Template Version: @(#)onepager.txt 1.35 07/11/07 SMI Copyright 2007 Sun Microsystems 1. Introduction 1.1. Project/Component Working Name: GNOME Netstatus Applet Wifi Support 1.2. Name of Document Author/Supplier: Darren Kenny 1.3. Date of This Document: 07/17/08 1.3.1. Date this project was conceived: 06/01/08 1.4. Name of Major Document Customer(s)/Consumer(s): 1.4.1. The PAC or CPT you expect to review your project: Solaris PAC 1.4.2. The ARC(s) you expect to review your project: LSARC 1.4.3. The Director/VP who is "Sponsoring" this project: Robert O'Dea 1.4.4. The name of your business unit: New Solaris 1.5. Email Aliases: 1.5.1. Responsible Manager: Leo Binchy 1.5.2. Responsible Engineer: Darren Kenny 1.5.3. Marketing Manager: Dan Roberts 1.5.4. Interest List: nwam-ui@sun.com 2. Project Summary 2.1. Project Description: The main aim of this project is to implement and enhance the support for WiFi information in the GNOME Netstatus Applet. At the moment signal strength information is only provided on Linux. The applet will also be changed to start by default on initial login. 2.2. Risks and Assumptions: The assumption is that RFE#6695904 will not be completed in time for delivery into OpenSolaris 2008.11, should this change then this project will switch to using this mechanism for gathering status. 3. Business Summary 3.1. Problem Area: The aim is to resolve the lack of information about the status of the network interfaces. 3.2. Market/Requester: OpenSolaris community. 4. Technical Description: 4.1. Details: The problem is that on OpenSolaris wireless information is only available via a set of ioctl() calls on the network device, which requires the NET_RAWACCESS privilege. RFE#6695904 is in progress to resolve this need for read-only information, but this is likely to not be available in time for the OpenSolaris 2008.11 release. As an interim solution to this I propose to use a helper application that will be called by the applet to gather the needed information. It will be launched by the applet and run continuously for the life of the applet process, taking stdin from the applet and providing the information on stdout. RBAC will be used to create a profile that allows only the console user to run with the extra privileges, more information on this is in the Security section below. 4.2. Bug/RFE Number(s): 4.3. In Scope: Providing the applet by default on initial login. 4.4. Out of Scope: Automatically adding applet to existing user's panel. 4.5. Interfaces: Exported interfaces are Private or Volatile due to the interim nature of the use of the helper application which will be removed once RFE#6695904 is implemented. -------------------------------------------------------------------- Exported Stability Comments -------------------------------------------------------------------- /usr/lib/gnome-netstatus-wifi-info Project WiFi Helper App Private Network Wifi Info Volatile RBAC Profile. -------------------------------------------------------------------- Imported Stability Comments -------------------------------------------------------------------- Defining Workstation Owner Infrastructure Committed PSARC/2008/034 WIFI Driver IOCTLs Uncommitted PSARC/2003/722 4.6. Doc Impact: Will be documented in manpage. 4.7. Admin/Config Impact: None 4.8. HA Impact: None 4.9. I18N/L10N Impact: Yes, translations will be needed for some new strings introduced. 4.10. Packaging & Delivery: // impact? What is its impact on install/upgrade? Changes will be delivered in the existing packages: SUNWgnome-intranet-applets SUNWgnome-intranet-applets-root 4.11. Security Impact: RBAC will be used to create a profile that allows only the console user to gain the new "Network Wifi Info" profile by adding this profile to the "Console User" profile. The "Network Wifi Info" entry in exec_attr The helper application will run with only the NET_RAWACCESS privilege. The entry in /etc/security/exec_attr will be: Network Wifi Info:solaris:cmd:::/usr/lib/gnome-netstatus-wifi-info:\ privs=net_rawaccess;limitprivs=net_rawaccess,!proc_session,!proc_fork,\ !proc_exec,!proc_info,!file_link_any This will allow the helper application to executed using pfexec with only the NET_RAWACCESS privilege. The "Network Wifi Info" profile will be added to the existing "Console User" profiles. Since this will configured by default to only be present for the console user, then if a non-console-user runs the helper they will not see the WiFi information but will continue to see things as they are now. 4.12. Dependencies: GNOME 2.22 + 6. Resources and Schedule: 6.1. Projected Availability: Q1 FY09 6.2. Cost of Effort: 4 weeks 6.4. Product Approval Committee requested information: 6.4.1. Consolidation or Component Name: Desktop 6.4.3. Type of CPT Review and Approval expected: FastTrack 6.4.7. Target RTI Date/Release: snv_98 6.5. ARC review type: FastTrack 6.6. ARC Exposure: open 7. Prototype Availability: 7.1. Prototype Availability: Prototype available now. 7.2. Prototype Cost: 2 weeks