# Owner Junghoon Park(jh9216.park@samsung.com)
# Date Feb 25, 2020
# Required cap_setgid, cap_sys_admin, cap_sys_nice
-# cap_setgid to use security_manager_prepare_app()
-# cap_sys_admin to split mount namespace
-# cap_sys_nice to change scheduling priority
+# cap_setgid to use security_manager_prepare_app()
+# cap_sys_admin to split mount namespace
+# cap_sys_nice to change scheduling priority
# TODO : condition check about launchpad-starter is temporary
if [ -e "/usr/bin/app-defined-loader" ] && [ ! -e "/usr/bin/launchpad-starter" ]
# Package platform/core/dotnet/launcher
# Owner Woongsuk Cho(ws77.cho@samsung.com)
# Date July 4, 2017
-# Required cap_mac_admin, cap_setgid
-# cap_setgid to change app process gid
-# cap_sys_admin to split mount namespace
+# Required cap_sys_admin, cap_setgid
+# cap_setgid to change app process gid
+# cap_sys_admin to split mount namespace
if [ -e "/usr/bin/dotnet-launcher" ]
then /usr/sbin/setcap cap_setgid,cap_sys_admin=ei /usr/bin/dotnet-launcher
if [ -e "/usr/bin/dotnet-hydra-loader" ]
then /usr/sbin/setcap cap_setgid,cap_sys_admin=ei /usr/bin/dotnet-hydra-loader
+fi
+
# Package platform/core/dotnet/launcher
# Owner Woongsuk Cho(ws77.cho@samsung.com)
# Date April 10, 2020
if [ -e "/usr/bin/dotnet" ]
then /usr/sbin/setcap cap_setgid,cap_sys_admin=ei /usr/bin/dotnet
+fi
# Package platform/core/telephony/telephony-daemon
# Owner Shinhui Kang(sinikang@samsung.com)
/usr/bin/df = cap_dac_read_search+ei
/usr/bin/crash-manager = cap_dac_override,cap_kill,cap_sys_ptrace+ei
/usr/bin/memps = cap_dac_read_search,cap_sys_ptrace+ei
-/usr/bin/dotnet-hydra-launcher = cap_setgid,cap_sys_admin+ei
/usr/bin/top = cap_sys_ptrace+ei
/usr/bin/livedumper = cap_dac_override,cap_sys_ptrace+ei
/usr/bin/nan-manager = cap_net_admin,cap_net_raw+ei
projects / platform / core / security / security-config.git / commitdiff