X-Git-Url: https://gerrit.automotivelinux.org/gerrit/gitweb?a=blobdiff_plain;f=src%2Fwgtpkg-install.c;h=22b8050fa50a278e81e6517f0d00865bd379e56d;hb=a069be3d476bbdaa56ce4750c8868b4f0682564a;hp=7b299f2cc7973e87b51c63e5a780cc4c47b644a5;hpb=189415eece11c543e1ccb95dff32695ddc383565;p=src%2Fapp-framework-main.git diff --git a/src/wgtpkg-install.c b/src/wgtpkg-install.c index 7b299f2..22b8050 100644 --- a/src/wgtpkg-install.c +++ b/src/wgtpkg-install.c @@ -1,5 +1,5 @@ /* - Copyright 2015 IoT.bzh + Copyright 2015, 2016, 2017 IoT.bzh author: José Bollo @@ -25,10 +25,14 @@ #include #include #include +#include +#include +#include #include "verbose.h" #include "wgt.h" #include "wgt-info.h" +#include "wgt-strings.h" #include "wgtpkg-files.h" #include "wgtpkg-workdir.h" #include "wgtpkg-zip.h" @@ -37,6 +41,68 @@ #include "wgtpkg-install.h" #include "secmgr-wrap.h" #include "utils-dir.h" +#include "wgtpkg-unit.h" +#include "utils-systemd.h" +#include "utils-file.h" + +static const char* exec_type_strings[] = { + "application/x-executable", + "application/vnd.agl.native" +}; + +static const char key_http_port[] = "X-AFM--http-port"; + +static int get_port_cb(void *closure, const char *name, const char *path, int isuser) +{ + char *iter; + char *content; + size_t length; + int rc, p; + + /* reads the file */ + rc = getfile(path, &content, &length); + if (rc < 0) + return rc; + + /* process the file */ + iter = strstr(content, key_http_port); + while (iter) { + iter += sizeof key_http_port - 1; + while(*iter && *iter != '=' && *iter != '\n') + iter++; + if (*iter == '=') { + while(*++iter == ' '); + p = atoi(iter); + if (p >= 0 && p < 32768) + ((uint32_t*)closure)[p >> 5] |= (uint32_t)1 << (p & 31); + } + iter = strstr(iter, key_http_port); + } + free(content); + return 0; +} + +static int get_port() +{ + int rc; + uint32_t ports[1024]; /* 1024 * 32 = 32768 */ + + memset(ports, 0, sizeof ports); + rc = systemd_unit_list(0, get_port_cb, &ports); + if (rc >= 0) { + rc = systemd_unit_list(1, get_port_cb, ports); + if (rc >= 0) { + for (rc = 1024 ; rc < 32768 && !~ports[rc >> 5] ; rc += 32); + if (rc == 32768) { + errno = EADDRNOTAVAIL; + rc = -1; + } else { + while (1 & (ports[rc >> 5] >> (rc & 31))) rc++; + } + } + } + return rc; +} static int check_defined(const void *data, const char *name) { @@ -56,25 +122,34 @@ static int check_valid_string(const char *value, const char *name) return -1; pos = 0; c = value[pos]; - while(c) { + if (c == 0) { + ERROR("empty string forbidden in '%s' (temporary constraints)", name); + errno = EINVAL; + return -1; + } + do { if (!isalnum(c) && !strchr(".-_", c)) { ERROR("forbidden char %c in '%s' -> '%s' (temporary constraints)", c, name, value); errno = EINVAL; return -1; } c = value[++pos]; - } + } while(c); return 0; } static int check_temporary_constraints(const struct wgt_desc *desc) { - int result = check_valid_string(desc->id, "id"); + int result; + + result = check_valid_string(desc->id, "id"); result |= check_valid_string(desc->version, "version"); + result |= check_valid_string(desc->ver, "ver"); result |= check_defined(desc->icons, "icon"); result |= check_defined(desc->content_src, "content"); if (result) return result; + if (desc->icons->next) { ERROR("widget has more than one icon defined (temporary constraints)"); errno = EINVAL; @@ -83,50 +158,84 @@ static int check_temporary_constraints(const struct wgt_desc *desc) return 0; } -static int check_permissions(const char *name, int required) +static int set_required_permissions(struct wgt_desc_param *params, int required) { - if (permission_exists(name)) { - if (request_permission(name)) { - DEBUG("granted permission: %s", name); - } else if (required) { - ERROR("ungranted permission required: %s", name); - errno = EPERM; - return 0; + int optional; + + while (params) { + /* check if target */ + if (!strcmp(params->name, string_sharp_target)) { + /* do nothing when #target */ } else { - INFO("ungranted permission optional: %s", name); + /* check the value */ + if (!strcmp(params->value, string_required)) + optional = !required; + else if (!strcmp(params->value, string_optional)) + optional = 1; + else { + ERROR("unexpected parameter value: %s found for %s", params->value, params->name); + errno = EPERM; + return -1; + } + /* set the permission */ + if (request_permission(params->name)) { + DEBUG("granted permission: %s", params->name); + } else if (optional) { + INFO("optional permission ungranted: %s", params->name); + } else { + ERROR("ungranted permission required: %s", params->name); + errno = EPERM; + return -1; + } } + params = params->next; } - return 1; + return 0; } -static int check_widget(const struct wgt_desc *desc) +static int check_permissions(const struct wgt_desc *desc) { int result; const struct wgt_desc_feature *feature; - result = check_temporary_constraints(desc); + result = 0; feature = desc->features; - while(feature) { - if (!check_permissions(feature->name, feature->required)) - result = -1; + while(result >= 0 && feature) { + if (!strcmp(feature->name, feature_required_permission)) + result = set_required_permissions(feature->params, feature->required); feature = feature->next; } return result; } -static int move_widget(const char *root, const struct wgt_desc *desc, int force) +static int check_widget(const struct wgt_desc *desc) +{ + int result; + + result = check_temporary_constraints(desc); + if (result >= 0) + result = check_permissions(desc); + return result; +} + +static int get_target_directory(char target[PATH_MAX], const char *root, const struct wgt_desc *desc) { - char newdir[PATH_MAX]; int rc; - rc = snprintf(newdir, sizeof newdir, "%s/%s/%s", root, desc->id, desc->version); - if (rc >= sizeof newdir) { - ERROR("path to long in move_widget"); + rc = snprintf(target, PATH_MAX, "%s/%s/%s", root, desc->id, desc->ver); + if (rc < PATH_MAX) + rc = 0; + else { + ERROR("path too long"); errno = EINVAL; - return -1; + rc = -1; } + return rc; +} - return move_workdir(newdir, 1, force); +static int move_widget_to(const char *destdir, int force) +{ + return move_workdir(destdir, 1, force); } static int install_icon(const struct wgt_desc *desc) @@ -136,16 +245,16 @@ static int install_icon(const struct wgt_desc *desc) int rc; create_directory(FWK_ICON_DIR, 0755, 1); - rc = snprintf(link, sizeof link, "%s/%s@%s", FWK_ICON_DIR, desc->id, desc->version); - if (rc >= sizeof link) { - ERROR("link to long in install_icon"); + rc = snprintf(link, sizeof link, "%s/%s", FWK_ICON_DIR, desc->idaver); + if (rc >= (int)sizeof link) { + ERROR("link too long in install_icon"); errno = EINVAL; return -1; } rc = snprintf(target, sizeof target, "%s/%s", workdir, desc->icons->src); - if (rc >= sizeof target) { - ERROR("target to long in install_icon"); + if (rc >= (int)sizeof target) { + ERROR("target too long in install_icon"); errno = EINVAL; return -1; } @@ -157,12 +266,26 @@ static int install_icon(const struct wgt_desc *desc) return rc; } +static int install_exec_flag(const struct wgt_desc *desc) +{ + int i; + + if (desc->content_type) { + i = sizeof exec_type_strings / sizeof *exec_type_strings; + while (i) { + if (!strcasecmp(desc->content_type, exec_type_strings[--i])) + return fchmodat(workdirfd, desc->content_src, 0755, 0); + } + } + return 0; +} + static int install_security(const struct wgt_desc *desc) { char path[PATH_MAX], *head; const char *icon, *perm; - int rc, len, lic, lf; - unsigned int i, n; + int rc; + unsigned int i, n, len, lic, lf; struct filedesc *f; rc = secmgr_init(desc->id); @@ -175,8 +298,8 @@ static int install_security(const struct wgt_desc *desc) /* instal the files */ head = stpcpy(path, workdir); - assert(sizeof path > (head - path)); - len = (int)(sizeof path - (head - path)); + assert(head < path + sizeof path); + len = (unsigned)((path + sizeof path) - head); if (!len) { ERROR("root path too long in install_security"); errno = ENAMETOOLONG; @@ -185,12 +308,12 @@ static int install_security(const struct wgt_desc *desc) len--; *head++ = '/'; icon = desc->icons->src; - lic = (int)strlen(icon); + lic = (unsigned)strlen(icon); n = file_count(); i = 0; while(i < n) { f = file_of_index(i++); - lf = (int)strlen(f->name); + lf = (unsigned)strlen(f->name); if (lf >= len) { ERROR("path too long in install_security"); errno = ENAMETOOLONG; @@ -209,6 +332,7 @@ static int install_security(const struct wgt_desc *desc) perm = first_usable_permission(); while(perm) { rc = secmgr_permit(perm); + INFO("permitting %s %s", perm, rc ? "FAILED!" : "success"); if (rc) goto error2; perm = next_usable_permission(); @@ -227,12 +351,14 @@ struct wgt_info *install_widget(const char *wgtfile, const char *root, int force { struct wgt_info *ifo; const struct wgt_desc *desc; + char installdir[PATH_MAX]; + int port; NOTICE("-- INSTALLING widget %s to %s --", wgtfile, root); /* workdir */ create_directory(root, 0755, 1); - if (make_workdir_base(root, "TMP", 0)) { + if (make_workdir(root, "TMP", 0)) { ERROR("failed to create a working directory"); goto error1; } @@ -247,22 +373,39 @@ struct wgt_info *install_widget(const char *wgtfile, const char *root, int force if (!ifo) goto error2; + reset_requested_permissions(); desc = wgt_info_desc(ifo); if (check_widget(desc)) goto error3; - if (move_widget(root, desc, force)) + if (get_target_directory(installdir, root, desc)) + goto error3; + + if (move_widget_to(installdir, force)) goto error3; if (install_icon(desc)) goto error3; if (install_security(desc)) - goto error3; - + goto error4; + + if (install_exec_flag(desc)) + goto error4; + + port = get_port(); + if (port < 0) + goto error4; + + if (unit_install(ifo, installdir, FWK_ICON_DIR, port)) + goto error4; + file_reset(); return ifo; +error4: + /* todo: cleanup */ + error3: wgt_info_unref(ifo);