summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorMarcel Holtmann <marcel@holtmann.org>2005-10-09 22:17:14 +0000
committerMarcel Holtmann <marcel@holtmann.org>2005-10-09 22:17:14 +0000
commit1cc1c3615786c2f871044eaa471c7554bb2df3d2 (patch)
treea9a082f6aa0b07e4aa18acd78ab4dbf13847c594
parent34e266aaa88d0ff1e5930946d96783420c232895 (diff)
Add D-Bus security configuration
-rw-r--r--hcid/Makefile.am2
-rw-r--r--hcid/dbus.conf24
2 files changed, 25 insertions, 1 deletions
diff --git a/hcid/Makefile.am b/hcid/Makefile.am
index 7f235c73..f195c152 100644
--- a/hcid/Makefile.am
+++ b/hcid/Makefile.am
@@ -35,7 +35,7 @@ AM_YFLAGS = -d
CLEANFILES = lexer.c parser.c parser.h
-EXTRA_DIST = $(man_MANS) $(conf_DATA) dbus.h dbus.c
+EXTRA_DIST = $(man_MANS) $(conf_DATA) dbus.h dbus.c dbus.conf
MAINTAINERCLEANFILES = Makefile.in
diff --git a/hcid/dbus.conf b/hcid/dbus.conf
new file mode 100644
index 00000000..af3c49e7
--- /dev/null
+++ b/hcid/dbus.conf
@@ -0,0 +1,24 @@
+<!-- This configuration file specifies the required security policies
+ for BlueZ hcid to work. -->
+
+<!DOCTYPE busconfig PUBLIC "-//freedesktop//DTD D-BUS Bus Configuration 1.0//EN"
+ "http://www.freedesktop.org/standards/dbus/1.0/busconfig.dtd">
+<busconfig>
+
+ <!-- ../system.conf have denied everything, so we just punch some holes -->
+
+ <policy context="default">
+ <allow own="org.bluez"/>
+
+ <allow send_destination="org.bluez.Device"/>
+ <allow receive_sender="org.bluez.Device"/>
+
+ <allow send_path="/org/bluez/Device"/>
+
+ <allow send_destination="org.bluez.Manager"/>
+ <allow receive_sender="org.bluez.Manager"/>
+
+ <allow send_path="/org/bluez/Manager"/>
+ </policy>
+
+</busconfig>