FCL/sf/mw/appinstall: comparison appinstaller/AppinstUi/startuplistupdater/src/startuplistupdater.cpp

equal deleted inserted replaced

-:8110bf1194d1
+:6e7b00453237
 #include <StartupItem.hrh>              // EStartupItemExPolicyNone
 #include <dscitem.h>                    // CDscItem
 #include <swi/sisregistrysession.h>     // Swi::RSisRegistrySession
 #include <swi/sisregistrypackage.h>     // Swi::CSisRegistryPackage
 #include <swi/sisregistryentry.h>       // Swi::RSisRegistryEntry
+#include <swi/sistruststatus.h>         // Swi::TSisTrustStatus::IsTrusted
 _LIT( KImport, "import\\" );
 _LIT( KDriveAndPathFormat, "%c:%S" );
 _LIT( KResourceFileSpec, "c:*.rsc" );
 _LIT( KExecutableExtension, ".exe" );
 executableName.Copy( reader.ReadTPtrC() );
 TInt recoveryPolicy = reader.ReadUint16();
 CleanupStack::PopAndDestroy( buffer );
-if( recoveryPolicy == EStartupItemExPolicyNone )
+if( versionInfo == 0 && recoveryPolicy == EStartupItemExPolicyNone )
 {
 // PKG files use '!' for drive letters that user can decide at installation time
 if( executableName.Length() > 0 && executableName[ 0 ] == '!' )
 {
 executableName.Replace( 0, 1, KAsterisk );
 TFindFile fileFinder( iFs );
-CDir* executableDir;
+CDir* executableDir;            // next FindWildByDir needs AllFiles capability
 TInt err = fileFinder.FindWildByDir( executableName, KNullDesC, executableDir );
 if( !err )
 {
 CleanupStack::PushL( executableDir );
 executableName.Replace( 0, 1, fileFinder.File() );
 CleanupStack::PopAndDestroy( executableDir );
 }
 }
-TEntry entry;
+if( IsValidExecutableForStartupL( aResourceFile, executableName ) )
-if( iFs.Entry( executableName, entry ) == KErrNone )    // needs AllFiles capability
 {
 aExecutableArray.AppendL( executableName.AllocL() );
 }
 }
 }
 CleanupStack::PopAndDestroy( &resource );
 }
 // ---------------------------------------------------------------------------
+// CStartupListUpdater::IsValidExecutableForStartupL()
+// ---------------------------------------------------------------------------
+//
+TBool CStartupListUpdater::IsValidExecutableForStartupL( const TDesC& aResourceFile,
+const TDesC& aExecutableName )
+{
+TBool isValid = EFalse;
+TEntry entry;
+if( iFs.Entry( aExecutableName, entry ) == KErrNone )   // needs AllFiles capability
+{
+isValid = ETrue;
+// Extract package UID from the resource file name
+// - allow both "[1234ABCD]" and "1234ABCD" formats
+// - allow possible "0x" prefix too
+TUid packageUid = KNullUid;
+TParsePtrC parse( aResourceFile );
+TPtrC parseName = parse.Name();
+TInt fileNameLength = parseName.Length();
+if( !parse.IsNameWild() && fileNameLength > 0 )
+{
+TPtr fileName( const_cast<TUint16*>( parseName.Ptr() ),
+fileNameLength, fileNameLength );
+if( fileName[ 0 ] == '[' && fileName[ fileNameLength - 1 ] == ']' )
+{
+const TInt KTwoCharsLength = 2;
+fileNameLength -= KTwoCharsLength;
+fileName = fileName.Mid( 1, fileNameLength );
+}
+_LIT( KHexPrefix, "0x" );
+const TInt KHexPrefixLength = 2;
+if( fileName.Left( KHexPrefixLength ) == KHexPrefix )
+{
+fileNameLength -= KHexPrefixLength;
+fileName = fileName.Mid( KHexPrefixLength, fileNameLength );
+}
+TLex lex( fileName );
+TUint32 uidValue = 0;
+TInt lexError = lex.Val( uidValue, EHex );
+if( !lexError )
+{
+packageUid.iUid = uidValue;
+}
+}
+// Get package info from RSisRegistry, and check that
+// - the package contains the resource file
+// - the package is properly signed
+if( packageUid != KNullUid )
+{
+Swi::RSisRegistrySession sisRegSession;
+User::LeaveIfError( sisRegSession.Connect() );
+CleanupClosePushL( sisRegSession );
+Swi::RSisRegistryEntry package;
+CleanupClosePushL( package );
+TInt openError = package.Open( sisRegSession, packageUid );
+if( !openError )
+{
+TBool hasResourceFile = EFalse;
+RPointerArray<HBufC> files;
+CleanupResetAndDestroyPushL( files );
+package.FilesL( files );
+for( TInt index = 0; index < files.Count() && !hasResourceFile; ++index )
+{
+hasResourceFile = ( aResourceFile.CompareF( *files[ index ] ) == 0 );
+}
+if( hasResourceFile && package.TrustStatusL().IsTrusted() )
+{
+isValid = ETrue;
+}
+CleanupStack::PopAndDestroy( &files );
+}
+CleanupStack::PopAndDestroy( 2, &sisRegSession );  // package, sisRegSession
+}
+}
+return isValid;
+}
+// ---------------------------------------------------------------------------
 // CStartupListUpdater::GetInstalledAppsL()
 // ---------------------------------------------------------------------------
 //
 void CStartupListUpdater::GetInstalledAppsL(
 RPointerArray<HBufC>& aInstalledExecutableArray )
 for( TInt index = 0; index < removablePackages.Count(); ++index )
 {
 Swi::RSisRegistryEntry entry;
 CleanupClosePushL( entry );
 entry.OpenL( sisRegistrySession, *( removablePackages[ index ] ) );
-if( entry.IsPresentL() && entry.RemovableL() )
+if( entry.RemovableL() )
 {
 GetExecutablesFromEntryL( entry, aInstalledExecutableArray );
 }
 CleanupStack::PopAndDestroy( &entry );
 }

changeset 37	6e7b00453237
parent 33	8110bf1194d1
child 80	9dcba1ee99f7