review.tizen.org Git - platform/upstream/connman.git/commit

author	Daniel Wagner <daniel.wagner@bmw-carit.de>
	Fri, 2 Nov 2012 16:26:13 +0000 (17:26 +0100)
committer	Daniel Wagner <daniel.wagner@bmw-carit.de>
	Fri, 23 Nov 2012 12:47:22 +0000 (13:47 +0100)
commit	861a04bab6b19cb275c137f1cdfe559879a79565
tree	b0a89b78ba7e6549bb8a1e3e47f071b3f26952b8	tree \| snapshot
parent	db4b9c326ebc4dda44a72b6832382301920925be	commit \| diff

dbus: Add SELinux support

ConnMan needs to identify application in a secure way when they are
using the Session API. The current D-Bus server implemention supports
two types of LSM, POSIX and SELinux. In order to support SMACK or
TOMOYO the D-Bus code base needs to be patch. This is the initial work
to support at least POSIX and SELinux. Maybe in the future we are able
to support also the other LSMs.

The idea behind gsec is to keep the LSM related code together in one
directory. The API introduces in this patch is not any way final. It
will need some more time figuring out how are able to intregrate this
in a nice way.

The current API introduces g_sec_get_selinux_label() which will return
the SELinux context. The function will issuing a
GetConnectionSELinuxSecurityContext method call.

Note, that this function is not documented in the D-Bus
specification. See for more details the source code dbus/bus/drivers.c
and dbus/bus/selinux.c in the D-Bus reference implementation.

include/dbus.h		diff \| blob \| history
src/dbus.c		diff \| blob \| history