From 4b2587aded290d783ca390171855f5d49e6316f2 Mon Sep 17 00:00:00 2001
From: Radoslaw Bartosiak <r.bartosiak@samsung.com>
Date: Tue, 6 Oct 2015 13:49:27 +0200
Subject: [PATCH] Add groups associated with privileges

Some sensitive resources might be accessible directly
by applications (without Cynara privilege chceck).
In such case resource should be assigned to
supplementary group associated with the privilege.
This commit introduces groups for privileges from:
https://wiki.tizen.org/wiki/Security:Tizen_3.0_Core_Privileges
[accessed 2015-10-14].

Change-Id: I5c9e298a4765ecaafd33bb52a4d4e24a697ead82
Signed-off-by: Radoslaw Bartosiak <r.bartosiak@samsung.com>
---
 files/etc/group | 73 +++++++++++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 73 insertions(+)

diff --git a/files/etc/group b/files/etc/group
index c066a25..e209e16 100644
--- a/files/etc/group
+++ b/files/etc/group
@@ -149,3 +149,76 @@ bt_use:x:6827:pulse,system
 crash:x:6828:system,media,developer,pulse
 misc:x:9998:
 nogroup:*:65534:
+priv_externalstorage:x:10001:
+priv_externalstorage_appdata:x:10002:
+priv_haptic:x:10003:
+priv_led:x:10004:
+priv_power:x:10005:
+priv_imemanager:x:10006:
+priv_systemsettings_admin:x:10007:
+priv_volume_set:x:10008:
+priv_reboot:x:10009:
+priv_secureelement:x:10010:
+priv_systemmonitor:x:10011:
+priv_bookmark_admin:x:10101:
+priv_web_history_admin:x:10102:
+priv_widget_viewer:x:10103:
+priv_alarm_get:x:10201:
+priv_alarm_set:x:10202:
+priv_appmanager_kill:x:10203:
+priv_appmanager_launch:x:10204:
+priv_packagemanager_admin:x:10205:
+priv_packagemanager_info:x:10206:
+priv_datasharing:x:10207:
+priv_apphistory_read:x:10208:
+priv_appmanager_kill_bgapp:x:10209:
+priv_inputgenerator:x:10210:
+priv_packagemanager_clearcache:x:10211:
+priv_keymanager:x:10401:
+priv_camera:x:10501:
+priv_mediastorage:x:10502:
+priv_recorder:x:10503:
+priv_mediacontroller_client:x:10504:
+priv_mediacontroller_server:x:10505:
+priv_mediahistory_read:x:10506:
+priv_display:x:10601:
+priv_notification:x:10602:
+priv_screenshot:x:10603:
+priv_shortcut:x:10604:
+priv_window_priority_set:x:10605:
+priv_ime:x:10606:
+priv_keygrab:x:10607:
+priv_minicontrol_provider:x:10608:
+priv_bluetooth:x:10701:
+priv_bluetooth_admin:x:10702:
+priv_download:x:10703:
+priv_internet:x:10704:
+priv_network_get:x:10705:
+priv_network_profile:x:10706:
+priv_network_set:x:10707:
+priv_nfc:x:10708:
+priv_nfc_admin:x:10709:
+priv_nfc_cardemulation:x:10710:
+priv_tethering_admin:x:10711:
+priv_wifidirect:x:10712:
+priv_call:x:10801:
+priv_callhistory_read:x:10802:
+priv_callhistory_write:x:10803:
+priv_telephony:x:10804:
+priv_telephony_admin:x:10805:
+priv_email:x:10901:
+priv_email_admin:x:10902:
+priv_message_read:x:10903:
+priv_message_write:x:10904:
+priv_push:x:10905:
+priv_account_read:x:11001:
+priv_account_write:x:11002:
+priv_calendar_read:x:11003:
+priv_calendar_write:x:11004:
+priv_contact_read:x:11005:
+priv_contact_write:x:11006:
+priv_content_write:x:11007:
+priv_healthinfo:x:11008:
+priv_location:x:11101:
+priv_location_enable:x:11102:
+priv_mapservice:x:11103:
-- 
2.7.4