INSTALL(FILES ${CMAKE_SOURCE_DIR}/smack/smack_default_labeling DESTINATION /usr/share/security-config)
ENDIF()
+IF("${ARCH}" STREQUAL "arm" OR "${ARCH}" STREQUAL "aarch64")
+ IF("${PROFILE}" STREQUAL "mobile")
+ INSTALL(FILES ${CMAKE_SOURCE_DIR}/config/service_list/target/mobile/service_daemon_list DESTINATION /usr/share/security-config)
+ ELSEIF("${PROFILE}" STREQUAL "wearable")
+ INSTALL(FILES ${CMAKE_SOURCE_DIR}/config/service_list/target/wearable/service_daemon_list DESTINATION /usr/share/security-config)
+ ENDIF()
+ENDIF()
+
+IF("${ARCH}" STREQUAL "i386" OR "${ARCH}" STREQUAL "x86_64")
+ IF("${PROFILE}" STREQUAL "mobile")
+ INSTALL(FILES ${CMAKE_SOURCE_DIR}/config/service_list/emulator/mobile/service_daemon_list DESTINATION /usr/share/security-config)
+ ELSEIF("${PROFILE}" STREQUAL "wearable")
+ INSTALL(FILES ${CMAKE_SOURCE_DIR}/config/service_list/emulator/wearable/service_daemon_list DESTINATION /usr/share/security-config)
+ ENDIF()
+ENDIF()
+
INSTALL(FILES
${CMAKE_SOURCE_DIR}/packaging/security-config.manifest
DESTINATION
--- /dev/null
+/usr/bin/account-svcd
+/usr/bin/alarm-server
+/usr/bin/app2sd-server
+/usr/bin/auth-fw
+/usr/bin/bt-service
+/usr/bin/bluetooth-share
+/usr/bin/browser-provider
+/usr/sbin/buxton2d
+/usr/bin/key-manager
+/usr/bin/cert-checker
+/usr/bin/cert-server
+/usr/sbin/connmand
+/usr/sbin/connman-vpnd
+/usr/bin/csr-server
+/usr/bin/cynara
+/usr/bin/data-provider-master
+/usr/bin/dbus-daemon
+/usr/bin/deviced-vibrator
+/usr/bin/device-policy-manager
+/usr/bin/enlightenment
+/usr/bin/dlog_logger
+/usr/bin/download-provider
+/usr/bin/esd
+/usr/bin/lbs-server
+/usr/bin/media-server
+/usr/bin/mobileap-agent
+/usr/bin/msg-server
+/usr/bin/muse-server
+/usr/sbin/net-config
+/usr/bin/nether
+/usr/bin/nfc-manager-daemon
+/usr/bin/pkgmgr-server
+/usr/bin/phonenumber-utils-daemon
+/usr/bin/pkgdir-tool
+/usr/bin/privacy-guard-server
+/usr/bin/pulseaudio
+/usr/bin/sensord
+/usr/bin/focus_server
+/usr/bin/telephony-daemon
+/usr/bin/tlm
+/usr/bin/launchpad-loader
+/usr/bin/wrt-loader
--- /dev/null
+/usr/bin/account-svcd
+/usr/bin/alarm-server
+/usr/bin/app2sd-server
+/usr/bin/auth-fw
+/usr/bin/bt-service
+/usr/sbin/buxton2d
+/usr/bin/key-manager
+/usr/bin/cert-server
+/usr/sbin/connmand
+/usr/sbin/connman-vpnd
+/usr/bin/csr-server
+/usr/bin/cynara
+/usr/bin/data-provider-master
+/usr/bin/dbus-daemon
+/usr/bin/deviced-vibrator
+/usr/bin/device-policy-manager
+/usr/bin/enlightenment
+/usr/bin/dlog_logger
+/usr/bin/download-provider
+/usr/bin/esd
+/usr/bin/gumd
+/usr/bin/lbs-server
+/usr/bin/media-server
+/usr/bin/mobileap-agent
+/usr/bin/msg-server
+/usr/bin/muse-server
+/usr/sbin/net-config
+/usr/bin/nether
+/usr/bin/nfc-manager-daemon
+/usr/bin/pkgmgr-server
+/usr/bin/phonenumber-utils-daemon
+/usr/bin/pkgdir-tool
+/usr/bin/pulseaudio
+/usr/bin/sensord
+/usr/bin/focus_server
+/usr/bin/telephony-daemon
+/usr/bin/tlm
+/usr/bin/launchpad-loader
+/usr/bin/wrt-loader
--- /dev/null
+/usr/bin/account-svcd
+/usr/bin/alarm-server
+/usr/bin/app2sd-server
+/usr/bin/auth-fw
+/usr/bin/bt-service
+/usr/bin/bluetooth-share
+/usr/bin/browser-provider
+/usr/sbin/buxton2d
+/usr/bin/key-manager
+/usr/bin/cert-checker
+/usr/bin/cert-server
+/usr/sbin/connmand
+/usr/sbin/connman-vpnd
+/usr/bin/csr-server
+/usr/bin/cynara
+/usr/bin/data-provider-master
+/usr/bin/dbus-daemon
+/usr/bin/deviced-vibrator
+/usr/bin/device-policy-manager
+/usr/bin/enlightenment
+/usr/bin/dlog_logger
+/usr/bin/download-provider
+/usr/bin/esd
+/usr/bin/lbs-server
+/usr/bin/media-server
+/usr/bin/mobileap-agent
+/usr/bin/modemd
+/usr/bin/msg-server
+/usr/bin/mtp-initiator
+/usr/bin/mtp-responder
+/usr/bin/muse-server
+/usr/sbin/net-config
+/usr/bin/nether
+/usr/bin/nvitemd
+/usr/bin/pkgmgr-server
+/usr/bin/phonenumber-utils-daemon
+/usr/bin/pkgdir-tool
+/usr/bin/privacy-guard-server
+/usr/bin/pulseaudio
+/usr/bin/sensord
+/usr/bin/focus_server
+/usr/bin/telephony-daemon
+/usr/bin/tlm
+/usr/bin/wfd-manager
+/usr/bin/wifi-loader
+/usr/bin/launchpad-loader
+/usr/bin/wrt-loader
--- /dev/null
+/usr/bin/account-svcd
+/usr/bin/alarm-server
+/usr/bin/app2sd-server
+/usr/bin/auth-fw
+/usr/bin/bt-service
+/usr/sbin/buxton2d
+/usr/bin/key-manager
+/usr/bin/cert-server
+/usr/sbin/connmand
+/usr/sbin/connman-vpnd
+/usr/bin/csr-server
+/usr/bin/cynara
+/usr/bin/data-provider-master
+/usr/bin/dbus-daemon
+/usr/bin/deviced-vibrator
+/usr/bin/device-policy-manager
+/usr/bin/enlightenment
+/usr/bin/dlog_logger
+/usr/bin/download-provider
+/usr/bin/esd
+/usr/bin/gumd
+/usr/bin/lbs-server
+/usr/bin/media-server
+/usr/bin/mobileap-agent
+/usr/bin/msg-server
+/usr/bin/mtp-responder
+/usr/bin/muse-server
+/usr/sbin/net-config
+/usr/bin/nether
+/usr/bin/nfc-manager-daemon
+/usr/bin/pkgmgr-server
+/usr/bin/phonenumber-utils-daemon
+/usr/bin/pkgdir-tool
+/usr/bin/pulseaudio
+/usr/bin/sensord
+/usr/bin/focus_server
+/usr/bin/telephony-daemon
+/usr/bin/tlm
+/usr/bin/wfd-manager
+/usr/bin/launchpad-loader
+/usr/bin/wrt-loader
/usr/bin/chsmack -a "System::Shared" /etc/group*
/usr/bin/chsmack -a "System::Shared" /etc/gshadow*
/usr/bin/chsmack -a "System::Shared" /etc/shadow*
+
+## Give "System" execute label which do not have cap_mac_admin
+service_list_path="/usr/share/security-config/service_daemon_list"
+cat $service_list_path | while read line
+do
+ /usr/bin/chsmack -e "System" $line
+done
+
%attr(-,root,root) %{_unitdir}/multi-user.target.wants/security-config.service
%attr(755,root,root) /usr/share/security-config/smack_default_labeling
%endif
+%if ("%{?profile}" == "mobile" || "%{?profile}" == "wearable") && ("%{?_arch}" == "arm" || "%{?_arch}" == "aarch64" || "%{?_arch}" == "i386" || "%{?_arch}" == "x86_64")
+%attr(755,root,root) /usr/share/security-config/service_daemon_list
+%endif
projects / platform / core / security / security-config.git / commitdiff