Taste the Rainbow:0.7.0: Difference between revisions

From OLPC
Jump to navigation Jump to search
Line 14: Line 14:
|
|
|--- docs : explanations & notes
|--- docs : explanations & notes
| \--- DESIGN
| \--- DESIGN : A discussion of how the predecessor to the current architecture arose.
| \--- NOTES : various problems I have encountered and thoughts on how to solve them.
| *--- [http://dev.laptop.org/git?p=security;a=blob;f=rainbow.txt;hb=HEAD rainbow.txt]
| *--- [http://dev.laptop.org/git?p=security;a=blob;f=rainbow.txt;hb=HEAD rainbow.txt] : a sketch & justification of the current design
|
|
|--- rainbow : source code
|--- rainbow : source code

Revision as of 20:27, 3 November 2007

This page is a guided tour of the source code of the rainbow-0.7.0 release.

Source Code Overview

Please start in my security tree.

 rainbow
  |--- README : Standard boilerplate about where work gets done; somewhat dated in this release.
  |--- conf : installation-time configuration files
  |     \--- session-olpc.conf : applies some unusual dbus rules to allow many uids
  |                              to use the same session bus and enables OLPC-specific 
  |                              dbus access checks. When /etc/olpc-security exists, 
  |                              session-olpc.conf is loaded by /usr/bin/sugar 
  | 
  |--- docs : explanations & notes
  |     \--- DESIGN : A discussion of how the predecessor to the current architecture arose.
  |     \--- NOTES : various problems I have encountered and thoughts on how to solve them.
  |     *--- rainbow.txt : a sketch & justification of the current design
  |
  |--- rainbow : source code
  |     |--- util
  |     |--- stages
  |     |--- targets
  |     \--- service.py
  |
  |--- rainbow.spec.in : spec-file template for building RPMS
  \--- Makefile.package : package-specific variables for use in ../Makefile.fedora
  *--- ../Makefile.fedora : rules for making local snapshot builds and 
                            internal releases, prior to pushing to Fedora

Features

Activity Installation

permissions is a stub that I hope to fill out this weekend based on the secure installation work that marcopg and neuralis did together a few weeks ago

Activity Launching

The key functions for launching activities are

These functions are called in the order listed from

which are, in turn, called from

These six functions (and the relatively simple helpers they call) exhaust the functionality provided by rainbow-0.7.0.