Re: [PATCH BlueZ] mesh: Add D-Bus policy for Bluetooth mesh daemon

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Hi Luiz,
On Fri, 2019-01-18 at 05:04 -0300, Von Dentz, Luiz wrote:
> Hi Inga,
> 
> On Fri, Jan 18, 2019 at 12:47 AM Inga Stotland <
> inga.stotland@xxxxxxxxx> wrote:
> 
> This adds new D-Bus policy file btmesh.conf
> ---
>  Makefile.mesh    |  6 ++++++
>  mesh/btmesh.conf | 24 ++++++++++++++++++++++++
>  2 files changed, 30 insertions(+)
>  create mode 100644 mesh/btmesh.conf
> 
> diff --git a/Makefile.mesh b/Makefile.mesh
> index ea6c5e939..e15718116 100644
> --- a/Makefile.mesh
> +++ b/Makefile.mesh
> @@ -1,5 +1,9 @@
>  if MESH
> 
> +if DATAFILES
> +dbus_DATA += mesh/btmesh.conf
> +endif
> +
>  mesh_sources = mesh/mesh.h mesh/mesh.c \
>                                 mesh/net_keys.h mesh/net_keys.c \
>                                 mesh/mesh-io.h mesh/mesh-io.c \
> @@ -27,4 +31,6 @@ libexec_PROGRAMS += mesh/meshd
>  mesh_meshd_SOURCES = $(mesh_sources) mesh/main.c
>  mesh_meshd_LDADD = src/libshared-ell.la $(ell_ldadd) -ljson-c
>  mesh_meshd_DEPENDENCIES = $(ell_dependencies) src/libshared-ell.la
> +
> +EXTRA_DIST += mesh/btmesh.conf
>  endif
> diff --git a/mesh/btmesh.conf b/mesh/btmesh.conf
> new file mode 100644
> index 000000000..f05545065
> --- /dev/null
> +++ b/mesh/btmesh.conf
> @@ -0,0 +1,24 @@
> +<!-- This configuration file specifies the required security
> policies
> +     for Bluetooth Mesh daemon to work. -->
> +
> +<!DOCTYPE busconfig PUBLIC "-//freedesktop//DTD D-BUS Bus
> Configuration 1.0//EN"
> + "http://www.freedesktop.org/standards/dbus/1.0/busconfig.dtd";>;
> +<busconfig>
> +
> +  <!-- ../system.conf have denied everything, so we just punch some
> holes -->
> +
> +  <policy user="root">
> +    <allow own="org.bluez.mesh"/>
> +    <allow send_destination="org.bluez.mesh"/>
> +    <allow send_interface="org.bluez.mesh.Application1"/>
> +    <allow send_interface="org.bluez.mesh.Element1"/>
> +    <allow send_interface="org.bluez.mesh.ProvisionAgent1"/>
> +    <allow send_interface="org.freedesktop.DBus.ObjectManager"/>
> +    <allow send_interface="org.freedesktop.DBus.Properties"/>
> +  </policy>
> +
> +  <policy context="default">
> +    <allow send_destination="org.bluez.mesh"/>
> +  </policy>
> +
> +</busconfig>
> --
> 2.17.2
> 
> Any plans to put together a btmesh.service file for systemd as well?
> 
> 

Yes, but for now I would like to hold off until mesh daemon and
bluetoothd can co-exist on one controller. Currently, mesh daemon
requires a sole ownership of an hci device.

Regards,
Inga
[Index of Archives]     [Bluez Devel]     [Linux Wireless Networking]     [Linux Wireless Personal Area Networking]     [Linux ATH6KL]     [Linux USB Devel]     [Linux Media Drivers]     [Linux Audio Users]     [Linux Kernel]     [Linux SCSI]     [Big List of Linux Books]

  Powered by Linux