Jin-gyu Kim [Mon, 3 May 2021 08:13:19 +0000 (17:13 +0900)]
Add missing SMACK labelling cmd in change_permission.
This does not affect any operation, but need to reset SMACK label
for any mismatch in SMACK label.
Change-Id: I0d6053c341d4070d25b7a0839ef439a4972ed424
Jin-gyu Kim [Mon, 3 May 2021 05:34:25 +0000 (14:34 +0900)]
Do not use rpm command in set_capability
"rpm" command cannot be existed in some cases.
Instead of using it, check a specific file path to determine a certain
rpm is installed or not.
Change-Id: I6f5fda1cd35cac3bc039c5b4e008b28eafdeb1c1
Jin-gyu Kim [Fri, 23 Apr 2021 05:31:51 +0000 (14:31 +0900)]
Create a new script for setting permissions.
This script needs to be run while image is being created or updated.
(After in-house applications are installed.)
We could consider it to be run in security-config service, but it will
increase the 1st boot time.
Change-Id: I5a11dd720ea46ae69b1acc6be09305c74fb39292
jin-gyu.kim [Mon, 31 Aug 2020 03:42:48 +0000 (03:42 +0000)]
Add org.tizen.engine-loader.service & engine-loader.service
Change-Id: I5fa3cc8f052404abfc108fe816f0995f4c4b9989
jin-gyu.kim [Mon, 3 Dec 2018 02:41:47 +0000 (11:41 +0900)]
Change the condition to check ASLR applied.
- "file" cmd can print "pie" not "shared object" for ASLR applied exec.
Change-Id: I0bd6caba258f3b12239f9cd6487b98c54c168431
(cherry picked from commit
d6bc33dd95ae82652dd0a940b5ce4cb2ba9ddc96)
jin-gyu.kim [Wed, 10 Apr 2019 01:55:16 +0000 (10:55 +0900)]
Set SMACK label of netlabel as 'System'
- Previously, it was set as System::Privileged by systemd.
- Basically, network is controlled by Nether with the privilege.
- Therefore, it does not have to be set as System::Privileged.
- Overwrite it as 'System', but in the future, the more smarter
change will be needed.
Change-Id: I5b2e00c1e729b0f404d0ce8e428824bfe260823f
jin-gyu.kim [Mon, 29 Apr 2019 04:56:03 +0000 (13:56 +0900)]
Updating UID column of policy DB in upgrade script.
- Global UID could be different while upgrading the image.
- Get global UID by referring tizen-platform.conf.
Change-Id: Ic42c503bb82987dcbc2eb69e5585e68f7a1286fd
jin-gyu.kim [Wed, 14 Nov 2018 02:22:57 +0000 (11:22 +0900)]
Add cap_sys_admin to amd.
Change-Id: I8ae0ceffec6f02865ae6426a133544a45b2d4eca
jin-gyu.kim [Mon, 29 Oct 2018 05:20:20 +0000 (14:20 +0900)]
Modify upgrade script.
- If upgrade is ongoing from 4.x to 4.x, then askrules should not be deleted.
Change-Id: I91101fcdb039d1b8c47776e734bedfecc58238e7
Yunjin Lee [Mon, 22 Oct 2018 10:45:38 +0000 (19:45 +0900)]
Update FOTA script of privacy package migration
- Modified to pass unsettable packages
- Handle packages not in privacy whitelist
Change-Id: I2f74b1bb7ab644859648ff3be45de4d82b3eec12
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
jin-gyu.kim [Mon, 2 Jul 2018 02:13:12 +0000 (11:13 +0900)]
Change gid of ode service as system_share
- When running image upgrade, fota service needs to access token file generated by ode.
Change-Id: I4045fca4aa83594a6f7cef29edf5225857fbca41
jin-gyu.kim [Fri, 25 May 2018 05:43:55 +0000 (14:43 +0900)]
Add ode-progress-ui@.service to service list.
Change-Id: I667b787b88bb1ca84dd5dddd99763afd7ef96d1e
jin-gyu.kim [Mon, 9 Apr 2018 04:53:10 +0000 (13:53 +0900)]
Fix service test to delete Carriage Return.
- If service file is written in window, the unexpected result is
comming due to Carriage Return.
Change-Id: I68638dc44007f2297eab368b15e7af593cd46491
jin-gyu.kim [Wed, 24 Jan 2018 04:15:50 +0000 (13:15 +0900)]
Fix upgrade script to change global uid.
- If global uid is diffrent, it should be changed in security-manager db.
Change-Id: I6e9380467c6b29d5097c37685477265e9d8634ee
jin-gyu.kim [Thu, 18 Jan 2018 08:39:26 +0000 (17:39 +0900)]
change the condition when giving cap to launchpad-loader
Change-Id: I30634470a9cf7923c452107ff9ba7b75b5fee21f
Kim Kidong [Wed, 17 Jan 2018 11:25:07 +0000 (11:25 +0000)]
Merge "Remove redundant setcap to gpsd" into tizen_4.0
Kim Kidong [Wed, 17 Jan 2018 11:24:39 +0000 (11:24 +0000)]
Merge "Enable run-time permission only for specific profiles." into tizen_4.0
Kim Kidong [Wed, 17 Jan 2018 11:24:29 +0000 (11:24 +0000)]
Merge "update privacy mount list" into tizen_4.0
jin-gyu.kim [Wed, 17 Jan 2018 04:49:14 +0000 (13:49 +0900)]
Remove redundant setcap to gpsd
- gpsd is installed by plugin-prebuilt.
Change-Id: If2e953d7835849b16bb47e089f7cf289d7a8e526
jin-gyu.kim [Fri, 12 Jan 2018 06:30:46 +0000 (15:30 +0900)]
Add condition when giving capabilities to launchpad-loader.
Change-Id: Icce63b730011340ed9f58f7cf94b7f815ded3ce8
jin-gyu.kim [Tue, 9 Jan 2018 10:41:20 +0000 (19:41 +0900)]
Enable run-time permission only for specific profiles.
- Run-time permission is not required for all profiles.
- Set the flag file which can distinguish it.
Change-Id: I70397952cc2c25fb7d127391c2ff3d88e9ee94d4
jin-gyu.kim [Fri, 5 Jan 2018 07:11:46 +0000 (16:11 +0900)]
Fix upgrade script.
- upgrade script should include security-config setting (ex : group id set)
Change-Id: Ic07f9b0606033df6728c1fa0e9d7a86816139b60
jin-gyu.kim [Fri, 5 Jan 2018 02:40:02 +0000 (11:40 +0900)]
Update service list.
- dlog_logger.service : uid=log,gid=log
Change-Id: I08f0585d2111a0f9660d7432ddaeaafba9849474
jin-gyu.kim [Fri, 22 Dec 2017 05:42:11 +0000 (14:42 +0900)]
update privacy mount list
Change-Id: I539c156a778372ba42ebc3ce78006ed06b9e87f4
jin-gyu.kim [Wed, 3 Jan 2018 10:12:39 +0000 (19:12 +0900)]
Fix the typo in systemd_service.list
Change-Id: I9cee95e6b34aa63f8f7d2e7acadb0dbb4d57df17
jin-gyu.kim [Tue, 2 Jan 2018 04:58:15 +0000 (13:58 +0900)]
Change the file capability.
- focus_server, sound_server, hostapd, named
- Retrieve redundant capabilities and permitted flag.
- Update security-tests.
Change-Id: Ieba61e395733dc48c2e7df2ff812681cc27ad682
Kim Kidong [Fri, 22 Dec 2017 08:01:41 +0000 (08:01 +0000)]
Merge "Remove redundant test scripts." into tizen_4.0
jin-gyu.kim [Fri, 22 Dec 2017 07:56:11 +0000 (16:56 +0900)]
Add cap_syslog to dlog_logger
- This is needed to use syslog()
Change-Id: I5d6e2b5b8e23cb4b1751145aedeb89e0521ee127
jin-gyu.kim [Wed, 20 Dec 2017 06:59:22 +0000 (15:59 +0900)]
Remove redundant test scripts.
Change-Id: I69217a2c235b0883d4dd45f19538773084da799c
jin-gyu.kim [Wed, 20 Dec 2017 05:50:08 +0000 (14:50 +0900)]
Update set_capability and capability test.
- Remove redundant permitted flag from excute files.
- Sync capability lists.
Change-Id: I4df28233124bcc64babb1713f0e85044f3d444fc
jin-gyu.kim [Tue, 19 Dec 2017 08:44:18 +0000 (17:44 +0900)]
Fix aslr test
- Remove redundant test files.
- Remove temporary exceptions.
Change-Id: Ifc80a54dced83eb2a5f8eb2306d9b380d46b7396
jin-gyu.kim [Mon, 18 Dec 2017 06:44:22 +0000 (15:44 +0900)]
Update set_capability
- Give capabilities for launchpad in security-config.
- Remove redundant permitted flags from excute files.
Change-Id: I858a170a15d33db2d395bb49c030c1ab1d1d05c6
jin-gyu.kim [Mon, 18 Dec 2017 06:12:31 +0000 (15:12 +0900)]
Remove the redundant capability.
: cap_mac_admin is not required to dotnet-launcher
: scd-launcher is not existed anymore.
: oded is running as a root.
Change-Id: Ic137a9ce76281d42a20a04838d7ab62131604469
jin-gyu.kim [Wed, 13 Dec 2017 05:48:53 +0000 (14:48 +0900)]
Change Smack label of factory-reset
Change-Id: I957add34a5153a36b1cfcc171d25efb7cd4ac49e
Igor Kotrasinski [Thu, 30 Nov 2017 12:42:20 +0000 (13:42 +0100)]
Rebuild arm test util binaries for PIE and relro
Change-Id: I45957d2a3b650fc0389c14f3bd60c6acd4a9b189
Signed-off-by: Igor Kotrasinski <i.kotrasinsk@partner.samsung.com>
jin-gyu.kim [Tue, 28 Nov 2017 05:43:40 +0000 (14:43 +0900)]
Give cap_dac_override to net-config.
- It is required to access bridge device.
Change-Id: Ia48b6f032f3979ccf4b4ae04c9d9ef8f801419f9
jin-gyu.kim [Mon, 27 Nov 2017 08:03:09 +0000 (17:03 +0900)]
Change uid / gid of ttrace-marker
Change-Id: I88d78045ca1e953b77ef6ad901490469d335cf94
jin-gyu.kim [Fri, 24 Nov 2017 06:46:09 +0000 (15:46 +0900)]
give cap_dac_override to network modules
- cap_dac_override is required to access bridge device
Change-Id: I3f2bb5e1f58df4cbb692546053bb2f2617573af4
INSUN PYO [Wed, 22 Nov 2017 07:36:53 +0000 (16:36 +0900)]
add dbus gui/gid & gumd gid & buxton uid/gid
Signed-off-by: INSUN PYO <insun.pyo@samsung.com>
Signed-off-by: Inkyun Kil <inkyun.kil@samsung.com>
Change-Id: I1b7c73d219f65b3de17d5d166c146c6a3f09fd0d
jin-gyu.kim [Tue, 21 Nov 2017 08:30:41 +0000 (17:30 +0900)]
Modify FOTA script.
- In some cases, rpm version is not available.
- Therefore, use the harded value for cynara-db-migration upgrade in FOTA.
Change-Id: I68e8f18ecb44c681157a79b3afa528a3b5e421c0
Yunjin Lee [Mon, 20 Nov 2017 10:05:15 +0000 (19:05 +0900)]
Modify FOTA script: privacy DB should store user settable privacy packages only
Change-Id: I12773eacba17c7417af8fc168d0c43b80377df66
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
(cherry picked from commit
33c9a46835fff2c7a0ddd3de8fec9d38b6e19fa9)
r.tyminski [Fri, 17 Nov 2017 08:13:35 +0000 (09:13 +0100)]
Add group priv_tee_client for tee.client privilege.
Change-Id: Idd601f5804dbada7fa414e2c963a86fc578af4f3
Yunjin Lee [Wed, 25 Oct 2017 02:08:19 +0000 (02:08 +0000)]
Revert "Fix FOTA script : Handle pkg_type when privacy db migration"
refers to: https://review.tizen.org/gerrit/#/c/157525/
This reverts commit
aa3dee639475532204e2f9435c53c04053368fad.
Change-Id: I381c71c94f8597faf43789e74f39c771591a7924
Yunjin Lee [Mon, 23 Oct 2017 07:52:59 +0000 (16:52 +0900)]
Fix FOTA script : Handle pkg_type when privacy db migration
refer to: https://review.tizen.org/gerrit/#/c/156999/
Change-Id: I7c81c81ea373bc58b11220d60fd9401f7db75511
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
jin-gyu.kim [Fri, 20 Oct 2017 03:02:30 +0000 (12:02 +0900)]
Give cap_sys_admin to dotnet-launcher and wrt-loader.
Change-Id: I4956bd116cd8f15649ef4bf3ef66622b3c69f0f9
jin-gyu.kim [Thu, 19 Oct 2017 01:16:34 +0000 (10:16 +0900)]
Add tef-simulator.service in systemd service lists.
Change-Id: I3bd7190870d92af4521025e9253744276a7ba3a3
Yunjin Lee [Wed, 18 Oct 2017 07:44:06 +0000 (16:44 +0900)]
Enable Askuser
Change-Id: I65b92a5357a0739538f52079186fa51e3c9eb650
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
jin-gyu.kim [Wed, 18 Oct 2017 00:50:26 +0000 (09:50 +0900)]
Fix to parse script file while running aslr-test.
- This was applied by "https://review.tizen.org/gerrit/#/c/143944/" before.
- But, it was retrieved by mistake.
Change-Id: Iaf6a2b643b0559413ed56475eceefeebc02546f2
jin-gyu.kim [Wed, 11 Oct 2017 07:22:32 +0000 (16:22 +0900)]
Add ifcfg to exception of path check test
Change-Id: Ia164c4ffc1f39e0add7c17fd2db972ee24e6885d
jin-gyu.kim [Tue, 17 Oct 2017 06:50:37 +0000 (06:50 +0000)]
Merge "Update check_new_service.sh" into tizen_4.0
jin-gyu.kim [Mon, 25 Sep 2017 07:49:01 +0000 (16:49 +0900)]
Update check_new_service.sh
- If uid / gid are not defined, then set those "root" in test script.
- Sync systemd / dbus service lists.
Change-Id: I3c8def765c6df8de7ae6da1af214b1f174a46131
jin-gyu.kim [Tue, 17 Oct 2017 05:58:50 +0000 (14:58 +0900)]
Retrieve execution permission from ASLR not applied files.
Change-Id: I98f8636c00cd1e82f31b2f90dea4fc87f7fec985
jin-gyu.kim [Wed, 11 Oct 2017 08:23:40 +0000 (17:23 +0900)]
Merge remote-tracking branch 'origin/tizen' into tizen_4.0
Yunjin Lee [Mon, 25 Sep 2017 11:01:49 +0000 (20:01 +0900)]
Add FOTA script for privacy package migration
Change-Id: Iafd731b51eb8beae4e6ca710b76217f6df7d62c1
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Kim Kidong [Wed, 11 Oct 2017 07:50:32 +0000 (07:50 +0000)]
Merge "Fix upgrade script" into tizen
jin-gyu.kim [Fri, 22 Sep 2017 10:57:43 +0000 (19:57 +0900)]
Fix upgrade script
- pkgmgr will update app information only if version is changed.
- Therefore, migrate the privious security and cynara database.
Change-Id: Ibb7641439855a71dbc93e3ff61c062f5051bb079
jin-gyu.kim [Tue, 10 Oct 2017 10:13:21 +0000 (19:13 +0900)]
Apply ASLR to execstack i386 & x86_64 versions.
Change-Id: I8c29d4a81eb5e120f3af6cdbb5c961ae403a3a86
jin-gyu.kim [Tue, 10 Oct 2017 10:13:21 +0000 (19:13 +0900)]
Apply ASLR to execstack i386 & x86_64 versions.
Change-Id: I8c29d4a81eb5e120f3af6cdbb5c961ae403a3a86
Yunjin Lee [Thu, 21 Sep 2017 06:08:16 +0000 (15:08 +0900)]
Revise dep test script
Change-Id: Iaaaa3fabd772dc12609a8b98a67b324e81004df0
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
Yunjin Lee [Thu, 21 Sep 2017 06:08:16 +0000 (15:08 +0900)]
Revise dep test script
Change-Id: Iaaaa3fabd772dc12609a8b98a67b324e81004df0
Signed-off-by: Yunjin Lee <yunjin-.lee@samsung.com>
jin-gyu.kim [Thu, 21 Sep 2017 04:39:10 +0000 (13:39 +0900)]
Remove root_minimization test from image test.
Change-Id: I01accba8133e40f7e44ab8d44162349f8eb4f7da
jin-gyu.kim [Thu, 21 Sep 2017 04:39:10 +0000 (13:39 +0900)]
Remove root_minimization test from image test.
Change-Id: I01accba8133e40f7e44ab8d44162349f8eb4f7da
jin-gyu.kim [Wed, 20 Sep 2017 02:06:41 +0000 (11:06 +0900)]
Give cap_net_raw to telephony-daemon
- This is required to use raw socket.
Change-Id: I99f3c59a74024f7ebfff0a434abf616cb24a9cf1
jin-gyu.kim [Wed, 20 Sep 2017 02:06:41 +0000 (11:06 +0900)]
Give cap_net_raw to telephony-daemon
- This is required to use raw socket.
Change-Id: I99f3c59a74024f7ebfff0a434abf616cb24a9cf1
Hyotaek Shim [Wed, 13 Sep 2017 02:34:36 +0000 (11:34 +0900)]
Set the permission and smack label of TZ_USER_CONTENT/symbolic link files including /opt/usr/home/owner/media/Shared
lrwxrwxrwx 1 root priv_mediastorage _ 21 Sep 13 2017 Shared -> /opt/usr/media_shared
Change-Id: I6af858c16c05ec60a5c457cd2be7fb3d0b70a257
Signed-off-by: Hyotaek Shim <hyotaek.shim@samsung.com>
Hyotaek Shim [Wed, 13 Sep 2017 02:34:36 +0000 (11:34 +0900)]
Set the permission and smack label of TZ_USER_CONTENT/symbolic link files including /opt/usr/home/owner/media/Shared
lrwxrwxrwx 1 root priv_mediastorage _ 21 Sep 13 2017 Shared -> /opt/usr/media_shared
Change-Id: I6af858c16c05ec60a5c457cd2be7fb3d0b70a257
Signed-off-by: Hyotaek Shim <hyotaek.shim@samsung.com>
keeho.yang [Mon, 4 Sep 2017 08:48:27 +0000 (17:48 +0900)]
Update service according to Service File Verification
Change-Id: Ib637bd9b55f95f4e399faddd83dca50193680400
keeho.yang [Fri, 25 Aug 2017 02:53:42 +0000 (11:53 +0900)]
Add new service daemon to non_root_list
Change-Id: Ibb9196c64ce53ff0654b4bb6d40dba21afcaab3e
jin-gyu.kim [Thu, 24 Aug 2017 13:11:56 +0000 (22:11 +0900)]
Apply changing permission of /var/lib/misc to all profiles.
- It was only applied on mobile / wearable profiles before.
- This should be worked on other profiles also.
Change-Id: I62584c73eb638d68b82944a7ea0de862c53b6503
jin-gyu.kim [Wed, 23 Aug 2017 04:50:23 +0000 (13:50 +0900)]
Give capabilities to oded.
cap_dac_override to access /dev/mmcblk* and /dev/mapper/control
cap_sys_admin to use ioctl system call
cap_sys_boot after encryption, reboot is required
cap_sys_ptrace to know process for storage encryption
cap_kill to kill the process
Change-Id: If9c2dc087c40f0585d7eb31289f070a9c59454bd
jin-gyu.kim [Mon, 14 Aug 2017 05:50:03 +0000 (14:50 +0900)]
Fix to parse script file while running aslr-test.
Change-Id: I313e522b066e8ae7e905d3c2954dcb39ca2c6bdc
jin-gyu.kim [Fri, 11 Aug 2017 05:35:08 +0000 (14:35 +0900)]
Set cap_net_raw and cap_net_admin to wmeshd
Change-Id: I628e115340afd7a3f2109c67ec51fb81f12b3fad
jin-gyu.kim [Wed, 9 Aug 2017 10:46:22 +0000 (19:46 +0900)]
Fix upgrade script.
- Init DBs of cynara and security-manager.
- Backup and restore cynara default and ADMIN buckets.
Change-Id: I5de11f23366908721da4bf827f146e0e265183d8
jin-gyu.kim [Wed, 9 Aug 2017 06:48:21 +0000 (15:48 +0900)]
Give cap_net_admin to route
Change-Id: I1063aa345ffe5e545e6873032b9f0504a5bb0da5
Jin-gyu Kim [Wed, 9 Aug 2017 06:22:35 +0000 (06:22 +0000)]
Merge "delete non root daemon" into tizen
keeho.yang [Wed, 9 Aug 2017 06:19:42 +0000 (15:19 +0900)]
delete non root daemon
Change-Id: I368af21c8dd520d4a40e17f6c39ded304c67eb74
jin-gyu.kim [Tue, 8 Aug 2017 10:29:18 +0000 (19:29 +0900)]
Modify 4.0 upgrade script
Change-Id: I12d140688019e328e65cfc96ca68ae61d6a49615
keeho.yang [Mon, 7 Aug 2017 09:55:38 +0000 (18:55 +0900)]
change bluetooth-share.service uid,gid
Change-Id: I54f35924cf6f1034702867f074336db5f9a97894
jin-gyu.kim [Mon, 7 Aug 2017 05:39:37 +0000 (14:39 +0900)]
Fix new_service_test to parse correct lists
- SMACK label was not correctly filtered before.
- Fix grep command in the test script.
Change-Id: I5df41863d3067bc7a3b366f76a7cdaaa3cdcad60
keeho.yang [Fri, 4 Aug 2017 07:15:18 +0000 (16:15 +0900)]
change uid, gid in network daemon
Change-Id: I2720db6a35f074c3ead0efb2fab9dbca80723bf7
jin-gyu.kim [Wed, 2 Aug 2017 06:20:55 +0000 (15:20 +0900)]
Update service file lists
- network daemons are changed as non-root.
Change-Id: Iacd9c760bcd5e62235a6d5382f3ef6cd8a038b6f
Kim Kidong [Wed, 2 Aug 2017 02:54:33 +0000 (02:54 +0000)]
Merge "Remove cap_net_raw in /usr/bin/nether" into tizen
Kim Kidong [Mon, 31 Jul 2017 06:37:50 +0000 (06:37 +0000)]
Merge "cap_dac_override to data-provider-master" into tizen
Kim Kidong [Mon, 31 Jul 2017 06:35:43 +0000 (06:35 +0000)]
Merge "Add new capability to wfd-manager" into tizen
jin-gyu.kim [Tue, 18 Jul 2017 01:52:47 +0000 (10:52 +0900)]
Add new capability to wfd-manager
- wfd-manager is changed as non-root.
- update capability lists also.
Change-Id: I32dfcd776a669d2df075f03673f200d4c24520a7
jin-gyu.kim [Fri, 28 Jul 2017 08:29:30 +0000 (17:29 +0900)]
cap_dac_override to data-provider-master
To support private file share function, cap_dac_override is required.
Change-Id: If44806d769d35b9edf740cb72545ed5d88845bc4
keeho.yang [Wed, 26 Jul 2017 06:42:31 +0000 (15:42 +0900)]
move new service to non_daemon_list
Change-Id: I15134c591fa84cb27e18a480c2b75eaab43c7a18
Jin-gyu Kim [Mon, 24 Jul 2017 06:31:19 +0000 (06:31 +0000)]
Merge "Adding capabilities to network daemons" into tizen
jin-gyu.kim [Fri, 21 Jul 2017 02:29:56 +0000 (11:29 +0900)]
Disable Askuser temporary from the time of image creation.
Change-Id: Iadb2357e48f32777bdf0a577522af11fe26be6ec
keeho.yang [Thu, 20 Jul 2017 12:05:37 +0000 (21:05 +0900)]
add emul serivce in root test
Change-Id: I01be6403e64b4adcbe81eee02262de1d4902b7e7
keeho.yang [Tue, 18 Jul 2017 09:57:33 +0000 (18:57 +0900)]
update root list in emulator mobile
Change-Id: Ie840429824a22c36c32102b957ac5df7c35f7469
jin-gyu.kim [Thu, 20 Jul 2017 11:13:13 +0000 (20:13 +0900)]
Temporary disable askuser
Change-Id: I6f249e6747cab5c80a662c790b28225c54a31a1c
taesub kim [Mon, 10 Jul 2017 07:28:45 +0000 (16:28 +0900)]
Adding capabilities to network daemons
Change-Id: I694c092e3032e337a073372e70b00b0216344d05
Signed-off-by: Taesub Kim <taesub.kim@samsung.com>
keeho.yang [Mon, 17 Jul 2017 11:26:23 +0000 (20:26 +0900)]
add faultd service in root_daemon_list
Change-Id: I7a87aded88ad305b755044abddacf9fa2da00c80
Kim Kidong [Fri, 14 Jul 2017 08:28:27 +0000 (08:28 +0000)]
Merge "Add service lists and fix typo." into tizen
Kim Kidong [Fri, 14 Jul 2017 08:18:26 +0000 (08:18 +0000)]
Merge "Retrieve CAP_DAC_OVERRIDE from mobileap-agent and dnsmasq" into tizen
jin-gyu.kim [Fri, 14 Jul 2017 06:51:30 +0000 (15:51 +0900)]
Remove cap_net_raw in /usr/bin/nether
- cap_net_raw is not required for nether.
Change-Id: I20481b2fb5f3164ce1fb566765ddd2f125f92b8d
jin-gyu.kim [Tue, 11 Jul 2017 05:20:08 +0000 (14:20 +0900)]
Add service lists and fix typo.
Change-Id: I2113095de3b74de22e80a2db631ff5126b52e5cd
jin-gyu.kim [Fri, 14 Jul 2017 03:12:21 +0000 (12:12 +0900)]
Add missing file util name conversion.
Change-Id: Ibcc155d5ec73faa29217104272fccbfc7bc40aac
jin-gyu.kim [Fri, 14 Jul 2017 02:29:17 +0000 (11:29 +0900)]
Retrieve CAP_DAC_OVERRIDE from mobileap-agent and dnsmasq
- GID of /opt/var/lib/misc was changed, therefore no need to have this cap.
Change-Id: Ieb6137d2304b0971a428a7dca8317aa7ae0690c4
projects / platform / core / security / security-config.git / log