1 /*
2 * Copyright (c) 2025-2025 Huawei Device Co., Ltd.
3 * Licensed under the Apache License, Version 2.0 (the "License");
4 * you may not use this file except in compliance with the License.
5 * You may obtain a copy of the License at
6 *
7 * http://www.apache.org/licenses/LICENSE-2.0
8 *
9 * Unless required by applicable law or agreed to in writing, software
10 * distributed under the License is distributed on an "AS IS" BASIS,
11 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12 * See the License for the specific language governing permissions and
13 * limitations under the License.
14 */
15
16 #include "disable_user_mtp_client_plugin.h"
17
18 #include <ipc_skeleton.h>
19 #include "bool_serializer.h"
20 #include "edm_constants.h"
21 #include "edm_errors.h"
22 #include "edm_ipc_interface_code.h"
23 #include "edm_log.h"
24 #include "iplugin_manager.h"
25 #include "os_account_manager.h"
26 #include "parameters.h"
27
28 namespace OHOS {
29 namespace EDM {
30 const bool REGISTER_RESULT = IPluginManager::GetInstance()->AddPlugin(DisableUserMtpClientPlugin::GetPlugin());
31 const std::string PERSIST_EDM_MTP_CLIENT_DISABLE = "persist.edm.mtp_client_disable";
32 const std::string CONSTRAINT_MTP_CLIENT_WRITE = "constraint.mtp.client.write"; // mtpClient 只读
33
InitPlugin(std::shared_ptr<IPluginTemplate<DisableUserMtpClientPlugin,bool>> ptr)34 void DisableUserMtpClientPlugin::InitPlugin(std::shared_ptr<IPluginTemplate<DisableUserMtpClientPlugin, bool>> ptr)
35 {
36 EDMLOGI("DisableUserMtpClientPlugin InitPlugin...");
37 ptr->InitAttribute(EdmInterfaceCode::DISABLE_USER_MTP_CLIENT, PolicyName::POLICY_DISABLED_USER_MTP_CLIENT,
38 EdmPermission::PERMISSION_ENTERPRISE_MANAGE_RESTRICTIONS, IPlugin::PermissionType::SUPER_DEVICE_ADMIN, true);
39 ptr->SetSerializer(BoolSerializer::GetInstance());
40 ptr->SetOnHandlePolicyListener(&DisableUserMtpClientPlugin::OnSetPolicy, FuncOperateType::SET);
41 ptr->SetOnAdminRemoveListener(&DisableUserMtpClientPlugin::OnAdminRemove);
42 }
43
OnSetPolicy(bool & data,bool & currentData,bool & mergeData,int32_t userId)44 ErrCode DisableUserMtpClientPlugin::OnSetPolicy(bool &data, bool ¤tData, bool &mergeData,
45 int32_t userId)
46 {
47 EDMLOGI("DisableUserMtpClientPlugin::OnSetPolicy, data: %{public}d, currentData: %{public}d, "
48 "mergeData: %{public}d", data, currentData, mergeData);
49 std::string value = system::GetParameter(PERSIST_EDM_MTP_CLIENT_DISABLE, "false");
50 if (value == "true") { // 设备级接口禁用,返回策略冲突
51 return EdmReturnErrCode::CONFIGURATION_CONFLICT_FAILED;
52 }
53
54 if (mergeData) {
55 currentData = data;
56 return ERR_OK;
57 }
58 ErrCode ret = SetMtpClientPolicy(data, userId);
59 EDMLOGI("DisableUserMtpClientPlugin::OnSetPolicy, SetMtpClientPolicy ret: %{public}d", ret);
60 if (FAILED(ret)) {
61 EDMLOGE("DisableUserMtpClientPlugin::OnSetPolicy, SetMtpClientPolicy failed");
62 return EdmReturnErrCode::SYSTEM_ABNORMALLY;
63 }
64 currentData = data;
65 mergeData = data;
66 return ERR_OK;
67 }
68
OnAdminRemove(const std::string & adminName,bool & data,bool & mergeData,int32_t userId)69 ErrCode DisableUserMtpClientPlugin::OnAdminRemove(const std::string &adminName, bool &data, bool &mergeData,
70 int32_t userId)
71 {
72 EDMLOGI("DisableUserMtpClientPlugin::OnAdminRemove, adminName: %{public}s, data: %{public}d, "
73 "mergeData: %{public}d", adminName.c_str(), data, mergeData);
74 // admin 移除时,综合策略为只读,则最终策略不变,仍未只读
75 if (mergeData) {
76 return ERR_OK;
77 }
78 // admin 移除时,综合策略为读写,且移除的策略为只读,则更新策略为读写
79 if (!mergeData && data) {
80 ErrCode ret = SetMtpClientPolicy(false, userId);
81 EDMLOGI("DisableUserMtpClientPlugin::OnAdminRemove, SetMtpClientPolicy ret: %{public}d", ret);
82 if (FAILED(ret)) {
83 EDMLOGE("DisableUserMtpClientPlugin::OnAdminRemove, SetMtpClientPolicy failed");
84 return EdmReturnErrCode::SYSTEM_ABNORMALLY;
85 }
86 }
87 return ERR_OK;
88 }
89
SetMtpClientPolicy(bool policy,int32_t userId)90 ErrCode DisableUserMtpClientPlugin::SetMtpClientPolicy(bool policy, int32_t userId)
91 {
92 EDMLOGI("DisableUserMtpClientPlugin::SetMtpClientPolicy, policy: %{public}d", policy);
93 std::vector<std::string> constraints;
94 constraints.emplace_back(CONSTRAINT_MTP_CLIENT_WRITE);
95 ErrCode ret = AccountSA::OsAccountManager::SetSpecificOsAccountConstraints(constraints, policy, userId,
96 EdmConstants::DEFAULT_USER_ID, true);
97 EDMLOGI("DisableUserMtpClientPlugin::SetMtpClientPolicy, SetSpecificOsAccountConstraints ret: %{public}d", ret);
98 return ret;
99 }
100 } // namespace EDM
101 } // namespace OHOS
102