Package org.gnome.gio

Class DebugControllerDBus

java.lang.Object

org.javagi.base.ProxyInstance

org.gnome.gobject.TypeInstance

org.gnome.gobject.GObject

org.gnome.gio.DebugControllerDBus

All Implemented Interfaces:

DebugController, Initable, Proxy

@Generated("io.github.jwharm.JavaGI")
public class DebugControllerDBus
extends GObject
implements DebugController, Initable

GDebugControllerDBus is an implementation of DebugController which exposes debug settings as a D-Bus object.

It is a Initable object, and will register an object at /org/gtk/Debugging on the bus given as Gio.DebugControllerDBus:connection once it’s initialized. The object will be unregistered when the last reference to the GDebugControllerDBus is dropped.

This D-Bus object can be used by remote processes to enable or disable debug output in this process. Remote processes calling org.gtk.Debugging.SetDebugEnabled() will affect the value of Gio.DebugController:debug-enabled and, by default, GLib.logGetDebugEnabled().

By default, no processes are allowed to call SetDebugEnabled() unless a Gio.DebugControllerDBus::authorize signal handler is installed. This is because the process may be privileged, or might expose sensitive information in its debug output. You may want to restrict the ability to enable debug output to privileged users or processes.

One option is to install a D-Bus security policy which restricts access to SetDebugEnabled(), installing something like the following in $datadir/dbus-1/system.d/:

<?xml version="1.0"?> <!--*-nxml-*-->
 <!DOCTYPE busconfig PUBLIC "-//freedesktop//DTD D-BUS Bus Configuration 1.0//EN"
      "http://www.freedesktop.org/standards/dbus/1.0/busconfig.dtd">
 <busconfig>
   <policy user="root">
     <allow send_destination="com.example.MyService" send_interface="org.gtk.Debugging"/>
   </policy>
   <policy context="default">
     <deny send_destination="com.example.MyService" send_interface="org.gtk.Debugging"/>
   </policy>
 </busconfig>
 

This will prevent the SetDebugEnabled() method from being called by all except root. It will not prevent the DebugEnabled property from being read, as it’s accessed through the org.freedesktop.DBus.Properties interface.

Another option is to use polkit to allow or deny requests on a case-by-case basis, allowing for the possibility of dynamic authorisation. To do this, connect to the Gio.DebugControllerDBus::authorize signal and query polkit in it:

  g_autoptr(GError) child_error = NULL;
   g_autoptr(GDBusConnection) connection = g_bus_get_sync (G_BUS_TYPE_SYSTEM, NULL, NULL);
   gulong debug_controller_authorize_id = 0;

   // Set up the debug controller.
   debug_controller = G_DEBUG_CONTROLLER (g_debug_controller_dbus_new (priv->connection, NULL, &child_error));
   if (debug_controller == NULL)
     {
       g_error ("Could not register debug controller on bus: %s",
                child_error->message);
     }

   debug_controller_authorize_id = g_signal_connect (debug_controller,
                                                     "authorize",
                                                     G_CALLBACK (debug_controller_authorize_cb),
                                                     self);

   static gboolean
   debug_controller_authorize_cb (GDebugControllerDBus  *debug_controller,
                                  GDBusMethodInvocation *invocation,
                                  gpointer               user_data)
   {
     g_autoptr(PolkitAuthority) authority = NULL;
     g_autoptr(PolkitSubject) subject = NULL;
     g_autoptr(PolkitAuthorizationResult) auth_result = NULL;
     g_autoptr(GError) local_error = NULL;
     GDBusMessage *message;
     GDBusMessageFlags message_flags;
     PolkitCheckAuthorizationFlags flags = POLKIT_CHECK_AUTHORIZATION_FLAGS_NONE;

     message = g_dbus_method_invocation_get_message (invocation);
     message_flags = g_dbus_message_get_flags (message);

     authority = polkit_authority_get_sync (NULL, &local_error);
     if (authority == NULL)
       {
         g_warning ("Failed to get polkit authority: %s", local_error->message);
         return FALSE;
       }

     if (message_flags & G_DBUS_MESSAGE_FLAGS_ALLOW_INTERACTIVE_AUTHORIZATION)
       flags |= POLKIT_CHECK_AUTHORIZATION_FLAGS_ALLOW_USER_INTERACTION;

     subject = polkit_system_bus_name_new (g_dbus_method_invocation_get_sender (invocation));

     auth_result = polkit_authority_check_authorization_sync (authority,
                                                              subject,
                                                              "com.example.MyService.set-debug-enabled",
                                                              NULL,
                                                              flags,
                                                              NULL,
                                                              &local_error);
     if (auth_result == NULL)
       {
         g_warning ("Failed to get check polkit authorization: %s", local_error->message);
         return FALSE;
       }

     return polkit_authorization_result_get_is_authorized (auth_result);
   }
 

Since:

2.72

Nested Class Summary

Nested Classes

Modifier and Type	Class	Description
static interface	DebugControllerDBus.AuthorizeCallback	Functional interface declaration of the AuthorizeCallback callback.
static class	DebugControllerDBus.Builder<B extends DebugControllerDBus.Builder<B>>	Inner class implementing a builder pattern to construct a GObject with properties.
static class	DebugControllerDBus.DebugControllerDBusClass	The virtual function table for GDebugControllerDBus.

Nested classes/interfaces inherited from class org.gnome.gobject.GObject

GObject.NotifyCallback, GObject.ObjectClass

Nested classes/interfaces inherited from interface org.gnome.gio.DebugController

DebugController.DebugController$Impl, DebugController.DebugControllerInterface

Nested classes/interfaces inherited from interface org.gnome.gio.Initable

Initable.Initable$Impl, Initable.InitableIface

Constructor Summary

Constructors

Constructor	Description
DebugControllerDBus()	Creates a new DebugControllerDBus.
DebugControllerDBus(MemorySegment address)	Create a DebugControllerDBus proxy instance for the provided memory address.
DebugControllerDBus(DBusConnection connection, @Nullable Cancellable cancellable)	Create a new GDebugControllerDBus and synchronously initialize it.

Method Summary

Modifier and Type	Method	Description
protected DebugControllerDBus	asParent()	Returns this instance as if it were its parent type.
protected boolean	authorize(DBusMethodInvocation invocation)	Default handler for the GDebugControllerDBus::authorize signal.
static DebugControllerDBus.Builder<? extends DebugControllerDBus.Builder>	builder()	A DebugControllerDBus.Builder object constructs a DebugControllerDBus with the specified properties.
boolean	emitAuthorize(@Nullable DBusMethodInvocation invocation)	Emits the "authorize" signal.
static MemoryLayout	getMemoryLayout()	The memory layout of the native struct.
static @Nullable Type	getType()	Get the GType of the DebugControllerDBus class
SignalConnection<DebugControllerDBus.AuthorizeCallback>	onAuthorize(DebugControllerDBus.AuthorizeCallback handler)	Emitted when a D-Bus peer is trying to change the debug settings and used to determine if that is authorized.
void	stop()	Stop the debug controller, unregistering its object from the bus.

Methods inherited from class org.gnome.gobject.GObject

addToggleRef, addWeakPointer, bindProperty, bindProperty, bindProperty, bindPropertyFull, bindPropertyFull, bindPropertyWithClosures, bindPropertyWithClosures, compatControl, connect, connect, connect, constructed, disconnect, dispatchPropertiesChanged, dispose, dupData, dupQdata, emit, emitNotify, finalize_, forceFloating, freezeNotify, get, getData, getProperty, getProperty, getProperty, getQdata, getv, interfaceFindProperty, interfaceInstallProperty, interfaceListProperties, isFloating, newInstance, newInstance, newv, notify, notify, notifyByPspec, onNotify, ref, refSink, removeToggleRef, removeWeakPointer, replaceData, replaceQdata, runDispose, set, setData, setDataFull, setProperty, setProperty, setProperty, setQdata, setQdataFull, setv, stealData, stealQdata, takeRef, thawNotify, unref, watchClosure, weakRef, weakUnref, withProperties

Methods inherited from class org.gnome.gobject.TypeInstance

callParent, callParent, cast, getPrivate, readGClass, writeGClass

Methods inherited from class org.javagi.base.ProxyInstance

equals, handle, hashCode

Methods inherited from class java.lang.Object

clone, finalize, getClass, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface org.gnome.gio.DebugController

getDebugEnabled, setDebugEnabled

Methods inherited from interface org.gnome.gio.Initable

init

Methods inherited from interface org.javagi.base.Proxy

handle

Constructor Details

DebugControllerDBus

public DebugControllerDBus(MemorySegment address)

Create a DebugControllerDBus proxy instance for the provided memory address.

Parameters:

address - the memory address of the native object

DebugControllerDBus

public DebugControllerDBus(DBusConnection connection,
 @Nullable Cancellable cancellable)
                    throws GErrorException

Create a new GDebugControllerDBus and synchronously initialize it.

Initializing the object will export the debug object on connection. The object will remain registered until the last reference to the GDebugControllerDBus is dropped.

Initialization may fail if registering the object on connection fails.

Parameters:

connection - a GDBusConnection to register the debug object on

cancellable - a GCancellable, or null

Throws:

GErrorException - see GError

Since:

2.72

DebugControllerDBus

public DebugControllerDBus()

Creates a new DebugControllerDBus.

Method Details

getType

public static @Nullable Type getType()

Get the GType of the DebugControllerDBus class

Returns:

the GType

getMemoryLayout

public static MemoryLayout getMemoryLayout()

The memory layout of the native struct.

Returns:

the memory layout

asParent

protected DebugControllerDBus asParent()

Returns this instance as if it were its parent type. This is mostly synonymous to the Java super keyword, but will set the native typeclass function pointers to the parent type. When overriding a native virtual method in Java, "chaining up" with super.methodName() doesn't work, because it invokes the overridden function pointer again. To chain up, call asParent().methodName(). This will call the native function pointer of this virtual method in the typeclass of the parent type.

Overrides:

asParent in class GObject

stop

public void stop()

Stop the debug controller, unregistering its object from the bus.

Any pending method calls to the object will complete successfully, but new ones will return an error. This method will block until all pending GDebugControllerDBus::authorize signals have been handled. This is expected to not take long, as it will just be waiting for threads to join. If any GDebugControllerDBus::authorize signal handlers are still executing in other threads, this will block until after they have returned.

This method will be called automatically when the final reference to the GDebugControllerDBus is dropped. You may want to call it explicitly to know when the controller has been fully removed from the bus, or to break reference count cycles.

Calling this method from within a GDebugControllerDBus::authorize signal handler will cause a deadlock and must not be done.

Since:

2.72

authorize

protected boolean authorize(DBusMethodInvocation invocation)

Default handler for the GDebugControllerDBus::authorize signal.

onAuthorize

public SignalConnection<DebugControllerDBus.AuthorizeCallback> onAuthorize(DebugControllerDBus.AuthorizeCallback handler)

Emitted when a D-Bus peer is trying to change the debug settings and used to determine if that is authorized.

This signal is emitted in a dedicated worker thread, so handlers are allowed to perform blocking I/O. This means that, for example, it is appropriate to call polkit_authority_check_authorization_sync() to check authorization using polkit.

If false is returned then no further handlers are run and the request to change the debug settings is rejected.

Otherwise, if true is returned, signal emission continues. If no handlers return false, then the debug settings are allowed to be changed.

Signal handlers must not modify invocation, or cause it to return a value.

The default class handler just returns true.

Parameters:

handler - the signal handler

Returns:

a signal handler ID to keep track of the signal connection

Since:

2.72

See Also:

• DebugControllerDBus.AuthorizeCallback.run(org.gnome.gio.DBusMethodInvocation)

emitAuthorize

public boolean emitAuthorize(@Nullable DBusMethodInvocation invocation)

Emits the "authorize" signal. See onAuthorize(org.gnome.gio.DebugControllerDBus.AuthorizeCallback).

builder

public static DebugControllerDBus.Builder<? extends DebugControllerDBus.Builder> builder()

A DebugControllerDBus.Builder object constructs a DebugControllerDBus with the specified properties. Use the various set...() methods to set properties, and finish construction with DebugControllerDBus.Builder.build().

Returns:

the builder object