-
-
Notifications
You must be signed in to change notification settings - Fork 13
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
parse XML configuration files #159
parse XML configuration files #159
Conversation
bcea200
to
07e1119
Compare
9320376
to
6402177
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Mostly have nitpicks but overall it looks pretty good already. Let's try and get it merged soon.
Sure thing.
Awesome! I'll have a look soon.
That's ok, we can handle them later. If you could list them here, that would be great though, just to ensure that we don't end up leaving something very important/critical. Also do we add tests to parse system and session configuration from |
Do you mean I should copy the default configuration files from dbus-broker in as tests? Or should busd try to read these files by default if run with |
So busd should most definitely read them from those paths and later when we've some build configuration (#77), we can make the paths configurable at build time too. I was saying we should have tests that also try to load from those paths on Linux but we can also copy them into the repo to keep the tests self-contained (then the tests don't need to be linux-only). |
I've updated the TODO checklist in the PR description |
78aa1f2
to
2b9ab6e
Compare
Yep, I've run it in a container to confirm that it listens on the expected system socket However, I've not yet tried using this as a replacement for the actual system bus on my machine |
2b9ab6e
to
1f9d177
Compare
1f9d177
to
2dbc4fd
Compare
2dbc4fd
to
2c8b75c
Compare
We'll borrow this from dbus2#159 so that we can be clearer about the default address.
2c8b75c
to
7aa216c
Compare
This crate offers a serde-compatible Deserializer for XML data.
We can deserialize an XML file using the "serde" and "quick-xml" crates. Creating a struct type with nested structs within is a direct approach that works well with `#[derive(Deserialize)]`. However, the result isn't optimal for consumption, and also makes it very difficult to implement aspects of the business logic that are sensitive to the order of certain XML elements, e.g. `<bus>`, `<include>`, etc. So our approach is to first deserialize into a `Vec<Element>` (inspired by @elmarco 's work over in dbus2#23 ). Importantly, by starting with this intermediate representation, we can preserve the XML author's intention regarding the order of elements. Then we replace any `<include>` and `<includedir>` elements with the parsed contents the XML files to which they refer, further replacing any `<include>` and `<includedir>` elements within those. Finally, we can make one final iteration over the `Vec<Element>` to produce the final optimally-structured `Config`. Fixes dbus2#78
7aa216c
to
4d1c8fd
Compare
Thanks so much for your work on this and especially your extreme patience with my nitpicking. 👍 |
based on reading https://dbus.freedesktop.org/doc/dbus-daemon.1.html#configuration_file
Fixes #78 and #79 and #148
Related to #23 and #146
<limit>
parts per Hardcoded security limits #148<policy>
parts that we don't implement per Implement essential policy #79<policy>
parts that evendbus-broker
doesn't implement: feat: initial work on supporting dbus-daemon XML configuration files #146 (comment)<type>
<user>
<fork>
<keep_umask>
<syslog>
<pidfile>
<allow_anonymous>
<listen>
<auth>
<servicedir>
<include>
<includedir>
<standard_session_servicedirs />
<standard_session_servicedirs />
<standard_system_servicedirs />
<standard_system_servicedirs />
<policy>
<allow>
and all supported attributes<deny>
and all supported attributes<(allow|deny) send_member=...
: Implement essential policy #79 (comment)TODOs for follow-up PRs:
<selinux>
: XML config: support SELinux settings #193<associate>
: XML config: support SELinux settings #193<apparmor>
: XML config: support AppArmor #194<include>
/<includedirs>
: XML config: protect against circular includes #195<include if_selinux_enabled=...>
: XML config: support SELinux settings #193<include selinux_root_relative=...>
: XML config: support SELinux settings #193<listen>
better thanString
values (e.g. parse and validate into more useful type)<auth>
better thanString
, is there anenum
of specific values we support< standard_session_servicedirs />
in a system config<standard_system_servicedirs />
in a session config<busconfig>
Ord
/PartialOrd
trait forPolicy
to facilitate use during evaluation