INSTALL(FILES ${CORE_PRIVILEGE_DB} ${WRT_PRIVILEGE_DB} ${CORE_PRIVILEGE_MAPPING_DB} ${WRT_PRIVILEGE_MAPPING_DB} DESTINATION ${DATADIR}/privilege-manager/)
INSTALL(FILES ${POLICY_DB} ${POLICY_DB}-journal DESTINATION ${TZ_SYS_DB}/)
+INSTALL(PROGRAMS policy_db_updater.sh DESTINATION ${DATADIR}/privilege-manager/)
--- /dev/null
+#!/bin/sh -e
+
+PATH=/bin:/usr/bin:/sbin:/usr/sbin
+
+. /etc/tizen-platform.conf
+
+DB_NAME=${TZ_SYS_DB}/.policy.db
+MDM_BLACKLIST=${TZ_SYS_RO_SHARE}/security-config/mdm_blacklist
+
+if [ -a $MDM_BLACKLIST ]; then
+ echo "mdm blacklist exist"
+ IFS=$'\n'
+ for i in `cat $MDM_BLACKLIST`
+ do
+ temp=`echo $i | awk '/^#/'`
+ if [ ! "$temp" = "" ]
+ then
+ continue
+ fi
+ echo "insert $i"
+ sqlite3 $DB_NAME "insert or ignore into disable_list values ('376', '${i}');"
+ done
+
+ echo "Check inserted data"
+ echo "DPM blacklist..."
+ sqlite3 $DB_NAME "select * from prevent_list"
+ echo ""
+ echo "MDM blacklist..."
+ sqlite3 $DB_NAME "select * from disable_list"
+else
+ echo "mdm blacklist not exist"
+fi
chsmack -a System %{TZ_SYS_DB}/.policy.db
chsmack -a System %{TZ_SYS_DB}/.policy.db-journal
%endif
+%{_datadir}/privilege-manager/policy_db_updater.sh
%postun -n security-privilege-manager -p /sbin/ldconfig
%{_datadir}/privilege-manager/.core_privilege_mapping.db
%{_datadir}/privilege-manager/.wrt_privilege_info.db
%{_datadir}/privilege-manager/.wrt_privilege_mapping.db
+%attr(700,root,root) %{_datadir}/privilege-manager/policy_db_updater.sh
%config(noreplace) %attr(0660, root, security_fw) /%{TZ_SYS_DB}/.policy.db
%config(noreplace) %attr(0660, root, security_fw) /%{TZ_SYS_DB}/.policy.db-journal
%endif
projects / platform / core / security / privilege-checker.git / commitdiff