From: jooseong.lee <jooseong.lee@samsung.com>
Date: Wed, 9 Apr 2014 08:01:35 +0000 (+0900)
Subject: Comment out Security-server API checking privileges of process
X-Git-Tag: submit/tizen/20140521.102910~10
X-Git-Url: http://review.tizen.org/git/?a=commitdiff_plain;h=bfcce1ee3b23642b4c9dad366bd5ff1743af0fdb;p=platform%2Fcore%2Fsecurity%2Fsecurity-server.git

Comment out Security-server API checking privileges of process

Below Security-server APIs can be return 'access deny" by 3-domain smack policy.
And it makes bootting and running issue.
So we should comment out them temporarily untill implement of Cynara.
- security_server_check_privilege_by_sockfd
- security_server_check_privilege_by_pid
- security_server_check_privilege_by_cookie

visit below site:
https://wiki.tizen.org/wiki/Security:Cynara

Change-Id: Idcf379a1cd6ee38c80d21b952cdf52b067813603
Signed-off-by: jooseong.lee <jooseong.lee@samsung.com>
---

diff --git a/src/server/client/client-cookie.cpp b/src/server/client/client-cookie.cpp
index 90a461a..b2ca6ff 100644
--- a/src/server/client/client-cookie.cpp
+++ b/src/server/client/client-cookie.cpp
@@ -209,6 +209,7 @@ int security_server_check_privilege(const char *cookie, gid_t privilege)
 SECURITY_SERVER_API
 int security_server_check_privilege_by_cookie(const char *cookie, const char *object, const char *access_rights)
 {
+#if 0
     using namespace SecurityServer;
     MessageBuffer send, recv;
     int retval = SECURITY_SERVER_API_ERROR_UNKNOWN;
@@ -242,6 +243,8 @@ int security_server_check_privilege_by_cookie(const char *cookie, const char *ob
         Deserialization::Deserialize(recv, retval);
         return retval;
     });
+#endif
+	return SECURITY_SERVER_API_SUCCESS;
 }
 
 SECURITY_SERVER_API
diff --git a/src/server/client/client-privilege-by-pid.cpp b/src/server/client/client-privilege-by-pid.cpp
index 1d96f18..4c1c10d 100644
--- a/src/server/client/client-privilege-by-pid.cpp
+++ b/src/server/client/client-privilege-by-pid.cpp
@@ -41,6 +41,7 @@ int security_server_check_privilege_by_pid(
         int pid,
         const char *object,
         const char *access_rights) {
+#if 0
     using namespace SecurityServer;
     return try_catch([&] {
         if (1 != smack_check())
@@ -78,5 +79,7 @@ int security_server_check_privilege_by_pid(
         Deserialization::Deserialize(recv, result);
         return result;
     });
+#endif
+	return SECURITY_SERVER_API_SUCCESS;
 }
 
diff --git a/src/server/client/client-socket-privilege.cpp b/src/server/client/client-socket-privilege.cpp
index fded5e3..811178d 100644
--- a/src/server/client/client-socket-privilege.cpp
+++ b/src/server/client/client-socket-privilege.cpp
@@ -41,6 +41,7 @@ int security_server_check_privilege_by_sockfd(int sockfd,
                                               const char *object,
                                               const char *access_rights)
 {
+#if 0
     char *subject = NULL;
     int ret;
     std::string path;
@@ -82,6 +83,8 @@ int security_server_check_privilege_by_sockfd(int sockfd,
     }
 
     return security_server_check_privilege_by_pid(cr.pid, object, access_rights);
+#endif
+    return SECURITY_SERVER_API_SUCCESS;
 }
 
 SECURITY_SERVER_API