Yunjin Lee [Tue, 10 Sep 2019 02:44:27 +0000 (11:44 +0900)]
Fix mapping version of privileges
- Fix mapping version of native privileges as 2.3 to 9.9 and mapping
version of web privileges as 2.2.1 to 9.9 except special cases.
Change-Id: I15c91284b8c55b94791950cbf7c72e74cd558b32
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Mon, 19 Aug 2019 07:32:12 +0000 (16:32 +0900)]
Release version 1.1.1
- Use pkgmgrinfo_pkginfo_get_usr_pkginfo() when getting package info
- Update privacy whitelist
- Map default privileges for common profile
Change-Id: I4cdcaf220b4d8e2bcf7274a791d6d1d5cc9f1e6b
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 21 Aug 2019 01:21:04 +0000 (10:21 +0900)]
Map default privileges for common profile
- Default privileges should be mapped for all profiles so modified it to
map for common profile.
Change-Id: Ia2c0fd91926d01e4c7a43de76a342a20fa121278
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Fri, 17 May 2019 08:12:57 +0000 (17:12 +0900)]
Update privacy whitelist
- Based on
20190819.1 tm1 and tw3
Change-Id: If631f3934a6e75c5e22b619088df02e608945ce5
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Fri, 28 Jun 2019 04:06:59 +0000 (13:06 +0900)]
Use pkgmgrinfo_pkginfo_get_usr_pkginfo() when getting package info
Change-Id: Ia3314369c52786f010d48c268a71025872acef08
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 19 Jun 2019 08:33:31 +0000 (17:33 +0900)]
Release version 1.1.0
Updated release version not to conflict with old branch's
- Add required packages in spec file
- Add function to free privilege list
Change-Id: I1d78b61f249a4c6eb83b26dc5817ea1cf81bbb7f
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 18 Jun 2019 07:25:32 +0000 (16:25 +0900)]
Add function to free privilege list
- Add function to free privilege list, dynamically allocated by
privilege_manager, privilege_info, privilege_db_manager APIs and updated
header description accordingly.
Change-Id: I56a711716eb06cc41e795d544090a763a596898d
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
jin-gyu.kim [Mon, 29 Apr 2019 05:41:23 +0000 (14:41 +0900)]
Add required packages in spec file.
- To work policy_db_updater.sh properly, requires packages.
Change-Id: I660c1a056edfec6fbe42c77b19f8ae66b31cb39b
Yunjin Lee [Fri, 26 Apr 2019 02:01:07 +0000 (11:01 +0900)]
Release version 1.0.12
- Update privilege description and language files
Change-Id: I145be59de97bfb265cdef2f0f96d03e2afef7eb3
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Fri, 26 Apr 2019 01:57:48 +0000 (10:57 +0900)]
Update privilege description and language files
Change-Id: I2e42b7a2f4f0e665b3e3d131940888f1733e43d0
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Thu, 18 Apr 2019 04:12:45 +0000 (13:12 +0900)]
Release version 1.0.11
- Fix to finalize stmt
Change-Id: I51c75d031b67e58fcafd86d7ec4216e0b6a81de6
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Thu, 18 Apr 2019 01:58:38 +0000 (10:58 +0900)]
Fix to finalize stmt
Change-Id: Icc92f7a991a6cfd76f111c5927c3bda18be5ce76
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Mon, 15 Apr 2019 04:12:04 +0000 (13:12 +0900)]
Release version 1.0.10
- Add core privilege: d2d.datasharing, d2d.remotelaunch
Change-Id: Ia0558f744fa0eaae5499792c5c8f3c54b90f4547
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Thu, 11 Apr 2019 08:18:00 +0000 (17:18 +0900)]
Add core privilege: d2d.datasharing, d2d.remotelaunch
- d2d.datasharing: Application with this privilege can share data with
other devices
- d2d.remotelaunch: Application with this privilege can be launched by
applications on other devices
Change-Id: I19f714329027d5e9d3c7ba9e85276b8834d629dc
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 27 Feb 2019 09:29:11 +0000 (18:29 +0900)]
Release version 1.0.9
- Remove unused APIs
- Add core privilege: windowsystem.admin
Change-Id: I851726bf4029d80bfe339c6e803d807e58a7d29a
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 27 Feb 2019 09:24:23 +0000 (18:24 +0900)]
Add core privilege: windowsystem.admin
- The application with this privilege can change the settings for
services provided by display server, such as the quick panel and
softkey bar.
Change-Id: Ib1f09a62f0ca3938565c34922159706b7340165a
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Thu, 14 Feb 2019 06:21:40 +0000 (15:21 +0900)]
Remove unused APIs
- APIs for runtime MDM blacklist set/unset have never been used and will not be
used anymore. Hence remove them.
Change-Id: I3f71e2df483424220d5856856560d6cc3fbf958b
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Thu, 14 Feb 2019 06:39:29 +0000 (15:39 +0900)]
Release version 1.0.8
- Fix mapping version according to the former record
- Update privacy whitelist
Change-Id: Ib4c89568fb0d6106cec31c4bfdbbf9375cfa5cef
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Fri, 15 Feb 2019 05:58:38 +0000 (14:58 +0900)]
Update privacy whitelist
Change-Id: If646845e9125dd6cc3afcf4db8fe86e12ebd2896
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Mon, 14 Jan 2019 04:18:59 +0000 (13:18 +0900)]
Fix mapping version according to the former record
- Mapping version was fixed as 2.3 to 9.9 for native and 2.2.1 to 9.9
for web from platform version 5.0. Fix those versions to real first
issued version and last deprecated version according to the record.
- Note: web nfc.admin privilege was deprecated since 2.3 but not
reported to the security team at that time. Hence we fixed deprecated
version of the web nfc.admin as 5.0.
Change-Id: I850e7f79ec71a5b4de1b36c6c522c6b9fafc84b2
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 19 Dec 2018 06:46:17 +0000 (15:46 +0900)]
[1.0.7] Fix language file build error
Change-Id: I2385ebc84c3a9ca87387d0c97f87407d3621a9d4
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 19 Dec 2018 01:32:47 +0000 (10:32 +0900)]
Release version 1.0.7
- Add core privilege : autofillmanager
- Add internal privilege for systemsettings
- Change mapping table of web filesystem.read and filesystem.write
- Fix to check return value
Change-Id: Ib80886509ef473a955ea922547711bf63aaaa952
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Kim Kidong [Wed, 19 Dec 2018 01:20:46 +0000 (01:20 +0000)]
Merge "Fix to check return value" into tizen
Yunjin Lee [Tue, 18 Dec 2018 05:37:13 +0000 (14:37 +0900)]
Change mapping table of web filesystem.read and filesystem.write
- Add core privilege filesystem.read and filesystem.write to resolve
native and web privilege level mismatch.
- Web filesystem.read and filesystem.write are public level
privilege and native systemsettings.admin is platform level
privilege. They were mapped because of the 2.X smack rules but
checked that Web filesystem.read/write privileged device APIs are
not wrappers of native systemsetting.admin privileged APIs. Hence
add core privilege for filesystem.read and write separately and
remove mapping to the systemsettings.admin.
Change-Id: I3fcef8aea58a0292e8b8accb4692b14ba3eb36af
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 18 Dec 2018 05:34:51 +0000 (14:34 +0900)]
Add internal privilege for systemsettings
- Add internal privilege for systemsettings and change mapping table
to resolve native and web privilege level mismatch issue
Change-Id: I25a3c313ff4afedc67b294d0971e84a4ae87f7bf
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 18 Dec 2018 05:03:29 +0000 (14:03 +0900)]
Add core privilege : autofillmanager
- The application with this privilege can manage installed autofill services.
It can set which autofill service to use and get the currently configured autofill
service.
Change-Id: I733b08eb9f5faa79f1c8a502dc72d7c666810134
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Thu, 6 Dec 2018 02:01:20 +0000 (11:01 +0900)]
Fix to check return value
- Check return value of sqlite3_exec() for begin and commit
transaction.
Change-Id: I887340a7c7485ea06d898473393655d75641b9bc
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
(cherry picked from commit
b77f85bacb993469df47ae1a043024f2cc84c02a)
Yunjin Lee [Tue, 18 Sep 2018 06:28:30 +0000 (15:28 +0900)]
Release version 1.0.6
- Fix typo in privilege mapping table
Change-Id: Ic6671838a909604b790fb8b860373f1310fc30fa
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 18 Sep 2018 06:26:56 +0000 (15:26 +0900)]
Fix typo in privilege mapping table
Change-Id: Ib2cf449858c8d64fc572b3dfd0741908c32029e0
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Mon, 17 Sep 2018 04:55:59 +0000 (13:55 +0900)]
Release version 1.0.5
- Add core privilege: permission.check
Change-Id: I77f0bce2eff45b77c91b6e9c6b4591eadb8a9755
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Mon, 17 Sep 2018 04:29:37 +0000 (13:29 +0900)]
Add core privilege: permission.check
- permission.check allows app to get other apps' permission status
Change-Id: I3429479579eef94edff7a4b1534bcc22883c055a
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 4 Sep 2018 06:04:55 +0000 (15:04 +0900)]
Release version 1.0.4
- Add core privilege: updatecontrol.admin
- Fix typo in tool and guide
- Web app with api_version 4.0 will have storage privileges by default
on mobile/tv profile
Change-Id: I09bf84be43dd50228dd49007dbfa1c9f681012c2
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 4 Sep 2018 05:39:56 +0000 (14:39 +0900)]
Add core privilege: updatecontrol.admin
Change-Id: If1e3189606da462782cbae64a53ab2d0692991ae
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Mon, 20 Aug 2018 07:56:21 +0000 (16:56 +0900)]
Fix typo in tool and guide
- Fix typo in privilege update tool
- Fix typo and add white spaces for new line
Change-Id: I78c7c9398accf4787ee0533e74cf79efd1d4c93f
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Fri, 30 Mar 2018 04:44:32 +0000 (13:44 +0900)]
Web app with api_version 4.0 will have storage privileges by default on mobile/tv profile
- Map web storage privileges to 4.0 by default for mobile/tv profile
- Modify web storage privileges's mapping from messaging.read, write according to the profile
- Change API privilege_package_info_is_privacy_requestable() to get privilege as input parameter
- Policy type of storage privacy on installation time
_______|___|____Mobile____|___Wearable___|___TV____|
|3.0| Allow | Allow | Allow |
Native |4.0| Ask | Ask | Allow |
_______|5.0|_Ask__________|_Ask__________|_Allow___|
|3.0| Allow | Allow | Allow |
Web |4.0| Allow | Ask | Allow |
_______|5.0|_Ask__________|_Ask__________|_Allow___|
Change-Id: I4b2981353ee309f8114b8df06d98af67c23a86b6
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Kim Kidong [Tue, 14 Aug 2018 02:08:17 +0000 (02:08 +0000)]
Merge "Release version 1.0.3" into tizen
Yunjin Lee [Tue, 14 Aug 2018 01:55:12 +0000 (10:55 +0900)]
Release version 1.0.3
- Modify privacy status related APIs
- Fix test code to work properly
- Remove profile from privacy info
- Modify privilege update tool
- Fix test code
Change-Id: I6aeea9839ee7bdf43ecd1c02e674e17de94db555
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Thu, 26 Jul 2018 05:08:39 +0000 (14:08 +0900)]
Fix test code
- Use chromium-efl app when testing privilege_info_get_privilege_type():
It's installed on both mobile and wearable profile.
Change-Id: I4be1350ea961ab6f12feefe46d5e4bc16b1f8ba4
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 25 Jul 2018 10:47:11 +0000 (19:47 +0900)]
Modify privilege update tool
- Fix typo in the guide/guide message
- Change usertype asterisk handling
- Do only necessary updates instead of running security-manager-policy-reload
Change-Id: I3f38cd09ad760dbb5ef48d1960e04a206d6d430a
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 24 Jul 2018 07:23:45 +0000 (16:23 +0900)]
Remove profile from privacy info
- Set privacy info regardless of the profile. Profile can decide not to
support privacy privilege feature but privilege itself is privacy
privilege and just not giving policy type as ASK USER.
Change-Id: I2b7f60ebd87dece3caaf8ee6b7ad2173795a2ff2
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 17 Jul 2018 07:57:36 +0000 (16:57 +0900)]
Fix test code to work properly
Change-Id: I0032115af0fea6d4c4f6ea4595ca4ab8f6f8fea2
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 17 Jul 2018 05:35:41 +0000 (14:35 +0900)]
Modify privacy status related APIs
- Do privacy status check at privacy_package_info APIs: If askuser's
disabled, do not set/unset privacy package info; just return.
- Do not check privacy status at privilege_db_manager
Change-Id: I00f19d68d3ec1e0f40ed628c928c6fa32ecbe3d2
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 27 Jun 2018 08:31:35 +0000 (17:31 +0900)]
Release version 1.0.2
- Update privacy whitelist
- Change location.enable privilege as non-privacy privilege
- Add macros printf_green and printf_red
- Fix of the test checking the privilege privacy
Change-Id: I677ebf216644b6128daa7044371f5b5f23d46ecf
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 26 Jun 2018 05:27:34 +0000 (14:27 +0900)]
Update privacy whitelist
- Change com.samsung.samsungaccount.samsungaccountservice to com.samsung.tizen.samsung-account
Change-Id: I60d64df4cfdca13657217697e36baf5c426f2183
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 19 Jun 2018 03:54:53 +0000 (12:54 +0900)]
Change location.enable privilege as non-privacy privilege
- location.enable privilege allows app to control the user's location service
and it doesn't allow app to use user's location information hence remove
it from privacy privilege list.
Change-Id: If1e8eea612820e2e954b61f74041525ef16067a9
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Pawel Kowalski [Thu, 24 May 2018 05:46:06 +0000 (07:46 +0200)]
Add macros printf_green and printf_red
Macros printf_green and printf_red allow to print color messages in
simpler way than before. For example macro printf_green replaces
following lines:
__color_to_green();
printf(...);
__color_to_origin();
Change-Id: I77be0f2793b7524fef863390df5e9c65070a4de0
Signed-off-by: Pawel Kowalski <p.kowalski2@partner.samsung.com>
Pawel Kowalski [Wed, 23 May 2018 12:28:51 +0000 (14:28 +0200)]
Fix of the test checking the privilege privacy
Change-Id: I0df9859f13472220d5cf85ea9881054f5587e4c7
Signed-off-by: Pawel Kowalski <p.kowalski2@partner.samsung.com>
Yunjin Lee [Wed, 23 May 2018 02:47:46 +0000 (11:47 +0900)]
Update privacy whitelist
- mobile profile
+ com.samsung.service-enabler.samsung-cloud
+ com.samsung.samsungaccount.samsungaccountservice
- wearable profile
+ com.samsung.samsungaccount.samsungaccountservice
Change-Id: Idf8c38d768710b5d354caa1e7bf021bc01b6ee6a
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Thu, 12 Apr 2018 10:10:10 +0000 (19:10 +0900)]
Add getting privileges in the same privacy group
- For privacy status checking, Settings or askuser requires
all privileges of the same privacy group when a privilege is given so
added API to get them at once.
Change-Id: I0b866c889b3eb6dfaa1db6246936446aadd2c1d5
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Thu, 22 Mar 2018 05:16:33 +0000 (14:16 +0900)]
Add privilege and privacy whitelist update tool
- It requires security-manager-policy-reload
Change-Id: I0ff94c72ed0dc2fbd9ed92a6061db7e2808006f7
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 4 Apr 2018 02:30:47 +0000 (11:30 +0900)]
Add core privilege softap and softap.admin
Change-Id: Iee2197b0e416fcb62fcadd090936ebb80363f67c
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Fri, 23 Mar 2018 09:18:29 +0000 (18:18 +0900)]
Add core privilege voicecontrol.manager
Change-Id: Ifbb58d6f7f1d83f136c5b56958af99804aca3314
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 21 Mar 2018 04:28:37 +0000 (13:28 +0900)]
Consider globalapp uid when checking dpm prevent policy
Change-Id: I715380f552ab48e4d1510cb2d6f77277c50ab91f
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 21 Mar 2018 02:40:55 +0000 (11:40 +0900)]
Fix resource leak
Change-Id: I857648379836299aebed321f2f68ae77ddd653e0
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 20 Feb 2018 04:02:04 +0000 (13:02 +0900)]
Fix to free dictionary
Change-Id: I9800e1ecae517f6847c346d1cad754dab84be939
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Fri, 26 Jan 2018 07:38:36 +0000 (16:38 +0900)]
Fix to finalize DB when exception occurred
Change-Id: I4416b5246f5ad8ee543a671a5d45e2fdaa59a795
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Thu, 25 Jan 2018 05:19:20 +0000 (14:19 +0900)]
Remove profile/version from privilege information
- Remove profile and version from privilege info
- Remove profile and version distinctions from privilege mapping
except default privilege and web storage privilege case
- Left original file as legacy_res (It can be used for platform version < 5.0)
Change-Id: I33c521b2840ac6a78baecea75d44024363c7613a
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Mon, 22 Jan 2018 07:19:24 +0000 (16:19 +0900)]
Integrate privilege DBs
- Integrate privilege DBs into one: (old) core_privilege_info.db,
core_privilege_mapping.db, wrt_privilege_info.db, and
wrt_privilege_mapping.db into (new) privilege.db
- Use sqlite csv import function instead of parsing csv file.
It cuts down required time for rpm build.
- privilege_info table contains core/wrt privilege definition.
- privilege_mapping table contains core/wrt privilege mapping
information.
- privacy_privilege_info.csv file contains privacy privilege of each
profile. We can handle privacy privileges according to the profile.
(For example, privilege A can be a privacy privilege in profile 'mobile' and
non-privacy privilege in profile 'tv')
- Modified DB queries accordingly.
- Update release version.
- TODO: remove profile and version from privilege information except
default privilege mapping.
Change-Id: Ie14e92092aadc81734d7082e4bb67be26a9cdf84
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Fri, 5 Jan 2018 06:26:36 +0000 (15:26 +0900)]
Add web privilege: externalstorage/mediastorage
- Decided to treat storage related privilegs as privacy from 4.0 and web doesn't
have such a privilege
- Add storage privileges and remove it from original mapping from 4.0
Change-Id: I64192b1a0574fecb511369af0bf2dbc3168a74e1
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 21 Nov 2017 05:57:43 +0000 (14:57 +0900)]
Add storage privacy
- Add storage privacy: http://tizen.org/privacy/storage
- Add http://tizen.org/privilege/externalstorage and
http://tizen.org/privilege/mediastorage to storage privacy
Change-Id: I17531580916fb95251daca1ea2cfea245dd63bb1
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 3 Jan 2018 01:43:43 +0000 (10:43 +0900)]
Add core privilege: devicecertificate
Change-Id: Ic5ca994527c94cb932f591d8987afef998b5317a
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 13 Dec 2017 01:44:10 +0000 (10:44 +0900)]
Fix syntax error in mdm query
Change-Id: I2a0b508df8498d6bbce1d67ff3381042ec4dfb43
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Mon, 20 Nov 2017 09:34:02 +0000 (18:34 +0900)]
Get global app user ID from config file when updating policy DB
Change-Id: Iedee971096ca536e8e227ce590171d8b5f3b7957
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Mon, 20 Nov 2017 09:32:13 +0000 (18:32 +0900)]
Modify privacy DB to store user settable privacy packages only
Change-Id: I079c245ed5e0248e78810ec7909b8044f4f7056d
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 15 Nov 2017 01:51:32 +0000 (10:51 +0900)]
Add web tee.client privilege for all profile
Change-Id: I2b51276820979cdc6cf307c0013e958a089aaa23
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Thu, 26 Oct 2017 07:03:06 +0000 (16:03 +0900)]
Update privacy white list
Change-Id: I41ede1fedea5e467ab701bb529c33e2abd3735d8
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 25 Oct 2017 02:12:33 +0000 (11:12 +0900)]
Fix api-version comparison bug
- 4.0 is greater than 4 in sqlite query.
To handle api-version 4 properly, fix the number to compare to 4 from 4.0.
Change-Id: Id07d7afe37c6fcacb9e13b2f7d8bba7941385d72
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 25 Oct 2017 02:07:59 +0000 (02:07 +0000)]
Revert "Do not return privilege type privacy for web app"
- Privacy privilege manager Web device API will be supported.
This reverts commit
240edda34e40e2ad20b1dccc478143533780ac00.
Change-Id: I3ab7cb16b767cdcef0909a969713f3c6227882fe
Yunjin Lee [Mon, 23 Oct 2017 06:00:38 +0000 (15:00 +0900)]
Do not return privilege type privacy for web app
- From 4.0, developer should use privacy-privilege-manager APIs to request privacy privileges. Currently, ppm APIs are supported for native and C# applications but no web device APIs, yet. Hence, allow web applications to get privacy privileges without privacy request popups.
Change-Id: I33941aaf684a1a72d0b0c46351f10edc9bc29f01
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Thu, 19 Oct 2017 05:35:23 +0000 (14:35 +0900)]
Add DID of peripheralio privilege
Change-Id: Ib93f32360eab5d57347d76bfc1de55f18cc1d239
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 17 Oct 2017 03:03:56 +0000 (12:03 +0900)]
Change core privilege level from public to partner: blocknumber.read and blocknumber.write
Change-Id: I64adde1ba7d6ce342fb84516e3befc9dee68a759
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Mon, 16 Oct 2017 02:32:53 +0000 (11:32 +0900)]
Update language files: peripheralio
Change-Id: I4cdf5708e429ea23f1c395a08d88f178bf64e96b
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Thu, 28 Sep 2017 07:14:51 +0000 (16:14 +0900)]
Add core privilege: peripheralio
- privilege required to communicate with peripherals
Change-Id: I60584dd8d70c445b04dd4c1c5ac633e1a61c32e6
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 26 Sep 2017 10:16:31 +0000 (19:16 +0900)]
Remove core/web privilege from all profile: d2d.datasharing
Change-Id: I45a7c0eef59085f34dcb390ba7abcd566e9d7e37
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 26 Sep 2017 07:57:50 +0000 (16:57 +0900)]
Fix memory leak
Change-Id: I501ffe0d0588a383496c7ca126d5627ee3ed40bd
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 26 Sep 2017 07:37:31 +0000 (16:37 +0900)]
Remove redundant value is_privacy_requestable from privacy_package table
Change-Id: I85ea9024671aef27b2cdb08748d1bb4c25f22873
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 19 Sep 2017 04:27:16 +0000 (13:27 +0900)]
Add web privileges : appmanager.launch, datasharing
Change-Id: Idc2effd1ff016304f36b37de28561e5fcfacec45
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Mon, 18 Sep 2017 08:19:25 +0000 (17:19 +0900)]
Modify mapping table for internal appdebugging privilege
- Add internal appdebugging privilege itself as mapped privilege
Change-Id: I1c8065b8025c7ee28c2af57144b1a6a0c20dcd28
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Fri, 15 Sep 2017 06:10:39 +0000 (15:10 +0900)]
Remove api-version check from privilege verification
- Check certificate signature level iff the privilege exists.
- Do not return error for not exist/deprecated privilege.
- Return PRVMGR_ERR_INVALID_PRIVILEGE for internal privileges.
Change-Id: If7cd242acbd9a070a983f747959f22f0711bd7df
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 13 Sep 2017 02:07:15 +0000 (11:07 +0900)]
Apply tizen coding rule
Change-Id: Iafc8ee13e7f2cdc1c82a74056b9fd7baa4b0d365
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 12 Sep 2017 10:48:08 +0000 (19:48 +0900)]
Remove unnecessary logs
Change-Id: Iefbabc9a173cc007f5ecfab9c2186a0bdd6f0e39
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Mon, 11 Sep 2017 02:05:16 +0000 (11:05 +0900)]
Add core privilege for wearable profile: apphistory.read
Change-Id: Ie46b1e42673f0346f4b05719e46187e97f6c3c6a
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Fri, 8 Sep 2017 06:52:39 +0000 (15:52 +0900)]
Update language files
Change-Id: Ibed8e8495f13da59874c8de0e0a6fd8a56be864b
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 5 Sep 2017 11:03:24 +0000 (20:03 +0900)]
Modify privacy package APIs to handle global app case
- When an application is installed/uninstalled/updated by owner(admin user),
uid 376(TZ_SYS_GLOBALAPP_USER) is passed.
Current privacy package APIs can handle only local apps so
modify them to handle global app case.
Change-Id: Ib912fad803b54521ada675ea7d2f1aa180a3785a
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 23 Aug 2017 02:47:09 +0000 (11:47 +0900)]
Remove DISABLE_ASKUSER check from where it is not required
- privilege_db_manager_is_user_settable() works according to the predefined privacy whitelist and DISABLE_ASKUSER should not affect on it.
Change-Id: Ieec2a2926abec4152555ffad8bb63b924bd0597c
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Mon, 24 Jul 2017 04:47:46 +0000 (13:47 +0900)]
Add core privilege gestureactivation and gesturegrab for mobile and wearable profile
Change-Id: I5524ad0f728567d7254c8b5e011e8f10a02c5e7c
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Thu, 20 Jul 2017 06:56:26 +0000 (15:56 +0900)]
Do not return privilege type privacy for apps with api-version lower than 4.0
- Privacy request API is available since Tizen 4.0
so apps with lower api-version can not request privacy at runtime.
Therefore modify privilege_info_get_privilege_type() not to return
PRIVILEGE_MANAGER_PRIVILEGE_TYPE_PRIVACY for apps
with api-version lower than 4.0.
Change-Id: I1660fa25ce26a08b1537fda9387e8568eec56865
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 14 Jun 2017 06:23:26 +0000 (15:23 +0900)]
Add privacy DB
- Add privacy DB to store privacy package info
- Remove redundant build: No need to build policy DB for each profile
Change-Id: Ib2f7550b9e7f0d7c8788d6a1bfcf1ebadc1b6581
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Mon, 10 Jul 2017 05:56:38 +0000 (05:56 +0000)]
Revert "Add web wifidirect privilege for mobile, wearable, and tv profile"
- Remove web wifidirect privilege from all profile due to the cancellation of the ACR
This reverts commit
464320e419e85efda5a3632cfead05e1163fd418.
Change-Id: Iee690d078edf1e9c3216525a3d0ec941a0a50a38
Yunjin Lee [Wed, 5 Jul 2017 11:14:39 +0000 (20:14 +0900)]
Remove duplicate 'const'
Change-Id: I4f79eb7c66ac1cdd27602108b5785f537a470d88
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Wed, 5 Jul 2017 08:35:58 +0000 (17:35 +0900)]
Add core privilege for mobile/wearable profile: blocknumber.read, blocknumber.write
Change-Id: Id6c4a359f772ab329a7f0883671a4c98ee2011a6
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 13 Jun 2017 07:36:28 +0000 (16:36 +0900)]
Modify script to create policy db at FOTA upgrade
Change-Id: Ibc5f9275b42610cd750a332b4df13a1ddd7971ac
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Mon, 12 Jun 2017 08:14:36 +0000 (17:14 +0900)]
Revise privilege verification and remove legacy code
- Revise enum
- Revise privilege verification logic
- Remove APIs not used anymore
Change-Id: I441d8367324dd7a3ab7c57bbca7647adbbd30f57
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Fri, 30 Jun 2017 08:20:35 +0000 (17:20 +0900)]
Add web privileges for wearable profile: account.read, account.write, contact.read, and contact.write
Change-Id: I7cc78296d30323b5061cb66e180083cd2576de6a
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Thu, 29 Jun 2017 05:17:24 +0000 (14:17 +0900)]
Add web wifidirect privilege for mobile, wearable, and tv profile
Change-Id: I7f56f2efb3b15d6bc5790dca573511ef0ed75946
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Tue, 20 Jun 2017 07:49:30 +0000 (16:49 +0900)]
Update privacy whitelist for wearable preloaded apps
Change-Id: Iaedaf0036172b392e59f4792f72afd93aea99382
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Thu, 8 Jun 2017 09:25:30 +0000 (18:25 +0900)]
Remove web bluetooth, d2d.datasharing privilege from tv profile
Change-Id: I0ca5573adfac77e8c42b122ce3d2d8afb45d1d01
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Thu, 8 Jun 2017 02:36:14 +0000 (11:36 +0900)]
Add web privilege for wearable profile: calendar.read, calendar.write
Change-Id: I3cb73482ae566c790e0b6ac094a7ca06a375cec4
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Thu, 1 Jun 2017 04:05:33 +0000 (13:05 +0900)]
Update privacy white list for wearable preloaded apps
Change-Id: Ifd9ec24550c399299aabaf691ca1a927bf09150e
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Kim Kidong [Mon, 29 May 2017 08:01:35 +0000 (08:01 +0000)]
Merge "Revert "Deprecate wrt privilege: nfc.admin"" into tizen