then /usr/sbin/setcap cap_net_admin,cap_net_raw=ei /usr/bin/nan-manager
fi
+# Package platform/core/appfw/unified-backend
+# Date Jul 15, 2020
+# Required cap_dac_override, cap_chown, cap_fowner
+# cap_dac_override access to /home/$USER/apps_rw
+# cap_chown use chown API
+# cap_fowner use chmod API
+
+if [ -e "/usr/bin/unified-backend" ]
+then /usr/sbin/setcap cap_dac_override,cap_chown,cap_fowner=ei /usr/bin/unified-backend
+fi
+
+# Package app-installers
+# Date Jul 15, 2020
+# Required cap_dac_override, cap_chown, cap_fowner
+# cap_dac_override To restore user data
+# cap_chown use chown API
+# cap_fowner use chmod API
+
+if [ -e "/usr/bin/pkg_recovery" ]
+then /usr/sbin/setcap cap_dac_override,cap_chown,cap_fowner=ei /usr/bin/pkg_recovery
+fi
+
+
# TODO: MOVE TO OTHER SCRIPT OR REMOVE
# Requested by sooyeon.kim@samsung.com (.voice) and dalton.lee@samsung.com (.multiassistant)
dir_list=(".voice" ".multiassistant")
/usr/bin/muse-server = cap_dac_override+ei
/usr/bin/amd = cap_dac_override,cap_kill,cap_setgid,cap_setuid,cap_sys_admin,cap_mac_admin+ei
/usr/bin/amd = cap_dac_override,cap_kill,cap_sys_admin+ei
-/usr/bin/wrt-loader = cap_setgid,cap_sys_admin+ei/usr/bin/tpk-backend = cap_chown,cap_dac_override,cap_fowner+ei
+/usr/bin/wrt-loader = cap_setgid,cap_sys_admin+ei
+/usr/bin/tpk-backend = cap_chown,cap_dac_override,cap_fowner+ei
/usr/bin/launchpad-loader = cap_setgid,cap_sys_admin,cap_sys_nice+ei
/usr/bin/app-defined-loader = cap_setgid,cap_sys_admin,cap_sys_nice+ei
/usr/bin/email-service = cap_chown+eip
/usr/bin/nan-manager = cap_net_admin,cap_net_raw+ei
/usr/sbin/stability-monitor = cap_kill,cap_sys_module,cap_sys_ptrace+ei
/usr/libexec/bluetooth/bluetooth-meshd = cap_dac_override,cap_net_bind_service,cap_net_admin+ei
+/usr/bin/unified-backend = cap_chown,cap_dac_override,cap_fowner+ei
+/usr/bin/pkg_recovery = cap_chown,cap_dac_override,cap_fowner+ei
projects / platform / core / security / security-config.git / commitdiff