Move label generation to global commons

[platform/core/test/security-tests.git] / src / common / app_install_helper.cpp

/*
 * Copyright (c) 2014-2017 Samsung Electronics Co., Ltd All Rights Reserved
 *
 *    Licensed under the Apache License, Version 2.0 (the "License");
 *    you may not use this file except in compliance with the License.
 *    You may obtain a copy of the License at
 *
 *        http://www.apache.org/licenses/LICENSE-2.0
 *
 *    Unless required by applicable law or agreed to in writing, software
 *    distributed under the License is distributed on an "AS IS" BASIS,
 *    WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 *    See the License for the specific language governing permissions and
 *    limitations under the License.
 */

#include <fcntl.h>
#include <map>
#include <string>
#include <sys/stat.h>
#include <sys/types.h>
#include <sys/smack.h>
#include <unistd.h>
#include <utility>

#include <security-manager-types.h>

#include <dpl/test/test_runner.h>
#include <tzplatform.h>
#include <label_generator.h>

#include "app_install_helper.h"

AppInstallHelper::AppInstallHelper(AppInstallHelper &&other)
    : m_appName(std::move(other.m_appName)), m_pkgName(std::move(other.m_pkgName)),
      m_isLocal(other.m_isLocal), m_uidGid(other.m_uidGid),
      m_version(std::move(other.m_version)), m_installType(other.m_installType),
      m_isHybrid(other.m_isHybrid), m_installDir(std::move(other.m_installDir)),
      m_dirTypeMap(std::move(other.m_dirTypeMap)),
      m_fileTypeMap(std::move(other.m_fileTypeMap)),
      m_privileges(std::move(other.m_privileges)),
      m_appDefinedPrivileges(std::move(other.m_appDefinedPrivileges)),
      m_author(std::move(other.m_author)),
      m_creatorPid(other.m_creatorPid)
{
    other.m_creatorPid = -1;
}

std::string AppInstallHelper::getInstallDir() const {
    return m_installDir + getPkgId();
}

std::string AppInstallHelper::getTrustedDir(int i) const {
    return getInstallDir() + "/trustedDir" + std::to_string(i);
}

std::string AppInstallHelper::getPrivateDir(int i) const {
    return getInstallDir() + "/app_dir" + std::to_string(i) +"/";
}

std::string AppInstallHelper::getPrivateRODir(int i) const {
    return getInstallDir() + "/app_dir_ro" + std::to_string(i) +"/";
}

std::string AppInstallHelper::getPublicDir() const {
    return getInstallDir() + "/app_public_ro/";
}

std::string AppInstallHelper::getPrivatePath(int i) const {
    return getPrivateDir() + "shareme" + std::to_string(i);
}

std::string AppInstallHelper::getSharedRODir(int i) const {
    return getInstallDir() + "/app_dir_rw_others_ro" + std::to_string(i) +"/";
}

std::string AppInstallHelper::getAppId() const {
    return m_appName + "_app_id";
}

std::string AppInstallHelper::getPkgId() const {
    return m_pkgName + "_pkg_id";
}

void AppInstallHelper::setVersion(const std::string &version) {
    m_version = version;
}

std::string AppInstallHelper::getVersion() const {
    return m_version;
}

int AppInstallHelper::getUID() const {
    return m_uidGid;
}

int AppInstallHelper::getGID() const {
    return m_uidGid;
}

void AppInstallHelper::createInstallDir() {
    create(mkdir, getInstallDir());
    m_isInstallDirCreated = true;
}

void AppInstallHelper::createTrustedDir(int i) {
    if (create(mkdir, getTrustedDir(i)))
        m_dirTypeMap[SECURITY_MANAGER_PATH_TRUSTED_RW].emplace_back(getTrustedDir(i));
}

void AppInstallHelper::createPrivateDir(int i) {
    if (create(mkdir, getPrivateDir(i)))
        m_dirTypeMap[SECURITY_MANAGER_PATH_RW].emplace_back(getPrivateDir(i));
}

void AppInstallHelper::createPublicDir() {
    if (mkdir(getPublicDir().c_str(), 0777) == 0) {
        m_dirTypeMap[SECURITY_MANAGER_PATH_PUBLIC_RO].emplace_back(getPublicDir());
    }
}

void AppInstallHelper::createPrivateFile(int i) {
    // This is intentional, let all private file be in one directory
    createPrivateDir();
    if (create(creat, getPrivatePath(i)))
        m_fileTypeMap[SECURITY_MANAGER_PATH_RW].emplace_back(getPrivatePath(i));
}

void AppInstallHelper::createSharedRODir(int i) {
    if (create(mkdir, getSharedRODir(i)))
        m_dirTypeMap[SECURITY_MANAGER_PATH_OWNER_RW_OTHER_RO].emplace_back(getSharedRODir(i));
}

void AppInstallHelper::createPrivateRODir(int i) {
    if (create(mkdir, getPrivateRODir(i)))
        m_dirTypeMap[SECURITY_MANAGER_PATH_RO].emplace_back(getPrivateRODir(i));
}

void AppInstallHelper::setHybrid() {
    m_isHybrid = true;
}

bool AppInstallHelper::getIsHybrid() const {
    return m_isHybrid;
}

void AppInstallHelper::addPrivileges(const std::vector<std::string> &privileges) {
    for (auto &p : privileges) {
        addPrivilege(Privilege(p));
    }
}

std::vector<std::string> AppInstallHelper::getPrivilegesNames() const {
    std::vector<std::string> privileges;
    for (auto &p : m_privileges) {
        privileges.push_back(p.getName());
    }
    return privileges;
}

void AppInstallHelper::addPrivilege(Privilege privilege) {
    m_privileges.push_back(std::move(privilege));
}

void AppInstallHelper::addPrivileges(const PrivilegeVector &privileges) {
    std::copy(privileges.begin(), privileges.end(), std::back_inserter(m_privileges));
}

const PrivilegeVector& AppInstallHelper::getPrivileges() const {
    return m_privileges;
}

void AppInstallHelper::addAppDefinedPrivilege(Privilege privilege) {
    m_appDefinedPrivileges.push_back(std::move(privilege));
}

const PrivilegeVector& AppInstallHelper::getAppDefinedPrivileges() const {
    return m_appDefinedPrivileges;
}

void AppInstallHelper::revokeRules() const {
    RUNNER_ASSERT_MSG(
        0 == smack_revoke_subject(generateAppLabel().c_str()),
        "Revoking smack subject failed");
}

std::string AppInstallHelper::generateAppLabel() const {
    return generateProcessLabel(getAppId(), getPkgId(), getIsHybrid());
}

std::string AppInstallHelper::generatePkgLabel() const {
    return generatePathRWLabel(getPkgId());
}

const AppInstallHelper::TypePathsMap& AppInstallHelper::getDirsMap() const {
    return m_dirTypeMap;
}

const AppInstallHelper::TypePathsMap& AppInstallHelper::getFilesMap() const {
    return m_fileTypeMap;
}

void AppInstallHelper::removePaths() {
    for (const auto &oneTypePaths : m_dirTypeMap)
            for (const auto& path : oneTypePaths.second)
                rmdir(path.c_str());

    m_dirTypeMap.clear();

    for (const auto &oneTypePaths : m_fileTypeMap)
            for (const auto& path : oneTypePaths.second)
                unlink(path.c_str());

    m_fileTypeMap.clear();

    rmdir(getInstallDir().c_str());
    m_isInstallDirCreated = false;
}

void AppInstallHelper::setInstallPath() {
    if (m_isLocal)
        m_installDir = TzPlatformConfig::appDirPath(getUID());
    else
        m_installDir = TzPlatformConfig::globalAppDir() + "/";
}

bool AppInstallHelper::create(std::function<int(const char*, mode_t)> &&creatFun, const std::string &path) {
    if (!m_isInstallDirCreated && path != getInstallDir())
        createInstallDir();
    if (creatFun(path.c_str(), 0751) == 0) {
       // Local paths need user change
       if (!m_isLocal || chown(path.c_str(), m_uidGid, m_uidGid) == 0)
                return true;
       }
    return false;
}

void AppInstallHelper::setAuthor(const std::string &author) {
    m_author = author;
}
std::string AppInstallHelper::getAuthor() const {
    return m_author;
}

void AppInstallHelper::setInstallType(app_install_type type) {
    m_installType = type;
}
app_install_type AppInstallHelper::getInstallType() const {
    return m_installType;
}