2 // Open Service Platform
3 // Copyright (c) 2012 Samsung Electronics Co., Ltd.
5 // Licensed under the Apache License, Version 2.0 (the License);
6 // you may not use this file except in compliance with the License.
7 // You may obtain a copy of the License at
9 // http://www.apache.org/licenses/LICENSE-2.0
11 // Unless required by applicable law or agreed to in writing, software
12 // distributed under the License is distributed on an "AS IS" BASIS,
13 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
14 // See the License for the specific language governing permissions and
15 // limitations under the License.
18 * @file SmackManager.cpp
19 * @brief This is the implementation file for %SmackManager class.
23 #include <unique_ptr.h>
26 #include <FIoRegistry.h>
27 #include <FSecCryptoSha1Hash.h>
28 #include <FBase_StringConverter.h>
30 #include "SmackManager.h"
31 #include "InstallerDefs.h"
32 #include "InstallerUtil.h"
34 using namespace Tizen::App;
35 using namespace Tizen::Base;
36 using namespace Tizen::Base::Collection;
37 using namespace Tizen::Base::Utility;
38 using namespace Tizen::Security::Cert;
39 using namespace Tizen::Security::Crypto;
40 using namespace Tizen::Io;
42 SmackManager::SmackManager(void)
44 ,__isSmackEnable(false)
46 if (IsSmackEnable() == true)
48 __isSmackEnable = true;
52 SmackManager::~SmackManager(void)
57 SmackManager::Construct(InstallationContext* pContext)
59 __pContext = pContext;
65 SmackManager::Install(const PackageId& packageId)
67 if (__isSmackEnable == false)
74 std::unique_ptr<char[]> pPackageId(_StringConverter::CopyToCharArrayN(packageId));
75 TryReturn(pPackageId, false, "pPackageId is null.");
77 res = Install(pPackageId.get());
83 SmackManager::Uninstall(const PackageId& packageId)
85 if (__isSmackEnable == false)
92 std::unique_ptr<char[]> pPackageId(_StringConverter::CopyToCharArrayN(packageId));
93 TryReturn(pPackageId, false, "pPackageId is null.");
95 res = Uninstall(pPackageId.get());
101 SmackManager::AddLabelDir(const String& label, const String& dirPath, bool rootDirectory)
103 if (__isSmackEnable == false)
111 std::unique_ptr<char[]> pPath(_StringConverter::CopyToCharArrayN(dirPath));
112 TryReturn(pPath, false, "pPath is null.");
114 if (InstallerUtil::IsSymlink(dirPath) == true)
116 res = AddLabelDir("_", pPath.get());
117 InstallerUtil::GetRealPath(dirPath, realPath);
124 std::unique_ptr<char[]> pRealPath(_StringConverter::CopyToCharArrayN(realPath));
125 TryReturn(pRealPath, false, "pRealPath is null");
127 if (rootDirectory == true)
129 res = AddLabelDir("_", pRealPath.get());
131 else if (dirPath.Contains(L"shared") == true)
133 res = AddLabelDir("*", pRealPath.get());
137 std::unique_ptr<char[]> pPackageId(_StringConverter::CopyToCharArrayN(label));
138 TryReturn(pPackageId, false, "pPackageId is null");
140 res = AddLabelDir(pPackageId.get(), pRealPath.get());
147 SmackManager::AddLabelSharedDir(const PackageId& packageId, const String& dirPath)
149 if (__isSmackEnable == false)
154 TryReturn(__pContext, false, "__pContext is null");
156 if (__pContext->__isVerificationMode == false)
158 AppLog("VerificationMode is off.");
163 String label = packageId;
165 std::unique_ptr<char[]> pPackageId(_StringConverter::CopyToCharArrayN(packageId));
166 TryReturn(pPackageId, false, "pPackageId is null.");
168 std::unique_ptr<char[]> pPath(_StringConverter::CopyToCharArrayN(dirPath));
169 TryReturn(pPath, false, "pPath is null.");
171 if (dirPath.Contains(L"shared/data") == true)
174 //label.Append("_shareddata");
176 else if (dirPath.Contains(L"shared/res") == true)
179 //label.Append("_sharedres");
181 else if (dirPath.Contains(L"shared/trusted") == true)
185 result r = E_SUCCESS;
187 IListT<String *>* pAuthorCertList = __pContext->__pAuthorCertList;
188 TryReturn(pAuthorCertList, false, "pAuthorCertList is null.");
190 String *pEntity = null;
191 r = pAuthorCertList->GetAt(0, pEntity);
192 TryReturn(!IsFailed(r), false, "pAuthorCertList->GetAt() is failed.");
193 TryReturn(pEntity, false, "pEntity is null.");
195 std::unique_ptr<ByteBuffer> pEncodedData(StringUtil::DecodeBase64StringN(*pEntity));
196 TryReturn(pEncodedData, false, "pEncodedData is null.");
198 std::unique_ptr<ByteBuffer> pHashValue(hash.GetHashN(*pEncodedData.get()));
199 TryReturn(pHashValue, false, "pHashValue is null.");
201 r = StringUtil::EncodeToBase64String(*pHashValue, base64Value);
202 TryReturn(r == E_SUCCESS, false, "EncodeToBase64String() is failed.");
204 std::unique_ptr<char[]> pHashEncodedValue(_StringConverter::CopyToCharArrayN(base64Value));
205 TryReturn(pHashEncodedValue, false, "pHashEncodedValue is null.");
207 label = pHashEncodedValue.get();
208 AppLog("pHashEncodedValue = [%s]", pHashEncodedValue.get());
212 AppLog("Invalid Directory = [%ls]", dirPath.GetPointer());
216 std::unique_ptr<char[]> pLabel(_StringConverter::CopyToCharArrayN(label));
217 TryReturn(pLabel, false, "pLabel is null.");
219 res = AddLabelSharedDir(pPackageId.get(), pLabel.get(), pPath.get());
225 SmackManager::AddSharedDirReaders(const Tizen::Base::String& label)
227 if (__isSmackEnable == false)
232 //int AddSharedDirReaders(const char* pSharedLabel, const char** ppAppList);
238 SmackManager::AddFriend(const Tizen::App::PackageId& packageId1, const Tizen::App::PackageId& packageId2)
240 if (__isSmackEnable == false)
245 //int AddFriend(const char* pPackageId1, const char* pPackageId2);
251 SmackManager::EnablePermissions(const PackageId& packageId)
253 if (__isSmackEnable == false)
258 TryReturn(__pContext, false, "__pContext is null");
262 std::unique_ptr<char[]> pPackageId(_StringConverter::CopyToCharArrayN(packageId));
263 TryReturn(pPackageId, false, "pPackageId is null.");
265 int count = __pContext->__pPrivilegeList->GetCount();
267 const char** pList = new (std::nothrow) const char*[count+1];
268 TryReturn(pList, false, "pList is null.");
270 for (int i = 0; i < count; i++)
272 String* pPrivilege = dynamic_cast < String* >(__pContext->__pPrivilegeList->GetAt(i));
275 char* pPrivilegeString = _StringConverter::CopyToCharArrayN(*pPrivilege);
276 TryReturn(pPrivilegeString, false, "pPrivilegeString is null.");
278 pList[i] = pPrivilegeString;
284 res = EnablePermissions(pPackageId.get(), 1, pList, true);
286 if (__pContext->__isPreloaded == true)
288 String smackFile(L"/etc/smack/accesses2.d/");
289 smackFile.Append(packageId);
290 smackFile.Append(L"-temp.rule");
292 String smackContext(packageId);
293 smackContext.Append(L" all.rule include");
295 InstallerUtil::CreateInfoFile(smackFile, &smackContext);
299 String script("/usr/bin/smackload-app.sh");
300 bool exist = File::IsFileExist(script);
302 script.Append(packageId);
304 std::unique_ptr<char[]> pScript(_StringConverter::CopyToCharArrayN(script));
305 TryReturn(pScript, false, "pScript is null.");
309 res = system(pScript.get());
310 AppLog("[smack] system(%s), result = [%d]", pScript.get(), res);
314 AppLog("[%ls] not found", script.GetPointer());
318 for (int i = 0; pList[i] != null; i++)
320 AppLog("delete Privilege - [%s]", pList[i]);
330 SmackManager::AddPermissions(const PackageId& packageId)
332 if (__isSmackEnable == false)
337 TryReturn(__pContext, false, "__pContext is null");
341 std::unique_ptr<char[]> pPackageId(_StringConverter::CopyToCharArrayN(packageId));
342 TryReturn(pPackageId, false, "pPackageId is null.");
344 int count = __pContext->__pPrivilegeList->GetCount();
346 const char** pList = new (std::nothrow) const char*[count+1];
347 TryReturn(pList, false, "pList is null.");
349 for (int i = 0; i < count; i++)
351 String* pPrivilege = dynamic_cast < String* >(__pContext->__pPrivilegeList->GetAt(i));
354 char* pPrivilegeString = _StringConverter::CopyToCharArrayN(*pPrivilege);
355 TryReturn(pPrivilegeString, false, "pPrivilegeString is null.");
357 pList[i] = pPrivilegeString;
363 res = AddPermissions(pPackageId.get(), pList);
365 if (__pContext->__isPreloaded == true)
367 String smackFile(L"/etc/smack/accesses2.d/");
368 smackFile.Append(packageId);
369 smackFile.Append(L"-temp.rule");
371 String smackContext(packageId);
372 smackContext.Append(L" all.rule include");
374 InstallerUtil::CreateInfoFile(smackFile, &smackContext);
378 String script("/usr/bin/smackload-app.sh");
379 bool exist = File::IsFileExist(script);
381 script.Append(packageId);
383 std::unique_ptr<char[]> pScript(_StringConverter::CopyToCharArrayN(script));
384 TryReturn(pScript, false, "pScript is null.");
388 res = system(pScript.get());
389 AppLog("[smack] system(%s), result = [%d]", pScript.get(), res);
393 AppLog("[%ls] not found", script.GetPointer());
397 for (int i = 0; pList[i] != null; i++)
399 AppLog("delete Privilege - [%s]", pList[i]);
409 SmackManager::RevokePermissions(const PackageId& packageId)
411 if (__isSmackEnable == false)
418 std::unique_ptr<char[]> pPackageId(_StringConverter::CopyToCharArrayN(packageId));
419 TryReturn(pPackageId, false, "pPackageId is null.");
421 res = RevokePermissions(pPackageId.get());
427 SmackManager::IsSmackEnable()
431 String section(L"feature");
432 String entry(L"smack");
435 r = reg.Construct(CONFIG_PATH, "r");
436 TryReturn(!IsFailed(r), false, "CONFIG file is not found.");
438 r = reg.GetValue(section, entry, value);
439 TryReturn(!IsFailed(r), false, "GetValue is failed. entry = [%ls]", entry.GetPointer());
441 AppLog("[%ls is %ls.]", entry.GetPointer(), value.GetPointer());
452 SmackManager::Install(const char* pPackageId)
455 void* pHandle = null;
456 char* pErrorMsg = null;
457 int (*app_install)(const char*) = null;
459 pHandle = dlopen("libprivilege-control.so.0", RTLD_LAZY | RTLD_GLOBAL);
462 AppLog("Install(): dlopen() failed. [%s]", dlerror());
466 app_install = reinterpret_cast <int (*)(const char*)>(dlsym(pHandle, "app_install"));
467 pErrorMsg = dlerror();
468 if ((pErrorMsg != null) || (app_install == null))
470 AppLog("Install(): dlsym() failed. [%s]", pErrorMsg);
475 ret = app_install(pPackageId);
476 AppLog("[smack] app_install(%s), result = [%d]", pPackageId, ret);
484 SmackManager::Uninstall(const char* pPackageId)
487 void* pHandle = null;
488 char* pErrorMsg = null;
489 int (*app_uninstall)(const char*) = null;
491 pHandle = dlopen("libprivilege-control.so.0", RTLD_LAZY | RTLD_GLOBAL);
494 AppLog("Uninstall(): dlopen() failed. [%s]", dlerror());
498 app_uninstall = reinterpret_cast <int (*)(const char*)>(dlsym(pHandle, "app_uninstall"));
499 pErrorMsg = dlerror();
500 if ((pErrorMsg != null) || (app_uninstall == null))
502 AppLog("Uninstall(): dlsym() failed. [%s]", pErrorMsg);
507 ret = app_uninstall(pPackageId);
508 AppLog("[smack] app_uninstall(%s), result = [%d]", pPackageId, ret);
516 SmackManager::AddLabelDir(const char* pLabel, const char* pDirPath)
519 void* pHandle = null;
520 char* pErrorMsg = null;
521 int (*app_label_dir)(const char*, const char*) = null;
523 pHandle = dlopen("libprivilege-control.so.0", RTLD_LAZY | RTLD_GLOBAL);
526 AppLog("AddLabelDir(): dlopen() failed. [%s]", dlerror());
530 app_label_dir = reinterpret_cast <int (*)(const char*, const char*)>(dlsym(pHandle, "app_label_dir"));
531 pErrorMsg = dlerror();
532 if ((pErrorMsg != null) || (app_label_dir == null))
534 AppLog("AddLabelDir(): dlsym() failed. [%s]", pErrorMsg);
539 ret = app_label_dir(pLabel, pDirPath);
540 AppLog("[smack] app_label_dir(%s, %s), result = [%d]", pLabel, pDirPath, ret);
548 SmackManager::AddLabelSharedDir(const char* pLabel, const char* pSharedLabel, const char* pDirPath)
551 void* pHandle = null;
552 char* pErrorMsg = null;
553 int (*app_label_shared_dir)(const char*, const char*, const char*) = null;
555 pHandle = dlopen("libprivilege-control.so.0", RTLD_LAZY | RTLD_GLOBAL);
558 AppLog("AddLabelSharedDir(): dlopen() failed. [%s]", dlerror());
562 app_label_shared_dir = reinterpret_cast <int (*)(const char*, const char*, const char*)>(dlsym(pHandle, "app_label_shared_dir"));
563 pErrorMsg = dlerror();
564 if ((pErrorMsg != null) || (app_label_shared_dir == null))
566 AppLog("AddLabelSharedDir(): dlsym() failed. [%s]", pErrorMsg);
571 ret = app_label_shared_dir(pLabel, pSharedLabel, pDirPath);
572 AppLog("[smack] app_label_shared_dir(%s, %s, %s), result = [%d]", pLabel, pSharedLabel, pDirPath, ret);
580 SmackManager::AddSharedDirReaders(const char* pSharedLabel, const char** ppAppList)
583 void* pHandle = null;
584 char* pErrorMsg = null;
585 int (*add_shared_dir_readers)(const char*, const char**) = null;
587 pHandle = dlopen("libprivilege-control.so.0", RTLD_LAZY | RTLD_GLOBAL);
590 AppLog("AddSharedDirReaders(): dlopen() failed. [%s]", dlerror());
594 add_shared_dir_readers = reinterpret_cast <int (*)(const char*, const char**)>(dlsym(pHandle, "add_shared_dir_readers"));
595 pErrorMsg = dlerror();
596 if ((pErrorMsg != null) || (add_shared_dir_readers == null))
598 AppLog("AddSharedDirReaders(): dlsym() failed. [%s]", pErrorMsg);
603 ret = add_shared_dir_readers(pSharedLabel, ppAppList);
604 AppLog("[smack] add_shared_dir_readers(%s), result = [%d]", pSharedLabel, ret);
612 SmackManager::AddFriend(const char* pPackageId1, const char* pPackageId2)
615 void* pHandle = null;
616 char* pErrorMsg = null;
617 int (*app_add_friend)(const char*, const char*) = null;
619 pHandle = dlopen("libprivilege-control.so.0", RTLD_LAZY | RTLD_GLOBAL);
622 AppLog("AddFriend(): dlopen() failed. [%s]", dlerror());
626 app_add_friend = reinterpret_cast <int (*)(const char*, const char*)>(dlsym(pHandle, "app_add_friend"));
627 pErrorMsg = dlerror();
628 if ((pErrorMsg != null) || (app_add_friend == null))
630 AppLog("AddFriend(): dlsym() failed. [%s]", pErrorMsg);
635 ret = app_add_friend(pPackageId1, pPackageId2);
636 AppLog("[smack] app_add_friend(%s, %s), result = [%d]", pPackageId1, pPackageId2, ret);
644 SmackManager::EnablePermissions(const char* pPackageId, int appType, const char** ppPermissions, bool persistent)
647 void* pHandle = null;
648 char* pErrorMsg = null;
649 int (*app_enable_permissions)(const char*, int, const char**, bool) = null;
651 pHandle = dlopen("libprivilege-control.so.0", RTLD_LAZY | RTLD_GLOBAL);
654 AppLog("EnablePermissions(): dlopen() failed. [%s]", dlerror());
658 app_enable_permissions = reinterpret_cast <int (*)(const char*, int, const char**, bool)>(dlsym(pHandle, "app_enable_permissions"));
659 pErrorMsg = dlerror();
660 if ((pErrorMsg != null) || (app_enable_permissions == null))
662 AppLog("EnablePermissions(): dlsym() failed. [%s]", pErrorMsg);
667 ret = app_enable_permissions(pPackageId, appType, ppPermissions, persistent);
668 AppLog("[smack] app_enable_permissions(%s, %d), result = [%d]", pPackageId, appType, ret);
676 SmackManager::RevokePermissions(const char* pPackageId)
679 void* pHandle = null;
680 char* pErrorMsg = null;
681 int (*app_revoke_permissions)(const char*) = null;
683 pHandle = dlopen("libprivilege-control.so.0", RTLD_LAZY | RTLD_GLOBAL);
686 AppLog("RevokePermissions(): dlopen() failed. [%s][%s]", pPackageId, dlerror());
690 app_revoke_permissions = reinterpret_cast <int (*)(const char*)>(dlsym(pHandle, "app_revoke_permissions"));
691 pErrorMsg = dlerror();
692 if ((pErrorMsg != null) || (app_revoke_permissions == null))
694 AppLog("RevokePermissions(): dlsym() failed. [%s][%s]", pPackageId, pErrorMsg);
699 ret = app_revoke_permissions(pPackageId);
700 AppLog("[smack] app_revoke_permissions(%s), result = [%d]", pPackageId, ret);
709 SmackManager::AddPermissions(const char* pPackageId, const char** ppPermissions)
712 void* pHandle = null;
713 char* pErrorMsg = null;
714 int (*app_add_permissions)(const char*, const char**) = null;
716 pHandle = dlopen("libprivilege-control.so.0", RTLD_LAZY | RTLD_GLOBAL);
719 AppLog("AddPermissions(): dlopen() failed. [%s][%s]", pPackageId, dlerror());
723 app_add_permissions = reinterpret_cast <int (*)(const char*, const char**)>(dlsym(pHandle, "app_add_permissions"));
724 pErrorMsg = dlerror();
725 if ((pErrorMsg != null) || (app_add_permissions == null))
727 AppLog("AddPermissions(): dlsym() failed. [%s][%s]", pPackageId, pErrorMsg);
732 for (int i = 0; ppPermissions[i] != null; i++)
734 AppLog("Privilege - [%s]", ppPermissions[i]);
737 ret = app_add_permissions(pPackageId, ppPermissions);
738 AppLog("[smack] app_add_permissions(%s), result = [%d]", pPackageId, ret);