1. 10 Oct, 2012 6 commits
  2. 09 Oct, 2012 1 commit
  3. 06 Oct, 2012 1 commit
  4. 05 Oct, 2012 2 commits
  5. 03 Oct, 2012 2 commits
  6. 30 Sep, 2012 2 commits
  7. 24 Sep, 2012 1 commit
  8. 23 Sep, 2012 1 commit
  9. 19 Sep, 2012 1 commit
    • Chun-wei Fan's avatar
      gio: Fix build on Windows · 3dd65859
      Chun-wei Fan authored
      The newly-introduced functions, g_content_type_get_symbolic_icon() and
      g_content_type_get_generic_icon_name() don't seem to be for Windows, at
      least for now.  So filter them out from gio.symbols on Windows.
      
      Also, glocalfileinfo.c calls g_content_type_get_symbolic_icon() in
      get_icon(), so only build that code when on Unix, for the time being.
      
      https://bugzilla.gnome.org/show_bug.cgi?id=684278
      3dd65859
  10. 18 Sep, 2012 1 commit
  11. 17 Sep, 2012 1 commit
    • Dieter Verfaillie's avatar
      gresource tests: fix VPATH builds emitting errors during dependency generation · db221020
      Dieter Verfaillie authored
      Adding the --sourcedir option fixes these:
      /path/to/src/gio/tests/test2.gresource.xml: Error on line 5 char 1: Failed to locate 'test1.txt' in current directory.
      /path/to/src/gio/tests/test3.gresource.xml: Error on line 5 char 1: Failed to locate 'test1.txt' in current directory.
      /path/to/src/gio/tests/test4.gresource.xml: Error on line 5 char 1: Failed to locate 'test1.txt' in current directory.
      /path/to/src/gio/tests/test.gresource.xml: Error on line 5 char 1: Failed to locate 'test1.txt' in current directory.
      db221020
  12. 13 Sep, 2012 2 commits
    • Colin Walters's avatar
      CVE-2012-3524: Hardening for being run in a setuid environment · d6cbb29f
      Colin Walters authored
      Some programs attempt to use libglib (or even libgio) when setuid.
      For a long time, GTK+ simply aborted if launched in this
      configuration, but we never had a real policy for GLib.
      
      I'm not sure whether we should advertise such support.  However, given
      that there are real-world programs that do this currently, we can make
      them safer with not too much effort.
      
      Better to fix a problem caused by an interaction between two
      components in *both* places if possible.
      
      This patch adds a private function g_check_setuid() which is used to
      first ensure we don't run an external dbus-launch binary if
      DBUS_SESSION_BUS_ADDRESS isn't set.
      
      Second, we also ensure the local VFS is used in this case.  The
      gdaemonvfs extension point will end up talking to the session bus
      which is typically undesirable in a setuid context.
      
      Implementing g_check_setuid() is interesting - whether or not we're
      running in a privilege-escalated path is operating system specific.
      Note that GTK+'s code to check euid versus uid worked historically on
      Unix, more modern systems have filesystem capabilities and SELinux
      domain transitions, neither of which are captured by the uid
      comparison.
      
      On Linux/glibc, the way this works is that the kernel sets an
      AT_SECURE flag in the ELF auxiliary vector, and glibc looks for it on
      startup.  If found, then glibc sets a public-but-undocumented
      __libc_enable_secure variable which we can use.  Unfortunately, while
      it *previously* worked to check this variable, a combination of newer
      binutils and RPM break it:
      http://www.openwall.com/lists/owl-dev/2012/08/14/1
      
      So for now on Linux/glibc, we fall back to the historical Unix version
      until we get glibc fixed.
      
      On some BSD variants, there is a issetugid() function.  On other Unix
      variants, we fall back to what GTK+ has been doing.
      Reported-By: default avatarSebastian Krahmer <krahmer@suse.de>
      Signed-off-by: Colin Walters's avatarColin Walters <walters@verbum.org>
      d6cbb29f
    • William Jon McCann's avatar
  13. 12 Sep, 2012 1 commit
  14. 11 Sep, 2012 1 commit
  15. 09 Sep, 2012 1 commit
  16. 03 Sep, 2012 7 commits
  17. 02 Sep, 2012 1 commit
  18. 01 Sep, 2012 1 commit
    • Aleksander Morgado's avatar
      gdbus-codegen: avoid error when wrong interface is provided to --annotate · 724c8a18
      Aleksander Morgado authored
      If the interface given cannot be matched, `iface_obj' was left uninitialized and
      the iface_obj == None check would end up crashing:
      
      Traceback (most recent call last):
        File "/usr/bin/gdbus-codegen", line 41, in <module>
          sys.exit(codegen_main.codegen_main())
        File "/usr/lib64/gdbus-2.0/codegen/codegen_main.py", line 175, in codegen_main
          apply_annotations(all_ifaces, opts.annotate)
        File "/usr/lib64/gdbus-2.0/codegen/codegen_main.py", line 146, in apply_annotations
          apply_annotation(iface_list, iface, None, None, None, None, key, value)
        File "/usr/lib64/gdbus-2.0/codegen/codegen_main.py", line 64, in apply_annotation
          if iface_obj == None:
      UnboundLocalError: local variable 'iface_obj' referenced before assignment
      
      Fixes https://bugzilla.gnome.org/show_bug.cgi?id=683088
      724c8a18
  19. 31 Aug, 2012 1 commit
  20. 30 Aug, 2012 4 commits
  21. 29 Aug, 2012 1 commit
  22. 28 Aug, 2012 1 commit