projects / platform / upstream / efl.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: d19fb32)
security: change to apply Tizen security policy. 87/48287/2
authorJaehwan Kim <jae.hwan.kim@samsung.com>
Thu, 17 Sep 2015 06:59:55 +0000 (15:59 +0900)
committerJaehwan Kim <jae.hwan.kim@samsung.com>
Wed, 7 Oct 2015 04:28:00 +0000 (13:28 +0900)
evas-cserve2 make the socket file in the /run/.efl
and ecore_evas_extn_buf make tmp file in that folder.
It has a authority of "User::App::Shared"

@tizen_feature

Conflicts:
packaging/efl.spec

Change-Id: Ie8baa503237204f7f484e8f2d305e1a3a9d05e96

packaging/efl.conf patch | blob | history
src/lib/evas/cserve2/evas_cs2_client.c patch | blob | history
src/modules/ecore_evas/engines/extn/ecore_evas_extn_buf.c patch | blob | history

diff --git a/packaging/efl.conf b/packaging/efl.conf
index 5d71ddd..b7261f3 100644 (file)
--- a/packaging/efl.conf
+++ b/packaging/efl.conf
@@ -1,3 +1,3 @@
-d      /run/.ecore     1770    display users
-t      /run/.ecore     -       -       -       -       security.SMACK64="User::App::Shared"
-t      /run/.ecore     -       -       -       -       security.SMACK64TRANSMUTE="TRUE"
+d      /run/.efl       1770    display users
+t      /run/.efl       -       -       -       -       security.SMACK64="User::App::Shared"
+t      /run/.efl       -       -       -       -       security.SMACK64TRANSMUTE="TRUE"
diff --git a/src/lib/evas/cserve2/evas_cs2_client.c b/src/lib/evas/cserve2/evas_cs2_client.c
index 2471c1f..7c71cd4 100644 (file)
--- a/src/lib/evas/cserve2/evas_cs2_client.c
+++ b/src/lib/evas/cserve2/evas_cs2_client.c
@@ -140,7 +140,10 @@ _socket_path_set(char *path)
           }
      }
 
-   snprintf(buf, sizeof(buf), "/tmp/.evas-cserve2-%x.socket", (int)getuid());
+   //TIZEN ONLY (150917): security issue. To access any application, it needs smack rule.
+   //snprintf(buf, sizeof(buf), "/tmp/.evas-cserve2-%x.socket", (int)getuid());
+   snprintf(buf, sizeof(buf), "/run/.efl/.evas-cserve2-%x.socket", (int)getuid());
+   //
    /* FIXME: check we can actually create this socket */
    strcpy(path, buf);
 #if 0   
diff --git a/src/modules/ecore_evas/engines/extn/ecore_evas_extn_buf.c b/src/modules/ecore_evas/engines/extn/ecore_evas_extn_buf.c
index 7326848..08c5e5a 100644 (file)
--- a/src/modules/ecore_evas/engines/extn/ecore_evas_extn_buf.c
+++ b/src/modules/ecore_evas/engines/extn/ecore_evas_extn_buf.c
@@ -51,7 +51,7 @@ _extnbuf_new(const char *base, int id, Eina_Bool sys, int num,
           }
         //TIZEN ONLY (150908): security issue. To access any application, it needs smack rule.
         //if (!s) s = "/tmp";
-        s = "/run/.ecore";
+        s = "/run/.efl";
         //
         snprintf(file, sizeof(file), "%s/ee-lock-XXXXXX", s);
         b->lockfd = mkstemp(file);
Domain: UI Framework / EFL;