diff -r 000000000000 -r 2e3d3ce01487 appfw/apparchitecture/apgrfx/apsecutils.cpp --- /dev/null Thu Jan 01 00:00:00 1970 +0000 +++ b/appfw/apparchitecture/apgrfx/apsecutils.cpp Tue Feb 02 10:12:00 2010 +0200 @@ -0,0 +1,61 @@ +// Copyright (c) 2007-2009 Nokia Corporation and/or its subsidiary(-ies). +// All rights reserved. +// This component and the accompanying materials are made available +// under the terms of "Eclipse Public License v1.0" +// which accompanies this distribution, and is available +// at the URL "http://www.eclipse.org/legal/epl-v10.html". +// +// Initial Contributors: +// Nokia Corporation - initial contribution. +// +// Contributors: +// +// Description: +// Security issues related methods used across apparc +// +// apsecutils.cpp +// + +#include +#include //for TSecureId +#include "apsecutils.h" + + +/** + * Check if application has a WriteDeviceData capability + * and if it's SID is in the protected range + * + * @param aAppFilename path to application exe file + * @param aHasWriteDeviceDataCap returns ETrue if app has WriteDeviceData cap + * @param aIsSidProtected returns ETrue if application SID is in the protected range + * @return KErrNone if succesful, error code otherwise + */ +EXPORT_C TInt CApaSecurityUtils::CheckAppSecurity( const TPtrC& aAppFilename, + TBool& aHasWriteDeviceDataCap, + TBool& aIsSidProtected ) + { + aHasWriteDeviceDataCap = EFalse; + aIsSidProtected = EFalse; + + RLibrary::TInfoBuf infoBuf; + TInt ret = RLibrary::GetInfo( aAppFilename, infoBuf ); + if ( KErrNone == ret ) + { + if ( infoBuf().iSecurityInfo.iCaps.HasCapability( + ECapabilityWriteDeviceData ) ) + { + aHasWriteDeviceDataCap = ETrue; + } + + const TSecureId appSid = infoBuf().iSecurityInfo.iSecureId; + + if( IsSidProtected( TUint32( appSid ) ) ) + { + aIsSidProtected = ETrue; + } + + } + return ret; + } + +//End of file