1 /*
2 * Copyright (c) 2022 Huawei Device Co., Ltd.
3 * Licensed under the Apache License, Version 2.0 (the "License");
4 * you may not use this file except in compliance with the License.
5 * You may obtain a copy of the License at
6 *
7 * http://www.apache.org/licenses/LICENSE-2.0
8 *
9 * Unless required by applicable law or agreed to in writing, software
10 * distributed under the License is distributed on an "AS IS" BASIS,
11 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12 * See the License for the specific language governing permissions and
13 * limitations under the License.
14 */
15
16 #include "session_manager.h"
17
18 #define LOG_TAG "SessionManager"
19
20 #include <algorithm>
21
22 #include "auth_delegate.h"
23 #include "checker/checker_manager.h"
24 #include "log_print.h"
25 #include "metadata/meta_data_manager.h"
26 #include "metadata/store_meta_data.h"
27 #include "user_delegate.h"
28 #include "utils/anonymous.h"
29 #include "utils/converter.h"
30 #include "types.h"
31 #include "device_manager_adapter.h"
32 namespace OHOS::DistributedData {
33 using namespace OHOS::DistributedKv;
34 using DmAdapter = OHOS::DistributedData::DeviceManagerAdapter;
35 using Account = AccountDelegate;
GetInstance()36 SessionManager &SessionManager::GetInstance()
37 {
38 static SessionManager instance;
39 return instance;
40 }
41
GetSession(const SessionPoint & local,const std::string & targetDeviceId) const42 Session SessionManager::GetSession(const SessionPoint &local, const std::string &targetDeviceId) const
43 {
44 ZLOGD("begin. peer device:%{public}s", Anonymous::Change(targetDeviceId).c_str());
45 Session session;
46 session.appId = local.appId;
47 session.sourceUserId = local.userId;
48 session.sourceDeviceId = local.deviceId;
49 session.targetDeviceId = targetDeviceId;
50 auto users = UserDelegate::GetInstance().GetRemoteUserStatus(targetDeviceId);
51 // system service
52 if (local.userId == UserDelegate::SYSTEM_USER) {
53 session.targetUserIds.push_back(UserDelegate::SYSTEM_USER);
54 }
55
56 AclParams aclParams;
57 if (!GetSendAuthParams(local, targetDeviceId, aclParams)) {
58 ZLOGE("get send auth params failed:%{public}s", Anonymous::Change(targetDeviceId).c_str());
59 return session;
60 }
61
62 std::vector<uint32_t> targetUsers {};
63 for (const auto &user : users) {
64 aclParams.accCallee.userId = user.id;
65 auto [isPermitted, isSameAccount] = AuthDelegate::GetInstance()->CheckAccess(local.userId, user.id,
66 targetDeviceId, aclParams);
67 if (isPermitted) {
68 auto it = std::find(session.targetUserIds.begin(), session.targetUserIds.end(), user.id);
69 if (it == session.targetUserIds.end() && isSameAccount) {
70 session.targetUserIds.push_back(user.id);
71 }
72 if (it == session.targetUserIds.end() && !isSameAccount) {
73 targetUsers.push_back(user.id);
74 }
75 }
76 }
77 session.targetUserIds.insert(session.targetUserIds.end(), targetUsers.begin(), targetUsers.end());
78 ZLOGD("access to peer users:%{public}s", DistributedData::Serializable::Marshall(session.targetUserIds).c_str());
79 return session;
80 }
81
GetSendAuthParams(const SessionPoint & local,const std::string & targetDeviceId,AclParams & aclParams) const82 bool SessionManager::GetSendAuthParams(const SessionPoint &local, const std::string &targetDeviceId,
83 AclParams &aclParams) const
84 {
85 std::vector<StoreMetaData> metaData;
86 if (!MetaDataManager::GetInstance().LoadMeta(StoreMetaData::GetPrefix({ local.deviceId }), metaData)) {
87 ZLOGE("load meta failed, deviceId:%{public}s, user:%{public}d", Anonymous::Change(local.deviceId).c_str(),
88 local.userId);
89 return false;
90 }
91 for (const auto &storeMeta : metaData) {
92 if (storeMeta.appId == local.appId && storeMeta.storeId == local.storeId) {
93 aclParams.accCaller.bundleName = storeMeta.bundleName;
94 aclParams.accCaller.accountId = AccountDelegate::GetInstance()->GetCurrentAccountId();
95 aclParams.accCaller.userId = local.userId;
96 aclParams.accCaller.networkId = DmAdapter::GetInstance().ToNetworkID(local.deviceId);
97
98 aclParams.accCallee.networkId = DmAdapter::GetInstance().ToNetworkID(targetDeviceId);
99 aclParams.authType = storeMeta.authType;
100 return true;
101 }
102 }
103 ZLOGE("get params failed,appId:%{public}s,localDevId:%{public}s,tarDevid:%{public}s,user:%{public}d,",
104 local.appId.c_str(), Anonymous::Change(local.deviceId).c_str(),
105 Anonymous::Change(targetDeviceId).c_str(), local.userId);
106 return false;
107 }
108
GetRecvAuthParams(const SessionPoint & local,const std::string & targetDeviceId,AclParams & aclParams,int32_t peerUser) const109 bool SessionManager::GetRecvAuthParams(const SessionPoint &local, const std::string &targetDeviceId,
110 AclParams &aclParams, int32_t peerUser) const
111 {
112 std::vector<StoreMetaData> metaData;
113 if (!MetaDataManager::GetInstance().LoadMeta(StoreMetaData::GetPrefix({ targetDeviceId }), metaData)) {
114 ZLOGE("load meta failed, deviceId:%{public}s, user:%{public}d", Anonymous::Change(targetDeviceId).c_str(),
115 peerUser);
116 return false;
117 }
118 for (const auto &storeMeta : metaData) {
119 if (storeMeta.appId == local.appId) {
120 auto accountId = AccountDelegate::GetInstance()->GetCurrentAccountId();
121 aclParams.accCaller.bundleName = storeMeta.bundleName;
122 aclParams.accCaller.accountId = accountId;
123 aclParams.accCaller.userId = local.userId;
124 aclParams.accCaller.networkId = DmAdapter::GetInstance().ToNetworkID(local.deviceId);
125
126 aclParams.accCallee.accountId = accountId;
127 aclParams.accCallee.userId = peerUser;
128 aclParams.accCallee.networkId = DmAdapter::GetInstance().ToNetworkID(targetDeviceId);
129 aclParams.authType = storeMeta.authType;
130 return true;
131 }
132 }
133
134 ZLOGE("get params failed,appId:%{public}s,tarDevid:%{public}s,user:%{public}d,peer:%{public}d",
135 local.appId.c_str(), Anonymous::Change(targetDeviceId).c_str(), local.userId, peerUser);
136 return false;
137 }
138
CheckSession(const SessionPoint & local,const SessionPoint & peer) const139 bool SessionManager::CheckSession(const SessionPoint &local, const SessionPoint &peer) const
140 {
141 AclParams aclParams;
142 if (!GetRecvAuthParams(local, peer.deviceId, aclParams, peer.userId)) {
143 ZLOGE("get recv auth params failed:%{public}s", Anonymous::Change(peer.deviceId).c_str());
144 return false;
145 }
146 auto [isPermitted, isSameAccount] = AuthDelegate::GetInstance()->CheckAccess(local.userId,
147 peer.userId, peer.deviceId, aclParams);
148 if (isPermitted && local.userId != UserDelegate::SYSTEM_USER) {
149 isPermitted = Account::GetInstance()->IsUserForeground(local.userId);
150 }
151 return isPermitted;
152 }
153
Marshal(json & node) const154 bool Session::Marshal(json &node) const
155 {
156 bool ret = true;
157 ret = SetValue(node[GET_NAME(sourceDeviceId)], sourceDeviceId) && ret;
158 ret = SetValue(node[GET_NAME(targetDeviceId)], targetDeviceId) && ret;
159 ret = SetValue(node[GET_NAME(sourceUserId)], sourceUserId) && ret;
160 ret = SetValue(node[GET_NAME(targetUserIds)], targetUserIds) && ret;
161 ret = SetValue(node[GET_NAME(appId)], appId) && ret;
162 return ret;
163 }
164
Unmarshal(const json & node)165 bool Session::Unmarshal(const json &node)
166 {
167 bool ret = true;
168 ret = GetValue(node, GET_NAME(sourceDeviceId), sourceDeviceId) && ret;
169 ret = GetValue(node, GET_NAME(targetDeviceId), targetDeviceId) && ret;
170 ret = GetValue(node, GET_NAME(sourceUserId), sourceUserId) && ret;
171 ret = GetValue(node, GET_NAME(targetUserIds), targetUserIds) && ret;
172 ret = GetValue(node, GET_NAME(appId), appId) && ret;
173 return ret;
174 }
175 } // namespace OHOS::DistributedData
176