andrei/niri
1
0
Fork 0
mirror of https://github.com/niri-wm/niri.git synced 2026-06-21 02:01:55 +07:00
Code Issues Packages Projects Releases 10 Wiki Activity

Set CLOEXEC on logind inhibit fd

Browse Source 
Don't leak it to child processes.
This commit is contained in:
Ivan Molodetskikh
2024-10-17 08:38:44 +03:00
parent 8555f37dbf
commit 8d08782eba
1 changed files with 12 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files
src/niri.rs
+12 -1
View File
@@ -1919,6 +1919,10 @@ impl Niri {
#[cfg(feature = "dbus")]
pub fn inhibit_power_key(&mut self) -> anyhow::Result<()> {
use std::os::fd::{AsRawFd, BorrowedFd};
use smithay::reexports::rustix::io::{fcntl_setfd, FdFlags};
let conn = zbus::blocking::ConnectionBuilder::system()?.build()?;
let message = conn.call_method(
@@ -1929,7 +1933,14 @@ impl Niri {
&("handle-power-key", "niri", "Power key handling", "block"),
)?;
let fd = message.body()?;
let fd: zbus::zvariant::OwnedFd = message.body()?;
// Don't leak the fd to child processes.
let borrowed = unsafe { BorrowedFd::borrow_raw(fd.as_raw_fd()) };
if let Err(err) = fcntl_setfd(borrowed, FdFlags::CLOEXEC) {
warn!("error setting CLOEXEC on inhibit fd: {err:?}");
};
self.inhibit_power_key_fd = Some(fd);
Ok(())