients);