Create dummy file in the upgrade script.

- dummy file needs to be created in RW partition to support a run-time
permission control.

Change-Id: Ie717bea9000951e546bef414b23ab45e037ff692

diff --git a/upgrade/201.security_upgrade.sh b/upgrade/201.security_upgrade.sh
index c8d3c4cafbc836be65e97948ad5ce74fee70e41e..301d4dbfa83a28b79160e45cd46684a6367d0d21 100644 (file)
--- a/upgrade/201.security_upgrade.sh
+++ b/upgrade/201.security_upgrade.sh
@@ -23,6 +23,13 @@ sqlite3 /opt/dbspace/.security-manager.db "UPDATE user_app SET uid=$global_uid W
 sqlite3 /opt/dbspace/.policy.db "UPDATE disable_list SET UID=$global_uid WHERE UID<2000;"
 sqlite3 /opt/dbspace/.policy.db "UPDATE prevent_list SET UID=$global_uid WHERE UID<2000;"
 
+# create dummy_file used for a bind mount
+if [ ! -e /opt/share/security-config/dummy_file ]
+then
+       touch /opt/share/security-config/dummy_file
+       chmod 600 /opt/share/security-config/dummy_file
+fi
+
 # start cynara & security-manager
 systemctl start cynara
 security-manager-policy-reload