Merge "[2.2.1] Merge different codes between 2.2 and 3.0" into tizen_2.2

[platform/framework/native/appfw.git] / src / security / FSec_PrivilegeInfo.h

//
// Copyright (c) 2012 Samsung Electronics Co., Ltd.
//
// Licensed under the Apache License, Version 2.0 (the License);
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
//     http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
//

/**
 * @file        FSec_PrivilegeManagerInfo.h
 * @brief       This is the header file for the FSec_PrivilegeInfo.
 * This header file contains the declarations of the FSec_PrivilegeInfo.
 */

#ifndef _FSEC_INTERNAL_PRIVILEGE_INFO_H_
#define _FSEC_INTERNAL_PRIVILEGE_INFO_H_

#include <FOspConfig.h>
#include "FSec_AccessControlTypes.h"

namespace Tizen { namespace Security
{

class ISecretKey;

/**
 * @class       _PrivilegeInfo
 * @brief       This class provides a basic information of privilege manager.
 * @since       2.0
 *
 * This class provides a basic information of privilege manager.
 *
 */
class _PrivilegeInfo
        : public Tizen::Base::Object
{

public:
        /**
         * This is the default constructor for this class.      @n
         * This method creates an uninitialized instance of _PrivilegeCache.
         *
         * @since       2.0
         */
        _PrivilegeInfo(void);

        /**
         * This is the destructor for this class.
         *
         * @since       2.0
         */
        virtual ~_PrivilegeInfo(void);

        /**
         * Initializes an instance of _PrivilegeInfo and sets its base information directly.
         *
         * @since               2.0
         * @return              An error code
         * @param[in]   appId                           The application ID.
         * @param[in]   pBitwisePrivilege       The bitwise privilege information.
         * @exception   E_SUCCESS                       The method is successful.
         * @exception   E_INVALID_ARG           A specified input parameter is invalid.
         */
        result Construct(const Tizen::App::AppId& appId, const byte* pBitwisePrivilege, const Tizen::Base::Collection::ArrayList* pPrivilegeStringList);

        /**
         * Initializes an instance of _PrivilegeInfo and sets its base information using stored privilege information.
         *
         * @since               2.0
         * @return              An error code
         * @param[in]   appId                                   The application ID.
         * @param[in]   encryptedPrivileges             A string containing encrypted privilege information.
         * @param[in]   checksum                                A string containing checksum of privilege information.
         * @exception   E_SUCCESS                               The method is successful.
         * @exception   E_INVALID_ARG                   A specified input parameter is invalid.
         */
        result Construct(const Tizen::App::AppId& appId, const Tizen::Base::String& encryptedPrivileges, const Tizen::Base::String& checksum,
                        const Tizen::Base::Collection::ArrayList* pPrivilegeStringList);

        /**
         * Initializes an instance of _PrivilegeInfo and sets its base information using stored privilege and visibility information.
         *
         * @since               2.0
         * @return              An error code
         * @param[in]   appId                                   The application ID.
         * @param[in]   encryptedPrivileges             A string containing encrypted privilege information.
         * @param[in]   checksum                                A string containing checksum of privilege information.
         * @exception   E_SUCCESS                               The method is successful.
         * @exception   E_INVALID_ARG                   A specified input parameter is invalid.
         */
        result Construct(const Tizen::App::AppId& appId, const Tizen::Base::String& encryptedPrivileges, const Tizen::Base::String& checksum,
                        const Tizen::Base::String& encryptedVisibiliity, const Tizen::Base::String& visibilityChecksum, const Tizen::Base::Collection::ArrayList* pPrivilegeStringList);

        /**
         * Initializes an instance of _PrivilegeInfo and sets its base information using _PrivilegeInfo instance.
         *
         * @since               2.0
         * @return              An error code
         * @param[in]   privilegeInfo                   An instance of _PrivilegeInfo.
         * @exception   E_SUCCESS                               The method is successful.
         * @exception   E_AUTHENTICATION                The authentication has failed.
         * @exception   E_INVALID_ARG                   A specified input parameter is invalid.
         */
        result Construct(const _PrivilegeInfo& privilegeInfo);

        /**
         * CCreates and returns a polymorphic copy of _PrivilegeInfo instance.
         *
         * @return      The clone of this instance
         * @exception   E_OUT_OF_MEMORY         The memory is insufficient.
         */

        _PrivilegeInfo* CloneN(void) const;

        /**
         * Gets the application ID.
         *
         * @since               2.0
         * @return              The application id
         */
        const Tizen::Base::String GetAppId(void) const;

        /**
         * Gets the bitwise privilege information.
         *
         * @since               2.0
         * @return              An error code
         * @param[out]  pBitwisePrivilege       The bitwise privilege information.
         * @exception   E_SUCCESS                       The method is successful.
         * @exception   E_OUT_OF_MEMORY         The memory is insufficient.
         */
        result GetBitwisePrivilegeN(byte*& pBitwisePrivilege) const;

        /**
         * Gets the encrypted string of bitwise privilege information.
         *
         * @since               2.0
         * @return              An error code
         * @param[out]  encryptedPrivileges     A string containing encrypted privilege information.
         * @exception   E_SUCCESS                       The method is successful.
         * @exception   E_OUT_OF_MEMORY         The memory is insufficient.
         * @exception   E_SYSTEM                        An unexpected system error occurred.
         */
        result GetEncryptedBitwise(Tizen::Base::String& encryptedPrivileges) const;

        /**
         * Gets the checksum of bitwise privilege information.
         *
         * @since               2.0
         * @return              An error code
         * @param[out]  checksum                        A string containing checksum of privilege information.
         * @exception   E_SUCCESS                       The method is successful.
         * @exception   E_SYSTEM                        An unexpected system error occurred.
         */
        result GetChecksum(Tizen::Base::String& checksum) const;

        /**
         * Checks whether the application has a privilege to invoke.
         *
         * @since               2.0
         * @return              A boolean value of the result
         * @param[int]  privilege               A value of enumerator of the specified privilege.
         */
        bool HasPrivilege(_Privilege privilege) const;

        /**
         * Checks whether the application has a privilege to invoke. @n
         * Unlike HasPrivilege, HasPrivilegeEx does not print the log.
         *
         * @since               2.1
         * @return              A boolean value of the result
         * @param[int]  privilege               A value of enumerator of the specified privilege.
         */
        bool HasPrivilegeEx(_Privilege privilege) const;

        /**
         * Checks whether the application has a privilege to invoke.
         *
         * @since               2.1
         * @return              A boolean value of the result
         * @param[in]   privilege               A string of the specified privilege.
         */
        bool HasPrivilege(const Tizen::Base::String& privilege) const;

private:

        result VerifyIntegrity(const Tizen::App::AppId& appId, const byte* targetBitwisePrivilege, const Tizen::Base::String& storedChecksum, int length);
        result VerifyIntegrity(const Tizen::App::AppId& appId, const byte* targetBitwisePrivilege, const Tizen::Base::String& storedChecksum, int length, int visibility, const Tizen::Base::String& storedVisibilityChecksum);
        result VerifyIntegrityEx(const Tizen::App::AppId& appId, const byte* targetBitwisePrivilege, const Tizen::Base::String& storedChecksum, int length);

        static int GetPrivilegeLevel(const Tizen::Base::String& privilegeLevel);
        static ISecretKey* GetDeviceUniqueKeyN(void);

        _PrivilegeInfo(const _PrivilegeInfo& rhs);
        _PrivilegeInfo& operator =(const _PrivilegeInfo& rhs);

private:
        Tizen::App::AppId __appId;
        int __apiVisibility;
        byte __bitwisePrivilege[MAX_BITWISE_PRIV_SIZE];
        int __bitwiseLength;
        Tizen::Base::Collection::HashMap __privilegeList;

};  // _PrivilegeInfo

}} // Tizen::Security

#endif // _FSEC_INTERNAL_PRIVILEGE_INFO_H_