Add new capability to wfd-manager

author jin-gyu.kim <jin-gyu.kim@samsung.com>

Tue, 18 Jul 2017 01:52:47 +0000 (10:52 +0900)

committer jin-gyu.kim <jin-gyu.kim@samsung.com>

Mon, 31 Jul 2017 06:33:21 +0000 (15:33 +0900)
author jin-gyu.kim <jin-gyu.kim@samsung.com>
Tue, 18 Jul 2017 01:52:47 +0000 (10:52 +0900)
committer jin-gyu.kim <jin-gyu.kim@samsung.com>
Mon, 31 Jul 2017 06:33:21 +0000 (15:33 +0900)
diff --git a/config/set_capability b/config/set_capability

index 40292e003345b6e4356cf6e7fca4b346c62b706d..9843bd5e152a6c69b99940e2c56ad4e9a0cdfbad 100755 (executable)
--- a/config/set_capability
+++ b/config/set_capability
@@ -490,6 +490,32 @@ if [ -e "/usr/bin/wrt-loader" ]
  then /usr/sbin/setcap cap_setgid=ei /usr/bin/wrt-loader
  fi
  
+# Package               platform/core/connectivity/wifi-direct-manager
+# Owner                 Jaehyun Kim(jeik01.kim@samsung.com)
+# Date                  July 18, 2017
+# Required              cap_net_bind_service, cap_net_admin, cap_net_broadcast, cap_net_raw
+# cap_net_bind_service using DHCP port
+# cap_net_admin                interface IP address configuration
+# cap_net_broadcast    DHCP packet broadcasting
+# cap_net_raw          open raw socket for DHCP
+
+if [ -e "/usr/bin/wfd-manager" ]
+then /usr/sbin/setcap cap_net_bind_service,cap_net_broadcast,cap_net_admin,cap_net_raw=ei $(/usr/bin/readlink -f /usr/bin/wfd-manager)
+fi
+
+# Belows are tools which wfd manager service is using.
+if [ -e "/usr/bin/toybox" ]
+then /usr/sbin/setcap cap_net_bind_service,cap_net_broadcast,cap_net_admin,cap_net_raw=ei /usr/bin/toybox
+fi
+
+if [ -e "/usr/bin/pkill" ]
+then /usr/sbin/setcap cap_kill=ei /usr/bin/pkill
+fi
+
+if [ -e "/usr/sbin/ifconfig" ]
+then /usr/sbin/setcap cap_net_admin=ei /usr/sbin/ifconfig
+fi
+
  # TODO: MOVE TO OTHER SCRIPT OR REMOVE
  # Requested by sooyeon.kim@samsung.com
  if [ -e "/etc/skel/share/.voice" ]
diff --git a/test/capability_test/new_capabilities_exception.list b/test/capability_test/new_capabilities_exception.list

index 4b7049fed39b6b276469a4752bd6d93b14d60156..31586cb2a3e357213cc23e92f7cb462f9d8b97a9 100644 (file)
--- a/test/capability_test/new_capabilities_exception.list
+++ b/test/capability_test/new_capabilities_exception.list
@@ -1,11 +1,11 @@
  /usr/sbin/tayga = cap_net_bind_service,cap_net_broadcast,cap_net_admin,cap_net_raw+ei
-/usr/sbin/xtables-multi = cap_net_admin,cap_net_raw,cap_sys_admin+ei
+/usr/sbin/xtables-multi = cap_net_admin,cap_net_raw+ei
  /usr/sbin/named = cap_fowner,cap_net_bind_service,cap_net_admin,cap_sys_chroot+eip
  /usr/sbin/lwresd = cap_fowner,cap_net_bind_service,cap_net_admin,cap_sys_chroot+eip
  /usr/sbin/sdbd = cap_dac_override,cap_setgid,cap_setuid,cap_sys_admin+eip
-/usr/sbin/hostapd = cap_fowner,cap_net_bind_service,cap_net_admin,cap_net_raw+eip
+/usr/bin/hostapd = cap_fowner,cap_net_bind_service,cap_net_admin,cap_net_raw+eip
  /usr/sbin/ip = cap_net_admin+ei
-/usr/sbin/wpa_supplicant = cap_net_admin,cap_net_raw+eip
+/usr/bin/wpa_supplicant = cap_net_admin,cap_net_raw+ei
  /usr/bin/focus_server = cap_chown,cap_fowner,cap_lease+eip
  /usr/bin/touch = cap_dac_override+ei
  /usr/bin/pkgdir-tool = cap_chown,cap_dac_override,cap_fowner+eip
@@ -17,7 +17,7 @@
  /usr/bin/pkgmgr-server = cap_chown,cap_dac_override,cap_fsetid,cap_kill,cap_setgid,cap_setuid+eip
  /usr/bin/muse-server = cap_dac_override+eip
  /usr/bin/amd = cap_dac_override,cap_kill+ep
-/usr/bin/wrt-loader = cap_setgid,cap_sys_admin+ei
+/usr/bin/wrt-loader = cap_setgid+ei
  /usr/bin/tpk-backend = cap_chown,cap_dac_override,cap_fowner+eip
  /usr/bin/launchpad-loader = cap_setgid+ei
  /usr/bin/email-service = cap_chown+eip
@@ -25,16 +25,28 @@
  /usr/bin/download-provider = cap_chown,cap_dac_override+eip
  /usr/bin/chmod = cap_fowner+ei
  /usr/bin/sound_server = cap_chown,cap_fowner,cap_lease+eip
-/usr/bin/dnsmasq = cap_dac_override,cap_net_bind_service,cap_net_broadcast,cap_net_admin,cap_net_raw+ei
+/usr/bin/dnsmasq = cap_net_bind_service,cap_net_broadcast,cap_net_admin,cap_net_raw+ei
  /usr/bin/feedbackd = cap_dac_override+eip
  /usr/bin/data-provider-master = cap_dac_read_search+eip
  /usr/bin/amixer = cap_dac_override+ei
  /usr/bin/pkg_getsize = cap_dac_read_search+eip
  /usr/bin/pkg_cleardata = cap_dac_override+eip
  /usr/bin/launchpad-process-pool = cap_dac_override,cap_setgid,cap_mac_admin+ei
-/usr/bin/mobileap-agent = cap_dac_override,cap_fowner,cap_net_bind_service,cap_net_admin+eip
+/usr/bin/mobileap-agent = cap_fowner,cap_net_bind_service,cap_net_admin+eip
  /usr/bin/chgrp = cap_chown+ei
  /usr/bin/xdelta3 = cap_dac_override+ei
  /usr/bin/telephony-daemon = cap_net_admin+eip
+/usr/bin/telephony-daemon.tv = cap_net_admin+eip
+/usr/bin/telephony-daemon.ivi = cap_net_admin+eip
  /usr/bin/nether = cap_net_admin,cap_net_raw+eip
  /usr/bin/dotnet-launcher = cap_setgid,cap_mac_admin+ei
+/usr/bin/wfd-manager = cap_net_bind_service,cap_net_broadcast,cap_net_admin,cap_net_raw+ei
+/usr/bin/wfd-manager.tm1 = cap_net_bind_service,cap_net_broadcast,cap_net_admin,cap_net_raw+ei
+/usr/bin/wfd-manager.mobile = cap_net_bind_service,cap_net_broadcast,cap_net_admin,cap_net_raw+ei
+/usr/bin/wfd-manager.wearable = cap_net_bind_service,cap_net_broadcast,cap_net_admin,cap_net_raw+ei
+/usr/bin/wfd-manager.tv = cap_net_bind_service,cap_net_broadcast,cap_net_admin,cap_net_raw+ei
+/usr/bin/net-config = cap_net_admin,cap_net_raw+ei
+/usr/bin/connmand = cap_net_bind_service,cap_net_broadcast,cap_net_admin,cap_net_raw+ei
+/usr/sbin/ifconfig = cap_net_admin+ei
+/usr/bin/pkill = cap_kill+ei
+/usr/bin/toybox = cap_net_bind_service,cap_net_broadcast,cap_net_admin,cap_net_raw+ei
author	jin-gyu.kim <jin-gyu.kim@samsung.com>
	Tue, 18 Jul 2017 01:52:47 +0000 (10:52 +0900)
committer	jin-gyu.kim <jin-gyu.kim@samsung.com>
	Mon, 31 Jul 2017 06:33:21 +0000 (15:33 +0900)
config/set_capability		patch \| blob \| history
test/capability_test/new_capabilities_exception.list		patch \| blob \| history