X-Git-Url: https://gerrit.automotivelinux.org/gerrit/gitweb?a=blobdiff_plain;f=src%2Fwgtpkg-install.c;h=0122edab8b8ea1060c7408b25ab516c3350206c9;hb=581f99c340d6b697b3b503df683e4bdeb59736d1;hp=5e8b0e9c50b9819196f3f45a362e1e7f28feb946;hpb=2a0ac96c8e5b510c3767ff054156f17c67225a62;p=src%2Fapp-framework-main.git diff --git a/src/wgtpkg-install.c b/src/wgtpkg-install.c index 5e8b0e9..0122eda 100644 --- a/src/wgtpkg-install.c +++ b/src/wgtpkg-install.c @@ -1,5 +1,5 @@ /* - Copyright (C) 2015-2018 IoT.bzh + Copyright (C) 2015-2019 IoT.bzh author: José Bollo @@ -55,6 +55,22 @@ static const char* exec_type_strings[] = { static const char key_afm_prefix[] = "X-AFM-"; static const char key_http_port[] = "http-port"; +#define HTTP_PORT_MIN 31000 +#define HTTP_PORT_MAX 32759 +#define HTTP_PORT_IS_VALID(port) (HTTP_PORT_MIN <= (port) && (port) <= HTTP_PORT_MAX) +#define HTTP_PORT_COUNT (HTTP_PORT_MAX - HTTP_PORT_MIN + 1) +#define HTTP_PORT_ACNT ((HTTP_PORT_COUNT + 31) >> 5) +#define HTTP_PORT_ASFT(port) (((port) - HTTP_PORT_MIN) & 31) +#define HTTP_PORT_AIDX(port) (((port) - HTTP_PORT_MIN) >> 5) +#define HTTP_PORT_TEST(array,port) ((((array)[HTTP_PORT_AIDX(port)]) >> HTTP_PORT_ASFT(port)) & 1) +#define HTTP_PORT_SET(array,port) (((array)[HTTP_PORT_AIDX(port)]) |= (((uint32_t)1) << HTTP_PORT_ASFT(port))) + +static uint32_t *port_bits = NULL; + +static const char *default_permissions[] = { + "urn:AGL:token:valid" +}; + /* * normalize unit files: remove comments, remove heading blanks, * make single lines @@ -115,8 +131,8 @@ static int get_port_cb(void *closure, const char *name, const char *path, int is if (*iter == '=') { while(*++iter == ' '); p = atoi(iter); - if (p >= 0 && p < 32768) - ((uint32_t*)closure)[p >> 5] |= (uint32_t)1 << (p & 31); + if (HTTP_PORT_IS_VALID(p)) + HTTP_PORT_SET((uint32_t*)closure, p); } } iter = strstr(iter, key_afm_prefix); @@ -125,29 +141,55 @@ static int get_port_cb(void *closure, const char *name, const char *path, int is return 0; } -static int get_port() +static int update_portbits(uint32_t *portbits) { int rc; - uint32_t ports[1024]; /* 1024 * 32 = 32768 */ - - memset(ports, 0, sizeof ports); - rc = systemd_unit_list(0, get_port_cb, &ports); - if (rc >= 0) { - rc = systemd_unit_list(1, get_port_cb, ports); - if (rc >= 0) { - for (rc = 1024 ; rc < 32768 && !~ports[rc >> 5] ; rc += 32); - if (rc == 32768) { - ERROR("Can't compute a valid port"); - errno = EADDRNOTAVAIL; - rc = -1; - } else { - while (1 & (ports[rc >> 5] >> (rc & 31))) rc++; - } - } - } + + memset(portbits, 0, HTTP_PORT_ACNT * sizeof(uint32_t)); + rc = systemd_unit_list(0, get_port_cb, portbits); + if (rc >= 0) + rc = systemd_unit_list(1, get_port_cb, portbits); + if (rc < 0) + ERROR("troubles while updating ports"); return rc; } +static int first_free_port(uint32_t *portbits) +{ + int port; + + port = HTTP_PORT_MIN; + while (port <= HTTP_PORT_MAX && !~portbits[HTTP_PORT_AIDX(port)]) + port += 32; + while (port <= HTTP_PORT_MAX && HTTP_PORT_TEST(portbits, port)) + port++; + if (port > HTTP_PORT_MAX) { + ERROR("Can't compute a valid port"); + errno = EADDRNOTAVAIL; + port = -1; + } + return port; +} + +static int get_port() +{ + int port; + + /* ensure existing port bitmap */ + if (port_bits == NULL) { + port_bits = malloc(HTTP_PORT_ACNT * sizeof(uint32_t)); + if (port_bits == NULL || update_portbits(port_bits) < 0) + return -1; + } + + /* allocates the port */ + port = first_free_port(port_bits); + if (port >= 0) + HTTP_PORT_SET(port_bits, port); + + return port; +} + static int check_defined(const void *data, const char *name) { if (data) @@ -262,7 +304,7 @@ static int for_all_content(const struct wgt_desc *desc, int (*action)(const char rc = action(desc->content_src, desc->content_type); feat = desc->features; while (feat) { - if (!strcmp(feat->name, "urn:AGL:widget:provided-unit")) { + if (!strcmp(feat->name, FWK_PREFIX"widget:provided-unit")) { src = wgt_info_param(feat, "content.src"); type = wgt_info_param(feat, "content.type"); rc2 = action(src, type); @@ -409,7 +451,7 @@ static int install_file_properties(const struct wgt_desc *desc) rc = 0; feat = desc->features; while (feat) { - if (!strcmp(feat->name, "urn:AGL:widget:file-properties")) { + if (!strcmp(feat->name, FWK_PREFIX"widget:file-properties")) { param = feat->params; while (param) { if (!strcmp(param->value, "executable")) { @@ -489,6 +531,16 @@ static int install_security(const struct wgt_desc *desc) perm = next_usable_permission(); } + /* install default permissions */ + n = (unsigned int)(sizeof default_permissions / sizeof *default_permissions); + for (i = 0 ; i < n ; i++) { + perm = default_permissions[i]; + rc = secmgr_permit(perm); + INFO("permitting %s %s", perm, rc ? "FAILED!" : "success"); + if (rc) + goto error2; + } + rc = secmgr_install(); return rc; error2: @@ -503,7 +555,7 @@ struct wgt_info *install_widget(const char *wgtfile, const char *root, int force struct wgt_info *ifo; const struct wgt_desc *desc; char installdir[PATH_MAX]; - int port; + int err; struct unitconf uconf; NOTICE("-- INSTALLING widget %s to %s --", wgtfile, root); @@ -558,13 +610,9 @@ struct wgt_info *install_widget(const char *wgtfile, const char *root, int force if (install_file_properties(desc)) goto error4; - port = get_port(); - if (port < 0) - goto error4; - uconf.installdir = installdir; uconf.icondir = FWK_ICON_DIR; - uconf.port = port; + uconf.port = get_port; if (unit_install(ifo, &uconf)) goto error4; @@ -578,7 +626,9 @@ error3: wgt_info_unref(ifo); error2: + err = errno; remove_workdir(); + errno = err; error1: file_reset();