diff options
| author | jk7744.park <jk7744.park@samsung.com> | 2016-03-04 12:55:45 +0900 |
|---|---|---|
| committer | jk7744.park <jk7744.park@samsung.com> | 2016-03-04 12:55:45 +0900 |
| commit | 263237c717595f1c09683263c0eca080bc70b686 (patch) | |
| tree | 1ce424afbb302cdd6ae3e7622b5f9a14f0a2ef3b | |
| parent | 1d681c16d25171f188b43eb9ad3e2d5260719319 (diff) | |
| download | privilege-checker-tizen_2.3.1.tar.gz privilege-checker-tizen_2.3.1.tar.bz2 privilege-checker-tizen_2.3.1.zip | |
Tizen 2.4.0 rev3 SDK Public Releasesubmit/tizen_2.3.1/20160304.093452accepted/tizen/2.3.1/wearable/20160306.221451accepted/tizen/2.3.1/mobile/20160306.221347tizen_2.3.1accepted/tizen_2.3.1_wearableaccepted/tizen_2.3.1_mobile
| -rwxr-xr-x | capi/include/privilege_manager.h | 14 | ||||
| -rwxr-xr-x | capi/src/privilege_info.c | 106 | ||||
| -rwxr-xr-x | capi/src/privilege_manager.c | 801 | ||||
| -rwxr-xr-x | test/tc-privilege-manager.c | 183 |
4 files changed, 439 insertions, 665 deletions
diff --git a/capi/include/privilege_manager.h b/capi/include/privilege_manager.h index 4788bc1..e3a9690 100755 --- a/capi/include/privilege_manager.h +++ b/capi/include/privilege_manager.h @@ -57,23 +57,21 @@ typedef enum } privilege_manager_error_e; /** - * @brief verify privilege name and level in the privilege list. + * @brief verify privilege in the privilege list by checking its name and level at given api version. * @remarks @a privilege_list must be released with free() by you. - * @remarks @a error_privilege_name must be released with free() by you. + * @remarks @a error_message must be released with free() by you. + * @param [in] api_version The api version of the application * @param [in] privilege_manager_package_type_e The privilege_manager_package_type_e * @param [in] privilege_list The privilege_list * @param [in] privilege_manager_visibility_e The privilege_manager_visibility_e - * @param [out] error_privilege_name The error_privilege_name's value is assigned when PRVMGR_ERR_MISMACHED_PRIVILEGE_LEVEL and PRVMGR_ERR_NO_EXIST_PRIVILEGE are returned, otherwise null is assigned. - * @return 0 on success, otherwise a negative error value. + * @param [out] error_message The error_message's value is assigned when the return value isn't PRVMGR_ERR_NONE, otherwise null is assigned. + * @return 0 on success, otherwise a nonzero error value. * @retval #PRVMGR_ERR_NONE Successful - * @retval #PRVMGR_ERR_MISMACHED_PRIVILEGE_LEVEL privilege level is higher than visibility. Error_privilege_name'value is assigned. - * @retval #PRVMGR_ERR_NO_EXIST_PRIVILEGE privilege don't exist. Error_privilege_name'value is assigned. * @retval #PRVMGR_ERR_OUT_OF_MEMORY Out of memory + * @retvak #PRVMGR_ERR_INVALID_PRIVILEGE The privilege_list contains invalid privilege(s). * @retval #PRVMGR_ERR_INVALID_PARAMETER Invalid parameter * @retval #PRVMGR_ERR_INTERNAL_ERROR Internal error */ -EXPORT_API int privilege_manager_verify_privilege_list(privilege_manager_package_type_e package_type, GList* privilege_list, privilege_manager_visibility_e visibility, char **error_privilege_name); - EXPORT_API int privilege_manager_verify_privilege(const char* api_version, privilege_manager_package_type_e package_type, GList* privilege_list, privilege_manager_visibility_e visibility, char **error_message); #ifdef __cplusplus diff --git a/capi/src/privilege_info.c b/capi/src/privilege_info.c index fe2af08..97e8469 100755 --- a/capi/src/privilege_info.c +++ b/capi/src/privilege_info.c @@ -571,110 +571,4 @@ int privilege_info_get_privilege_description(const char *privilege, char **descr return PRVMGR_ERR_NONE; } -static void __free_privilege_list(GList* privilege_list) -{ - GList* l = NULL; - for (l = privilege_list; l != NULL; l = l->next) - { - privilege_info_db_row_s* privilege_info_db_row = (privilege_info_db_row_s*)l->data; - if(privilege_info_db_row->privilege_name != NULL) - free(privilege_info_db_row->privilege_name); - } -} - - -static int __privilege_manager_core_privilege_level(const char* privilege, int* privilege_level) -{ - TryReturn(privilege != NULL, PRVMGR_ERR_INVALID_PARAMETER, "[PRVMGR_ERR_INVALID_PARAMETER] privilege is NULL"); - - int ret; - GList* privilege_list; - ret = privilege_db_manager_get_privilege_list("2.4",PRIVILEGE_DB_MANAGER_PACKAGE_TYPE_CORE, &privilege_list); - if(ret != PRIVILEGE_DB_MANAGER_ERR_NONE){ - LOGE("[FAIL TO CALL FUNCTION] privilege_db_manager_get_privilege_list()"); - return PRVMGR_ERR_INTERNAL_ERROR; - } - - GList* l = NULL; - for (l = privilege_list; l != NULL; l = l->next) - { - privilege_info_db_row_s* privilege_info_db_row = (privilege_info_db_row_s*)l->data; - if (strcmp(privilege_info_db_row->privilege_name, privilege) == 0) - { - *privilege_level = privilege_info_db_row->privilege_level_id; - __free_privilege_list(privilege_list); - return PRVMGR_ERR_NONE; - } - } - __free_privilege_list(privilege_list); - - return PRVMGR_ERR_NO_EXIST_PRIVILEGE; -} - -int privilege_manager_verify_privilege_list(privilege_manager_package_type_e package_type, GList* privilege_list, privilege_manager_visibility_e visibility, char** error_privilege_name) -{ - LOGD("privilege_info_compare_privilege_level called"); - GList *l; - int ret; - int i = 0; - *error_privilege_name = NULL; - - TryReturn(privilege_list != NULL, PRVMGR_ERR_INVALID_PARAMETER, "[PRVMGR_ERR_INVALID_PARAMETER] privilege_list is NULL"); - - for (l = privilege_list; l != NULL; l = l->next) - { - int privilege_level_id; - char* privilege_name = (char*)l->data; - - TryReturn(privilege_name != NULL, PRVMGR_ERR_INVALID_PARAMETER, "[PRVMGR_ERR_INVALID_PARAMETER] privilege_list[%d] is NULL", i); - i++; - - LOGD("Checking privilege : %s", privilege_name); - - ret = __privilege_manager_core_privilege_level(privilege_name, &privilege_level_id); - if(ret == PRVMGR_ERR_NO_EXIST_PRIVILEGE) - { - LOGE("[PRVMGR_ERR_NO_EXIST_PRIVILEGE] There are no privilege %s in DB", privilege_name); - *error_privilege_name = (char*)calloc(strlen(privilege_name) + 1, sizeof(char)); - TryReturn(*error_privilege_name != NULL, PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] Memory allocation failed."); - memcpy(*error_privilege_name, privilege_name, strlen(privilege_name)); - - return PRVMGR_ERR_NO_EXIST_PRIVILEGE; - } - else if(ret == PRVMGR_ERR_NONE) - { - if(visibility == PRVMGR_PACKAGE_VISIBILITY_PARTNER){ - if(privilege_level_id == PRIVILEGE_DB_MANAGER_PRIVILEGE_LEVEL_PLATFORM) - { - LOGE("[PRVMGR_ERR_MISMACHED_PRIVILEGE_LEVEL] Visibility and Privilege level are mismatched"); - LOGE("[PRVMGR_ERR_MISMACHED_PRIVILEGE_LEVEL] Visibility : partner, Privilege Level : %d", privilege_level_id); - *error_privilege_name = (char*)calloc(strlen(privilege_name) + 1, sizeof(char)); - TryReturn(*error_privilege_name != NULL, PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] Memory allocation failed."); - memcpy(*error_privilege_name, privilege_name, strlen(privilege_name)); - - return PRVMGR_ERR_MISMACHED_PRIVILEGE_LEVEL; - } - } - else if(visibility == PRVMGR_PACKAGE_VISIBILITY_PUBLIC){ - if(privilege_level_id == PRIVILEGE_DB_MANAGER_PRIVILEGE_LEVEL_PARTNER || privilege_level_id == PRIVILEGE_DB_MANAGER_PRIVILEGE_LEVEL_PLATFORM) - { - LOGE("[PRVMGR_ERR_MISMACHED_PRIVILEGE_LEVEL] Visibility and Privilege level are mismatched"); - LOGE("[PRVMGR_ERR_MISMACHED_PRIVILEGE_LEVEL] Visibility : public, Privilege Level : %d", privilege_level_id); - *error_privilege_name = (char*)calloc(strlen(privilege_name) + 1, sizeof(char)); - TryReturn(*error_privilege_name != NULL, PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] Memory allocation failed."); - memcpy(*error_privilege_name, privilege_name, strlen(privilege_name)); - - return PRVMGR_ERR_MISMACHED_PRIVILEGE_LEVEL; - } - } - } - else - { - return ret; - } - } - - return PRVMGR_ERR_NONE; -} - diff --git a/capi/src/privilege_manager.c b/capi/src/privilege_manager.c index ad9c9ed..32e6869 100755 --- a/capi/src/privilege_manager.c +++ b/capi/src/privilege_manager.c @@ -4,282 +4,281 @@ #include "privilege_db_manager.h" #include "privilege_manager.h" -#define MESSAGE_SIZE 512 -#define MESSAGE_LIST_SIZE 10000 +#define MESSAGE_SIZE 512 #ifdef LOG_TAG #undef LOG_TAG #define LOG_TAG "PRIVILEGE_MANAGER" #endif +#define API_VERSION_PADDING ".0.0" +#define API_VERSION_PADDING_LEN strlen(API_VERSION_PADDING) +#define MAX_API_VERSION_LEN 5 + #define TryReturn(condition, expr, returnValue, ...) \ - if (!(condition)) { \ - expr; \ - LOGE(__VA_ARGS__); \ - return returnValue; \ - } \ - else {;} -static int __privilege_manager_check_privilege_list(const char* api_version, const char* privilege, GList* vaild_privilege_list, int* privilege_level, char** changed_to, char** valid_api_version) + if (!(condition)) { \ + LOGE(__VA_ARGS__); \ + expr; \ + return returnValue; \ + } + +static int __privilege_manager_check_privilege_list(const char *api_version, const char *privilege, GList * vaild_privilege_list, int *privilege_level, char **changed_to, char **valid_api_version) { - TryReturn(privilege != NULL,, PRVMGR_ERR_INVALID_PARAMETER, "[PRVMGR_ERR_INVALID_PARAMETER] privilege is NULL"); - int i, is_valid_version = 0; - int ret_val = PRVMGR_ERR_NO_EXIST_PRIVILEGE; - char* tmp_api_version = NULL; - char* tmp_expired_version = NULL; - char* tmp_issued_version = NULL; - GList* l = NULL; - for (l = vaild_privilege_list; l != NULL; l = l->next) - { - privilege_info_db_row_s* privilege_info_db_row = (privilege_info_db_row_s*)l->data; - if (strcmp(privilege_info_db_row->privilege_name, privilege) == 0) - { - LOGD("Matched privilege name exist"); - LOGD("Check api version"); - if(tmp_api_version != NULL) - { - free(tmp_api_version); - tmp_api_version = NULL; - } - if(tmp_issued_version != NULL) - { - free(tmp_issued_version); - tmp_issued_version = NULL; - } - if(tmp_expired_version != NULL) - { - free(tmp_expired_version); - tmp_expired_version = NULL; - } - tmp_api_version = strdup(api_version); - TryReturn(tmp_api_version != NULL, free(tmp_api_version); free(tmp_expired_version); free(tmp_issued_version), PRVMGR_ERR_OUT_OF_MEMORY,"[PRVMGR_ERR_OUT_OF_MEMORY] tmp_api_version's strdup is failed."); - strncat(tmp_api_version, ".0", strlen(".0")); - tmp_expired_version = strdup(privilege_info_db_row->expired_version); - TryReturn(tmp_expired_version != NULL, free(tmp_api_version); free(tmp_expired_version); free(tmp_issued_version), PRVMGR_ERR_OUT_OF_MEMORY,"[PRVMGR_ERR_OUT_OF_MEMORY] tmp_expired_version's strdup is failed."); - strncat(tmp_expired_version, ".0", strlen(".0")); - tmp_issued_version = strdup(privilege_info_db_row->issued_version); - TryReturn(tmp_issued_version != NULL, free(tmp_api_version); free(tmp_expired_version); free(tmp_issued_version), PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] tmp_issued_version's strdup is failed."); - strncat(tmp_issued_version, ".0", strlen(".0")); - - for(i=0; i<5; i++) - { - if( !(tmp_api_version[i] <= tmp_expired_version[i]) ) - { - if(i >= 2) - { - if( !(tmp_api_version[i-2] < tmp_expired_version[i-2]) ) - { - is_valid_version = 1; - } - } - else - { - is_valid_version = 1; - } - } - else if ( !(tmp_api_version[i] >= tmp_issued_version[i])) - { - if( i >= 2 ) - { - if( !(tmp_api_version[i-2] > tmp_issued_version[i-2]) ) - { - is_valid_version = 2; - } - } - else - { - is_valid_version = 2; - } - } - } - - if(is_valid_version > 0) - { - LOGD("%s is invalid in tizen version: %s", privilege_info_db_row->privilege_name, api_version); - } - - if(is_valid_version == 0) - { - *privilege_level = privilege_info_db_row->privilege_level_id; - - ret_val = PRVMGR_ERR_NONE; - goto FINISH; - } - else if(is_valid_version == 1) - { - LOGD("privilege deprecated version is lower than api version"); - *valid_api_version = strdup(privilege_info_db_row->expired_version); - TryReturn(valid_api_version != NULL, free(tmp_api_version); free(tmp_issued_version); free(tmp_expired_version), PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] valid_api_version's strdup is failed."); - - if(privilege_info_db_row->changed_to != NULL && strcmp(privilege_info_db_row->changed_to, "") != 0 ) - { - LOGD("%s was changed to %s.", privilege, privilege_info_db_row->changed_to); - *changed_to = strdup(privilege_info_db_row->changed_to); - TryReturn(changed_to != NULL, free(tmp_api_version); free(tmp_issued_version); free(tmp_expired_version), PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] changed_to's strdup is failed."); - } - - ret_val = PRVMGR_ERR_DEPRECATED_PRIVILEGE; - goto FINISH; - } - else if(is_valid_version == 2) - { - LOGD("privilege issued version is higher than api version"); - *valid_api_version = strdup(privilege_info_db_row->issued_version); - TryReturn(valid_api_version != NULL, free(tmp_api_version); free(tmp_issued_version); free(tmp_expired_version), PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] valid_api_version's strdup is failed."); - - ret_val = PRVMGR_ERR_NO_EXIST_PRIVILEGE; - goto FINISH; - } - } - } - -FINISH: - free(tmp_issued_version); - free(tmp_expired_version); - free(tmp_api_version); - return ret_val; + TryReturn(privilege != NULL, , PRVMGR_ERR_INVALID_PARAMETER, "[PRVMGR_ERR_INVALID_PARAMETER] privilege is NULL"); + int i, is_valid_version = 0; + int ret_val = PRVMGR_ERR_NO_EXIST_PRIVILEGE; + char *tmp_api_version = NULL; + char *tmp_expired_version = NULL; + char *tmp_issued_version = NULL; + GList *l = NULL; + for (l = vaild_privilege_list; l != NULL; l = l->next) { + privilege_info_db_row_s *privilege_info_db_row = (privilege_info_db_row_s *) l->data; + if (strcmp(privilege_info_db_row->privilege_name, privilege) == 0) { + LOGD("Matched privilege name exist"); + LOGD("Check api version"); + + if (tmp_api_version != NULL) { + free(tmp_api_version); + tmp_api_version = NULL; + } + if (tmp_issued_version != NULL) { + free(tmp_issued_version); + tmp_issued_version = NULL; + } + if (tmp_expired_version != NULL) { + free(tmp_expired_version); + tmp_expired_version = NULL; + } + is_valid_version = 0; + + tmp_api_version = strdup(api_version); + TryReturn(tmp_api_version != NULL, ret_val = PRVMGR_ERR_OUT_OF_MEMORY; + goto FINISH, PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] tmp_api_version's strdup is failed."); + size_t new_size = snprintf(0, 0, "%s%s", tmp_api_version, API_VERSION_PADDING) + 1; + tmp_api_version = realloc(tmp_api_version, new_size * sizeof(char)); + TryReturn(tmp_api_version != NULL, ret_val = PRVMGR_ERR_OUT_OF_MEMORY; + goto FINISH, PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] tmp_api_version's realloc is failed."); + strncat(tmp_api_version, API_VERSION_PADDING, API_VERSION_PADDING_LEN); + + tmp_expired_version = strdup(privilege_info_db_row->expired_version); + TryReturn(tmp_expired_version != NULL, ret_val = PRVMGR_ERR_OUT_OF_MEMORY; + goto FINISH, PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] tmp_expired_version's strdup is failed."); + new_size = snprintf(0, 0, "%s%s", tmp_expired_version, API_VERSION_PADDING) + 1; + tmp_expired_version = realloc(tmp_expired_version, new_size * sizeof(char)); + TryReturn(tmp_expired_version != NULL, ret_val = PRVMGR_ERR_OUT_OF_MEMORY; + goto FINISH, PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] tmp_expired_version's realloc is failed."); + strncat(tmp_expired_version, API_VERSION_PADDING, API_VERSION_PADDING_LEN); + + tmp_issued_version = strdup(privilege_info_db_row->issued_version); + TryReturn(tmp_issued_version != NULL, ret_val = PRVMGR_ERR_OUT_OF_MEMORY; + goto FINISH, PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] tmp_issued_version's strdup is failed."); + new_size = snprintf(0, 0, "%s%s", tmp_issued_version, API_VERSION_PADDING) + 1; + tmp_issued_version = realloc(tmp_issued_version, new_size * sizeof(char)); + TryReturn(tmp_issued_version != NULL, ret_val = PRVMGR_ERR_OUT_OF_MEMORY; + goto FINISH, PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] tmp_issued_version's realloc is failed."); + strncat(tmp_issued_version, API_VERSION_PADDING, API_VERSION_PADDING_LEN); + + for (i = 0; is_valid_version == 0 && i < MAX_API_VERSION_LEN; i++) { + if (tmp_api_version[i] > tmp_expired_version[i]) + is_valid_version = 1; + else if (tmp_api_version[i] < tmp_expired_version[i]) + break; + } + + for (i = 0; is_valid_version == 0 && i < MAX_API_VERSION_LEN; i++) { + if (tmp_api_version[i] < tmp_issued_version[i]) + is_valid_version = 2; + else if (tmp_api_version[i] > tmp_issued_version[i]) + break; + } + + if (is_valid_version > 0) + LOGD("%s is invalid in tizen version: %s", privilege_info_db_row->privilege_name, api_version); + + if (is_valid_version == 0) { + *privilege_level = privilege_info_db_row->privilege_level_id; + ret_val = PRVMGR_ERR_NONE; + goto FINISH; + } else if (is_valid_version == 1) { + LOGD("privilege deprecated version is lower than api version"); + if (*valid_api_version != NULL) { + free(*valid_api_version); + *valid_api_version = NULL; + } + *valid_api_version = strdup(privilege_info_db_row->expired_version); + TryReturn(valid_api_version != NULL, ret_val = PRVMGR_ERR_OUT_OF_MEMORY; + goto FINISH, PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] valid_api_version's strdup is failed."); + + if (privilege_info_db_row->changed_to != NULL && strcmp(privilege_info_db_row->changed_to, "") != 0) { + if (*changed_to != NULL) { + free(*changed_to); + *changed_to = NULL; + } + LOGD("%s was changed to %s.", privilege, privilege_info_db_row->changed_to); + *changed_to = strdup(privilege_info_db_row->changed_to); + TryReturn(changed_to != NULL, ret_val = PRVMGR_ERR_OUT_OF_MEMORY; + goto FINISH, PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] changed_to's strdup is failed."); + } + + ret_val = PRVMGR_ERR_DEPRECATED_PRIVILEGE; + } else if (is_valid_version == 2) { + LOGD("privilege issued version is higher than api version"); + if (*valid_api_version != NULL) { + free(*valid_api_version); + *valid_api_version = NULL; + } + *valid_api_version = strdup(privilege_info_db_row->issued_version); + TryReturn(valid_api_version != NULL, ret_val = PRVMGR_ERR_OUT_OF_MEMORY; + goto FINISH, PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] valid_api_version's strdup is failed."); + + ret_val = PRVMGR_ERR_NO_EXIST_PRIVILEGE; + } + } + } + + FINISH: + free(tmp_issued_version); + free(tmp_expired_version); + free(tmp_api_version); + return ret_val; } -const char* __get_privilege_level_string(privilege_db_manager_privilege_level_e privilege_db_manager_privilege_level) +const char *__get_privilege_level_string(privilege_db_manager_privilege_level_e privilege_db_manager_privilege_level) { - if(privilege_db_manager_privilege_level == PRIVILEGE_DB_MANAGER_PRIVILEGE_LEVEL_PUBLIC){ - return "public"; - }else if(privilege_db_manager_privilege_level == PRIVILEGE_DB_MANAGER_PRIVILEGE_LEVEL_PARTNER){ - return "partner"; - }else if(privilege_db_manager_privilege_level == PRIVILEGE_DB_MANAGER_PRIVILEGE_LEVEL_PLATFORM){ - return "platform"; - }else{ - return "not defined privilege"; - } + if (privilege_db_manager_privilege_level == PRIVILEGE_DB_MANAGER_PRIVILEGE_LEVEL_PUBLIC) + return "public"; + else if (privilege_db_manager_privilege_level == PRIVILEGE_DB_MANAGER_PRIVILEGE_LEVEL_PARTNER) + return "partner"; + else if (privilege_db_manager_privilege_level == PRIVILEGE_DB_MANAGER_PRIVILEGE_LEVEL_PLATFORM) + return "platform"; + else + return "not defined privilege"; } - -int privilege_manager_verify_privilege(const char* api_version, privilege_manager_package_type_e package_type, GList* privilege_list, privilege_manager_visibility_e visibility, char **error_message) +int privilege_manager_verify_privilege(const char *api_version, privilege_manager_package_type_e package_type, GList * privilege_list, privilege_manager_visibility_e visibility, char **error_message) { - LOGD("privilege_manager_verify_privilege called"); - GList *l; - int ret; - int ret_val = PRVMGR_ERR_NONE; - char message_list[MESSAGE_LIST_SIZE] = {0,}; - char message[MESSAGE_SIZE] = {0,}; - char* changed_to = NULL; - char* valid_api_version = NULL; - GList* vaild_privilege_list; - char* wrt_active_version = "2.3.1"; - int is_valid_wrt_version = 1; - char* pkg_type = NULL; - int i = 0; - //Check invaild parameters - if (api_version == NULL){ - LOGE("[PRVMGR_ERR_INVALID_PARAMETER] api_version is NULL"); - *error_message = strdup("[PRVMGR_ERR_INVALID_PARAMETER] api_version is NULL"); - TryReturn(error_message != NULL,, PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] error_message's strdup is failed."); - - return PRVMGR_ERR_INVALID_PARAMETER; - }else{ - int is_vaild_version_type = 1; - int api_version_size = strlen(api_version); - if( api_version_size % 2 == 1 && (3 <= api_version_size && api_version_size <= 7) ){ - for(i=0; i<api_version_size; i++){ - if(i % 2 == 0){ - if( !('0' <= api_version[i] && api_version[i] <= '9') ){ - is_vaild_version_type = 0; - } - }else{ - if(api_version[i] != '.'){ - is_vaild_version_type = 0; - } - } - } - }else{ - is_vaild_version_type = 0; - } - - if(is_vaild_version_type == 0){ - LOGE("[PRVMGR_ERR_INVALID_PARAMETER] %s is in invaild form. api_version form should be X.X, X.X.X or X.X.X.X (X=integer)", api_version); - *error_message = strdup("[PRVMGR_ERR_INVALID_PARAMETER] api_version form should be a X.X, X.X.X or X.X.X.X (X=integer)"); - TryReturn(error_message != NULL,, PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] error_message's strdup is failed"); - - return PRVMGR_ERR_INVALID_PARAMETER; - } - } - - if(package_type != PRVMGR_PACKAGE_TYPE_WRT && package_type != PRVMGR_PACKAGE_TYPE_CORE){ - LOGD("checking package type = %d", package_type); - LOGE("[PRVMGR_ERR_INVALID_PARAMETER] package_type is not a PRVMGR_PACKAGE_TYPE_WRT or PRVMGR_PACKAGE_TYPE_CORE"); - *error_message = strdup("[PRVMGR_ERR_INVALID_PARAMETER] package_type is a unknown type. package_type must be a PRVMGR_PACKAGE_TYPE_WRT or PRVMGR_PACKAGE_TYPE_CORE"); - TryReturn(error_message != NULL,, PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] error_message's strdup is failed."); - - return PRVMGR_ERR_INVALID_PARAMETER; - } - if(package_type == PRVMGR_PACKAGE_TYPE_WRT) - { - char* tmp_api_version = strdup(api_version); - strncat(tmp_api_version,".0", strlen(".0")); - - for( i=0; i<5; i++ ) - { - if( ! (tmp_api_version[i] >= wrt_active_version[i]) ) - { - if( i >= 2 ) - { - if( !(tmp_api_version[i-2] > wrt_active_version[i-2]) ) - { - is_valid_wrt_version = 0; - } - } - else - { - is_valid_wrt_version = 0; - } - } - } - pkg_type = strdup("WRT"); - TryReturn(pkg_type != NULL, free(tmp_api_version), PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] pkg_type's strdup is failed."); - LOGD("package type = %s, api version %s, is valid wrt version %d", pkg_type, api_version, is_valid_wrt_version); - free(tmp_api_version); - } - else if(package_type == PRVMGR_PACKAGE_TYPE_CORE) - { - pkg_type = strdup("Native"); - TryReturn(pkg_type != NULL,, PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] pkg_type's strdup is failed."); - } - - if( (visibility & PRVMGR_PACKAGE_VISIBILITY_PUBLIC) != PRVMGR_PACKAGE_VISIBILITY_PUBLIC - && (visibility & PRVMGR_PACKAGE_VISIBILITY_PARTNER) != PRVMGR_PACKAGE_VISIBILITY_PARTNER - && (visibility & PRVMGR_PACKAGE_VISIBILITY_PLATFORM) != PRVMGR_PACKAGE_VISIBILITY_PLATFORM ){ - - LOGE("[PRVMGR_ERR_INVALID_PARAMETER] visibility don't include any public, partner, platform"); - *error_message = strdup("[INVALID_PARAMETER] Signature Level is invalid. Signature Level must be a public, partner or platform"); - TryReturn(error_message != NULL, free(pkg_type), PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] error_message's strdup is failed."); - free(pkg_type); - return PRVMGR_ERR_INVALID_PARAMETER; - } - - if(privilege_list == NULL){ - LOGE("[PRVMGR_ERR_INVALID_PARAMETER] privilege_list is NULL"); - *error_message = strdup("[PRVMGR_ERR_INVALID_PARAMETER] privilege_list is NULL"); - TryReturn(error_message != NULL, free(pkg_type), PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] error_message's strdup is failed."); - - free(pkg_type); - return PRVMGR_ERR_INVALID_PARAMETER; - } - - //Get vaild privilege list - ret = privilege_db_manager_get_privilege_list(api_version, package_type, &vaild_privilege_list); - if(ret != PRIVILEGE_DB_MANAGER_ERR_NONE){ - LOGE("[FAIL TO CALL FUNCTION] privilege_db_manager_get_privilege_list()"); - *error_message = strdup("[PRVMGR_ERR_INTERNAL_ERROR] failed to get privilege list from DB"); - free(pkg_type); - return PRVMGR_ERR_INTERNAL_ERROR; - } - - //Compare received privilege with valid privilege list - for (l = privilege_list; l != NULL; l = l->next) - { - int privilege_level_id = PRIVILEGE_DB_MANAGER_PRIVILEGE_LEVEL_PUBLIC; - char* privilege_name = (char*)l->data; - - LOGD("Checking privilege = %s", privilege_name); + LOGD("privilege_manager_verify_privilege called"); + GList *l; + int ret; + int ret_val = PRVMGR_ERR_NONE; + char *message_list = NULL; + char *noexist_message = NULL; + char *deprecated_message = NULL; + char *mismatched_message = NULL; + char message[MESSAGE_SIZE] = { 0, }; + char guide_message[MESSAGE_SIZE] = { 0, }; + char *changed_to = NULL; + char *valid_api_version = NULL; + GList *vaild_privilege_list; + char *wrt_active_version = "2.3.1"; + int is_valid_wrt_version = 1; + char *pkg_type = NULL; + int i = 0; + + /* Check invaild parameters */ + if (api_version == NULL) { + LOGE("[PRVMGR_ERR_INVALID_PARAMETER] api_version is NULL"); + *error_message = strdup("[PRVMGR_ERR_INVALID_PARAMETER] api_version is NULL"); + TryReturn(error_message != NULL, , PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] error_message's strdup is failed."); + + return PRVMGR_ERR_INVALID_PARAMETER; + } else { + int is_vaild_version_type = 1; + int api_version_size = strlen(api_version); + if (api_version_size % 2 == 1 && (3 <= api_version_size && api_version_size <= 7)) { + for (i = 0; i < api_version_size; i++) { + if (i % 2 == 0) { + if (!('0' <= api_version[i] && api_version[i] <= '9')) + is_vaild_version_type = 0; + } else { + if (api_version[i] != '.') + is_vaild_version_type = 0; + } + } + } else { + is_vaild_version_type = 0; + } + + if (is_vaild_version_type == 0) { + LOGE("[PRVMGR_ERR_INVALID_PARAMETER] %s is in invaild form. api_version form should be X.X, X.X.X or X.X.X.X (X=integer)", api_version); + *error_message = strdup("[PRVMGR_ERR_INVALID_PARAMETER] api_version form should be a X.X, X.X.X or X.X.X.X (X=integer)"); + TryReturn(error_message != NULL, , PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] error_message's strdup is failed"); + + return PRVMGR_ERR_INVALID_PARAMETER; + } + } + + if (package_type != PRVMGR_PACKAGE_TYPE_WRT && package_type != PRVMGR_PACKAGE_TYPE_CORE) { + LOGD("checking package type = %d", package_type); + LOGE("[PRVMGR_ERR_INVALID_PARAMETER] package_type is not a PRVMGR_PACKAGE_TYPE_WRT or PRVMGR_PACKAGE_TYPE_CORE"); + *error_message = strdup("[PRVMGR_ERR_INVALID_PARAMETER] package_type is a unknown type. package_type must be a PRVMGR_PACKAGE_TYPE_WRT or PRVMGR_PACKAGE_TYPE_CORE"); + TryReturn(error_message != NULL, , PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] error_message's strdup is failed."); + + return PRVMGR_ERR_INVALID_PARAMETER; + } + if (package_type == PRVMGR_PACKAGE_TYPE_WRT) { + char *tmp_api_version = strdup(api_version); + strncat(tmp_api_version, API_VERSION_PADDING, API_VERSION_PADDING_LEN); + + for (i = 0; i < 5; i++) { + if (!(tmp_api_version[i] >= wrt_active_version[i])) { + if (i >= 2) { + if (!(tmp_api_version[i - 2] > wrt_active_version[i - 2])) + is_valid_wrt_version = 0; + } else { + is_valid_wrt_version = 0; + } + } + } + pkg_type = strdup("WRT"); + TryReturn(pkg_type != NULL, free(tmp_api_version), PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] pkg_type's strdup is failed."); + LOGD("package type = %s, api version %s, is valid wrt version %d", pkg_type, api_version, is_valid_wrt_version); + snprintf(guide_message, MESSAGE_SIZE, "Check config.xml| - Current required_version(=api version) = %s, | ", api_version); + free(tmp_api_version); + } else if (package_type == PRVMGR_PACKAGE_TYPE_CORE) { + pkg_type = strdup("Native"); + TryReturn(pkg_type != NULL, , PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] pkg_type's strdup is failed."); + snprintf(guide_message, MESSAGE_SIZE, "Check tizen-manifest.xml| - Current api-version = %s, | ", api_version); + } + + if ((visibility & PRVMGR_PACKAGE_VISIBILITY_PUBLIC) != PRVMGR_PACKAGE_VISIBILITY_PUBLIC && (visibility & PRVMGR_PACKAGE_VISIBILITY_PARTNER) != PRVMGR_PACKAGE_VISIBILITY_PARTNER && (visibility & PRVMGR_PACKAGE_VISIBILITY_PLATFORM) != PRVMGR_PACKAGE_VISIBILITY_PLATFORM) { + + LOGE("[PRVMGR_ERR_INVALID_PARAMETER] visibility don't include any public, partner, platform"); + *error_message = strdup("[INVALID_PARAMETER] Signature Level is invalid. Signature Level must be a public, partner or platform"); + TryReturn(error_message != NULL, free(pkg_type), PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] error_message's strdup is failed."); + free(pkg_type); + return PRVMGR_ERR_INVALID_PARAMETER; + } + + if ((visibility & PRVMGR_PACKAGE_VISIBILITY_PUBLIC) == PRVMGR_PACKAGE_VISIBILITY_PUBLIC) + strncat(guide_message, "certificate signature level = public||", strlen("certificate signature level = public||")); + else if ((visibility & PRVMGR_PACKAGE_VISIBILITY_PARTNER) == PRVMGR_PACKAGE_VISIBILITY_PARTNER) + strncat(guide_message, "certificate signature level = partner||", strlen("certificate signature level = partner||")); + else + strncat(guide_message, "certificate signature level = platform||", strlen("certificate signature level = platform||")); + + if (privilege_list == NULL) { + LOGE("[PRVMGR_ERR_INVALID_PARAMETER] privilege_list is NULL"); + *error_message = strdup("[PRVMGR_ERR_INVALID_PARAMETER] privilege_list is NULL"); + TryReturn(error_message != NULL, free(pkg_type), PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] error_message's strdup is failed."); + + free(pkg_type); + return PRVMGR_ERR_INVALID_PARAMETER; + } + /* Get vaild privilege list */ + ret = privilege_db_manager_get_privilege_list(api_version, package_type, &vaild_privilege_list); + if (ret != PRIVILEGE_DB_MANAGER_ERR_NONE) { + LOGE("[FAIL TO CALL FUNCTION] privilege_db_manager_get_privilege_list()"); + *error_message = strdup("[PRVMGR_ERR_INTERNAL_ERROR] failed to get privilege list from DB"); + free(pkg_type); + return PRVMGR_ERR_INTERNAL_ERROR; + } + /* Compare received privilege with valid privilege list */ + for (l = privilege_list; l != NULL; l = l->next) { + int privilege_level_id = PRIVILEGE_DB_MANAGER_PRIVILEGE_LEVEL_PUBLIC; + char *privilege_name = (char *)l->data; + + LOGD("Checking privilege = %s", privilege_name); if (valid_api_version != NULL) { free(valid_api_version); valid_api_version = NULL; @@ -288,110 +287,176 @@ int privilege_manager_verify_privilege(const char* api_version, privilege_manage free(changed_to); changed_to = NULL; } - ret = __privilege_manager_check_privilege_list(api_version, privilege_name, vaild_privilege_list, &privilege_level_id, &changed_to, &valid_api_version); - - if( is_valid_wrt_version == 0 ) - { - ret = PRVMGR_ERR_NONE; - } - - if(ret == PRVMGR_ERR_NO_EXIST_PRIVILEGE) - { - LOGE("[PRVMGR_ERR_NO_EXIST_PRIVILEGE] There are no privilege %s in Tizen version %s", privilege_name, api_version); - - memset(message, 0, MESSAGE_SIZE); - if(valid_api_version != NULL && strcmp(valid_api_version, "") != 0) - { - snprintf(message, MESSAGE_SIZE, "[NO_EXIST_PRIVILEGE]%s %s privilege is valid from Tizen version %s and your api version is %s. Use at least api version %s or remove the privilege.|", pkg_type, privilege_name, valid_api_version, api_version, valid_api_version); - } - else - { - snprintf(message, MESSAGE_SIZE, "[NO_EXIST_PRIVILEGE]%s %s is an invalid privilege. Check spelling or remove the privilege.|", pkg_type, privilege_name); - } - strncat(message_list, message, strlen(message)); - - ret_val = PRVMGR_ERR_INVALID_PRIVILEGE; - - }else if(ret == PRVMGR_ERR_DEPRECATED_PRIVILEGE){ - - LOGE("[PRVMGR_ERR_DEPRECATED_PRIVILEGE]%s is deprecated before Tizen version %s", privilege_name, api_version); - - memset(message, 0, MESSAGE_SIZE); - if(changed_to != NULL && strcmp(changed_to, "") != 0) - { - snprintf(message, MESSAGE_SIZE, "[DEPRECATED_PRIVILEGE]%s %s is a deprecated privilege. Use %s instead of it.|", pkg_type, privilege_name, changed_to); - } - else - { - snprintf(message, MESSAGE_SIZE, "[DEPRECATED_PRIVILEGE]%s %s is deprecated after Tizen version %s and your api version is %s. Remove the privilege.|", pkg_type, privilege_name, valid_api_version, api_version); - } - strncat(message_list, message, strlen(message)); - - ret_val = PRVMGR_ERR_INVALID_PRIVILEGE; - - }else if(ret == PRVMGR_ERR_NONE){ - LOGD("visibility = %d", visibility); - LOGD("privilege level = %d", privilege_level_id); - - if((visibility & PRVMGR_PACKAGE_VISIBILITY_PUBLIC) == PRVMGR_PACKAGE_VISIBILITY_PUBLIC){ - if(privilege_level_id == PRIVILEGE_DB_MANAGER_PRIVILEGE_LEVEL_PARTNER || privilege_level_id == PRIVILEGE_DB_MANAGER_PRIVILEGE_LEVEL_PLATFORM) - { - LOGE("[PRVMGR_ERR_MISMATCHED_PRIVILEGE_LEVEL] Visibility and Privilege level are mismatched"); - LOGE("[PRVMGR_ERR_MISMATCHED_PRIVILEGE_LEVEL] Visibility = public, Privilege Level = %s", __get_privilege_level_string(privilege_level_id)); - - memset(message, 0, MESSAGE_SIZE); - snprintf(message, MESSAGE_SIZE, "[MISMATCHED_PRIVILEGE_LEVEL]Signature Level is too low to use %s - Signature Level = public, Privilege Level = %s|", privilege_name, __get_privilege_level_string(privilege_level_id)); - - strncat(message_list, message, strlen(message)); - - ret_val = PRVMGR_ERR_INVALID_PRIVILEGE; - } - } - else if((visibility & PRVMGR_PACKAGE_VISIBILITY_PARTNER) == PRVMGR_PACKAGE_VISIBILITY_PARTNER){ - if(privilege_level_id == PRIVILEGE_DB_MANAGER_PRIVILEGE_LEVEL_PLATFORM) - { - LOGE("[PRVMGR_ERR_MISMATCHED_PRIVILEGE_LEVEL] Visibility and Privilege level are mismatched"); - LOGE("[PRVMGR_ERR_MISMATCHED_PRIVILEGE_LEVEL] Visibility = partner, Privilege Level = %s", __get_privilege_level_string(privilege_level_id)); - - memset(message, 0, MESSAGE_SIZE); - snprintf(message, MESSAGE_SIZE, "[MISMATCHED_PRIVILEGE_LEVEL]Signature Level is too low to use %s - Signature Level = partner, Privilege Level = %s|", privilege_name, __get_privilege_level_string(privilege_level_id)); - - strncat(message_list, message, strlen(message)); - - ret_val = PRVMGR_ERR_INVALID_PRIVILEGE; - } - } - } - else if(ret == PRVMGR_ERR_INVALID_PARAMETER) - { - LOGE("[PRVMGR_ERR_INVALID_PARAMETER] privilege_name is NULL"); - *error_message = strdup("[INVALID_PARAMETER] Invaild parameter was passed.|"); - TryReturn(error_message != NULL,, PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] error_message's strdup is failed."); - - ret_val = PRVMGR_ERR_INVALID_PARAMETER; - goto FINISH; - } - else if(ret == PRVMGR_ERR_INTERNAL_ERROR) - { - LOGE("[PRVMGR_ERR_INVALID_PARAMETER] Unknown Error occured."); - *error_message = strdup("[INTERNAL_ERROR] Unknown Error occured.|"); - TryReturn(error_message != NULL,, PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] error_message's strdup is failed."); - - ret_val = PRVMGR_ERR_INTERNAL_ERROR; - goto FINISH; - } - } - - if(ret_val != PRVMGR_ERR_NONE){ - *error_message = strdup(message_list); - TryReturn(error_message != NULL,, PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] error_message's strdup is failed."); - } - -FINISH: - free(changed_to); - free(valid_api_version); - free(pkg_type); - g_list_free(vaild_privilege_list); - return ret_val; + ret = __privilege_manager_check_privilege_list(api_version, privilege_name, vaild_privilege_list, &privilege_level_id, &changed_to, &valid_api_version); + + if (is_valid_wrt_version == 0) + ret = PRVMGR_ERR_NONE; + + if (ret == PRVMGR_ERR_NO_EXIST_PRIVILEGE) { + memset(message, 0, MESSAGE_SIZE); + if (valid_api_version != NULL && strcmp(valid_api_version, "") != 0) { + LOGE("[NO_EXIST_PRIVILEGE]%s %s privilege is valid from Tizen version %s and your api version is %s. Use at least api version %s or remove the privilege.", pkg_type, privilege_name, valid_api_version, api_version, valid_api_version); + snprintf(message, MESSAGE_SIZE, " - %s| >> Use at least api version %s or remove the privilege.|", privilege_name, valid_api_version); + } else { + LOGE("[NO_EXIST_PRIVILEGE]%s %s is an invalid privilege. Check spelling or remove the privilege.", pkg_type, privilege_name); + snprintf(message, MESSAGE_SIZE, " - %s| >> Check spelling or remove the privilege.|", privilege_name); + } + + if (noexist_message == NULL) { + noexist_message = strdup(""); + TryReturn(noexist_message != NULL, ret_val = PRVMGR_ERR_OUT_OF_MEMORY; + goto FINISH, PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] noexist_message's strdup is failed."); + } + size_t new_size = snprintf(0, 0, "%s%s", noexist_message, message) + 1; + noexist_message = realloc(noexist_message, new_size * sizeof(char)); + TryReturn(noexist_message != NULL, ret_val = PRVMGR_ERR_OUT_OF_MEMORY; + goto FINISH, PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] noexist_message's realloc is failed."); + + strncat(noexist_message, message, strlen(message)); + + ret_val = PRVMGR_ERR_INVALID_PRIVILEGE; + + } else if (ret == PRVMGR_ERR_DEPRECATED_PRIVILEGE) { + + memset(message, 0, MESSAGE_SIZE); + if (changed_to != NULL && strcmp(changed_to, "") != 0) { + LOGE("[DEPRECATED_PRIVILEGE]%s %s is a deprecated after Tizen version %s and your api version is %s. Use %s instead or change api version to %s.", pkg_type, privilege_name, valid_api_version, api_version, changed_to, valid_api_version); + snprintf(message, MESSAGE_SIZE, " - %s| >> Use %s instead of it or change api version to %s.|", privilege_name, changed_to, valid_api_version); + } else { + LOGE("[DEPRECATED_PRIVILEGE]%s %s is deprecated after Tizen version %s and your api version is %s. Remove the privilege.", pkg_type, privilege_name, valid_api_version, api_version); + snprintf(message, MESSAGE_SIZE, " - %s| >> Remove the privilege.|", privilege_name); + } + + if (deprecated_message == NULL) { + deprecated_message = strdup(""); + TryReturn(deprecated_message != NULL, ret_val = PRVMGR_ERR_OUT_OF_MEMORY; + goto FINISH, PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] deprecated_message's strdup is failed."); + } + size_t new_size = snprintf(0, 0, "%s%s", deprecated_message, message) + 1; + deprecated_message = realloc(deprecated_message, new_size * sizeof(char)); + TryReturn(deprecated_message != NULL, ret_val = PRVMGR_ERR_OUT_OF_MEMORY; + goto FINISH, PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] deprecated_message's realloc is failed."); + + strncat(deprecated_message, message, strlen(message)); + + ret_val = PRVMGR_ERR_INVALID_PRIVILEGE; + + } else if (ret == PRVMGR_ERR_NONE) { + LOGD("visibility = %d", visibility); + LOGD("privilege level = %d", privilege_level_id); + + if ((visibility & PRVMGR_PACKAGE_VISIBILITY_PUBLIC) == PRVMGR_PACKAGE_VISIBILITY_PUBLIC) { + if (privilege_level_id == PRIVILEGE_DB_MANAGER_PRIVILEGE_LEVEL_PARTNER || privilege_level_id == PRIVILEGE_DB_MANAGER_PRIVILEGE_LEVEL_PLATFORM) { + LOGE("[PRVMGR_ERR_MISMATCHED_PRIVILEGE_LEVEL] Visibility and Privilege level are mismatched"); + LOGE("[PRVMGR_ERR_MISMATCHED_PRIVILEGE_LEVEL] Visibility = public, Privilege Level = %s", __get_privilege_level_string(privilege_level_id)); + + memset(message, 0, MESSAGE_SIZE); + snprintf(message, MESSAGE_SIZE, " - %s| >> Use at least %s signatured certificate.|", privilege_name, __get_privilege_level_string(privilege_level_id)); + + if (mismatched_message == NULL) { + mismatched_message = strdup(""); + TryReturn(mismatched_message != NULL, ret_val = PRVMGR_ERR_OUT_OF_MEMORY; + goto FINISH, PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] mismatched_message's strdup is failed."); + } + size_t new_size = snprintf(0, 0, "%s%s", mismatched_message, message) + 1; + mismatched_message = realloc(mismatched_message, new_size * sizeof(char)); + TryReturn(mismatched_message != NULL, ret_val = PRVMGR_ERR_OUT_OF_MEMORY; + goto FINISH, PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] mismatched_message's realloc is failed."); + strncat(mismatched_message, message, strlen(message)); + + ret_val = PRVMGR_ERR_INVALID_PRIVILEGE; + } + } else if ((visibility & PRVMGR_PACKAGE_VISIBILITY_PARTNER) == PRVMGR_PACKAGE_VISIBILITY_PARTNER) { + if (privilege_level_id == PRIVILEGE_DB_MANAGER_PRIVILEGE_LEVEL_PLATFORM) { + LOGE("[PRVMGR_ERR_MISMATCHED_PRIVILEGE_LEVEL] Visibility and Privilege level are mismatched"); + LOGE("[PRVMGR_ERR_MISMATCHED_PRIVILEGE_LEVEL] Visibility = partner, Privilege Level = %s", __get_privilege_level_string(privilege_level_id)); + + memset(message, 0, MESSAGE_SIZE); + snprintf(message, MESSAGE_SIZE, " - %s| >> Use at least %s signatured certificate.|", privilege_name, __get_privilege_level_string(privilege_level_id)); + + if (mismatched_message == NULL) { + mismatched_message = strdup(""); + TryReturn(mismatched_message != NULL, ret_val = PRVMGR_ERR_OUT_OF_MEMORY; + goto FINISH, PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] mismatched_message's strdup is failed."); + } + size_t new_size = snprintf(0, 0, "%s%s", mismatched_message, message) + 1; + mismatched_message = realloc(mismatched_message, new_size * sizeof(char)); + TryReturn(mismatched_message, ret_val = PRVMGR_ERR_OUT_OF_MEMORY; + goto FINISH, PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] mismatched_message's realloc is failed."); + strncat(mismatched_message, message, strlen(message)); + ret_val = PRVMGR_ERR_INVALID_PRIVILEGE; + } + } + } else if (ret == PRVMGR_ERR_INVALID_PARAMETER) { + LOGE("[PRVMGR_ERR_INVALID_PARAMETER] privilege_name is NULL"); + *error_message = strdup("[INVALID_PARAMETER] Invaild parameter was passed.|"); + TryReturn(error_message != NULL, ret_val = PRVMGR_ERR_OUT_OF_MEMORY; + goto FINISH, PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] error_message's strdup is failed."); + + ret_val = PRVMGR_ERR_INVALID_PARAMETER; + goto FINISH; + } else if (ret == PRVMGR_ERR_INTERNAL_ERROR) { + LOGE("[PRVMGR_ERR_INVALID_PARAMETER] Unknown Error occured."); + *error_message = strdup("[INTERNAL_ERROR] Unknown Error occured.|"); + TryReturn(error_message != NULL, ret_val = PRVMGR_ERR_OUT_OF_MEMORY; + goto FINISH, PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] error_message's strdup is failed."); + + ret_val = PRVMGR_ERR_INTERNAL_ERROR; + goto FINISH; + } + } + char *newline = "|"; + + if (ret_val != PRVMGR_ERR_NONE) { + message_list = strdup(guide_message); + TryReturn(message_list != NULL, ret_val = PRVMGR_ERR_OUT_OF_MEMORY; + goto FINISH, PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] message_list's strdup is failed."); + if (noexist_message != NULL) { + size_t new_size = snprintf(0, 0, "%s[NO_EXIST_PRIVILEGE]|%s", message_list, noexist_message) + 1; + message_list = realloc(message_list, new_size); + TryReturn(message_list != NULL, ret_val = PRVMGR_ERR_OUT_OF_MEMORY; + goto FINISH, PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] message_list's realloc is failed."); + strncat(message_list, "[NO_EXIST_PRIVILEGE]|", strlen("[NO_EXIST_PRIVILEGE]|")); + strncat(message_list, noexist_message, strlen(noexist_message)); + } + if (deprecated_message != NULL) { + size_t new_size = snprintf(0, 0, "%s[PRVMGR_ERR_DEPRECATED_PRIVILEGE]|%s", message_list, deprecated_message) + 1; + message_list = realloc(message_list, new_size); + TryReturn(message_list != NULL, ret_val = PRVMGR_ERR_OUT_OF_MEMORY; + goto FINISH, PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] message_list's realloc is failed."); + strncat(message_list, "[PRVMGR_ERR_DEPRECATED_PRIVILEGE]|", strlen("[PRVMGR_ERR_DEPRECATED_PRIVILEGE]|")); + strncat(message_list, deprecated_message, strlen(deprecated_message)); + } + if (mismatched_message != NULL) { + size_t new_size = snprintf(0, 0, "%s[PRVMGR_ERR_MISMATCHED_PRIVILEGE_LEVEL]|%s", message_list, mismatched_message) + 1; + message_list = realloc(message_list, new_size); + TryReturn(message_list != NULL, ret_val = PRVMGR_ERR_OUT_OF_MEMORY; + goto FINISH, PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] message_list's realloc is failed."); + strncat(message_list, "[PRVMGR_ERR_MISMATCHED_PRIVILEGE_LEVEL]|", strlen("[PRVMGR_ERR_MISMATCHED_PRIVILEGE_LEVEL]|")); + strncat(message_list, mismatched_message, strlen(mismatched_message)); + } + size_t total_size = snprintf(0, 0, "%s%s", message_list, newline) + 1; + message_list = realloc(message_list, total_size); + TryReturn(message_list != NULL, ret_val = PRVMGR_ERR_OUT_OF_MEMORY; + goto FINISH, PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] message_list's realloc is failed."); + strncat(message_list, newline, strlen(newline)); + *error_message = strdup(message_list); + TryReturn(error_message != NULL, ret_val = PRVMGR_ERR_OUT_OF_MEMORY; + goto FINISH, PRVMGR_ERR_OUT_OF_MEMORY, "[PRVMGR_ERR_OUT_OF_MEMORY] error_message's strdup is failed."); + } + + FINISH: + if (message_list != NULL) + free(message_list); + if (deprecated_message != NULL) + free(deprecated_message); + if (mismatched_message != NULL) + free(mismatched_message); + if (mismatched_message != NULL) + free(noexist_message); + free(changed_to); + free(valid_api_version); + free(pkg_type); + g_list_free(vaild_privilege_list); + return ret_val; } - diff --git a/test/tc-privilege-manager.c b/test/tc-privilege-manager.c index 9c48a94..c23ea1b 100755 --- a/test/tc-privilege-manager.c +++ b/test/tc-privilege-manager.c @@ -334,192 +334,9 @@ static void __test_privilege_manager_verify_privilege() } -static void __test_privilege_manager_verify_privilege_list() -{ - GList* privilege_list = NULL; - char* error_privilege_name = NULL; - int ret; - - printf("privilege name : http://tizen.org/privilege/account.read\n"); - printf("signature level : public\n"); - printf("privilege level : public\n"); - printf("package type : core\n"); - printf("expected result : PRVMGR_ERR_NONE\n"); - privilege_list = g_list_append(privilege_list, "http://tizen.org/privilege/account.read"); - ret = privilege_manager_verify_privilege_list(PRVMGR_PACKAGE_TYPE_CORE, privilege_list, CERT_SVC_VISIBILITY_PUBLIC, &error_privilege_name); - __check_result(PRVMGR_ERR_NONE, ret, error_privilege_name); - printf("-----------------------------------------------------------\n"); - free(error_privilege_name); - - error_privilege_name = NULL; - g_list_free(privilege_list); - privilege_list = NULL; - printf("privilege name : http://tizen.org/privilege/bluetooth.admin\n"); - printf("signature level : platform\n"); - printf("privilege level : platform\n"); - printf("package type : core\n"); - printf("expected result : PRVMGR_ERR_NONE\n"); - privilege_list = g_list_append(privilege_list, "http://tizen.org/privilege/bluetooth.admin"); - ret = privilege_manager_verify_privilege_list(PRVMGR_PACKAGE_TYPE_CORE, privilege_list, CERT_SVC_VISIBILITY_PLATFORM, &error_privilege_name); - __check_result(PRVMGR_ERR_NONE, ret, error_privilege_name); - printf("-----------------------------------------------------------\n"); - free(error_privilege_name); - - error_privilege_name = NULL; - g_list_free(privilege_list); - privilege_list = NULL; - printf("privilege name : http://tizen.org/privilege/account.read\n"); - printf("signature level : platform\n"); - printf("privilege level : public\n"); - printf("package type : core\n"); - printf("expected result : PRVMGR_ERR_NONE\n"); - privilege_list = g_list_append(privilege_list, "http://tizen.org/privilege/account.read"); - ret = privilege_manager_verify_privilege_list(PRVMGR_PACKAGE_TYPE_CORE, privilege_list, CERT_SVC_VISIBILITY_PLATFORM, &error_privilege_name); - __check_result(PRVMGR_ERR_NONE, ret, error_privilege_name); - printf("-----------------------------------------------------------\n"); - free(error_privilege_name); - - error_privilege_name = NULL; - g_list_free(privilege_list); - privilege_list = NULL; - printf("privilege name : http://tizen.org/privilege/account.read\n"); - printf("privilege name : http://tizen.org/privilege/bluetooth.admin\n"); - printf("signature level : platform\n"); - printf("privilege level : platform\n"); - printf("package type : core\n"); - printf("expected result : PRVMGR_ERR_NONE\n"); - privilege_list = g_list_append(privilege_list, "http://tizen.org/privilege/account.read"); - privilege_list = g_list_append(privilege_list, "http://tizen.org/privilege/bluetooth.admin"); - ret = privilege_manager_verify_privilege_list(PRVMGR_PACKAGE_TYPE_CORE, privilege_list, CERT_SVC_VISIBILITY_PLATFORM, &error_privilege_name); - __check_result(PRVMGR_ERR_NONE, ret, error_privilege_name); - printf("-----------------------------------------------------------\n"); - free(error_privilege_name); - - error_privilege_name = NULL; - g_list_free(privilege_list); - privilege_list = NULL; - printf("privilege name : http://tizen.org/privilege/bluetooth.admin\n"); - printf("signature level : public\n"); - printf("privilege level : platform\n"); - printf("package type : core\n"); - printf("expected result : PRVMGR_ERR_MISMACHED_PRIVILEGE_LEVEL\n"); - privilege_list = g_list_append(privilege_list, "http://tizen.org/privilege/bluetooth.admin"); - ret = privilege_manager_verify_privilege_list(PRVMGR_PACKAGE_TYPE_CORE, privilege_list, CERT_SVC_VISIBILITY_PUBLIC, &error_privilege_name); - __check_result(PRVMGR_ERR_MISMACHED_PRIVILEGE_LEVEL, ret, error_privilege_name); - printf("-----------------------------------------------------------\n"); - free(error_privilege_name); - - error_privilege_name = NULL; - g_list_free(privilege_list); - privilege_list = NULL; - printf("privilege name : http://tizen.org/privilege/bluetooth.adminTT\n"); - printf("package type : core\n"); - printf("signature level : platform\n"); - printf("expected result : PRVMGR_ERR_NO_EXIST_PRIVILEGE\n"); - privilege_list = g_list_append(privilege_list, "http://tizen.org/privilege/bluetooth.adminTTTTT"); - ret = privilege_manager_verify_privilege_list(PRVMGR_PACKAGE_TYPE_CORE, privilege_list, CERT_SVC_VISIBILITY_PLATFORM, &error_privilege_name); - __check_result(PRVMGR_ERR_NO_EXIST_PRIVILEGE, ret, error_privilege_name); - printf("-----------------------------------------------------------\n"); - free(error_privilege_name); - - error_privilege_name = NULL; - g_list_free(privilege_list); - privilege_list = NULL; - printf("privilege name : http://tizen.org/privilege/account.read\n"); - printf("privilege name : http://tizen.org/privilege/bluetooth.adminTTTTT\n"); - printf("signature level : platform\n"); - printf("package type : core\n"); - printf("expected result : PRVMGR_ERR_NO_EXIST_PRIVILEGE\n"); - privilege_list = g_list_append(privilege_list, "http://tizen.org/privilege/account.read"); - privilege_list = g_list_append(privilege_list, "http://tizen.org/privilege/bluetooth.adminTTTTT"); - ret = privilege_manager_verify_privilege_list(PRVMGR_PACKAGE_TYPE_CORE, privilege_list, CERT_SVC_VISIBILITY_PLATFORM, &error_privilege_name); - __check_result(PRVMGR_ERR_NO_EXIST_PRIVILEGE, ret, error_privilege_name); - printf("-----------------------------------------------------------\n"); - free(error_privilege_name); - - error_privilege_name = NULL; - g_list_free(privilege_list); - privilege_list = NULL; - printf("privilege name : http://tizen.org/privilege/account.read\n"); - printf("privilege name : http://tizen.org/privilege/bluetooth.admin\n"); - printf("signature level : public\n"); - printf("privilege level : platform\n"); - printf("package type : core\n"); - printf("expected result : PRVMGR_ERR_MISMACHED_PRIVILEGE_LEVEL\n"); - privilege_list = g_list_append(privilege_list, "http://tizen.org/privilege/account.read"); - privilege_list = g_list_append(privilege_list, "http://tizen.org/privilege/bluetooth.admin"); - ret = privilege_manager_verify_privilege_list(PRVMGR_PACKAGE_TYPE_CORE, privilege_list, CERT_SVC_VISIBILITY_PUBLIC, &error_privilege_name); - __check_result(PRVMGR_ERR_MISMACHED_PRIVILEGE_LEVEL, ret, error_privilege_name); - printf("-----------------------------------------------------------\n"); - free(error_privilege_name); - - error_privilege_name = NULL; - g_list_free(privilege_list); - privilege_list = NULL; - printf("privilege name : http://tizen.org/privilege/account.read\n"); - printf("privilege name : http://tizen.org/privilege/bluetooth.adminTTTTT\n"); - printf("privilege name : http://tizen.org/privilege/bluetooth.admin\n"); - printf("signature level : public\n"); - printf("privilege level : platform\n"); - printf("package type : core\n"); - printf("expected result : PRVMGR_ERR_MISMACHED_PRIVILEGE_LEVEL\n"); - privilege_list = g_list_append(privilege_list, "http://tizen.org/privilege/account.read"); - privilege_list = g_list_append(privilege_list, "http://tizen.org/privilege/bluetooth.admin"); - privilege_list = g_list_append(privilege_list, "http://tizen.org/privilege/bluetooth.adminTTTTT"); - ret = privilege_manager_verify_privilege_list(PRVMGR_PACKAGE_TYPE_CORE, privilege_list, CERT_SVC_VISIBILITY_PUBLIC, &error_privilege_name); - __check_result(PRVMGR_ERR_MISMACHED_PRIVILEGE_LEVEL, ret, error_privilege_name); - printf("-----------------------------------------------------------\n"); - free(error_privilege_name); - - error_privilege_name = NULL; - g_list_free(privilege_list); - privilege_list = NULL; - printf("privilege name : http://tizen.org/privilege/account.read\n"); - printf("privilege name : http://tizen.org/privilege/bluetooth.adminTTTTT\n"); - printf("privilege name : http://tizen.org/privilege/bluetooth.admin\n"); - printf("signature level : platform\n"); - printf("privilege level : platform\n"); - printf("package type : core\n"); - printf("expected result : PRVMGR_ERR_NO_EXIST_PRIVILEGE\n"); - privilege_list = g_list_append(privilege_list, "http://tizen.org/privilege/account.read"); - privilege_list = g_list_append(privilege_list, "http://tizen.org/privilege/bluetooth.adminTTTTT"); - privilege_list = g_list_append(privilege_list, "http://tizen.org/privilege/bluetooth.admin"); - ret = privilege_manager_verify_privilege_list(PRVMGR_PACKAGE_TYPE_CORE, privilege_list, CERT_SVC_VISIBILITY_PLATFORM, &error_privilege_name); - __check_result(PRVMGR_ERR_NO_EXIST_PRIVILEGE, ret, error_privilege_name); - printf("-----------------------------------------------------------\n"); - free(error_privilege_name); - - error_privilege_name = NULL; - g_list_free(privilege_list); - privilege_list = NULL; - printf("test privilege list = NULL\n"); - printf("expected result : PRVMGR_ERR_INVALID_PARAMETER\n"); - ret = privilege_manager_verify_privilege_list(PRVMGR_PACKAGE_TYPE_CORE, privilege_list, CERT_SVC_VISIBILITY_PUBLIC, &error_privilege_name); - __check_result(PRVMGR_ERR_INVALID_PARAMETER, ret, error_privilege_name); - printf("-----------------------------------------------------------\n"); - free(error_privilege_name); - - error_privilege_name = NULL; - privilege_list = NULL; - privilege_list = g_list_append(privilege_list, "http://tizen.org/privilege/account.read"); - privilege_list = g_list_append(privilege_list, NULL); - printf("test privilege list[0] = http://tizen.org/privilege/account.read\n"); - printf("test privilege list[1] = NULL\n"); - printf("expected result : PRVMGR_ERR_INVALID_PARAMETER\n"); - ret = privilege_manager_verify_privilege_list(PRVMGR_PACKAGE_TYPE_CORE, privilege_list, CERT_SVC_VISIBILITY_PUBLIC, &error_privilege_name); - __check_result(PRVMGR_ERR_INVALID_PARAMETER, ret, error_privilege_name); - printf("-----------------------------------------------------------\n"); - free(error_privilege_name); -} - int main() { __change_color_to_yellow(); - printf("Test function : privilege_manager_verify_privilege_list\n"); - __change_color_to_origin(); - __test_privilege_manager_verify_privilege_list(); - - __change_color_to_yellow(); printf("Test function : privilege_manager_verify_privilege\n"); __change_color_to_origin(); __test_privilege_manager_verify_privilege(); |