# Package pkgmgr-server
# Owner Jongmyeong Ko(jongmyeong.ko@samsung.com)
# Date June 30, 2016
-# Required /usr/bin/pkgmgr-server : cap_chown, cap_dac_override, cap_fsetid, cap_kill, cap_setgid, cap_setuid : ei
+# Required /usr/bin/pkgmgr-server : cap_chown, cap_dac_override, cap_fsetid, cap_kill, cap_setgid, cap_setuid, cap_fowner : ei
# cap_chown fchown : change owner
# cap_dac_override Access user and global database file of package manager
# cap_fsetid fchmod : change mode
# cap_kill killpg function
# cap_setgid setgid and setgroups function
# cap_setuid setuid function
+# cap_fowner to change copied resources' ownership (for /usr/bin/res-copy)
if [ -e "/usr/bin/pkgmgr-server" ]
-then /usr/sbin/setcap cap_chown,cap_dac_override,cap_fsetid,cap_kill,cap_setgid,cap_setuid=ei /usr/bin/pkgmgr-server
+then /usr/sbin/setcap cap_chown,cap_dac_override,cap_fsetid,cap_kill,cap_setgid,cap_setuid,cap_fowner=ei /usr/bin/pkgmgr-server
fi
# Package app-installers
then /usr/sbin/setcap cap_dac_override=ei /usr/bin/data-provider-master
fi
-# Package platform/coer/appfw/pkgmgr-tool
+# Package platform/core/appfw/pkgmgr-tool
# Owner Sangyoon Jang(s89.jang@samsung.com)
# Date Nov 28, 2016
# Required /usr/bin/pkg_getsize : cap_dac_read_search : ei
fi
+# Package platform/core/appfw/pkgmgr-tool
+# Date Sep 01, 2021
+# Required /usr/bin/res-copy : cap_chown, cap_dac_override, cap_fowner : ei
+# cap_chown To change copied file's ownership(root:priv_platform)
+# cap_dac_override To change copied file's ownership(root:priv_platform)
+# cap_fowner To change copied file's ownership(root:priv_platform)
+
+if [ -e "/usr/bin/res-copy" ]
+then /usr/sbin/setcap cap_chown,cap_dac_override,cap_fowner=ei /usr/bin/res-copy
+fi
+
+
# These are not related with the capability, but place here to run in generic-security.post
# It would be better to run this separately in generic-security.post future.
/usr/share/security-config/change_permission
projects / platform / core / security / security-config.git / commitdiff