1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
|
#include <string.h>
#include <errno.h>
#if 0
#include <security-manager.h>
#else
#include <stdio.h>
#include <stdint.h>
enum lib_retcode {
SECURITY_MANAGER_SUCCESS,
SECURITY_MANAGER_ERROR_INPUT_PARAM,
SECURITY_MANAGER_ERROR_MEMORY,
SECURITY_MANAGER_ERROR_REQ_NOT_COMPLETE,
SECURITY_MANAGER_ERROR_AUTHENTICATION_FAILED,
SECURITY_MANAGER_ERROR_ACCESS_DENIED
};
enum app_install_path_type {
SECURITY_MANAGER_PATH_PUBLIC_RO,
SECURITY_MANAGER_PATH_RO,
SECURITY_MANAGER_PATH_RW
};
typedef void app_inst_req;
static int diese = 0;
#define security_manager_app_inst_req_free(r) \
(printf("security_manager_app_inst_req_free(%p)\n",r),(void)0)
#define security_manager_app_inst_req_new(pr) \
(*(pr)=(void*)(intptr_t)(++diese), printf("security_manager_app_inst_req_new(%p)\n",*pr), SECURITY_MANAGER_SUCCESS)
#define security_manager_app_inst_req_set_pkg_id(r,i) \
(printf("security_manager_app_inst_req_set_pkg_id(%p,\"%s\")\n",r,i), SECURITY_MANAGER_SUCCESS)
#define security_manager_app_inst_req_set_app_id(r,i) \
(printf("security_manager_app_inst_req_set_app_id(%p,\"%s\")\n",r,i), SECURITY_MANAGER_SUCCESS)
#define security_manager_app_inst_req_add_privilege(r,p) \
(printf("security_manager_app_inst_req_add_privilege(%p,\"%s\")\n",r,p), SECURITY_MANAGER_SUCCESS)
#define security_manager_app_inst_req_add_path(r,p,t) \
(printf("security_manager_app_inst_req_add_path(%p,\"%s\",%d)\n",r,p,t), SECURITY_MANAGER_SUCCESS)
#endif
static app_inst_req *request = NULL;
static int retcode(enum lib_retcode rc)
{
switch (rc) {
case SECURITY_MANAGER_SUCCESS: return 0;
case SECURITY_MANAGER_ERROR_INPUT_PARAM: errno = EINVAL; break;
case SECURITY_MANAGER_ERROR_MEMORY: errno = ENOMEM; break;
case SECURITY_MANAGER_ERROR_REQ_NOT_COMPLETE: errno = EBADMSG; break;
case SECURITY_MANAGER_ERROR_AUTHENTICATION_FAILED: errno = EPERM; break;
case SECURITY_MANAGER_ERROR_ACCESS_DENIED: errno = EACCES; break;
default: errno = 0; break;
}
return -1;
}
void secmgr_cancel()
{
security_manager_app_inst_req_free(request);
request = NULL;
}
int secmgr_init(const char *pkgid, const char *appid)
{
int rc = security_manager_app_inst_req_new(&request);
if (rc == SECURITY_MANAGER_SUCCESS) {
rc = security_manager_app_inst_req_set_pkg_id(request, pkgid);
if (rc == SECURITY_MANAGER_SUCCESS)
rc = security_manager_app_inst_req_set_app_id(request, appid);
}
if (rc != SECURITY_MANAGER_SUCCESS)
secmgr_cancel();
return retcode(rc);
}
int secmgr_permit(const char *permission)
{
int rc = security_manager_app_inst_req_add_privilege(request, permission);
return retcode(rc);
}
static int addpath(const char *pathname, enum app_install_path_type type)
{
int rc = security_manager_app_inst_req_add_path(request, pathname, type);
return retcode(rc);
}
int secmgr_path_public_read_only(const char *pathname)
{
return addpath(pathname, SECURITY_MANAGER_PATH_PUBLIC_RO);
}
int secmgr_path_read_only(const char *pathname)
{
return addpath(pathname, SECURITY_MANAGER_PATH_RO);
}
int secmgr_path_read_write(const char *pathname)
{
return addpath(pathname, SECURITY_MANAGER_PATH_RW);
}
|