1 /*
2 * Copyright (c) 2025 Huawei Device Co., Ltd.
3 * Licensed under the Apache License, Version 2.0 (the "License");
4 * you may not use this file except in compliance with the License.
5 * You may obtain a copy of the License at
6 *
7 * http://www.apache.org/licenses/LICENSE-2.0
8 *
9 * Unless required by applicable law or agreed to in writing, software
10 * distributed under the License is distributed on an "AS IS" BASIS,
11 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12 * See the License for the specific language governing permissions and
13 * limitations under the License.
14 */
15
16 #include "credmgr_napi.h"
17
18 #include "device_auth_defines.h"
19 #include "hc_log.h"
20 #include "hc_types.h"
21 #include "ipc_sdk.h"
22 #include "identity_service_ipc_sdk.h"
23 #include "napi/native_api.h"
24 #include "napi/native_node_api.h"
25 #include "string_util.h"
26
27 namespace OHOS {
28 namespace CredMgrNapi {
29 thread_local napi_ref NapiCredManager::classRef_ = nullptr;
30 std::mutex NapiCredManager::g_instanceLock;
31
32 struct BatchUpdateCredsCtx {
33 napi_value env = nullptr;
34 AsyncType asyncType = ASYNC_CALLBACK;
35 napi_ref callback = nullptr;
36 napi_deferred deferred = nullptr;
37 napi_value promise = nullptr;
38 napi_async_work asyncWork = nullptr;
39 napi_ref credManagerRef = nullptr;
40
41 int32_t errCode = 0;
42 int32_t osAccountId = 0;
43 char *requestParams = nullptr;
44 char *returnData = nullptr;
45 const char *errMsg = nullptr;
46
47 CredManager *credManager = nullptr;
48 };
49
FreeBatchUpdateCredsCtx(napi_env env,BatchUpdateCredsCtx * ctx)50 static void FreeBatchUpdateCredsCtx(napi_env env, BatchUpdateCredsCtx *ctx)
51 {
52 if (ctx == nullptr) {
53 return;
54 }
55 if (ctx->asyncWork != nullptr) {
56 napi_delete_async_work(env, ctx->asyncWork);
57 ctx->asyncWork = nullptr;
58 }
59 if (ctx->callback != nullptr) {
60 napi_delete_reference(env, ctx->callback);
61 ctx->callback = nullptr;
62 }
63 if (ctx->credManagerRef != nullptr) {
64 napi_delete_reference(env, ctx->credManagerRef);
65 ctx->credManagerRef = nullptr;
66 }
67 if (ctx->requestParams != nullptr) {
68 HcFree(ctx->requestParams);
69 ctx->requestParams = nullptr;
70 }
71 if (ctx->returnData != nullptr) {
72 HcFree(ctx->returnData);
73 ctx->returnData = nullptr;
74 }
75 ctx->errMsg = nullptr;
76 HcFree(ctx);
77 ctx = nullptr;
78 }
79
GenerateErrorMsg(napi_env env,int32_t errorCode,const char * errMsg)80 napi_value GenerateErrorMsg(napi_env env, int32_t errorCode, const char *errMsg)
81 {
82 std::string errCodeField = "code";
83 napi_value errorRes = nullptr;
84 napi_value code = nullptr;
85 napi_create_int32(env, errorCode, &code);
86 napi_value msg = nullptr;
87 napi_create_string_utf8(env, errMsg, NAPI_AUTO_LENGTH, &msg);
88
89 napi_create_error(env, nullptr, msg, &errorRes);
90 napi_set_named_property(env, errorRes, errCodeField.c_str(), code);
91 return errorRes;
92 }
93
NapiCredManager(CredManager * credManager)94 NapiCredManager::NapiCredManager(CredManager *credManager)
95 {
96 this->credManager_ = credManager;
97 }
98
~NapiCredManager()99 NapiCredManager::~NapiCredManager()
100 {
101 std::lock_guard<std::mutex> autoLock(g_instanceLock);
102 if (this->credManager_ != nullptr) {
103 DestroyDeviceAuthService();
104 this->credManager_ = nullptr;
105 }
106 }
107
GetCurrentCredMgr()108 CredManager *NapiCredManager::GetCurrentCredMgr()
109 {
110 std::lock_guard<std::mutex> autoLock(g_instanceLock);
111 return this->credManager_;
112 }
113
NapiCredMgrConstructor(napi_env env,napi_callback_info info)114 napi_value NapiCredManager::NapiCredMgrConstructor(napi_env env, napi_callback_info info)
115 {
116 napi_value thisVar = nullptr;
117 napi_get_cb_info(env, info, nullptr, nullptr, &thisVar, nullptr);
118 return thisVar;
119 }
120
NapiGetCredMgrInstance(napi_env env,napi_callback_info info)121 napi_value NapiCredManager::NapiGetCredMgrInstance(napi_env env, napi_callback_info info)
122 {
123 LOGI("start...");
124 int32_t ret = InitDeviceAuthService();
125 if (ret != IS_SUCCESS) {
126 LOGE("InitDeviceAuthService failed");
127 napi_throw(env, GenerateErrorMsg(env, ret, "InitDeviceAuthService failed"));
128 return nullptr;
129 }
130
131 napi_value instance;
132 napi_value constructor = nullptr;
133 napi_get_reference_value(env, classRef_, &constructor);
134 napi_new_instance(env, constructor, 0, nullptr, &instance);
135
136 CredManager *credManager = (CredManager *)GetCredMgrInstance();
137 if (credManager == nullptr) {
138 LOGE("GetCredMgrInstance failed");
139 napi_throw(env, GenerateErrorMsg(env, IS_ERR_NULL_PTR, "GetCredMgrInstance failed"));
140 return nullptr;
141 }
142 NapiCredManager *napiCredManager = new (std::nothrow) NapiCredManager(credManager);
143 if (napiCredManager == nullptr) {
144 LOGE("new NapiCredManager failed");
145 napi_throw(env, GenerateErrorMsg(env, IS_ERR_ALLOC_MEMORY, "new NapiCredManager failed"));
146 return nullptr;
147 }
148 napi_status status = napi_wrap(env, instance, napiCredManager,
149 [](napi_env env, void *data, void *hint) {
150 NapiCredManager *napiCredManager = static_cast<NapiCredManager *>(data);
151 delete napiCredManager;
152 return;
153 }, nullptr, nullptr);
154 if (status != napi_ok) {
155 LOGE("napi_wrap failed");
156 napi_throw(env, GenerateErrorMsg(env, IS_ERROR, "napi_wrap failed"));
157 delete napiCredManager;
158 return nullptr;
159 }
160 return instance;
161 }
162
GetParamsFromNapiValue(napi_env env,napi_value osAccountIdVal,napi_value reqParamsVal,int32_t & osAccountId,std::string & reqParams)163 static bool GetParamsFromNapiValue(napi_env env, napi_value osAccountIdVal, napi_value reqParamsVal,
164 int32_t &osAccountId, std::string &reqParams)
165 {
166 size_t length = 0;
167 napi_valuetype osAccountIdType;
168 napi_valuetype reqParamsType;
169 napi_typeof(env, osAccountIdVal, &osAccountIdType);
170 napi_typeof(env, reqParamsVal, &reqParamsType);
171 if (osAccountIdType == napi_null || reqParamsType == napi_null) {
172 LOGE("osAccountId or reqParams is null");
173 return false;
174 }
175 if (osAccountIdType != napi_number || reqParamsType != napi_string) {
176 LOGE("osAccountId is not number or reqParams is not string");
177 return false;
178 }
179 if (napi_get_value_int32(env, osAccountIdVal, &osAccountId) != napi_ok) {
180 LOGE("can not get osAccountId");
181 return false;
182 }
183 if (napi_get_value_string_utf8(env, reqParamsVal, nullptr, 0, &length) != napi_ok) {
184 LOGE("can not get length of reqParams");
185 return false;
186 }
187 reqParams.reserve(length + 1);
188 reqParams.resize(length);
189 if (napi_get_value_string_utf8(env, reqParamsVal, reqParams.data(), length + 1, &length) != napi_ok) {
190 LOGE("can not get reqParams");
191 return false;
192 }
193 return true;
194 }
195
IsCallback(napi_env env,napi_value argv,size_t argc,size_t expectedArgc)196 static bool IsCallback(napi_env env, napi_value argv, size_t argc, size_t expectedArgc)
197 {
198 if (argc == expectedArgc - 1) {
199 return false;
200 }
201 napi_valuetype valueType = napi_undefined;
202 napi_typeof(env, argv, &valueType);
203 if (valueType == napi_undefined || valueType == napi_null) {
204 return false;
205 }
206 return true;
207 }
208
GetCallbackFromJsParams(napi_env env,napi_value arg,napi_ref * returnCb)209 static bool GetCallbackFromJsParams(napi_env env, napi_value arg, napi_ref *returnCb)
210 {
211 napi_valuetype valueType = napi_undefined;
212 napi_typeof(env, arg, &valueType);
213 if (valueType != napi_function) {
214 LOGE("wrong arg type. expect callback function. [Type]: %" LOG_PUB "d", valueType);
215 return false;
216 }
217 napi_create_reference(env, arg, 1, returnCb);
218 return true;
219 }
220
BuildCtxForBatchUpdateCreds(napi_env env,napi_callback_info info,BatchUpdateCredsCtx * ctx)221 static bool BuildCtxForBatchUpdateCreds(napi_env env, napi_callback_info info, BatchUpdateCredsCtx *ctx)
222 {
223 napi_value thisVar = nullptr;
224 size_t expectedArgc = ARGS_SIZE_THREE;
225 size_t argc = expectedArgc;
226 napi_value argv[ARGS_SIZE_THREE] = { nullptr };
227 napi_get_cb_info(env, info, &argc, argv, &thisVar, nullptr);
228
229 if (argc != expectedArgc - 1 && argc != expectedArgc) {
230 LOGE("wrong arg count, required: %" LOG_PUB "zu or %" LOG_PUB "zu, but got: %" LOG_PUB "zu",
231 expectedArgc - 1, expectedArgc, argc);
232 return false;
233 }
234 int32_t osAccountId = 0;
235 std::string requestParams;
236 if (!GetParamsFromNapiValue(env, argv[PARAM0], argv[PARAM1], osAccountId, requestParams)) {
237 LOGE("get params failed");
238 return false;
239 }
240 ctx->osAccountId = osAccountId;
241 if (DeepCopyString(requestParams.c_str(), &ctx->requestParams) != HC_SUCCESS) {
242 LOGE("copy requestParams failed");
243 return false;
244 }
245 ctx->asyncType = IsCallback(env, argv[expectedArgc - 1], argc, expectedArgc) ? ASYNC_CALLBACK : ASYNC_PROMISE;
246 NapiCredManager *napiCredManager = nullptr;
247 napi_status status = napi_unwrap(env, thisVar, reinterpret_cast<void **>(&napiCredManager));
248 if (status != napi_ok || napiCredManager == nullptr) {
249 LOGE("napiCredManager unwrap failed");
250 return false;
251 }
252 ctx->credManager = napiCredManager->GetCurrentCredMgr();
253 if (ctx->credManager == nullptr) {
254 LOGE("failed to get credManager obj");
255 return false;
256 }
257 if (napi_create_reference(env, thisVar, 1, &ctx->credManagerRef) != napi_ok) {
258 LOGE("failed to create credManager reference");
259 return false;
260 }
261 if (ctx->asyncType == ASYNC_PROMISE) {
262 napi_create_promise(env, &ctx->deferred, &ctx->promise);
263 return true;
264 }
265 return GetCallbackFromJsParams(env, argv[expectedArgc - 1], &ctx->callback);
266 }
267
NapiGetNull(napi_env env)268 static napi_value NapiGetNull(napi_env env)
269 {
270 napi_value result = nullptr;
271 napi_get_null(env, &result);
272 return result;
273 }
274
AsyncBatchUpdateCredsProcess(napi_env env,void * data)275 static void AsyncBatchUpdateCredsProcess(napi_env env, void *data)
276 {
277 BatchUpdateCredsCtx *ctx = static_cast<BatchUpdateCredsCtx *>(data);
278 CredManager *credManager = ctx->credManager;
279
280 ctx->errCode = credManager->batchUpdateCredentials(ctx->osAccountId, ctx->requestParams, &(ctx->returnData));
281 if (ctx->errCode != IS_SUCCESS) {
282 LOGE("batchUpdateCredentials failed, errCode: %" LOG_PUB "d", ctx->errCode);
283 ctx->errMsg = "batchUpdateCredentials failed";
284 return;
285 }
286 }
287
CredMgrCallbackResult(napi_env env,BatchUpdateCredsCtx * ctx,napi_value result)288 static void CredMgrCallbackResult(napi_env env, BatchUpdateCredsCtx *ctx, napi_value result)
289 {
290 napi_value errorReturn = nullptr;
291 if (ctx->errCode != IS_SUCCESS) {
292 errorReturn = GenerateErrorMsg(env, ctx->errCode, ctx->errMsg);
293 }
294 napi_value param[ARGS_SIZE_TWO] = { errorReturn, result };
295
296 napi_value func = nullptr;
297 napi_get_reference_value(env, ctx->callback, &func);
298
299 napi_value recv = nullptr;
300 napi_value callFuncRet = nullptr;
301 napi_get_undefined(env, &recv);
302 napi_call_function(env, recv, func, ARGS_SIZE_TWO, param, &callFuncRet);
303 }
304
CredMgrPromiseResult(napi_env env,BatchUpdateCredsCtx * ctx,napi_value result)305 static void CredMgrPromiseResult(napi_env env, BatchUpdateCredsCtx *ctx, napi_value result)
306 {
307 if (ctx->errCode == IS_SUCCESS) {
308 napi_resolve_deferred(env, ctx->deferred, result);
309 } else {
310 napi_reject_deferred(env, ctx->deferred, GenerateErrorMsg(env, ctx->errCode, ctx->errMsg));
311 }
312 }
313
CredMgrAsyncWorkReturn(napi_env env,napi_status status,void * data)314 static void CredMgrAsyncWorkReturn(napi_env env, napi_status status, void *data)
315 {
316 BatchUpdateCredsCtx *ctx = static_cast<BatchUpdateCredsCtx *>(data);
317 napi_value result = nullptr;
318 napi_create_string_utf8(env, ctx->returnData, NAPI_AUTO_LENGTH, &result);
319 if (ctx->asyncType == ASYNC_CALLBACK) {
320 CredMgrCallbackResult(env, ctx, result);
321 } else {
322 CredMgrPromiseResult(env, ctx, result);
323 }
324 FreeBatchUpdateCredsCtx(env, ctx); // only free here, normal no need free
325 }
326
BatchUpdateCredsAsyncWork(napi_env env,BatchUpdateCredsCtx * ctx)327 static napi_value BatchUpdateCredsAsyncWork(napi_env env, BatchUpdateCredsCtx *ctx)
328 {
329 napi_value resourceName = nullptr;
330 napi_create_string_utf8(env, "batchUpdateCredentials", NAPI_AUTO_LENGTH, &resourceName);
331
332 napi_create_async_work(
333 env,
334 nullptr,
335 resourceName,
336 [](napi_env env, void *data) {
337 AsyncBatchUpdateCredsProcess(env, data);
338 return;
339 },
340 [](napi_env env, napi_status status, void *data) {
341 CredMgrAsyncWorkReturn(env, status, data);
342 return;
343 },
344 static_cast<void *>(ctx),
345 &ctx->asyncWork);
346 napi_queue_async_work(env, ctx->asyncWork);
347 if (ctx->asyncType == ASYNC_PROMISE) {
348 return ctx->promise;
349 }
350 return NapiGetNull(env);
351 }
352
NapiBatchUpdateCreds(napi_env env,napi_callback_info info)353 napi_value NapiCredManager::NapiBatchUpdateCreds(napi_env env, napi_callback_info info)
354 {
355 BatchUpdateCredsCtx *ctx =
356 static_cast<BatchUpdateCredsCtx *>(HcMalloc(sizeof(BatchUpdateCredsCtx), 0));
357 if (ctx == nullptr) {
358 LOGE("HcMalloc BatchUpdateCredsCtx failed");
359 napi_throw(env, GenerateErrorMsg(env, IS_ERR_ALLOC_MEMORY, "HcMalloc BatchUpdateCredsCtx failed"));
360 return nullptr;
361 }
362 if (!BuildCtxForBatchUpdateCreds(env, info, ctx)) {
363 LOGE("BuildCtxForBatchUpdateCreds failed");
364 napi_throw(env, GenerateErrorMsg(env, IS_ERR_INVALID_PARAMS, "BuildCtxForBatchUpdateCreds failed"));
365 FreeBatchUpdateCredsCtx(env, ctx);
366 return nullptr;
367 }
368 napi_value result = BatchUpdateCredsAsyncWork(env, ctx);
369 if (result == nullptr) {
370 LOGE("BatchUpdateCredsAsyncWork failed");
371 napi_throw(env, GenerateErrorMsg(env, IS_ERR_INVALID_PARAMS, "BatchUpdateCredsAsyncWork failed"));
372 FreeBatchUpdateCredsCtx(env, ctx);
373 return nullptr;
374 }
375 return result;
376 }
377
CredMgrNapiRegister(napi_env env,napi_value exports)378 void NapiCredManager::CredMgrNapiRegister(napi_env env, napi_value exports)
379 {
380 napi_property_descriptor desc[] = {
381 DECLARE_NAPI_FUNCTION("getCredMgrInstance", NapiCredManager::NapiGetCredMgrInstance),
382 };
383 napi_define_properties(env, exports, sizeof(desc) / sizeof(desc[0]), desc);
384
385 napi_property_descriptor funcDesc[] = {
386 DECLARE_NAPI_FUNCTION("batchUpdateCredentials", NapiCredManager::NapiBatchUpdateCreds),
387 };
388
389 napi_value constructor = nullptr;
390 napi_define_class(env, "CredManager", NAPI_AUTO_LENGTH, NapiCredManager::NapiCredMgrConstructor,
391 nullptr, sizeof(funcDesc) / sizeof(funcDesc[0]), funcDesc, &constructor);
392 napi_create_reference(env, constructor, 1, &classRef_);
393 }
394
ModuleExport(napi_env env,napi_value exports)395 static napi_value ModuleExport(napi_env env, napi_value exports)
396 {
397 LOGI("device auth napi module export start");
398 NapiCredManager::CredMgrNapiRegister(env, exports);
399 LOGI("device auth napi module export end");
400 return exports;
401 }
402
RegisterModule(void)403 extern "C" __attribute__((constructor)) void RegisterModule(void)
404 {
405 static napi_module credMgrModule = {
406 .nm_version = 1,
407 .nm_flags = 0,
408 .nm_filename = nullptr,
409 .nm_register_func = ModuleExport,
410 .nm_modname = "security.deviceauth",
411 .nm_priv = nullptr,
412 .reserved = { nullptr },
413 };
414 napi_module_register(&credMgrModule);
415 }
416
417 }
418 }
419