Hi, On Wed, Mar 13, 2013 at 7:06 PM, Romain Dubois <[email protected]>wrote:
> Hi, > > I am working on a security model based on ConditionalPermissionAdmin. > I assume that administrators audit permissions files in bundles and trust > them. > My model is simple: > - If a bundle has a valid permissions file (/OSGI-INF/permissions.perm), > I grant it AllPermission (which is reduced by permissions file). > - Otherwise (none or invalid permissions file), I grant it the basic > permissions (defined externally). > > I rely on OSGi Conditions and it works fine, theorically. > > > However, I am facing a problem: 3rd library do not always have a > permissions file. > > So, my first question is: > > Is it planned to add permissions file into Felix subprojects bundles > (Config Admi, Event Admin, etc.)? > Planned, no. Not at this point - however, I'm sure contributions are more than welcome. If you want to create some permission files and give them to use I'm sure we are more than happy to integrate them. > I also have an other question about Felix security implementation: > When a permissions file is invalid, its bundle is considered as if it > haven't any permissions file (=AllPermission).Do you consider it is a valid > behavior or a bug? > Well, iirc, this is a grey area as the spec is mum on the issue. If the bundle is signed and the permissions.perm has been removed or tempered with the bundle fails to install but that is not helping in your case. > I would consider it as a bug because an auditor is not able to detect all > syntax problems and will trust a bundle which is not confined to its > declared permissions. We can certainly debate what should happen in that case. If you think it is better to give the bundle no permissions please raise a jira issue so that we can keep track of it. regards, Karl > > > Romain -- Karl Pauls [email protected] http://twitter.com/karlpauls http://www.linkedin.com/in/karlpauls https://profiles.google.com/karlpauls
