From fd99f701e288e8240939b152ac340981c15f1143 Mon Sep 17 00:00:00 2001
From: Dongwoo Lee <dwoo08.lee@samsung.com>
Date: Tue, 12 Sep 2023 11:16:31 +0900
Subject: [PATCH] pass: Get rid of CAP_DAC_OVERRIDE capability from systemd
 service

CAP_SYS_RESOURCE is enough to write the psi nodes, CAP_DAC_OVERRIDED
is no more needed. Thus, it is removed.

Change-Id: Ie51f967eae11260114e940692edd10e0216b26f4
Signed-off-by: Dongwoo Lee <dwoo08.lee@samsung.com>
---
 systemd/pass.service.in | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/systemd/pass.service.in b/systemd/pass.service.in
index 39b24de..0a66864 100644
--- a/systemd/pass.service.in
+++ b/systemd/pass.service.in
@@ -10,7 +10,7 @@ RestartSec=0
 KillSignal=SIGUSR1
 User=system_fw
 Group=system_fw
-Capabilities=cap_net_admin,cap_sys_ptrace,cap_dac_override,cap_sys_resource=i
+Capabilities=cap_net_admin,cap_sys_ptrace,cap_sys_resource=i
 SecureBits=keep-caps
 
 [Install]
-- 
2.34.1