[PATCHv3] libmbim-glib, proxy: add a configure flag to set the user ID of MBIM proxy

Roshan Pius rpius at google.com
Fri Nov 7 11:18:37 PST 2014


Hi Aleksander,

I'll port the same patch to libqmi & will send the patch in sometime.
How do we want to handle chown'ing the devices to the specific user? We'll
need to edit the udev rules to assign the devices to the specified user.
But, From what i can see the udev rules to detect the modems are currently
owned by modemmanager & this particular username flag is residing in
libmbim/libqmi.

On Fri, Nov 7, 2014 at 10:56 AM, Aleksander Morgado <
aleksander at aleksander.es> wrote:

> On Fri, Nov 7, 2014 at 7:39 PM, Dan Williams <dcbw at redhat.com> wrote:
> > On Fri, 2014-11-07 at 09:20 -0800, Roshan Pius wrote:
> >> Currently, the MBIM proxy process assumes that it is run as root user
> and
> >> that all incoming client connection users are also root.
> >> However, it's not always preferable to run the MBIM proxy as root for
> >> security reasons. On some platforms, the MBIM proxy could be constrained
> >> to run as a less-privileged user and specially granted the permission to
> >> access the MBIM device. So, adding a compile time flag in libmbim to
> check
> >> for the specified user, rather than assume it to be the root user. If
> the flag is
> >> not sent, it'll revert to the existing behaviour of checking for
> >> user=root(i.e UID=0)
> >
> > Looks OK to me.
>
>
> Great!
>
> Roshan, will you now write the patch to chown the devices to the
> specific user given in that configure flag? That would be superb.
>
> I'll actually test the patch in the following days and merge it afterwards.
>
> Plus, anyone willing to do the same for libqmi? :)
>
> --
> Aleksander
> https://aleksander.es
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freedesktop.org/archives/libmbim-devel/attachments/20141107/7038b842/attachment.html>


More information about the libmbim-devel mailing list