From: Hwankyu Jhun <h.jhun@samsung.com>
Date: Thu, 23 Jun 2016 05:27:27 +0000 (+0900)
Subject: Prevent apps directory from being deleted by attacker
X-Git-Tag: accepted/tizen/common/20160703.125654~2
X-Git-Url: http://review.tizen.org/git/?a=commitdiff_plain;h=f335238d2f96c97301ac6e93441a073e8e65c8b0;p=platform%2Fcore%2Fappfw%2Faul-1.git

Prevent apps directory from being deleted by attacker

Now, the app process can delete the /run/aul/apps directory.
The /run/aul directory mode is changed to 0755.

Change-Id: I6de28fe8433f8ca2ea213f2c22626ef9973d27ac
Signed-off-by: Hwankyu Jhun <h.jhun@samsung.com>
---

diff --git a/packaging/aul.service b/packaging/aul.service
index 603d032..7c479ec 100644
--- a/packaging/aul.service
+++ b/packaging/aul.service
@@ -5,6 +5,7 @@ DefaultDependencies=false
 [Service]
 Type=oneshot
 RemainAfterExit=yes
+ExecStart=/usr/bin/mkdir -p -m 0755 /run/aul
 ExecStart=/usr/bin/mkdir -p -m go+w /run/aul/apps
 ExecStart=/usr/bin/mkdir -p -Z User::Home -m go+w /run/aul/daemons