Disabling new D-Bus protocol features by default
Thiago Macieira
thiago at kde.org
Mon Nov 8 09:20:07 PST 2010
I'd like to disable the Unix FD passing by default in libdbus-1.
The reason for this is that when running against old application and binding
code, receiving a message containing an FD causes unpredictable results.
Bindings are often written to assume they can understand any type thrown at
them, so they might throw a fit if they see a type they don't know.
This could be used as an attack vector from remote applications, including on
the system bus.
Applications and bindings that want to use Unix FD passing (or, in the future,
Maybe types and other things) will have to enable the feature by themselves,
by calling dbus_connection_open_with_flags or dbus_bus_get_with_flags (or their
private versions). The rationale is that applications didn't support FD
passing before, in D-Bus 1.2, so they are being modified right now to support
the feature anyway.
I thought we had agreed on this during the 1.3 development cycle, but
apparently it was forgotten. I've realised now that the patch was submitted
only for the Maybe types, see
https://bugs.freedesktop.org/show_bug.cgi?id=27857
Therefore, I'd like to apply this patch (or equivalent that works):
https://bugs.freedesktop.org/attachment.cgi?id=36155
This is a behaviour change in D-Bus 1.4, but I believe it's better to modify
the few apps that are changing to support FD passing while we have time than
the majority of the apps and the existing, released bindings that don't
support the new feature.
--
Thiago Macieira - thiago (AT) macieira.info - thiago (AT) kde.org
Senior Product Manager - Nokia, Qt Development Frameworks
PGP/GPG: 0x6EF45358; fingerprint:
E067 918B B660 DBD1 105C 966C 33F5 F005 6EF4 5358
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 190 bytes
Desc: This is a digitally signed message part.
URL: <http://lists.freedesktop.org/archives/dbus/attachments/20101108/a1a2a9c4/attachment.pgp>
More information about the dbus
mailing list