logind: only release logind session from the PAM module if the same module instance actually created it

author: Lennart Poettering <lennart@poettering.net> 2012-10-16 19:21:21 +0200
committer: Lennart Poettering <lennart@poettering.net> 2012-10-16 19:21:21 +0200
commit: 770858811930c0658b189d980159ea1ac5663467 (patch)
tree: 2f9b1d7f89171496d7aaf291f75b06dd0a62a9e9 /src/login/pam-module.c
parent: 183de6d7d9def43ec90b94e775fdc49539a950ba (diff)
1 files changed, 14 insertions, 3 deletions
diff --git a/src/login/pam-module.c b/src/login/pam-module.c
index af108c46d5..08a9328b65 100644
--- a/src/login/pam-module.c
+++ b/src/login/pam-module.c
@@ -331,7 +331,7 @@ _public_ PAM_EXTERN int pam_sm_open_session(
         int session_fd = -1;
         DBusConnection *bus = NULL;
         DBusMessage *m = NULL, *reply = NULL;
-        dbus_bool_t remote;
+        dbus_bool_t remote, existing;
         int r;
         uint32_t vtnr = 0;
 
@@ -543,6 +543,7 @@ _public_ PAM_EXTERN int pam_sm_open_session(
                                    DBUS_TYPE_UNIX_FD, &session_fd,
                                    DBUS_TYPE_STRING, &seat,
                                    DBUS_TYPE_UINT32, &vtnr,
+                                   DBUS_TYPE_BOOLEAN, &existing,
                                    DBUS_TYPE_INVALID)) {
                 pam_syslog(handle, LOG_ERR, "Failed to parse message: %s", bus_error_message(&error));
                 r = PAM_SESSION_ERR;
@@ -586,6 +587,12 @@ _public_ PAM_EXTERN int pam_sm_open_session(
                 }
         }
 
+        r = pam_set_data(handle, "systemd.existing", INT_TO_PTR(!!existing), NULL);
+        if (r != PAM_SUCCESS) {
+                pam_syslog(handle, LOG_ERR, "Failed to install existing flag.");
+                return r;
+        }
+
         if (session_fd >= 0) {
                 r = pam_set_data(handle, "systemd.session-fd", INT_TO_PTR(session_fd+1), NULL);
                 if (r != PAM_SUCCESS) {
@@ -628,7 +635,7 @@ _public_ PAM_EXTERN int pam_sm_close_session(
                 int flags,
                 int argc, const char **argv) {
 
-        const void *p = NULL;
+        const void *p = NULL, *existing = NULL;
         const char *id;
         DBusConnection *bus = NULL;
         DBusMessage *m = NULL, *reply = NULL;
@@ -639,8 +646,12 @@ _public_ PAM_EXTERN int pam_sm_close_session(
 
         dbus_error_init(&error);
 
+        /* Only release session if it wasn't pre-existing when we
+         * tried to create it */
+        pam_get_data(handle, "systemd.existing", &existing);
+
         id = pam_getenv(handle, "XDG_SESSION_ID");
-        if (id) {
+        if (id && !existing) {
 
                 /* Before we go and close the FIFO we need to tell
                  * logind that this is a clean session shutdown, so
author	Lennart Poettering <lennart@poettering.net>	2012-10-16 19:21:21 +0200
committer	Lennart Poettering <lennart@poettering.net>	2012-10-16 19:21:21 +0200
commit	770858811930c0658b189d980159ea1ac5663467 (patch)
tree	2f9b1d7f89171496d7aaf291f75b06dd0a62a9e9 /src/login/pam-module.c
parent	183de6d7d9def43ec90b94e775fdc49539a950ba (diff)