diff options
| author | David Zeuthen <david@fubar.dk> | 2006-01-21 02:45:27 +0000 |
|---|---|---|
| committer | David Zeuthen <david@fubar.dk> | 2006-01-21 02:45:27 +0000 |
| commit | 40ebd03de7f2de5f1fb9f702d9d026a3ff50a448 (patch) | |
| tree | aa496cee05edd229ab1bccf660359e95432e37a1 /doc | |
| parent | 46223569abd6066675bf98ef4b7e25789feb22ba (diff) | |
Great patch from Sjoerd Simons <sjoerd@luon.net>: As most people probably
know by now, various people don't really like that hal running as root.
We'd much rather see only a small process running as root and the main
hal process running unpriviledged. Which is exactly what this patch
does :)
How does it work? Just before drops it's root privs. a small program is
startup which will remain running as root and does the real execution
of the addons/probes/callouts on hals behalf. Communication between
hald and hald-runner is done via a p2p dbus connection. Resulting in a
process tree like this:
hal /usr/sbin/hald root \_ /usr/lib/hal/hald-runner root \_
/usr/lib/hal/hald-addon-acpi root \_ /usr/lib/hal/hald-addon-storage
root \_ /usr/lib/hal/hald-addon-storage
The patch consists out of two parts. First the implementation of
hald-runner, which is about 700 lines of code. And then a part
transforming the hald code from the current spawning code in utils to
an interface that can talk to the runner.
Add Sjoerd Simons <sjoerd@luon.net>. Revise my own email address.
Add hald-runner
Add hald-runner
add hald_runner.[ch]
New and changed files with slight changes. See the descriptive text above
and discussion at
http://lists.freedesktop.org/archives/hal/2006-January/004327.html for
details. Changed function hald_runner_start_runner() in
hald/hald_runner.c to print out runner path and improve error handling
when runner is not found. Also removed dbus_server_unref (server) in
handle_connection() in same file.
Remove --retain-privileges as this is no longer needed
Remove --retain-privileges and use --with-runner pointing to
../hald-runner/hald-runner
Diffstat (limited to 'doc')
| -rw-r--r-- | doc/spec/hal-spec.html | 8 |
1 files changed, 4 insertions, 4 deletions
diff --git a/doc/spec/hal-spec.html b/doc/spec/hal-spec.html index 167929ce..ddf5a4c3 100644 --- a/doc/spec/hal-spec.html +++ b/doc/spec/hal-spec.html @@ -2,7 +2,7 @@ <HTML ><HEAD ><TITLE ->HAL 0.5.6 Specification</TITLE +>HAL 0.5.7 Specification</TITLE ><META NAME="GENERATOR" CONTENT="Modular DocBook HTML Stylesheet Version 1.79"></HEAD @@ -24,7 +24,7 @@ CLASS="TITLEPAGE" CLASS="title" ><A NAME="AEN2" ->HAL 0.5.6 Specification</A +>HAL 0.5.7 Specification</A ></H1 ><H3 CLASS="author" @@ -51,7 +51,7 @@ HREF="mailto:david@fubar.dk" ></DIV ><SPAN CLASS="releaseinfo" ->Version 0.5.6<BR></SPAN +>Version 0.5.7<BR></SPAN ><HR></DIV ><DIV CLASS="TOC" @@ -778,7 +778,7 @@ CLASS="CALSTABLE" ></TR ><TR ><TD ->0.5.6</TD +>0.5.7</TD ><TD > </TD ><TD |