2 // Open Service Platform
3 // Copyright (c) 2012 Samsung Electronics Co., Ltd.
5 // Licensed under the Apache License, Version 2.0 (the License);
6 // you may not use this file except in compliance with the License.
7 // You may obtain a copy of the License at
9 // http://www.apache.org/licenses/LICENSE-2.0
11 // Unless required by applicable law or agreed to in writing, software
12 // distributed under the License is distributed on an "AS IS" BASIS,
13 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
14 // See the License for the specific language governing permissions and
15 // limitations under the License.
18 * @file SmackManager.cpp
19 * @brief This is the implementation file for %SmackManager class.
23 #include <unique_ptr.h>
26 #include <FIoRegistry.h>
27 #include <FSecCryptoSha1Hash.h>
28 #include <FBase_StringConverter.h>
30 #include "SmackManager.h"
31 #include "InstallerDefs.h"
32 #include "InstallerUtil.h"
34 using namespace Tizen::App;
35 using namespace Tizen::Base;
36 using namespace Tizen::Base::Collection;
37 using namespace Tizen::Base::Utility;
38 using namespace Tizen::Security::Cert;
39 using namespace Tizen::Security::Crypto;
40 using namespace Tizen::Io;
42 SmackManager::SmackManager(void)
44 ,__isSmackEnable(false)
46 if (IsSmackEnable() == true)
48 __isSmackEnable = true;
52 SmackManager::~SmackManager(void)
57 SmackManager::Construct(InstallationContext* pContext)
59 __pContext = pContext;
65 SmackManager::Install(const PackageId& packageId)
67 if (__isSmackEnable == false)
74 std::unique_ptr<char[]> pPackageId(_StringConverter::CopyToCharArrayN(packageId));
75 TryReturn(pPackageId, false, "pPackageId is null.");
77 res = Install(pPackageId.get());
83 SmackManager::Uninstall(const PackageId& packageId)
85 if (__isSmackEnable == false)
92 std::unique_ptr<char[]> pPackageId(_StringConverter::CopyToCharArrayN(packageId));
93 TryReturn(pPackageId, false, "pPackageId is null.");
95 res = Uninstall(pPackageId.get());
101 SmackManager::AddLabelDir(const String& label, const String& dirPath, bool rootDirectory)
103 if (__isSmackEnable == false)
111 std::unique_ptr<char[]> pPath(_StringConverter::CopyToCharArrayN(dirPath));
112 TryReturn(pPath, false, "pPath is null.");
114 if (InstallerUtil::IsSymlink(dirPath) == true)
116 res = AddLabelDir("_", pPath.get());
117 InstallerUtil::GetRealPath(dirPath, realPath);
124 std::unique_ptr<char[]> pRealPath(_StringConverter::CopyToCharArrayN(realPath));
125 TryReturn(pRealPath, false, "pRealPath is null");
127 if (rootDirectory == true)
129 res = AddLabelDir("_", pRealPath.get());
131 else if (dirPath.Contains(L"shared") == true)
133 res = AddLabelDir("*", pRealPath.get());
137 std::unique_ptr<char[]> pPackageId(_StringConverter::CopyToCharArrayN(label));
138 TryReturn(pPackageId, false, "pPackageId is null");
140 res = AddLabelDir(pPackageId.get(), pRealPath.get());
147 SmackManager::AddLabelSharedDir(const PackageId& packageId, const String& dirPath)
149 if (__isSmackEnable == false)
154 TryReturn(__pContext, false, "__pContext is null");
156 if (__pContext->__isVerificationMode == false)
158 AppLog("VerificationMode is off.");
163 String label = packageId;
165 std::unique_ptr<char[]> pPackageId(_StringConverter::CopyToCharArrayN(packageId));
166 TryReturn(pPackageId, false, "pPackageId is null.");
168 std::unique_ptr<char[]> pPath(_StringConverter::CopyToCharArrayN(dirPath));
169 TryReturn(pPath, false, "pPath is null.");
171 if (dirPath.Contains(L"shared/data") == true)
174 //label.Append("_shareddata");
176 else if (dirPath.Contains(L"shared/res") == true)
179 //label.Append("_sharedres");
181 else if (dirPath.Contains(L"shared/trusted") == true)
185 result r = E_SUCCESS;
187 IListT<String *>* pAuthorCertList = __pContext->__pAuthorCertList;
188 TryReturn(pAuthorCertList, false, "pAuthorCertList is null.");
190 String *pEntity = null;
191 r = pAuthorCertList->GetAt(0, pEntity);
192 TryReturn(!IsFailed(r), false, "pAuthorCertList->GetAt() is failed.");
193 TryReturn(pEntity, false, "pEntity is null.");
195 std::unique_ptr<ByteBuffer> pEncodedData(StringUtil::DecodeBase64StringN(*pEntity));
196 TryReturn(pEncodedData, false, "pEncodedData is null.");
198 std::unique_ptr<ByteBuffer> pHashValue(hash.GetHashN(*pEncodedData.get()));
199 TryReturn(pHashValue, false, "pHashValue is null.");
201 r = StringUtil::EncodeToBase64String(*pHashValue, base64Value);
202 TryReturn(r == E_SUCCESS, false, "EncodeToBase64String() is failed.");
204 std::unique_ptr<char[]> pHashEncodedValue(_StringConverter::CopyToCharArrayN(base64Value));
205 TryReturn(pHashEncodedValue, false, "pHashEncodedValue is null.");
207 label = pHashEncodedValue.get();
208 AppLog("pHashEncodedValue = [%s]", pHashEncodedValue.get());
212 AppLog("Invalid Directory = [%ls]", dirPath.GetPointer());
216 std::unique_ptr<char[]> pLabel(_StringConverter::CopyToCharArrayN(label));
217 TryReturn(pLabel, false, "pLabel is null.");
219 res = AddLabelSharedDir(pPackageId.get(), pLabel.get(), pPath.get());
225 SmackManager::AddSharedDirReaders(const Tizen::Base::String& label)
227 if (__isSmackEnable == false)
232 //int AddSharedDirReaders(const char* pSharedLabel, const char** ppAppList);
238 SmackManager::AddFriend(const Tizen::App::PackageId& packageId1, const Tizen::App::PackageId& packageId2)
240 if (__isSmackEnable == false)
245 //int AddFriend(const char* pPackageId1, const char* pPackageId2);
251 SmackManager::AddPermissions(const PackageId& packageId)
253 if (__isSmackEnable == false)
258 TryReturn(__pContext, false, "__pContext is null");
262 std::unique_ptr<char[]> pPackageId(_StringConverter::CopyToCharArrayN(packageId));
263 TryReturn(pPackageId, false, "pPackageId is null.");
265 int count = __pContext->__pPrivilegeList->GetCount();
267 const char** pList = new (std::nothrow) const char*[count+1];
268 TryReturn(pList, false, "pList is null.");
270 for (int i = 0; i < count; i++)
272 String* pPrivilege = dynamic_cast < String* >(__pContext->__pPrivilegeList->GetAt(i));
275 char* pPrivilegeString = _StringConverter::CopyToCharArrayN(*pPrivilege);
276 TryReturn(pPrivilegeString, false, "pPrivilegeString is null.");
278 pList[i] = pPrivilegeString;
284 res = AddPermissions(pPackageId.get(), pList);
286 if (__pContext->__isPreloaded == true)
288 String smackFile(L"/etc/smack/accesses2.d/");
289 smackFile.Append(packageId);
290 smackFile.Append(L"-temp.rule");
292 String smackContext(packageId);
293 smackContext.Append(L" all.rule include");
295 InstallerUtil::CreateInfoFile(smackFile, &smackContext);
299 String script("/usr/bin/smackload-app.sh");
300 bool exist = File::IsFileExist(script);
302 script.Append(packageId);
304 std::unique_ptr<char[]> pScript(_StringConverter::CopyToCharArrayN(script));
305 TryReturn(pScript, false, "pScript is null.");
309 res = system(pScript.get());
310 AppLog("[smack] system(%s), result = [%d]", pScript.get(), res);
314 AppLog("[%ls] not found", script.GetPointer());
318 for (int i = 0; pList[i] != null; i++)
320 AppLog("delete Privilege - [%s]", pList[i]);
329 SmackManager::RevokePermissions(const PackageId& packageId)
331 if (__isSmackEnable == false)
338 std::unique_ptr<char[]> pPackageId(_StringConverter::CopyToCharArrayN(packageId));
339 TryReturn(pPackageId, false, "pPackageId is null.");
341 res = RevokePermissions(pPackageId.get());
347 SmackManager::IsSmackEnable()
351 String section(L"feature");
352 String entry(L"smack");
355 r = reg.Construct(CONFIG_PATH, "r");
356 TryReturn(!IsFailed(r), false, "CONFIG file is not found.");
358 r = reg.GetValue(section, entry, value);
359 TryReturn(!IsFailed(r), false, "GetValue is failed. entry = [%ls]", entry.GetPointer());
361 AppLog("[%ls is %ls.]", entry.GetPointer(), value.GetPointer());
372 SmackManager::Install(const char* pPackageId)
375 void* pHandle = null;
376 char* pErrorMsg = null;
377 int (*app_install)(const char*) = null;
379 pHandle = dlopen("libprivilege-control.so.0", RTLD_LAZY | RTLD_GLOBAL);
382 AppLog("Install(): dlopen() failed. [%s]", dlerror());
386 app_install = reinterpret_cast <int (*)(const char*)>(dlsym(pHandle, "app_install"));
387 pErrorMsg = dlerror();
388 if ((pErrorMsg != null) || (app_install == null))
390 AppLog("Install(): dlsym() failed. [%s]", pErrorMsg);
395 ret = app_install(pPackageId);
396 AppLog("[smack] app_install(%s), result = [%d]", pPackageId, ret);
404 SmackManager::Uninstall(const char* pPackageId)
407 void* pHandle = null;
408 char* pErrorMsg = null;
409 int (*app_uninstall)(const char*) = null;
411 pHandle = dlopen("libprivilege-control.so.0", RTLD_LAZY | RTLD_GLOBAL);
414 AppLog("Uninstall(): dlopen() failed. [%s]", dlerror());
418 app_uninstall = reinterpret_cast <int (*)(const char*)>(dlsym(pHandle, "app_uninstall"));
419 pErrorMsg = dlerror();
420 if ((pErrorMsg != null) || (app_uninstall == null))
422 AppLog("Uninstall(): dlsym() failed. [%s]", pErrorMsg);
427 ret = app_uninstall(pPackageId);
428 AppLog("[smack] app_uninstall(%s), result = [%d]", pPackageId, ret);
436 SmackManager::AddLabelDir(const char* pLabel, const char* pDirPath)
439 void* pHandle = null;
440 char* pErrorMsg = null;
441 int (*app_label_dir)(const char*, const char*) = null;
443 pHandle = dlopen("libprivilege-control.so.0", RTLD_LAZY | RTLD_GLOBAL);
446 AppLog("AddLabelDir(): dlopen() failed. [%s]", dlerror());
450 app_label_dir = reinterpret_cast <int (*)(const char*, const char*)>(dlsym(pHandle, "app_label_dir"));
451 pErrorMsg = dlerror();
452 if ((pErrorMsg != null) || (app_label_dir == null))
454 AppLog("AddLabelDir(): dlsym() failed. [%s]", pErrorMsg);
459 ret = app_label_dir(pLabel, pDirPath);
460 AppLog("[smack] app_label_dir(%s, %s), result = [%d]", pLabel, pDirPath, ret);
468 SmackManager::AddLabelSharedDir(const char* pLabel, const char* pSharedLabel, const char* pDirPath)
471 void* pHandle = null;
472 char* pErrorMsg = null;
473 int (*app_label_shared_dir)(const char*, const char*, const char*) = null;
475 pHandle = dlopen("libprivilege-control.so.0", RTLD_LAZY | RTLD_GLOBAL);
478 AppLog("AddLabelSharedDir(): dlopen() failed. [%s]", dlerror());
482 app_label_shared_dir = reinterpret_cast <int (*)(const char*, const char*, const char*)>(dlsym(pHandle, "app_label_shared_dir"));
483 pErrorMsg = dlerror();
484 if ((pErrorMsg != null) || (app_label_shared_dir == null))
486 AppLog("AddLabelSharedDir(): dlsym() failed. [%s]", pErrorMsg);
491 ret = app_label_shared_dir(pLabel, pSharedLabel, pDirPath);
492 AppLog("[smack] app_label_shared_dir(%s, %s, %s), result = [%d]", pLabel, pSharedLabel, pDirPath, ret);
500 SmackManager::AddSharedDirReaders(const char* pSharedLabel, const char** ppAppList)
503 void* pHandle = null;
504 char* pErrorMsg = null;
505 int (*add_shared_dir_readers)(const char*, const char**) = null;
507 pHandle = dlopen("libprivilege-control.so.0", RTLD_LAZY | RTLD_GLOBAL);
510 AppLog("AddSharedDirReaders(): dlopen() failed. [%s]", dlerror());
514 add_shared_dir_readers = reinterpret_cast <int (*)(const char*, const char**)>(dlsym(pHandle, "add_shared_dir_readers"));
515 pErrorMsg = dlerror();
516 if ((pErrorMsg != null) || (add_shared_dir_readers == null))
518 AppLog("AddSharedDirReaders(): dlsym() failed. [%s]", pErrorMsg);
523 ret = add_shared_dir_readers(pSharedLabel, ppAppList);
524 AppLog("[smack] add_shared_dir_readers(%s), result = [%d]", pSharedLabel, ret);
532 SmackManager::AddFriend(const char* pPackageId1, const char* pPackageId2)
535 void* pHandle = null;
536 char* pErrorMsg = null;
537 int (*app_add_friend)(const char*, const char*) = null;
539 pHandle = dlopen("libprivilege-control.so.0", RTLD_LAZY | RTLD_GLOBAL);
542 AppLog("AddFriend(): dlopen() failed. [%s]", dlerror());
546 app_add_friend = reinterpret_cast <int (*)(const char*, const char*)>(dlsym(pHandle, "app_add_friend"));
547 pErrorMsg = dlerror();
548 if ((pErrorMsg != null) || (app_add_friend == null))
550 AppLog("AddFriend(): dlsym() failed. [%s]", pErrorMsg);
555 ret = app_add_friend(pPackageId1, pPackageId2);
556 AppLog("[smack] app_add_friend(%s, %s), result = [%d]", pPackageId1, pPackageId2, ret);
564 SmackManager::EnablePermissions(const char* pPackageId, int appType, const char** ppPermissions, bool persistent)
567 void* pHandle = null;
568 char* pErrorMsg = null;
569 int (*app_enable_permissions)(const char*, int, const char**, bool) = null;
571 pHandle = dlopen("libprivilege-control.so.0", RTLD_LAZY | RTLD_GLOBAL);
574 AppLog("EnablePermissions(): dlopen() failed. [%s]", dlerror());
578 app_enable_permissions = reinterpret_cast <int (*)(const char*, int, const char**, bool)>(dlsym(pHandle, "app_enable_permissions"));
579 pErrorMsg = dlerror();
580 if ((pErrorMsg != null) || (app_enable_permissions == null))
582 AppLog("EnablePermissions(): dlsym() failed. [%s]", pErrorMsg);
587 ret = app_enable_permissions(pPackageId, appType, ppPermissions, persistent);
588 AppLog("[smack] app_enable_permissions(%s, %d), result = [%d]", pPackageId, appType, ret);
596 SmackManager::RevokePermissions(const char* pPackageId)
599 void* pHandle = null;
600 char* pErrorMsg = null;
601 int (*app_revoke_permissions)(const char*) = null;
603 pHandle = dlopen("libprivilege-control.so.0", RTLD_LAZY | RTLD_GLOBAL);
606 AppLog("RevokePermissions(): dlopen() failed. [%s][%s]", pPackageId, dlerror());
610 app_revoke_permissions = reinterpret_cast <int (*)(const char*)>(dlsym(pHandle, "app_revoke_permissions"));
611 pErrorMsg = dlerror();
612 if ((pErrorMsg != null) || (app_revoke_permissions == null))
614 AppLog("RevokePermissions(): dlsym() failed. [%s][%s]", pPackageId, pErrorMsg);
619 ret = app_revoke_permissions(pPackageId);
620 AppLog("[smack] app_revoke_permissions(%s), result = [%d]", pPackageId, ret);
628 SmackManager::AddPermissions(const char* pPackageId, const char** ppPermissions)
631 void* pHandle = null;
632 char* pErrorMsg = null;
633 int (*app_add_permissions)(const char*, const char**) = null;
635 pHandle = dlopen("libprivilege-control.so.0", RTLD_LAZY | RTLD_GLOBAL);
638 AppLog("AddPermissions(): dlopen() failed. [%s][%s]", pPackageId, dlerror());
642 app_add_permissions = reinterpret_cast <int (*)(const char*, const char**)>(dlsym(pHandle, "app_add_permissions"));
643 pErrorMsg = dlerror();
644 if ((pErrorMsg != null) || (app_add_permissions == null))
646 AppLog("AddPermissions(): dlsym() failed. [%s][%s]", pPackageId, pErrorMsg);
651 for (int i = 0; ppPermissions[i] != null; i++)
653 AppLog("Privilege - [%s]", ppPermissions[i]);
656 ret = app_add_permissions(pPackageId, ppPermissions);
657 AppLog("[smack] app_add_permissions(%s), result = [%d]", pPackageId, ret);