7 chown 5000:5000 /home/app
8 find /home/app -print0 | xargs -0 chsmack -a 'system::homedir'
9 find /home/app -type d -print0 | xargs -0 chsmack -t
11 # set vconf label when first boot
12 if [ ! -e /opt/etc/.vconf_labeling ]; then
13 chsmack -a 'system::vconf' /opt/var/kdb/db
14 chsmack -t /opt/var/kdb/db
15 find /opt/var/kdb/db -print0 | xargs -0 chsmack -a 'system::vconf'
16 find /opt/var/kdb/db -type d -print0 | xargs -0 chsmack -t
17 find /opt/var/kdb/file -print0 | xargs -0 chsmack -a 'system::vconf'
18 find /opt/var/kdb/file -type d -print0 | xargs -0 chsmack -t
19 find /var/run/memory -print0 | xargs -0 chsmack -a 'system::vconf'
20 find /var/run/memory -type d -print0 | xargs -0 chsmack -t
21 touch /opt/etc/.vconf_labeling
24 # Set device node permissions for security
25 chsmack -a 'system::camera' /dev/video1
26 chsmack -a 'system::camera' /dev/s3c-jpg
27 chsmack -a 'system::app_logging' /dev/log_main
28 chsmack -a 'system::app_logging' /dev/log_events
29 chsmack -a 'system::app_logging' /dev/log_radio
30 chsmack -a 'system::sys_logging' /dev/log_system
31 chsmack -a 'system::audio' /dev/snd/
32 chsmack -a 'system::audio' /dev/snd/controlC0
33 chsmack -a 'system::audio' /dev/snd/pcmC0D0p
34 chsmack -a 'system::audio' /dev/snd/pcmC0D1p
35 chsmack -a 'system::audio' /dev/snd/pcmC0D2p
36 chsmack -a 'system::audio' /dev/snd/pcmC0D3p
37 chsmack -a 'system::audio' /dev/snd/timer
38 chsmack -a 'system::recording' /dev/snd/pcmC0D0c
39 chsmack -a 'system::recording' /dev/snd/pcmC0D1c
40 chsmack -a 'system::recording' /dev/snd/pcmC0D2c
41 chsmack -a 'system::recording' /dev/snd/pcmC0D3c
42 chsmack -a 'system::hwcodec' /dev/s3c-mfc
43 chsmack -a 'system::hwcodec' /dev/video5
44 chsmack -a 'system::hwcodec' /dev/video6
45 chsmack -a 'system::video' /dev/fb0
46 chsmack -a 'system::video' /dev/video0
47 chsmack -a 'system::video' /dev/video2
48 chsmack -a 'system::video' /dev/video3
49 chsmack -a 'system::video' /dev/s3c-mem
50 chsmack -a 'system::radio' /dev/radio0
51 chsmack -a 'system::system_bklight' /sys/class/backlight/*/brightness
52 chsmack -a 'system::system_torch' /sys/class/leds/leds-torch/brightness
54 echo "0.0.0.0/1 system::use_internet" >> /smack/netlabel
55 echo "128.0.0.0/1 system::use_internet" >> /smack/netlabel
56 echo "127.0.0.1 -CIPSO" >> /smack/netlabel
57 echo "192.168.129.1 @" >> /smack/netlabel
59 # Set label to database files
60 chsmack -a 'ail::db' $DBSPACE/.app_info.db*
61 chsmack -a 'media-data::db' $DBSPACE/.media.db*
62 chsmack -a 'syspopup::db' $DBSPACE/.syspopup.db*
63 chsmack -a 'notification::db' $DBSPACE/.notification.db*
64 chsmack -a 'rua::db' $DBSPACE/.rua.db*
65 chsmack -a 'libaccounts-svc::db' $DBSPACE/.account.db*
66 chsmack -a 'wrt-security::db_ace' $DBSPACE/.ace.db*
67 chsmack -a 'wrt-security::db_vcore' $DBSPACE/.vcore.db*
68 chsmack -a 'libslp-alarm::db' $DBSPACE/.alarm.db*
69 chsmack -a 'alarm-server::db' $DBSPACE/.alarmmgr.db*
70 chsmack -a 'app-svc::db' $DBSPACE/.appsvc.db*
71 chsmack -a 'allshare::db' $DBSPACE/.asf_server.db*
72 chsmack -a 'libsocial-service::db' $DBSPACE/.urlcache.db*
73 chsmack -a 'aul::db' $DBSPACE/.mida.db*
74 chsmack -a 'wrt-commons::db_wrt' $DBSPACE/.wrt.db*
75 chsmack -a 'wrt-commons::db_wrt_autosave' $DBSPACE/.wrt_autosave.db*
76 chsmack -a 'msg-service::db' $DBSPACE/.msg_service.db*
77 chsmack -a 'calendar-service::db' $DBSPACE/.calendar-svc.db*
78 chsmack -a 'email-service::db' $DBSPACE/.email-service.db*
79 chsmack -a 'push-service::db' $DBSPACE/.push.db*
80 chsmack -a 'browser::db_external' $DBSPACE/.browser-history.db*
81 chsmack -a 'browser::db_external' $DBSPACE/.internet_bookmark.db*
82 chsmack -a 'browser::db' $APPS_DIR/org.tizen.browser/data/db/.browser*
83 chsmack -a 'mdm-server::db' $DBSPACE/.mdm.db*
84 chsmack -a 'eas-engine::db' $DBSPACE/.eas-common.db*
85 chsmack -a 'drmfw::db' $DBSPACE/.drm.db*
86 chsmack -a 'telephony_framework::db' $DBSPACE/.dnet.db*
87 chsmack -a 'bt_share::db' $DBSPACE/.bluetooth_trasnfer.db*
88 chsmack -a 'contacts-service::db' $DBSPACE/.contacts-svc.db*
89 chsmack -a 'oma-dm-service::db' $DBSPACE/.dm_service.db*
90 chsmack -a 'drmfw::db' $DBSPACE/.dsapps.db*
91 chsmack -a 'kies-via-wifi::db' $DBSPACE/.kies_device.db*
92 chsmack -a 'telephony_framework::db' $DBSPACE/.mcc_mnc_oper_list.db*
93 chsmack -a 'libslp-memo::db' $DBSPACE/.memo.db*
94 chsmack -a 'oma-dm-service::db' $DBSPACE/.momanager.db*
95 chsmack -a 'mss-server::db' $DBSPACE/.mss_server.db*
96 chsmack -a 'oma-dm-service::db' $DBSPACE/.omadmagent.db*
97 chsmack -a 'oma-ds-service::db' $DBSPACE/.omasyncagent.db*
98 chsmack -a 'phone-misc::db' $DBSPACE/.phone-misc.db*
99 chsmack -a 'webkit::db' $DBSPACE/.webkit
100 chsmack -a 'webkit::db' $DBSPACE/.webkit/*
101 chsmack -a 'worldclock::db' $DBSPACE/.worldclock.db*
102 chsmack -a 'resman::db' $DBSPACE/.resman.db*
105 chsmack -a 'live-magazine::db' $DBSPACE/.magazine.db*
106 chsmack -a 'live-magazine::data' /opt/live/etc
107 chsmack -t /opt/live/etc
108 find $SHARE_DIR/live_magazine -print0 | xargs -0 chsmack -a 'live-magazine::data'
109 find $SHARE_DIR/live_magazine -type d -print0 | xargs -0 chsmack -t
110 chsmack -a 'dailybriefing' $APPS_DIR/com.samsung.dailybriefing-common/data/db/*
111 chsmack -a 'menu-screen' $APPS_DIR/com.samsung.menu-screen/data/.menu.db*
113 find /opt/usr/media -print0 | xargs -0 chsmack -a 'system::media'
114 find /opt/usr/media -type d -print0 | xargs -0 chsmack -t
projects / platform / core / security / libprivilege-control.git / blob