4 * Copyright (c) 2000 - 2011 Samsung Electronics Co., Ltd. All rights reserved.
5 * Copyright (C) 2013-2014 Intel Corporation.
7 * Contact: Sabera Djelti <sabera.djelti@open.eurogiciel.org>,
8 * Jayoun Lee <airjany@samsung.com>, Sewook Park <sewook7.park@samsung.com>, Jaeho Lee <jaeho81.lee@samsung.com>
10 * Licensed under the Apache License, Version 2.0 (the "License");
11 * you may not use this file except in compliance with the License.
12 * You may obtain a copy of the License at
14 * http://www.apache.org/licenses/LICENSE-2.0
16 * Unless required by applicable law or agreed to in writing, software
17 * distributed under the License is distributed on an "AS IS" BASIS,
18 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
19 * See the License for the specific language governing permissions and
20 * limitations under the License.
31 #include <sys/types.h>
34 #include <sys/smack.h>
37 #include "ail_private.h"
44 #define _E(fmt, arg...) fprintf(stderr, "[AIL_INITDB][E][%s,%d] "fmt"\n", __FUNCTION__, __LINE__, ##arg)
49 #define _D(fmt, arg...) fprintf(stderr, "[AIL_INITDB][D][%s,%d] "fmt"\n", __FUNCTION__, __LINE__, ##arg)
51 #define SET_DEFAULT_LABEL(x) \
53 if (smack_setlabel((x), "*", SMACK_LABEL_ACCESS)) \
54 _E("failed chsmack -a \"*\" %s", x); \
56 _D("chsmack -a \"*\" %s", x); \
59 static int createdb_change_perm(const char *db_file)
61 char journal_file[BUFSZE];
65 files[0] = (char *)db_file;
66 files[1] = journal_file;
69 retv_if(!db_file, AIL_ERROR_FAIL);
71 snprintf(journal_file, sizeof(journal_file), "%s%s", db_file, "-journal");
73 for (i = 0; files[i]; i++) {
74 ret = chown(files[i], GLOBAL_USER, OWNER_ROOT);
76 _E("FAIL : chown %s %d.%d, because %d", db_file, OWNER_ROOT, OWNER_ROOT, errno);
77 return AIL_ERROR_FAIL;
80 ret = chmod(files[i], S_IRUSR | S_IWUSR | S_IRGRP | S_IROTH);
82 _E("FAIL : chmod %s 0664, because %d", db_file, errno);
83 return AIL_ERROR_FAIL;
91 static int __is_authorized(void)
93 /* ail_init db should be called by as root privilege. */
95 /* euid need to be root to allow smack label changes during initialization */
96 /* uid_t euid = geteuid(); */
97 if ((uid_t) OWNER_ROOT == uid)
103 int xsystem(const char *argv[])
110 perror("fork failed");
114 execvp(argv[0], (char *const *)argv);
120 if (waitpid(pid, &status, 0) == -1) {
121 perror("waitpid failed");
124 if (WIFSIGNALED(status)) {
128 if (!WIFEXITED(status)) {
129 /* shouldn't happen */
130 perror("should not happen");
133 return WEXITSTATUS(status);
136 int main(int argc, char *argv[])
140 if (!__is_authorized()) {
141 fprintf(stderr, "You are not an authorized user!\n");
142 _D("You are not root user!\n");
144 if (remove(APP_INFO_DB_FILE))
145 _E(" %s is not removed", APP_INFO_DB_FILE);
146 if (remove(APP_INFO_DB_FILE_JOURNAL))
147 _E(" %s is not removed", APP_INFO_DB_FILE_JOURNAL);
150 ret = setenv("AIL_INITDB", "1", 1);
151 _D("AIL_INITDB : %d", ret);
153 if (setresuid(GLOBAL_USER, GLOBAL_USER, OWNER_ROOT) != 0)
154 _E("setresuid() is failed");
156 if (db_open(DB_OPEN_RW, GLOBAL_USER) != AIL_ERROR_OK) {
157 _E("Fail to create system databases");
158 return AIL_ERROR_DB_FAILED;
161 if (setuid(OWNER_ROOT) != 0)
162 _E("setuid() is failed.");
164 ret = createdb_change_perm(APP_INFO_DB_FILE);
165 if (ret == AIL_ERROR_FAIL)
168 SET_DEFAULT_LABEL(APP_INFO_DB_FILE);
169 SET_DEFAULT_LABEL(APP_INFO_DB_FILE_JOURNAL);