Modification about smack label of db file belong to process.

[Problem]
Most db files have 'floor' label.  Because these are created during image creation time.
Therefore no process can write the dbs (since 'floor' label allows only read and execute)

[Solution]
Modify smack label of the db files based on condition below referring three domain model
Condition1. Assign domain of process which creates db files
Condition2. Assign domain of process accesses db files.

Change-Id: Ib3e0f1f36865658de4404eb007bf85f6269800ff
Signed-off-by: jooseong.lee <jooseong.lee@samsung.com>

diff --git a/packaging/wrt-security.spec b/packaging/wrt-security.spec
index 4ac95bf..3791e60 100644 (file)
--- a/packaging/wrt-security.spec
+++ b/packaging/wrt-security.spec
@@ -108,6 +108,8 @@ else
     fi
 fi
 
+chsmack -a 'User' /opt/dbspace/.ace.db*
+
 /sbin/ldconfig
 echo "[WRT] wrt-security postinst done ..."