[gdm] Improve the audit logic. Fix the gdm_session_worker_get_username to cache the latest username in th
- From: Brian Cameron <bcameron src gnome org>
- To: commits-list gnome org
- Cc:
- Subject: [gdm] Improve the audit logic. Fix the gdm_session_worker_get_username to cache the latest username in th
- Date: Fri, 20 May 2011 00:38:38 +0000 (UTC)
commit 46aee44b69b4fba1b99e099a88b6f6ceb5a542fd
Author: Brian Cameron <Brian Cameron Oracle COM>
Date: Thu May 19 19:36:48 2011 -0500
Improve the audit logic. Fix the gdm_session_worker_get_username to cache the
latest username in the audit class. Then make sure to call this function
before auditing to ensure that username is always set. This fixes a problem
where audit would have a NULL value if it were obtained via PAM and not the
GUI.
daemon/gdm-session-worker.c | 22 ++++++++++++++++------
1 files changed, 16 insertions(+), 6 deletions(-)
---
diff --git a/daemon/gdm-session-worker.c b/daemon/gdm-session-worker.c
index 15ec0e9..b0a4aa7 100644
--- a/daemon/gdm-session-worker.c
+++ b/daemon/gdm-session-worker.c
@@ -568,6 +568,10 @@ send_dbus_void_method (DBusConnection *connection,
return TRUE;
}
+/*
+ * This function is called with username set to NULL to update the
+ * auditor username value.
+ */
static gboolean
gdm_session_worker_get_username (GdmSessionWorker *worker,
char **username)
@@ -582,6 +586,11 @@ gdm_session_worker_get_username (GdmSessionWorker *worker,
g_debug ("GdmSessionWorker: username is '%s'",
*username != NULL ? *username : "<unset>");
}
+
+ if (worker->priv->auditor != NULL) {
+ gdm_session_auditor_set_username (worker->priv->auditor, (char *)item);
+ }
+
return TRUE;
}
@@ -955,16 +964,12 @@ gdm_session_worker_uninitialize_pam (GdmSessionWorker *worker,
if (worker->priv->pam_handle == NULL)
return;
+ gdm_session_worker_get_username (worker, NULL);
+
if (worker->priv->state >= GDM_SESSION_WORKER_STATE_SESSION_OPENED) {
pam_close_session (worker->priv->pam_handle, 0);
gdm_session_auditor_report_logout (worker->priv->auditor);
} else {
- const void *p;
-
- if ((pam_get_item (worker->priv->pam_handle, PAM_USER, &p)) == PAM_SUCCESS) {
- gdm_session_auditor_set_username (worker->priv->auditor, (const char *)p);
- }
-
gdm_session_auditor_report_login_failure (worker->priv->auditor,
status,
pam_strerror (worker->priv->pam_handle, status));
@@ -1237,6 +1242,8 @@ gdm_session_worker_authorize_user (GdmSessionWorker *worker,
if (error_code == PAM_NEW_AUTHTOK_REQD) {
error_code = pam_chauthtok (worker->priv->pam_handle, PAM_CHANGE_EXPIRED_AUTHTOK);
+ gdm_session_worker_get_username (worker, NULL);
+
if (error_code != PAM_SUCCESS) {
gdm_session_auditor_report_password_change_failure (worker->priv->auditor);
} else {
@@ -1526,6 +1533,8 @@ gdm_session_worker_accredit_user (GdmSessionWorker *worker,
if (ret) {
g_debug ("GdmSessionWorker: state ACCREDITED");
ret = TRUE;
+
+ gdm_session_worker_get_username (worker, NULL);
gdm_session_auditor_report_user_accredited (worker->priv->auditor);
worker->priv->state = GDM_SESSION_WORKER_STATE_ACCREDITED;
} else {
@@ -1813,6 +1822,7 @@ gdm_session_worker_open_user_session (GdmSessionWorker *worker,
return FALSE;
}
+ gdm_session_worker_get_username (worker, NULL);
gdm_session_auditor_report_login (worker->priv->auditor);
return TRUE;
[
Date Prev][
Date Next] [
Thread Prev][
Thread Next]
[
Thread Index]
[
Date Index]
[
Author Index]
