projects / platform / core / system / tizen-platform-config.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 27034d7)
Change smack label of /opt/etc from floor to System::Shared 08/68408/2 accepted/tizen/common/20160512.143724 accepted/tizen/ivi/20160512.051017 accepted/tizen/mobile/20160512.051045 accepted/tizen/tv/20160512.051007 accepted/tizen/wearable/20160512.051028 submit/tizen/20160511.084111
authorSeongwook Chung <seong.chung@samsung.com>
Wed, 4 May 2016 05:13:41 +0000 (14:13 +0900)
committerSeongwook Chung <seong.chung@samsung.com>
Wed, 4 May 2016 05:22:46 +0000 (22:22 -0700)
Since daemon running with "System" smack label needs to write/create file into /opt/etc in runtime, change smack label of /opt/etc/ from floor to "System::Shared"

Only daemon running as "System" label can write file.
(Accepted smack rule : System System::Shared rwxat)
On the other hand, daemon running as "User" label cannot write, only can read.
(Accepted smack rule : User System::Shared rxl)

Change-Id: I950d3eee2504a7d0432d0063a206cea669febcd3
Signed-off-by: Seongwook Chung <seong.chung@samsung.com>
packaging/tizen-platform-config.spec patch | blob | history

diff --git a/packaging/tizen-platform-config.spec b/packaging/tizen-platform-config.spec
index e3bc223..91b51ed 100644 (file)
--- a/packaging/tizen-platform-config.spec
+++ b/packaging/tizen-platform-config.spec
@@ -117,6 +117,9 @@ $TZ_USER_APP/xwalk-service
 SMACK System::Shared true
 $TZ_USER_DESKTOP
 
+SMACK System::Shared false
+$TZ_SYS_ETC
+
 ENDOFCAT
 while read s1 s2 s3; do
   case "$s1" in
Domain: System / System Framework;