kddZdZdZddlZddlmZmZmZddlm Z m Z dZ d Z d Z d Zd Zd ZdZdZdZdZdZdZdZdZdZ ddZ ddZddZddZeddZeddZy)zHProvides access to PolicyKit privilege mangement using gdefer Deferreds.z%Sebastian Heinlein )check_authorization_by_namecheck_authorization_by_pidget_pid_from_dbus_nameget_uid_from_dbus_name!CHECK_AUTH_ALLOW_USER_INTERACTIONCHECK_AUTH_NONEPK_ACTION_ADD_REMOVE_VENDOR_KEYPK_ACTION_CANCEL_FOREIGNPK_ACTION_CHANGE_REPOSITORYPK_ACTION_CHANGE_CONIFG!PK_ACTION_GET_TRUSTED_VENDOR_KEYSPK_ACTION_INSTALL_FILE$PK_ACTION_INSTALL_OR_REMOVE_PACKAGES(PK_ACTION_INSTALL_PACKAGES_FROM_NEW_REPO/PK_ACTION_INSTALL_PACKAGES_FROM_HIGH_TRUST_REPO$PK_ACTION_INSTALL_PURCHASED_PACKAGESPK_ACTION_UPDATE_CACHEPK_ACTION_UPGRADE_PACKAGESPK_ACTION_SET_PROXYPK_ACTION_CLEANN)Deferredinline_callbacks return_value)NotAuthorizedErrorAuthorizationFailedz)org.debian.apt.install-or-remove-packagesz)org.debian.apt.install-purchased-packagesz-org.debian.apt.install-packages-from-new-repoz/org.debian.apt.install-packages.high-trust-repozorg.debian.apt.install-filezorg.debian.apt.upgrade-packageszorg.debian.apt.update-cachezorg.debian.apt.cancel-foreignz&org.debian.apt.get-trusted-vendor-keysz org.debian.apt.change-repositoryzorg.debian.apt.change-configzorg.debian.apt.set-proxyzorg.debian.apt.cleanc,dd|if}t|||||S)aCheck if the given sender is authorized for the specified action. If the sender is not authorized raise NotAuthorizedError. Keyword arguments: dbus_name -- D-Bus name of the subject action_id -- the PolicyKit policy name of the action timeout -- time in seconds for the user to authenticate bus -- the D-Bus connection (defaults to the system bus) flags -- optional flags to control the authentication process zsystem-bus-namename_check_authorization) dbus_name action_idtimeoutbusflagssubjects 6/usr/lib/python3/dist-packages/aptdaemon/policykit1.pyrr@s&!69"56G GS% HHc,dd|if}t|||||S)aCheck if the given process is authorized for the specified action. If the sender is not authorized raise NotAuthorizedError. Keyword arguments: pid -- id of the process action_id -- the PolicyKit policy name of the action timeout -- time in seconds for the user to authenticate bus -- the D-Bus connection (defaults to the system bus) flags -- optional flags to control the authentication process z unix-processpidr)r*r"r#r$r%r&s r'rrQs%s|,G GS% HHr(c fd}|stj}|t}t|j dd}i}|j ||dd||j  S)Nc|\}}}|rj|y|rjtyjtyN)callbackerrbackrr)xxx_todo_changeme authorized challenged auth_detailsr"deferredr&s r'policykit_donez,_check_authorization..policykit_donecsO1B.Z    l +    0)D E   /C Dr(zorg.freedesktop.PolicyKit1z%/org/freedesktop/PolicyKit1/Authorityz$org.freedesktop.PolicyKit1.Authority)dbus_interfacer# reply_handler error_handler)dbus SystemBusrr get_objectCheckAuthorizationr/) r&r"r#r$r%r5pkdetailsr4s `` @r'r r bs|E nn }1zH 4? ABGGUB=$&& ( Or(c|stj}t}|jdd}|j |d|j |j |S)zZReturn a deferred that gets the id of process owning the given system D-Bus name. zorg.freedesktop.DBusz/org/freedesktop/DBus/Bus)r7r8r9)r:r;rr<GetConnectionUnixProcessIDr.r/)r!r$r4bus_objs r'rr}s` nnzHnn38:G &&y6L5=5F5F5=5E5E'G Or(c#VK|stj}t||}td|z5}|j Dcgc]}|j ds|}}dddt djd}t|ycc}w#1swY9xYww)z\Return a deferred that gets the uid of the user owning the given system D-Bus name. /proc/%s/statusUid:Nrr) r:r;ropen readlines startswithintsplitr)r!r$r*procvvaluesuids r'rrs nn&y#6 6C #% &G$!^^-Ff1E!FFG fQioo" #CGGGs43B)BBB#B%3B)BB&"B)c#rK|stj}t||}td|z5}|j }|Dcgc]}|j ds|}}|Dcgc]}|j ds|}}dddtd|zd5}|j jd} dddtdjd } tdjd } t|| |  fycc}wcc}w#1swYxYw#1swYmxYww) zzReturn a deferred that gets the pid, the uid of the user owning the given system D-Bus name and its command line. rDrEzGid:Nz/proc/%s/cmdlinerbzutf-8rr) r:r;rrFrGrHreaddecoderIrJr) r!r$r*rKlinesrL uid_values gid_values cmdline_filecmdlinerNgids r'get_proc_info_from_dbus_namerYs* nn&y#6 6C #% &@$ !&?A!,,v*>a? ?!&?A!,,v*>a? ?@  3& -6##%,,W56 jm!!#A& 'C jm!!#A& 'C#sC)*@?@@ 66s_3D7D D!D%D+DDDD7 D+?AD7 DD($D7+D40D7)iQNNr-) __doc__ __author____all__r:deferrrrerrorsrrrrrrr rrr r r PK_ACTION_CHANGE_CONFIGrrrrrrr rrrYr(r'rasO"5  5 ::;0%0%4)606>6:$L!@80($%!JN&*I"CG%)I"6    ++r(