Update wrt-security_0.0.42

author Kisub Song <kisubs.song@samsung.com>

Thu, 6 Sep 2012 04:42:41 +0000 (13:42 +0900)

committer Kisub Song <kisubs.song@samsung.com>

Thu, 6 Sep 2012 04:51:06 +0000 (13:51 +0900)
author Kisub Song <kisubs.song@samsung.com>
Thu, 6 Sep 2012 04:42:41 +0000 (13:42 +0900)
committer Kisub Song <kisubs.song@samsung.com>
Thu, 6 Sep 2012 04:51:06 +0000 (13:51 +0900)
diff --git a/ace/configuration/TizenPolicy.xml b/ace/configuration/TizenPolicy.xml

index 6a99fe6..bc09fae 100644 (file)
--- a/ace/configuration/TizenPolicy.xml
+++ b/ace/configuration/TizenPolicy.xml
@@ -8,24 +8,211 @@
                  </subject-match>
              </subject>
          </target> 
+        <rule effect="permit">
+            <condition combine="or">
+                <resource-match attr="device-cap" func="equal" match="tizen" />
+            </condition>
+        </rule>
+
+        <!-- access to alarm -->
+        <rule effect="permit">
+            <condition combine="or">
+                <resource-match attr="device-cap" func="equal" match="alarm" />
+                <resource-match attr="device-cap" func="equal" match="alarm.read" />
+                <resource-match attr="device-cap" func="equal" match="alarm.write" />
+            </condition>
+        </rule>
+
+        <!-- access to application -->
+        <rule effect="permit">
+            <condition combine="or">
+                <resource-match attr="device-cap" func="equal" match="application" />
+                <resource-match attr="device-cap" func="equal" match="application.kill" />
+                <resource-match attr="device-cap" func="equal" match="application.launch" />
+                <resource-match attr="device-cap" func="equal" match="application.read" />
+                <resource-match attr="device-cap" func="equal" match="application.manager" />
+                <resource-match attr="device-cap" func="equal" match="application.service" />
+            </condition>
+        </rule>
+
+        <!-- access to bluetooth -->
+        <rule effect="permit">
+            <condition combine="or">
+                <resource-match attr="device-cap" func="equal" match="bluetooth" />
+                <resource-match attr="device-cap" func="equal" match="bluetooth.admin" />
+                <resource-match attr="device-cap" func="equal" match="bluetooth.gap" />
+                <resource-match attr="device-cap" func="equal" match="bluetooth.spp" />
+            </condition>
+        </rule>
+
+        <!-- access to calendar -->
+        <rule effect="permit">
+            <condition combine="or">
+                <resource-match attr="device-cap" func="equal" match="calendar" />
+                <resource-match attr="device-cap" func="equal" match="calendar.read" />
+                <resource-match attr="device-cap" func="equal" match="calendar.write" />
+            </condition>
+        </rule>
+
+        <!-- access to call history -->
+        <rule effect="permit">
+            <condition combine="or">
+                <resource-match attr="device-cap" func="equal" match="call" />
+                <resource-match attr="device-cap" func="equal" match="call.history" />
+                <resource-match attr="device-cap" func="equal" match="call.history.read" />
+                <resource-match attr="device-cap" func="equal" match="call.history.write" />
+                <resource-match attr="device-cap" func="equal" match="call.state" />
+            </condition>
+        </rule>
+
+        <!-- access to contact -->
+        <rule effect="permit">
+            <condition combine="or">
+                <resource-match attr="device-cap" func="equal" match="contact" />
+                <resource-match attr="device-cap" func="equal" match="contact.read" />
+                <resource-match attr="device-cap" func="equal" match="contact.write" />
+            </condition>
+        </rule>
+
+        <!-- access to filesystem -->
+        <rule effect="permit">
+            <condition combine="or">
+                <resource-match attr="device-cap" func="equal" match="filesystem" />
+                <resource-match attr="device-cap" func="equal" match="filesystem.read" />
+                <resource-match attr="device-cap" func="equal" match="filesystem.write" />
+            </condition>
+        </rule>
+
+        <!-- access to geo coder -->
+        <rule effect="permit">
+            <condition combine="or">
+                <resource-match attr="device-cap" func="equal" match="geocoder" />
+            </condition>
+        </rule>
+
+        <!-- access to mediacontent -->
+        <rule effect="permit">
+            <condition combine="or">
+                <resource-match attr="device-cap" func="equal" match="mediacontent" />
+                <resource-match attr="device-cap" func="equal" match="mediacontent.read" />
+                               <resource-match attr="device-cap" func="equal" match="mediacontent.write" />
+            </condition>
+        </rule>
+
+        <!-- access to Messaging -->
+        <rule effect="permit">
+            <condition combine="or">
+                <resource-match attr="device-cap" func="equal" match="messaging" />
+                <resource-match attr="device-cap" func="equal" match="messaging.read" />
+                <resource-match attr="device-cap" func="equal" match="messaging.write" />
+                <resource-match attr="device-cap" func="equal" match="messaging.send" />
+            </condition>
+        </rule>
  
          <!-- access to NFC -->
          <rule effect="permit">
              <condition combine="or">
-                <resource-match attr="device-cap" func="equal" match="nfc.se" />
+                <resource-match attr="device-cap" func="equal" match="nfc" />
+                <resource-match attr="device-cap" func="equal" match="nfc.tag" />
+                <resource-match attr="device-cap" func="equal" match="nfc.p2p" />
+                <resource-match attr="device-cap" func="equal" match="nfc.admin" />
+            </condition>
+        </rule>
+
+        <!-- access to Sensors -->
+        <rule effect="permit">
+            <condition combine="or">
+                <resource-match attr="device-cap" func="equal" match="sensors" />
+            </condition>
+        </rule>
+
+        <!-- access to systeminfo -->
+        <rule effect="permit">
+            <condition combine="or">
+                <resource-match attr="device-cap" func="equal" match="systeminfo" />
+            </condition>
+        </rule>
+
+        <!-- access to timeutil -->
+        <rule effect="permit">
+            <condition combine="or">
+                <resource-match attr="device-cap" func="equal" match="time" />
+                <resource-match attr="device-cap" func="equal" match="time.read" />
+                <resource-match attr="device-cap" func="equal" match="time.write" />
+            </condition>
+        </rule>
+
+        <!-- access to lbs -->
+        <rule effect="permit">
+            <condition combine="or">
+                <resource-match attr="device-cap" func="equal" match="lbs" />
+            </condition>
+        </rule>
+
+        <!-- access to map -->
+        <rule effect="permit">
+            <condition combine="or">
+                <resource-match attr="device-cap" func="equal" match="map" />
+            </condition>
+        </rule>
+
+        <!-- access to poi -->
+        <rule effect="permit">
+            <condition combine="or">
+                <resource-match attr="device-cap" func="equal" match="poi" />
+                <resource-match attr="device-cap" func="equal" match="poi.read" />
+                <resource-match attr="device-cap" func="equal" match="poi.write" />
+            </condition>
+        </rule>
+
+        <!-- access to route -->
+        <rule effect="permit">
+            <condition combine="or">
+                <resource-match attr="device-cap" func="equal" match="route" />
              </condition>
          </rule>
  
+        <!-- access to external network -->
+        <!-- XMLHttpRequestTizen and externalNetworkAccessTizen defined for Tizen Webapp -->
+        <!-- Function of two capabilities are same to XMLHttpRequest and externalNetworkAccess of WAC -->
+        <rule effect="permit">
+            <condition combine="or">
+                <resource-match attr="device-cap" func="equal" match="XMLHttpRequest" />
+                <resource-match attr="device-cap" func="equal" match="externalNetworkAccess" />
+            </condition>
+        </rule>
+
+        <!-- access to external network on roaming status -->
          <rule effect="permit">
              <condition combine="and">
                  <condition combine="or">
                      <resource-match attr="device-cap" func="equal" match="XMLHttpRequest" />
                      <resource-match attr="device-cap" func="equal" match="externalNetworkAccess" />
-                    <resource-match attr="device-cap" func="equal" match="messaging.send" />
                  </condition>
                  <environment-match attr="roaming" match="true" />
              </condition>
          </rule>
+
+        <!-- access to power feature -->
+        <rule effect="permit">
+            <condition combine="or">
+                <resource-match attr="device-cap" func="equal" match="power" />
+            </condition>
+        </rule>
+
+        <!-- access to download feature -->
+        <rule effect="permit">
+            <condition combine="or">
+                <resource-match attr="device-cap" func="equal" match="download" />
+            </condition>
+        </rule>
+
+        <!-- access to notification feature -->
+        <rule effect="permit">
+            <condition combine="or">
+                <resource-match attr="device-cap" func="equal" match="notification" />
+            </condition>
+        </rule>
          <rule effect="permit" />
      </policy>
  
@@ -119,6 +306,7 @@
              <condition combine="or">
                  <resource-match attr="device-cap" func="equal" match="mediacontent" />
                  <resource-match attr="device-cap" func="equal" match="mediacontent.read" />
+                <resource-match attr="device-cap" func="equal" match="mediacontent.write" />
              </condition>
          </rule>
  
@@ -132,21 +320,13 @@
              </condition>
          </rule>
  
-        <!-- access to message send on roaming status -->
-        <rule effect="deny">
-            <condition combine="and">
-                <resource-match attr="device-cap" func="equal" match="messaging.send" />
-                <environment-match attr="roaming" match="true" />
-            </condition>
-        </rule>
-
          <!-- access to NFC -->
          <rule effect="permit">
              <condition combine="or">
                  <resource-match attr="device-cap" func="equal" match="nfc" />
                  <resource-match attr="device-cap" func="equal" match="nfc.tag" />
-                <resource-match attr="device-cap" func="equal" match="nfs.p2p" />
-                <resource-match attr="device-cap" func="equal" match="nfc.se" />
+                <resource-match attr="device-cap" func="equal" match="nfc.p2p" />
+                <resource-match attr="device-cap" func="equal" match="nfc.admin" />
              </condition>
          </rule>
  
@@ -224,10 +404,24 @@
              </condition>
          </rule>
  
-        <!-- access to orientation feature -->
+        <!-- access to power feature -->
+        <rule effect="permit">
+            <condition combine="or">
+                <resource-match attr="device-cap" func="equal" match="power" />
+            </condition>
+        </rule>
+
+        <!-- access to download feature -->
+        <rule effect="permit">
+            <condition combine="or">
+                <resource-match attr="device-cap" func="equal" match="download" />
+            </condition>
+        </rule>
+
+        <!-- access to notification feature -->
          <rule effect="permit">
              <condition combine="or">
-                <resource-match attr="device-cap" func="equal" match="orientation" />
+                <resource-match attr="device-cap" func="equal" match="notification" />
              </condition>
          </rule>
  
diff --git a/debian/changelog b/debian/changelog

index 37a1665..5cc85f9 100644 (file)
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,12 @@
+wrt-security (0.0.42) unstable; urgency=low
+
+  * Update Tizen policy for tizen 2.0
+
+  * Git : framework/web/wrt-security
+  * Tag : wrt-security_0.0.42
+
+ -- Gunwang Jeong <ethan.jeong@samsung.com>  Thu, 6 Sep 2012 13:25:10 +0900
+
  wrt-security (0.0.41) unstable; urgency=low
  
    * Add check MEID druring installation process
diff --git a/packaging/wrt-security.spec b/packaging/wrt-security.spec

index e4a93e9..d85b265 100644 (file)
--- a/packaging/wrt-security.spec
+++ b/packaging/wrt-security.spec
@@ -1,7 +1,7 @@
  #sbs-git:slp/pkgs/w/wrt-security wrt-security 0.0.41
  Name:       wrt-security
  Summary:    Security daemon for web applications
-Version:    0.0.41
+Version:    0.0.42
  Release:    1
  Group:      Development/Libraries
  License:    Apache License, Version 2.0
author	Kisub Song <kisubs.song@samsung.com>
	Thu, 6 Sep 2012 04:42:41 +0000 (13:42 +0900)
committer	Kisub Song <kisubs.song@samsung.com>
	Thu, 6 Sep 2012 04:51:06 +0000 (13:51 +0900)
ace/configuration/TizenPolicy.xml		patch \| blob \| history
debian/changelog		patch \| blob \| history
packaging/wrt-security.spec		patch \| blob \| history