| <!DOCTYPE busconfig PUBLIC "-//freedesktop//DTD D-BUS Bus Configuration 1.0//EN" |
| "http://www.freedesktop.org/standards/dbus/1.0/busconfig.dtd"> |
| <busconfig> |
| <policy user="root"> |
| <allow own="org.chromium.Cryptohome" /> |
| <allow send_destination="org.chromium.Cryptohome" /> |
| </policy> |
| <policy user="chronos"> |
| <!-- introspection is denied --> |
| <deny send_destination="org.chromium.Cryptohome" |
| send_interface="org.freedesktop.DBus.Introspectable" /> |
| <!-- properties denied --> |
| <deny send_destination="org.chromium.Cryptohome" |
| send_interface="org.freedesktop.DBus.Properties" /> |
| <!-- allow explicit methods --> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="CheckKey"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="ListKeysEx"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="CheckKeyEx"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="RemoveKeyEx"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="GetKeyDataEx"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="AsyncCheckKey"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="MigrateKey"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="AsyncMigrateKey"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="AddKey"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="AddKeyEx"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="AsyncAddKey"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="UpdateKeyEx"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="Remove"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="AsyncRemove"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="RenameCryptohome"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="GetAccountDiskUsage"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="GetSystemSalt"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="GetSanitizedUsername"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="IsMounted"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="IsMountedForUser"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="Mount"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="MountEx"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="AsyncMount"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="MountGuest"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="AsyncMountGuest"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="MountPublic"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="AsyncMountPublic"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="Unmount"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="DoAutomaticFreeDiskSpaceControl"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="AsyncDoAutomaticFreeDiskSpaceControl"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="UpdateCurrentUserActivityTimestamp"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="TpmIsReady"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="TpmIsEnabled"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="TpmGetPassword"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="TpmIsOwned"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="TpmIsBeingOwned"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="TpmCanAttemptOwnership"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="TpmClearStoredPassword"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="TpmIsAttestationPrepared"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="TpmVerifyAttestationData"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="TpmVerifyEK"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="TpmIsAttestationEnrolled"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="TpmAttestationCreateEnrollRequest"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="AsyncTpmAttestationCreateEnrollRequest"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="TpmAttestationEnroll"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="AsyncTpmAttestationEnroll"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="TpmAttestationCreateCertRequest"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="AsyncTpmAttestationCreateCertRequest"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="TpmAttestationFinishCertRequest"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="AsyncTpmAttestationFinishCertRequest"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="TpmAttestationDoesKeyExist"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="TpmAttestationGetCertificate"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="TpmAttestationGetPublicKey"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="TpmAttestationRegisterKey"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="TpmAttestationSignEnterpriseChallenge"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="TpmAttestationSignSimpleChallenge"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="TpmAttestationGetKeyPayload"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="TpmAttestationSetKeyPayload"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="TpmAttestationDeleteKeys"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="TpmAttestationResetIdentity"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="Pkcs11GetTpmTokenInfo"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="Pkcs11GetTpmTokenInfoForUser"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="Pkcs11IsTpmTokenReady"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="Pkcs11IsTpmTokenReadyForUser"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="GetStatusString"/> |
| <!-- remove these if only session_manager uses them. --> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="InstallAttributesGet"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="InstallAttributesSet"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="InstallAttributesFinalize"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="InstallAttributesCount"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="InstallAttributesIsFirstInstall"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="InstallAttributesIsReady"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="InstallAttributesIsSecure"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="InstallAttributesIsInvalid"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="GetLoginStatus"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="GetTpmStatus"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="StoreEnrollmentState"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="LoadEnrollmentState"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="SignBootLockbox"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="VerifyBootLockbox"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="FinalizeBootLockbox"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="GetBootAttribute"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="SetBootAttribute"/> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="FlushAndSignBootAttributes"/> |
| </policy> |
| <policy user="power"> |
| <allow send_destination="org.chromium.Cryptohome" |
| send_interface="org.chromium.CryptohomeInterface" |
| send_member="GetTpmStatus"/> |
| </policy> |
| <policy context="default"> |
| <deny send_destination="org.chromium.Cryptohome" /> |
| </policy> |
| </busconfig> |