daemon: convert virRun to virCommand

Using snprintf to build up argv seems archaic. * daemon/remote.c (remoteDispatchAuthPolkit): Modernize command call.

daemon: convert virRun to virCommand
Using snprintf to build up argv seems archaic. * daemon/remote.c (remoteDispatchAuthPolkit): Modernize command call.
8dd623b9 · Eric Blake · 19896423 · 8dd623b9
隐藏空白更改
内联并排

Showing with 17 addition and 25 deletion

daemon/remote.c daemon/remote.c +17 -25

未找到文件。
--- a/daemon/remote.c
+++ b/daemon/remote.c
@@ -2468,26 +2468,17 @@ remoteDispatchAuthPolkit(virNetServerPtr server ATTRIBUTE_UNUSED,
    uid_t callerUid = -1;
    const char *action;
    int status = -1;
-    char pidbuf[50];
+    char *ident = NULL;
-    char ident[100];
-    int rv = -1;
    struct daemonClientPrivate *priv =
        virNetServerClientGetPrivateData(client);
+    virCommandPtr cmd = NULL;
-    memset(ident, 0, sizeof ident);
    virMutexLock(&priv->lock);
    action = virNetServerClientGetReadonly(client) ?
        "org.libvirt.unix.monitor" :
        "org.libvirt.unix.manage";
-    const char * const pkcheck [] = {
+    cmd = virCommandNewArgList(PKCHECK_PATH, "--action-id", action, NULL);
-      PKCHECK_PATH,
-      "--action-id", action,
-      "--process", pidbuf,
-      "--allow-user-interaction",
-      NULL
-    };
    VIR_DEBUG("Start PolicyKit auth %d", virNetServerClientGetFD(client));
    if (virNetServerClientGetAuth(client) != VIR_NET_SERVER_SERVICE_AUTH_POLKIT) {
@@ -2495,28 +2486,25 @@ remoteDispatchAuthPolkit(virNetServerPtr server ATTRIBUTE_UNUSED,
        goto authfail;
    }
-    if (virNetServerClientGetUNIXIdentity(client, &callerUid, &callerGid, &callerPid) < 0) {
+    if (virNetServerClientGetUNIXIdentity(client, &callerUid, &callerGid,
+                                          &callerPid) < 0) {
        goto authfail;
    }
    VIR_INFO("Checking PID %d running as %d", callerPid, callerUid);
-    rv = snprintf(pidbuf, sizeof pidbuf, "%d", callerPid);
+    virCommandAddArg(cmd, "--process");
-    if (rv < 0 || rv >= sizeof pidbuf) {
+    virCommandAddArgFormat(cmd, "%d", callerPid);
-        VIR_ERROR(_("Caller PID was too large %d"), callerPid);
+    virCommandAddArg(cmd, "--allow-user-interaction");
-        goto authfail;
-    }
-    rv = snprintf(ident, sizeof ident, "pid:%d,uid:%d", callerPid, callerUid);
+    if (virAsprintf(&ident, "pid:%d,uid:%d", callerPid, callerUid) < 0) {
-    if (rv < 0 || rv >= sizeof ident) {
+        virReportOOMError();
-        VIR_ERROR(_("Caller identity was too large %d:%d"), callerPid, callerUid);
        goto authfail;
    }
-    if (virRun(pkcheck, &status) < 0) {
+    if (virCommandRun(cmd, &status) < 0)
-        VIR_ERROR(_("Cannot invoke %s"), PKCHECK_PATH);
        goto authfail;
-    }
    if (status != 0) {
        char *tmp = virCommandTranslateStatus(status);
        VIR_ERROR(_("Policy kit denied action %s from pid %d, uid %d: %s"),
@@ -2533,10 +2521,14 @@ remoteDispatchAuthPolkit(virNetServerPtr server ATTRIBUTE_UNUSED,
    virNetServerClientSetIdentity(client, ident);
    virMutexUnlock(&priv->lock);
+    virCommandFree(cmd);
+    VIR_FREE(ident);
    return 0;
 error:
+    virCommandFree(cmd);
+    VIR_FREE(ident);
    virResetLastError();
    virNetError(VIR_ERR_AUTH_FAILED, "%s",
                _("authentication failed"));
@@ -2553,7 +2545,7 @@ authfail:
 authdeny:
    PROBE(RPC_SERVER_CLIENT_AUTH_DENY,
          "client=%p auth=%d identity=%s",
-          client, REMOTE_AUTH_POLKIT, (char *)ident);
+          client, REMOTE_AUTH_POLKIT, ident);
    goto error;
 }
 #elif HAVE_POLKIT0