Add dbus configuration for robot profile

Change-Id: I33f8eb0d63bf304b1081c4e811b6939179584fa5

diff --git a/packaging/net-config.spec b/packaging/net-config.spec
index ad4cf82..c29df82 100755 (executable)
--- a/packaging/net-config.spec
+++ b/packaging/net-config.spec
@@ -186,6 +186,7 @@ ln -s %{TZ_SYS_ETC}/resolv.conf %{buildroot}%{_sysconfdir}/resolv.conf
 #DBus DAC (net-config.manifest enables DBus SMACK)
 mkdir -p %{buildroot}%{_sysconfdir}/dbus-1/system.d
 cp resources/etc/dbus-1/system.d/net-config.conf %{buildroot}%{_sysconfdir}/dbus-1/system.d/net-config.conf
+cp resources/etc/dbus-1/system.d/net-config-robot.conf %{buildroot}%{_sysconfdir}/dbus-1/system.d/net-config-robot.conf
 
 #log dump
 mkdir -p %{buildroot}/opt/etc/dump.d/module.d/
@@ -236,6 +237,7 @@ chown network_fw:network_fw /opt/usr/data/network
 %attr(644,root,root) %{_datadir}/dbus-1/system-services/*
 #DBus DAC
 %attr(644,root,root) %{_sysconfdir}/dbus-1/system.d/*
+%exclude %{_sysconfdir}/dbus-1/system.d/net-config-robot.conf
 %attr(644,root,root) /usr/lib/tmpfiles.d/security-network-config.conf
 %attr(644,root,root) %{_unitdir}/net-config.service
 %attr(644,root,root) %{_unitdir}/multi-user.target.wants/net-config.service
@@ -269,10 +271,13 @@ mv net-config.wearable net-config
 #### robot profile ####
 %post profile_robot
 mv /var/lib/net-config/settings-robot /var/lib/net-config/settings
+mv %{_sysconfdir}/dbus-1/system.d/net-config-robot.conf %{_sysconfdir}/dbus-1/system.d/net-config.conf
 
 %files profile_robot
 %manifest net-config.manifest
 %attr(644,root,root) /var/lib/net-config/settings-robot
+%attr(644,root,root) %{_sysconfdir}/dbus-1/system.d/net-config-robot.conf
+
 
 #### plugin ####
 %files plugin-headed

diff --git a/resources/etc/dbus-1/system.d/net-config-robot.conf b/resources/etc/dbus-1/system.d/net-config-robot.conf
new file mode 100755 (executable)
index 0000000..7c497e2
--- /dev/null
+++ b/resources/etc/dbus-1/system.d/net-config-robot.conf
@@ -0,0 +1,121 @@
+<!DOCTYPE busconfig PUBLIC "-//freedesktop//DTD D-BUS Bus Configuration 1.0//EN"
+       "http://www.freedesktop.org/standards/dbus/1.0/busconfig.dtd">
+<busconfig>
+       <policy user="root">
+               <allow own="net.netconfig"/>
+               <allow send_destination="net.netconfig"/>
+       </policy>
+       <policy user="network_fw">
+               <allow own="net.netconfig"/>
+               <allow send_destination="net.netconfig"/>
+       </policy>
+       <policy user="security_fw">
+               <allow own="net.netconfig"/>
+               <allow send_destination="net.netconfig"/>
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.network" send_member="DevicePolicySetWifi" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.network" send_member="DevicePolicySetWifiProfile" />
+       </policy>
+       <policy context="default">
+               <deny own="net.netconfig"/>
+               <deny send_destination="net.netconfig"/>
+
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.network" send_member="DevicePolicyGetWifi" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.network" send_member="DevicePolicyGetWifiProfile" />
+
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="GetAutoscan" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="GetAutoscanmode" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="FlushBss" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="SetIpConflictPeriod" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="GetIpConflictPeriod" />
+
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.tcpdump" send_member="StartTCPDump" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.tcpdump" send_member="StopTCPDump" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.tcpdump" send_member="CheckTCPDumpStatus" />
+
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.mptcp" send_member="IsSupported" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.mptcp" send_member="GetEnabled" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.mptcp" send_member="SetEnabled" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.mptcp" send_member="SetPathManager" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.mptcp" send_member="GetPathManager" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.mptcp" send_member="SetScheduler" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.mptcp" send_member="GetScheduler" />
+
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.network" send_member="AddRoute" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.network" send_member="RemoveRoute" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.network" send_member="EthernetCableState" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.network" send_member="PreferredIpv6Address" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.network" send_member="CheckGetPrivilege" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.network" send_member="CheckProfilePrivilege" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.network" send_member="CheckInternetPrivilege" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.network" send_member="GetMeteredInfo" />
+
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.network_statistics" send_member="GetWifiLastRxBytes" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.network_statistics" send_member="GetWifiLastTxBytes" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.network_statistics" send_member="GetWifiTotalRxBytes" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.network_statistics" send_member="GetWifiTotalTxBytes" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.network_statistics" send_member="ResetCellularLastRxBytes" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.network_statistics" send_member="ResetCellularLastTxBytes" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.network_statistics" send_member="ResetCellularTotalRxBytes" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.network_statistics" send_member="ResetCellularTotalTxBytes" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.network_statistics" send_member="ResetWifiLastRxBytes" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.network_statistics" send_member="ResetWifiLastTxBytes" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.network_statistics" send_member="ResetWifiTotalRxBytes" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.network_statistics" send_member="ResetWifiTotalTxBytes" />
+
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="DeleteEapConfig" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="IpConflictSetEnable" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="IsIpConflictDetectEnabled" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="GetIpConflictState" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="RequestBssidScan" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="NetlinkScan" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="RequestWpsCancel" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="RequestWpsConnect" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="CreateEapConfig" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="LoadDriver" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="GetBssidList" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="RemoveDriver" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="GetWifiState" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="SetBgscan" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="ResumeBgscan" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="PauseBgscan" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="ResetBgscanInterval" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="GetPasspoint" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="SetPasspoint" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="LaunchDirect" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="GetConfigIds" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="LoadConfiguration" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="SaveConfiguration" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="LoadEapConfiguration" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="SaveEapConfiguration" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="RemoveConfiguration" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="SetConfigField" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="PowerOnCompleted" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="PowerOffCompleted" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="SpecificScanCompleted" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="BssidScanCompleted" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="NetlinkScanCompleted" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="IPConflictEvent" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="TdlsDisconnect" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="TdlsConnectedPeer" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="AddVsie" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="GetVsie" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="RemoveVsie" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="DppEnterPeerUri" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="DppGenerateUri" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="DppStartConfiguratorInitiator" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="DppStartEnrolleeInitiator" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="DppStartConfiguratorResponder" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="DppStartEnrolleeResponder" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.wifi" send_member="DppStop" />
+
+               <allow send_destination="net.netconfig" send_interface="net.connman.Agent" send_member="SetField" />
+
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.vpnsvc" />
+
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.battery" send_member="GetBatteryDnList" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.battery" send_member="GetBatteryWifiList" />
+
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.ethernet" send_member="EnableEap" />
+               <allow send_destination="net.netconfig" send_interface="net.netconfig.ethernet" send_member="SetEapConfig" />
+       </policy>
+</busconfig>