From: Jin-gyu Kim Date: Fri, 6 Aug 2021 00:49:12 +0000 (+0900) Subject: Add data-checkpoint.service & udev-trigger-dmbow@.service. X-Git-Tag: submit/tizen/20210809.195630^0 X-Git-Url: http://review.tizen.org/git/?a=commitdiff_plain;h=655b9ce18e1dbea4c2b95fa537747b9c2a47bf0f;p=platform%2Fcore%2Fsecurity%2Fsecurity-config.git Add data-checkpoint.service & udev-trigger-dmbow@.service. - Requested by SECSFV-201 Change-Id: I33bf75444ba1e677fc3956429a32140c4a091848 --- diff --git a/config/set_capability b/config/set_capability index daa1841..68bf28a 100755 --- a/config/set_capability +++ b/config/set_capability @@ -909,6 +909,16 @@ if [ -e "/usr/sbin/mdnsd" ] then /usr/sbin/setcap cap_net_admin,cap_net_raw=ei /usr/sbin/mdnsd fi +# Package platform/core/system/system-rw-update +# Date Aug 06, 2021 +# Required /usr/bin/udevadm : cap_dac_override : ei +# cap_dac_override To write data on /sys/devices/platform/.../uevent + +if [ -e "/usr/bin/udevadm" ] +then /usr/sbin/setcap cap_dac_override=ei /usr/bin/udevadm +fi + + # These are not related with the capability, but place here to run in generic-security.post # It would be better to run this separately in generic-security.post future. /usr/share/security-config/change_permission diff --git a/test/new_service_test/emulator/common/systemd_service.list b/test/new_service_test/emulator/common/systemd_service.list index 5827f50..605b58b 100755 --- a/test/new_service_test/emulator/common/systemd_service.list +++ b/test/new_service_test/emulator/common/systemd_service.list @@ -46,6 +46,7 @@ ;contextd.service;service_fw;service_fw;System; ;csr.service;security_fw;security_fw;System; ;cynara.service;cynara;cynara;System; +;data-checkpoint.service;root;root;System; ;data-provider-master.service;app_fw;app_fw;System; ;dbus.service;dbus;dbus;System; ;debug-shell.service;root;root;System; @@ -196,6 +197,7 @@ ;ttrace-marker.service;system_fw;system_fw;System; ;ua-manager.service;network_fw;network_fw;System; ;udev-sdb-init.service;root;root;System; +;udev-trigger-dmbow@.service;system_fw;system_fw;System; ;usb-host-ffs-test-daemon.service;system_fw;system_fw;System; ;user@.service;%i;users;User; ;user-runtime-dir@.service;root;root;System::Privileged; diff --git a/test/new_service_test/emulator/iot/systemd_service.list b/test/new_service_test/emulator/iot/systemd_service.list index 5827f50..605b58b 100755 --- a/test/new_service_test/emulator/iot/systemd_service.list +++ b/test/new_service_test/emulator/iot/systemd_service.list @@ -46,6 +46,7 @@ ;contextd.service;service_fw;service_fw;System; ;csr.service;security_fw;security_fw;System; ;cynara.service;cynara;cynara;System; +;data-checkpoint.service;root;root;System; ;data-provider-master.service;app_fw;app_fw;System; ;dbus.service;dbus;dbus;System; ;debug-shell.service;root;root;System; @@ -196,6 +197,7 @@ ;ttrace-marker.service;system_fw;system_fw;System; ;ua-manager.service;network_fw;network_fw;System; ;udev-sdb-init.service;root;root;System; +;udev-trigger-dmbow@.service;system_fw;system_fw;System; ;usb-host-ffs-test-daemon.service;system_fw;system_fw;System; ;user@.service;%i;users;User; ;user-runtime-dir@.service;root;root;System::Privileged; diff --git a/test/new_service_test/emulator/mobile/systemd_service.list b/test/new_service_test/emulator/mobile/systemd_service.list index 147172c..7c0e1d4 100755 --- a/test/new_service_test/emulator/mobile/systemd_service.list +++ b/test/new_service_test/emulator/mobile/systemd_service.list @@ -46,6 +46,7 @@ ;contextd.service;service_fw;service_fw;System; ;csr.service;security_fw;security_fw;System; ;cynara.service;cynara;cynara;System; +;data-checkpoint.service;root;root;System; ;data-provider-master.service;app_fw;app_fw;System; ;dbus.service;dbus;dbus;System; ;debug-shell.service;root;root;System; @@ -196,6 +197,7 @@ ;ttrace-marker.service;system_fw;system_fw;System; ;ua-manager.service;network_fw;network_fw;System; ;udev-sdb-init.service;root;root;System; +;udev-trigger-dmbow@.service;system_fw;system_fw;System; ;usb-host-ffs-test-daemon.service;system_fw;system_fw;System; ;user@.service;%i;users;User; ;user-runtime-dir@.service;root;root;System::Privileged; diff --git a/test/new_service_test/emulator/wearable/systemd_service.list b/test/new_service_test/emulator/wearable/systemd_service.list index 22f4e2a..b580672 100644 --- a/test/new_service_test/emulator/wearable/systemd_service.list +++ b/test/new_service_test/emulator/wearable/systemd_service.list @@ -39,6 +39,7 @@ ;contextd.service;service_fw;service_fw;System; ;csr.service;security_fw;security_fw;System; ;cynara.service;cynara;cynara;System; +;data-checkpoint.service;root;root;System; ;data-provider-master.service;app_fw;app_fw;System; ;dbus.service;dbus;dbus;System; ;debug-shell.service;root;root;System; @@ -193,6 +194,7 @@ ;ttrace-marker.service;system_fw;system_fw;System; ;ua-manager.service;network_fw;network_fw;System; ;udev-sdb-init.service;root;root;System; +;udev-trigger-dmbow@.service;system_fw;system_fw;System; ;usb-host-ffs-test-daemon.service;system_fw;system_fw;System; ;user@.service;%i;users;User; ;user-runtime-dir@.service;root;root;System::Privileged; diff --git a/test/new_service_test/target/common/systemd_service.list b/test/new_service_test/target/common/systemd_service.list index c10a7fe..a77d510 100644 --- a/test/new_service_test/target/common/systemd_service.list +++ b/test/new_service_test/target/common/systemd_service.list @@ -51,6 +51,7 @@ ;contextd.service;service_fw;service_fw;System; ;csr.service;security_fw;security_fw;System; ;cynara.service;cynara;cynara;System; +;data-checkpoint.service;root;root;System; ;data-provider-master.service;app_fw;app_fw;System; ;dbus.service;dbus;dbus;System; ;debug-shell.service;root;root;System; @@ -211,6 +212,7 @@ ;ttrace-marker.service;system_fw;system_fw;System; ;ua-manager.service;network_fw;network_fw;System; ;udev-sdb-init.service;root;root;System; +;udev-trigger-dmbow@.service;system_fw;system_fw;System; ;usb-host-ffs-test-daemon.service;system_fw;system_fw;System; ;user@.service;%i;users;User; # Need to be defined group ;user-runtime-dir@.service;root;root;System::Privileged; diff --git a/test/new_service_test/target/iot/systemd_service.list b/test/new_service_test/target/iot/systemd_service.list index 0ff6b0a..ab26f0f 100644 --- a/test/new_service_test/target/iot/systemd_service.list +++ b/test/new_service_test/target/iot/systemd_service.list @@ -51,6 +51,7 @@ ;contextd.service;service_fw;service_fw;System; ;csr.service;security_fw;security_fw;System; ;cynara.service;cynara;cynara;System; +;data-checkpoint.service;root;root;System; ;data-provider-master.service;app_fw;app_fw;System; ;dbus.service;dbus;dbus;System; ;debug-shell.service;root;root;System; @@ -213,6 +214,7 @@ ;ttrace-marker.service;system_fw;system_fw;System; ;ua-manager.service;network_fw;network_fw;System; ;udev-sdb-init.service;root;root;System; +;udev-trigger-dmbow@.service;system_fw;system_fw;System; ;update-manager.service;system_fw;system_fw;System; ;usb-host-ffs-test-daemon.service;system_fw;system_fw;System; ;user@.service;%i;users;User; # Need to be defined group diff --git a/test/new_service_test/target/mobile/systemd_service.list b/test/new_service_test/target/mobile/systemd_service.list index 71fe718..f33f3b0 100644 --- a/test/new_service_test/target/mobile/systemd_service.list +++ b/test/new_service_test/target/mobile/systemd_service.list @@ -51,6 +51,7 @@ ;contextd.service;service_fw;service_fw;System; ;csr.service;security_fw;security_fw;System; ;cynara.service;cynara;cynara;System; +;data-checkpoint.service;root;root;System; ;data-provider-master.service;app_fw;app_fw;System; ;dbus.service;dbus;dbus;System; ;debug-shell.service;root;root;System; @@ -212,6 +213,7 @@ ;ttrace-marker.service;system_fw;system_fw;System; ;ua-manager.service;network_fw;network_fw;System; ;udev-sdb-init.service;root;root;System; +;udev-trigger-dmbow@.service;system_fw;system_fw;System; ;usb-host-ffs-test-daemon.service;system_fw;system_fw;System; ;user@.service;%i;users;User; # Need to be defined group ;user-runtime-dir@.service;root;root;System::Privileged; diff --git a/test/new_service_test/target/tv/systemd_service.list b/test/new_service_test/target/tv/systemd_service.list index 59555a9..089817a 100644 --- a/test/new_service_test/target/tv/systemd_service.list +++ b/test/new_service_test/target/tv/systemd_service.list @@ -41,6 +41,7 @@ ;container-getty@.service;root;root;System; ;csr.service;security_fw;security_fw;System; ;cynara.service;cynara;cynara;System; +;data-checkpoint.service;root;root;System; ;data-provider-master.service;app_fw;app_fw;System; ;dbus.service;dbus;dbus;System; ;debug-shell.service;root;root;System; @@ -185,6 +186,7 @@ ;ttrace-marker.service;system_fw;system_fw;System; ;ua-manager.service;network_fw;network_fw;System; ;udev-sdb-init.service;root;root;System; +;udev-trigger-dmbow@.service;system_fw;system_fw;System; ;usb-host-ffs-test-daemon.service;system_fw;system_fw;System; ;user@.service;%i;users;User; # Need to be defined group ;user-runtime-dir@.service;root;root;System::Privileged; diff --git a/test/new_service_test/target/wearable/systemd_service.list b/test/new_service_test/target/wearable/systemd_service.list index 754e6a9..e3dd0eb 100755 --- a/test/new_service_test/target/wearable/systemd_service.list +++ b/test/new_service_test/target/wearable/systemd_service.list @@ -47,6 +47,7 @@ ;contextd.service;service_fw;service_fw;System; ;csr.service;security_fw;security_fw;System; ;cynara.service;cynara;cynara;System; +;data-checkpoint.service;root;root;System; ;data-provider-master.service;app_fw;app_fw;System; ;dbus.service;dbus;dbus;System; ;debug-shell.service;root;root;System; @@ -200,6 +201,7 @@ ;ttrace-marker.service;system_fw;system_fw;System; ;ua-manager.service;network_fw;network_fw;System; ;udev-sdb-init.service;root;root;System; +;udev-trigger-dmbow@.service;system_fw;system_fw;System; ;usb-host-ffs-test-daemon.service;system_fw;system_fw;System; ;user@.service;%i;users;User; ;user-runtime-dir@.service;root;root;System::Privileged;