Code Review / src / app-framework-main.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: ac6f7ed) | patch
Fix labelling of files of widgets 62/24962/2
authorJosé Bollo <jose.bollo@iot.bzh>
Fri, 10 Jul 2020 11:18:47 +0000 (13:18 +0200)
committerJosé Bollo <jose.bollo@iot.bzh>
Sat, 11 Jul 2020 16:44:19 +0000 (18:44 +0200)
commit70d6c64f0639b0c8ed2d8624227d1ecdf2853300
tree6f6af8931306ea37a77f31a082787f6605b938a5tree | snapshot
parentac6f7ed88291b81cb70981bd7463b6a3b292fececommit | diff
Fix labelling of files of widgets

Before that change any application could browse
content of other application.

This change fixes that unintended behaviour by setting
the installed files as private to the application.

This affects the Smack labels of the files that after
the change become the label of the application.

Conversely, it will now be necessarily to explicit
shared files. It happens in situation of resource
widgets, the one that provide a binding using the
feature urn:AGL:widget:provided-binding in config.xml.

The typical example is the widget for testing: afbtest.
The exported binding must be accessible by its clients.
But because it also use files that it provides, these
files must also be accessible by clients.

For that reason, the feature urn:AGL:widget:public-files
is introduced to config files, allowing a widget to make
part of its installed files public.

The installation logic is changed to handle correctly the
security manager that applies rights of directories to
files it contains. So the declaring directories and files
using the order of increasing path length ensures that
the expected rights are applied.

Bug-AGL: SPEC-3489

Change-Id: I933446a8c155a03d9b66767f1dda63aeaeb21eb1
Signed-off-by: José Bollo <jose.bollo@iot.bzh>
src/secmgr-wrap.c diff | blob | history
src/secmgr-wrap.h diff | blob | history
src/wgtpkg-install.c diff | blob | history
Application Framework main service, maintained by iot.bzh team