sl@0: /* -*- mode: C; c-file-style: "gnu" -*- */ sl@0: /* policy.h Bus security policy sl@0: * sl@0: * Copyright (C) 2003 Red Hat, Inc. sl@0: * Portion Copyright © 2008 Nokia Corporation and/or its subsidiary(-ies). All rights reserved. sl@0: * Licensed under the Academic Free License version 2.1 sl@0: * sl@0: * This program is free software; you can redistribute it and/or modify sl@0: * it under the terms of the GNU General Public License as published by sl@0: * the Free Software Foundation; either version 2 of the License, or sl@0: * (at your option) any later version. sl@0: * sl@0: * This program is distributed in the hope that it will be useful, sl@0: * but WITHOUT ANY WARRANTY; without even the implied warranty of sl@0: * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the sl@0: * GNU General Public License for more details. sl@0: * sl@0: * You should have received a copy of the GNU General Public License sl@0: * along with this program; if not, write to the Free Software sl@0: * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA sl@0: * sl@0: */ sl@0: sl@0: #ifndef BUS_POLICY_H sl@0: #define BUS_POLICY_H sl@0: sl@0: #include sl@0: #ifndef __SYMBIAN32__ sl@0: #include sl@0: #include sl@0: #include sl@0: #else sl@0: #include "dbus-string.h" sl@0: #include "dbus-list.h" sl@0: #include "dbus-sysdeps.h" sl@0: #endif //__SYMBIAN32__ sl@0: #include "bus.h" sl@0: sl@0: typedef enum sl@0: { sl@0: BUS_POLICY_RULE_SEND, sl@0: BUS_POLICY_RULE_RECEIVE, sl@0: BUS_POLICY_RULE_OWN, sl@0: BUS_POLICY_RULE_USER, sl@0: BUS_POLICY_RULE_GROUP sl@0: } BusPolicyRuleType; sl@0: sl@0: /** determines whether the rule affects a connection, or some global item */ sl@0: #define BUS_POLICY_RULE_IS_PER_CLIENT(rule) (!((rule)->type == BUS_POLICY_RULE_USER || \ sl@0: (rule)->type == BUS_POLICY_RULE_GROUP)) sl@0: sl@0: struct BusPolicyRule sl@0: { sl@0: int refcount; sl@0: sl@0: BusPolicyRuleType type; sl@0: sl@0: unsigned int allow : 1; /**< #TRUE if this allows, #FALSE if it denies */ sl@0: sl@0: union sl@0: { sl@0: struct sl@0: { sl@0: /* message type can be DBUS_MESSAGE_TYPE_INVALID meaning "any" */ sl@0: int message_type; sl@0: /* any of these can be NULL meaning "any" */ sl@0: char *path; sl@0: char *interface; sl@0: char *member; sl@0: char *error; sl@0: char *destination; sl@0: unsigned int requested_reply : 1; sl@0: } send; sl@0: sl@0: struct sl@0: { sl@0: /* message type can be DBUS_MESSAGE_TYPE_INVALID meaning "any" */ sl@0: int message_type; sl@0: /* any of these can be NULL meaning "any" */ sl@0: char *path; sl@0: char *interface; sl@0: char *member; sl@0: char *error; sl@0: char *origin; sl@0: unsigned int eavesdrop : 1; sl@0: unsigned int requested_reply : 1; sl@0: } receive; sl@0: sl@0: struct sl@0: { sl@0: /* can be NULL meaning "any" */ sl@0: char *service_name; sl@0: } own; sl@0: sl@0: struct sl@0: { sl@0: /* can be DBUS_UID_UNSET meaning "any" */ sl@0: dbus_uid_t uid; sl@0: } user; sl@0: sl@0: struct sl@0: { sl@0: /* can be DBUS_GID_UNSET meaning "any" */ sl@0: dbus_gid_t gid; sl@0: } group; sl@0: sl@0: } d; sl@0: }; sl@0: sl@0: BusPolicyRule* bus_policy_rule_new (BusPolicyRuleType type, sl@0: dbus_bool_t allow); sl@0: BusPolicyRule* bus_policy_rule_ref (BusPolicyRule *rule); sl@0: void bus_policy_rule_unref (BusPolicyRule *rule); sl@0: sl@0: BusPolicy* bus_policy_new (void); sl@0: BusPolicy* bus_policy_ref (BusPolicy *policy); sl@0: void bus_policy_unref (BusPolicy *policy); sl@0: BusClientPolicy* bus_policy_create_client_policy (BusPolicy *policy, sl@0: DBusConnection *connection, sl@0: DBusError *error); sl@0: dbus_bool_t bus_policy_allow_user (BusPolicy *policy, sl@0: DBusUserDatabase *user_database, sl@0: unsigned long uid); sl@0: dbus_bool_t bus_policy_append_default_rule (BusPolicy *policy, sl@0: BusPolicyRule *rule); sl@0: dbus_bool_t bus_policy_append_mandatory_rule (BusPolicy *policy, sl@0: BusPolicyRule *rule); sl@0: dbus_bool_t bus_policy_append_user_rule (BusPolicy *policy, sl@0: dbus_uid_t uid, sl@0: BusPolicyRule *rule); sl@0: dbus_bool_t bus_policy_append_group_rule (BusPolicy *policy, sl@0: dbus_gid_t gid, sl@0: BusPolicyRule *rule); sl@0: dbus_bool_t bus_policy_append_console_rule (BusPolicy *policy, sl@0: dbus_bool_t at_console, sl@0: BusPolicyRule *rule); sl@0: sl@0: dbus_bool_t bus_policy_merge (BusPolicy *policy, sl@0: BusPolicy *to_absorb); sl@0: sl@0: BusClientPolicy* bus_client_policy_new (void); sl@0: BusClientPolicy* bus_client_policy_ref (BusClientPolicy *policy); sl@0: void bus_client_policy_unref (BusClientPolicy *policy); sl@0: dbus_bool_t bus_client_policy_check_can_send (BusClientPolicy *policy, sl@0: BusRegistry *registry, sl@0: dbus_bool_t requested_reply, sl@0: DBusConnection *receiver, sl@0: DBusMessage *message); sl@0: dbus_bool_t bus_client_policy_check_can_receive (BusClientPolicy *policy, sl@0: BusRegistry *registry, sl@0: dbus_bool_t requested_reply, sl@0: DBusConnection *sender, sl@0: DBusConnection *addressed_recipient, sl@0: DBusConnection *proposed_recipient, sl@0: DBusMessage *message); sl@0: dbus_bool_t bus_client_policy_check_can_own (BusClientPolicy *policy, sl@0: DBusConnection *connection, sl@0: const DBusString *service_name); sl@0: dbus_bool_t bus_client_policy_append_rule (BusClientPolicy *policy, sl@0: BusPolicyRule *rule); sl@0: void bus_client_policy_optimize (BusClientPolicy *policy); sl@0: sl@0: sl@0: #endif /* BUS_POLICY_H */