* [STABLE][PATCH] bluez4: add less restrictive (and hence less secure) bluetooth dbus config
@ 2009-04-09 10:04 Koen Kooi
2009-04-11 14:13 ` Koen Kooi
2009-04-12 14:40 ` Khem Raj
0 siblings, 2 replies; 5+ messages in thread
From: Koen Kooi @ 2009-04-09 10:04 UTC (permalink / raw)
To: openembedded-devel; +Cc: Koen Kooi
From: Koen Kooi <koen@openembedded.org>
* this makes bluetooth actually work for non-root users and when using ssh/vnc/etc
* this also overwrites the bluetooth.conf in the files/ that wasn't used anymore
* this also includes the fixup commit from .dev named "bluez4: fix dbus service file"
Signed-off-by: Koen Kooi <koen@openembedded.org>
---
recipes/bluez/bluez4_4.31.bb | 5 ++++-
recipes/bluez/files/bluetooth.conf | 29 ++++++++++++++++-------------
2 files changed, 20 insertions(+), 14 deletions(-)
diff --git a/recipes/bluez/bluez4_4.31.bb b/recipes/bluez/bluez4_4.31.bb
index 15e8b00..8c2f656 100644
--- a/recipes/bluez/bluez4_4.31.bb
+++ b/recipes/bluez/bluez4_4.31.bb
@@ -4,12 +4,13 @@ PRIORITY = "optional"
DEPENDS = "gst-plugins-base alsa-lib libusb-compat dbus-glib"
HOMEPAGE = "http://www.bluez.org"
LICENSE = "GPL"
-PR = "r4"
+PR = "r6"
SRC_URI = "\
http://www.kernel.org/pub/linux/bluetooth/bluez-${PV}.tar.gz \
file://fix-dfutool-usb-declaration-mismatch.patch;patch=1 \
file://sbc-thumb.patch;patch=1 \
+ file://bluetooth.conf \
# file://hid2hci_usb_init.patch;patch=1 \
"
S = "${WORKDIR}/bluez-${PV}"
@@ -43,6 +44,8 @@ do_install_append() {
install -m 0644 ${S}/audio/audio.conf ${D}/${sysconfdir}/bluetooth/
install -m 0644 ${S}/network/network.conf ${D}/${sysconfdir}/bluetooth/
install -m 0644 ${S}/input/input.conf ${D}/${sysconfdir}/bluetooth/
+ # at_console doesn't really work with the current state of OE, so punch some more holes so people can actually use BT
+ install -m 0644 ${WORKDIR}/bluetooth.conf ${D}/${sysconfdir}/dbus-1/system.d/
}
PACKAGES =+ "gst-plugin-bluez libasound-module-bluez"
diff --git a/recipes/bluez/files/bluetooth.conf b/recipes/bluez/files/bluetooth.conf
index 8720847..ca5e9e4 100644
--- a/recipes/bluez/files/bluetooth.conf
+++ b/recipes/bluez/files/bluetooth.conf
@@ -1,13 +1,16 @@
-#
-# additional cards for /etc/pcmcia/bluetooth.conf
-# Note for OE: This file is _appended_ to the stock
-# bluetooth.conf in bluez-utils, so no need to duplicate
-# entries for individual cards.
-#
-card "CSR BT01x0M Bluetooth CF Card"
- version "Bluetooth BT0100M", "", ""
- bind "serial_cs" class "bluetooth"
-
-card "Socket Bluetooth CF Card Rev. G"
- manfid 0x0104, 0x0096
- bind "serial_cs" class "bluetooth"
+<!-- This configuration file specifies the required security policies
+ for Bluetooth core daemon to work. -->
+
+<!DOCTYPE busconfig PUBLIC "-//freedesktop//DTD D-BUS Bus Configuration 1.0//EN"
+ "http://www.freedesktop.org/standards/dbus/1.0/busconfig.dtd">
+<busconfig>
+
+ <!-- ../system.conf have denied everything, so we just punch some holes -->
+
+ <policy context="default">
+ <allow own="org.bluez"/>
+ <allow send_destination="org.bluez"/>
+ <allow send_interface="org.bluez.Agent"/>
+ </policy>
+
+</busconfig>
--
1.5.6.5
^ permalink raw reply related [flat|nested] 5+ messages in thread* Re: [STABLE][PATCH] bluez4: add less restrictive (and hence less secure) bluetooth dbus config
2009-04-09 10:04 [STABLE][PATCH] bluez4: add less restrictive (and hence less secure) bluetooth dbus config Koen Kooi
@ 2009-04-11 14:13 ` Koen Kooi
2009-04-12 14:40 ` Khem Raj
1 sibling, 0 replies; 5+ messages in thread
From: Koen Kooi @ 2009-04-11 14:13 UTC (permalink / raw)
To: openembedded-devel
On 09-04-09 12:04, Koen Kooi wrote:
> From: Koen Kooi<koen@openembedded.org>
>
> * this makes bluetooth actually work for non-root users and when using ssh/vnc/etc
> * this also overwrites the bluetooth.conf in the files/ that wasn't used anymore
> * this also includes the fixup commit from .dev named "bluez4: fix dbus service file"
ping
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: [STABLE][PATCH] bluez4: add less restrictive (and hence less secure) bluetooth dbus config
2009-04-09 10:04 [STABLE][PATCH] bluez4: add less restrictive (and hence less secure) bluetooth dbus config Koen Kooi
2009-04-11 14:13 ` Koen Kooi
@ 2009-04-12 14:40 ` Khem Raj
2009-04-12 15:06 ` Graeme Gregory
1 sibling, 1 reply; 5+ messages in thread
From: Khem Raj @ 2009-04-12 14:40 UTC (permalink / raw)
To: openembedded-devel; +Cc: Koen Kooi
Acked-by: Khem Raj <raj.khem@gmail.com>
oh the PR is jumping from 4 to 6. May be it should be 5 ?
On 4/9/09, Koen Kooi <k.kooi@student.utwente.nl> wrote:
> From: Koen Kooi <koen@openembedded.org>
>
> * this makes bluetooth actually work for non-root users and when using
> ssh/vnc/etc
> * this also overwrites the bluetooth.conf in the files/ that wasn't used
> anymore
> * this also includes the fixup commit from .dev named "bluez4: fix dbus
> service file"
>
> Signed-off-by: Koen Kooi <koen@openembedded.org>
> ---
> recipes/bluez/bluez4_4.31.bb | 5 ++++-
> recipes/bluez/files/bluetooth.conf | 29 ++++++++++++++++-------------
> 2 files changed, 20 insertions(+), 14 deletions(-)
>
> diff --git a/recipes/bluez/bluez4_4.31.bb b/recipes/bluez/bluez4_4.31.bb
> index 15e8b00..8c2f656 100644
> --- a/recipes/bluez/bluez4_4.31.bb
> +++ b/recipes/bluez/bluez4_4.31.bb
> @@ -4,12 +4,13 @@ PRIORITY = "optional"
> DEPENDS = "gst-plugins-base alsa-lib libusb-compat dbus-glib"
> HOMEPAGE = "http://www.bluez.org"
> LICENSE = "GPL"
> -PR = "r4"
> +PR = "r6"
>
> SRC_URI = "\
> http://www.kernel.org/pub/linux/bluetooth/bluez-${PV}.tar.gz \
> file://fix-dfutool-usb-declaration-mismatch.patch;patch=1 \
> file://sbc-thumb.patch;patch=1 \
> + file://bluetooth.conf \
> # file://hid2hci_usb_init.patch;patch=1 \
> "
> S = "${WORKDIR}/bluez-${PV}"
> @@ -43,6 +44,8 @@ do_install_append() {
> install -m 0644 ${S}/audio/audio.conf ${D}/${sysconfdir}/bluetooth/
> install -m 0644 ${S}/network/network.conf
> ${D}/${sysconfdir}/bluetooth/
> install -m 0644 ${S}/input/input.conf ${D}/${sysconfdir}/bluetooth/
> + # at_console doesn't really work with the current state of OE, so
> punch some more holes so people can actually use BT
> + install -m 0644 ${WORKDIR}/bluetooth.conf
> ${D}/${sysconfdir}/dbus-1/system.d/
> }
>
> PACKAGES =+ "gst-plugin-bluez libasound-module-bluez"
> diff --git a/recipes/bluez/files/bluetooth.conf
> b/recipes/bluez/files/bluetooth.conf
> index 8720847..ca5e9e4 100644
> --- a/recipes/bluez/files/bluetooth.conf
> +++ b/recipes/bluez/files/bluetooth.conf
> @@ -1,13 +1,16 @@
> -#
> -# additional cards for /etc/pcmcia/bluetooth.conf
> -# Note for OE: This file is _appended_ to the stock
> -# bluetooth.conf in bluez-utils, so no need to duplicate
> -# entries for individual cards.
> -#
> -card "CSR BT01x0M Bluetooth CF Card"
> - version "Bluetooth BT0100M", "", ""
> - bind "serial_cs" class "bluetooth"
> -
> -card "Socket Bluetooth CF Card Rev. G"
> - manfid 0x0104, 0x0096
> - bind "serial_cs" class "bluetooth"
> +<!-- This configuration file specifies the required security policies
> + for Bluetooth core daemon to work. -->
> +
> +<!DOCTYPE busconfig PUBLIC "-//freedesktop//DTD D-BUS Bus Configuration
> 1.0//EN"
> + "http://www.freedesktop.org/standards/dbus/1.0/busconfig.dtd">
> +<busconfig>
> +
> + <!-- ../system.conf have denied everything, so we just punch some holes
> -->
> +
> + <policy context="default">
> + <allow own="org.bluez"/>
> + <allow send_destination="org.bluez"/>
> + <allow send_interface="org.bluez.Agent"/>
> + </policy>
> +
> +</busconfig>
> --
> 1.5.6.5
>
>
> _______________________________________________
> Openembedded-devel mailing list
> Openembedded-devel@lists.openembedded.org
> http://lists.linuxtogo.org/cgi-bin/mailman/listinfo/openembedded-devel
>
^ permalink raw reply [flat|nested] 5+ messages in thread* Re: [STABLE][PATCH] bluez4: add less restrictive (and hence less secure) bluetooth dbus config
2009-04-12 14:40 ` Khem Raj
@ 2009-04-12 15:06 ` Graeme Gregory
2009-04-12 18:53 ` Koen Kooi
0 siblings, 1 reply; 5+ messages in thread
From: Graeme Gregory @ 2009-04-12 15:06 UTC (permalink / raw)
To: openembedded-devel; +Cc: Koen Kooi
Khem Raj wrote:
> Acked-by: Khem Raj <raj.khem@gmail.com>
>
>
> oh the PR is jumping from 4 to 6. May be it should be 5 ?
>
>
I guess stuff merged from .dev should keep compatible PR numbers.
Otherwise it starts to get real painful to maintain.
Graeme
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: [STABLE][PATCH] bluez4: add less restrictive (and hence less secure) bluetooth dbus config
2009-04-12 15:06 ` Graeme Gregory
@ 2009-04-12 18:53 ` Koen Kooi
0 siblings, 0 replies; 5+ messages in thread
From: Koen Kooi @ 2009-04-12 18:53 UTC (permalink / raw)
To: openembedded-devel
On 12-04-09 17:06, Graeme Gregory wrote:
> Khem Raj wrote:
>> Acked-by: Khem Raj<raj.khem@gmail.com>
>>
>>
>> oh the PR is jumping from 4 to 6. May be it should be 5 ?
>>
>>
> I guess stuff merged from .dev should keep compatible PR numbers.
> Otherwise it starts to get real painful to maintain.
FWIW, the next bluez patch for .stable will consist of a few combined
commits, so let's keep things in sync as much as possible.
regards,
Koen
^ permalink raw reply [flat|nested] 5+ messages in thread
end of thread, other threads:[~2009-04-12 18:57 UTC | newest]
Thread overview: 5+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2009-04-09 10:04 [STABLE][PATCH] bluez4: add less restrictive (and hence less secure) bluetooth dbus config Koen Kooi
2009-04-11 14:13 ` Koen Kooi
2009-04-12 14:40 ` Khem Raj
2009-04-12 15:06 ` Graeme Gregory
2009-04-12 18:53 ` Koen Kooi
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.