1 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file.
4
5 #include "chromeos/dbus/session_manager_client.h"
6
7 #include "base/bind.h"
8 #include "base/callback.h"
9 #include "base/files/file_path.h"
10 #include "base/files/file_util.h"
11 #include "base/location.h"
12 #include "base/path_service.h"
13 #include "base/strings/string_number_conversions.h"
14 #include "base/strings/string_util.h"
15 #include "base/task_runner_util.h"
16 #include "base/threading/worker_pool.h"
17 #include "chromeos/chromeos_paths.h"
18 #include "chromeos/dbus/blocking_method_caller.h"
19 #include "chromeos/dbus/cryptohome_client.h"
20 #include "crypto/sha2.h"
21 #include "dbus/bus.h"
22 #include "dbus/message.h"
23 #include "dbus/object_path.h"
24 #include "dbus/object_proxy.h"
25 #include "policy/proto/device_management_backend.pb.h"
26 #include "third_party/cros_system_api/dbus/service_constants.h"
27
28 namespace chromeos {
29
30 namespace {
31
32 // Returns a location for |file| that is specific to the given |username|.
33 // These paths will be relative to DIR_USER_POLICY_KEYS, and can be used only
34 // to store stub files.
GetUserFilePath(const std::string & username,const char * file)35 base::FilePath GetUserFilePath(const std::string& username, const char* file) {
36 base::FilePath keys_path;
37 if (!PathService::Get(chromeos::DIR_USER_POLICY_KEYS, &keys_path))
38 return base::FilePath();
39 const std::string sanitized =
40 CryptohomeClient::GetStubSanitizedUsername(username);
41 return keys_path.AppendASCII(sanitized).AppendASCII(file);
42 }
43
44 // Helper to asynchronously retrieve a file's content.
GetFileContent(const base::FilePath & path)45 std::string GetFileContent(const base::FilePath& path) {
46 std::string result;
47 if (!path.empty())
48 base::ReadFileToString(path, &result);
49 return result;
50 }
51
52 // Helper to write a file in a background thread.
StoreFile(const base::FilePath & path,const std::string & data)53 void StoreFile(const base::FilePath& path, const std::string& data) {
54 const int size = static_cast<int>(data.size());
55 if (path.empty() ||
56 !base::CreateDirectory(path.DirName()) ||
57 base::WriteFile(path, data.data(), size) != size) {
58 LOG(WARNING) << "Failed to write to " << path.value();
59 }
60 }
61
62 } // namespace
63
64 // The SessionManagerClient implementation used in production.
65 class SessionManagerClientImpl : public SessionManagerClient {
66 public:
SessionManagerClientImpl()67 SessionManagerClientImpl()
68 : session_manager_proxy_(NULL),
69 weak_ptr_factory_(this) {}
70
~SessionManagerClientImpl()71 virtual ~SessionManagerClientImpl() {
72 }
73
74 // SessionManagerClient overrides:
SetStubDelegate(StubDelegate * delegate)75 virtual void SetStubDelegate(StubDelegate* delegate) OVERRIDE {
76 // Do nothing; this isn't a stub implementation.
77 }
78
AddObserver(Observer * observer)79 virtual void AddObserver(Observer* observer) OVERRIDE {
80 observers_.AddObserver(observer);
81 }
82
RemoveObserver(Observer * observer)83 virtual void RemoveObserver(Observer* observer) OVERRIDE {
84 observers_.RemoveObserver(observer);
85 }
86
HasObserver(Observer * observer)87 virtual bool HasObserver(Observer* observer) OVERRIDE {
88 return observers_.HasObserver(observer);
89 }
90
EmitLoginPromptVisible()91 virtual void EmitLoginPromptVisible() OVERRIDE {
92 SimpleMethodCallToSessionManager(
93 login_manager::kSessionManagerEmitLoginPromptVisible);
94 FOR_EACH_OBSERVER(Observer, observers_, EmitLoginPromptVisibleCalled());
95 }
96
RestartJob(int pid,const std::string & command_line)97 virtual void RestartJob(int pid, const std::string& command_line) OVERRIDE {
98 dbus::MethodCall method_call(login_manager::kSessionManagerInterface,
99 login_manager::kSessionManagerRestartJob);
100 dbus::MessageWriter writer(&method_call);
101 writer.AppendInt32(pid);
102 writer.AppendString(command_line);
103 session_manager_proxy_->CallMethod(
104 &method_call,
105 dbus::ObjectProxy::TIMEOUT_USE_DEFAULT,
106 base::Bind(&SessionManagerClientImpl::OnRestartJob,
107 weak_ptr_factory_.GetWeakPtr()));
108 }
109
StartSession(const std::string & user_email)110 virtual void StartSession(const std::string& user_email) OVERRIDE {
111 dbus::MethodCall method_call(login_manager::kSessionManagerInterface,
112 login_manager::kSessionManagerStartSession);
113 dbus::MessageWriter writer(&method_call);
114 writer.AppendString(user_email);
115 writer.AppendString(""); // Unique ID is deprecated
116 session_manager_proxy_->CallMethod(
117 &method_call,
118 dbus::ObjectProxy::TIMEOUT_USE_DEFAULT,
119 base::Bind(&SessionManagerClientImpl::OnStartSession,
120 weak_ptr_factory_.GetWeakPtr()));
121 }
122
StopSession()123 virtual void StopSession() OVERRIDE {
124 dbus::MethodCall method_call(login_manager::kSessionManagerInterface,
125 login_manager::kSessionManagerStopSession);
126 dbus::MessageWriter writer(&method_call);
127 writer.AppendString(""); // Unique ID is deprecated
128 session_manager_proxy_->CallMethod(
129 &method_call,
130 dbus::ObjectProxy::TIMEOUT_USE_DEFAULT,
131 base::Bind(&SessionManagerClientImpl::OnStopSession,
132 weak_ptr_factory_.GetWeakPtr()));
133 }
134
StartDeviceWipe()135 virtual void StartDeviceWipe() OVERRIDE {
136 dbus::MethodCall method_call(login_manager::kSessionManagerInterface,
137 login_manager::kSessionManagerStartDeviceWipe);
138 session_manager_proxy_->CallMethod(
139 &method_call,
140 dbus::ObjectProxy::TIMEOUT_USE_DEFAULT,
141 base::Bind(&SessionManagerClientImpl::OnDeviceWipe,
142 weak_ptr_factory_.GetWeakPtr()));
143 }
144
RequestLockScreen()145 virtual void RequestLockScreen() OVERRIDE {
146 SimpleMethodCallToSessionManager(login_manager::kSessionManagerLockScreen);
147 }
148
NotifyLockScreenShown()149 virtual void NotifyLockScreenShown() OVERRIDE {
150 SimpleMethodCallToSessionManager(
151 login_manager::kSessionManagerHandleLockScreenShown);
152 }
153
NotifyLockScreenDismissed()154 virtual void NotifyLockScreenDismissed() OVERRIDE {
155 SimpleMethodCallToSessionManager(
156 login_manager::kSessionManagerHandleLockScreenDismissed);
157 }
158
RetrieveActiveSessions(const ActiveSessionsCallback & callback)159 virtual void RetrieveActiveSessions(
160 const ActiveSessionsCallback& callback) OVERRIDE {
161 dbus::MethodCall method_call(
162 login_manager::kSessionManagerInterface,
163 login_manager::kSessionManagerRetrieveActiveSessions);
164
165 session_manager_proxy_->CallMethod(
166 &method_call,
167 dbus::ObjectProxy::TIMEOUT_USE_DEFAULT,
168 base::Bind(&SessionManagerClientImpl::OnRetrieveActiveSessions,
169 weak_ptr_factory_.GetWeakPtr(),
170 login_manager::kSessionManagerRetrieveActiveSessions,
171 callback));
172 }
173
RetrieveDevicePolicy(const RetrievePolicyCallback & callback)174 virtual void RetrieveDevicePolicy(
175 const RetrievePolicyCallback& callback) OVERRIDE {
176 dbus::MethodCall method_call(login_manager::kSessionManagerInterface,
177 login_manager::kSessionManagerRetrievePolicy);
178 session_manager_proxy_->CallMethod(
179 &method_call,
180 dbus::ObjectProxy::TIMEOUT_USE_DEFAULT,
181 base::Bind(&SessionManagerClientImpl::OnRetrievePolicy,
182 weak_ptr_factory_.GetWeakPtr(),
183 login_manager::kSessionManagerRetrievePolicy,
184 callback));
185 }
186
RetrievePolicyForUser(const std::string & username,const RetrievePolicyCallback & callback)187 virtual void RetrievePolicyForUser(
188 const std::string& username,
189 const RetrievePolicyCallback& callback) OVERRIDE {
190 CallRetrievePolicyByUsername(
191 login_manager::kSessionManagerRetrievePolicyForUser,
192 username,
193 callback);
194 }
195
BlockingRetrievePolicyForUser(const std::string & username)196 virtual std::string BlockingRetrievePolicyForUser(
197 const std::string& username) OVERRIDE {
198 dbus::MethodCall method_call(
199 login_manager::kSessionManagerInterface,
200 login_manager::kSessionManagerRetrievePolicyForUser);
201 dbus::MessageWriter writer(&method_call);
202 writer.AppendString(username);
203 scoped_ptr<dbus::Response> response =
204 blocking_method_caller_->CallMethodAndBlock(&method_call);
205 std::string policy;
206 ExtractString(login_manager::kSessionManagerRetrievePolicyForUser,
207 response.get(),
208 &policy);
209 return policy;
210 }
211
RetrieveDeviceLocalAccountPolicy(const std::string & account_name,const RetrievePolicyCallback & callback)212 virtual void RetrieveDeviceLocalAccountPolicy(
213 const std::string& account_name,
214 const RetrievePolicyCallback& callback) OVERRIDE {
215 CallRetrievePolicyByUsername(
216 login_manager::kSessionManagerRetrieveDeviceLocalAccountPolicy,
217 account_name,
218 callback);
219 }
220
StoreDevicePolicy(const std::string & policy_blob,const StorePolicyCallback & callback)221 virtual void StoreDevicePolicy(const std::string& policy_blob,
222 const StorePolicyCallback& callback) OVERRIDE {
223 dbus::MethodCall method_call(login_manager::kSessionManagerInterface,
224 login_manager::kSessionManagerStorePolicy);
225 dbus::MessageWriter writer(&method_call);
226 // static_cast does not work due to signedness.
227 writer.AppendArrayOfBytes(
228 reinterpret_cast<const uint8*>(policy_blob.data()), policy_blob.size());
229 session_manager_proxy_->CallMethod(
230 &method_call,
231 dbus::ObjectProxy::TIMEOUT_USE_DEFAULT,
232 base::Bind(&SessionManagerClientImpl::OnStorePolicy,
233 weak_ptr_factory_.GetWeakPtr(),
234 login_manager::kSessionManagerStorePolicy,
235 callback));
236 }
237
StorePolicyForUser(const std::string & username,const std::string & policy_blob,const StorePolicyCallback & callback)238 virtual void StorePolicyForUser(
239 const std::string& username,
240 const std::string& policy_blob,
241 const StorePolicyCallback& callback) OVERRIDE {
242 CallStorePolicyByUsername(login_manager::kSessionManagerStorePolicyForUser,
243 username,
244 policy_blob,
245 callback);
246 }
247
StoreDeviceLocalAccountPolicy(const std::string & account_name,const std::string & policy_blob,const StorePolicyCallback & callback)248 virtual void StoreDeviceLocalAccountPolicy(
249 const std::string& account_name,
250 const std::string& policy_blob,
251 const StorePolicyCallback& callback) OVERRIDE {
252 CallStorePolicyByUsername(
253 login_manager::kSessionManagerStoreDeviceLocalAccountPolicy,
254 account_name,
255 policy_blob,
256 callback);
257 }
258
SetFlagsForUser(const std::string & username,const std::vector<std::string> & flags)259 virtual void SetFlagsForUser(const std::string& username,
260 const std::vector<std::string>& flags) OVERRIDE {
261 dbus::MethodCall method_call(login_manager::kSessionManagerInterface,
262 login_manager::kSessionManagerSetFlagsForUser);
263 dbus::MessageWriter writer(&method_call);
264 writer.AppendString(username);
265 writer.AppendArrayOfStrings(flags);
266 session_manager_proxy_->CallMethod(
267 &method_call,
268 dbus::ObjectProxy::TIMEOUT_USE_DEFAULT,
269 dbus::ObjectProxy::EmptyResponseCallback());
270 }
271
GetServerBackedStateKeys(const StateKeysCallback & callback)272 virtual void GetServerBackedStateKeys(const StateKeysCallback& callback)
273 OVERRIDE {
274 dbus::MethodCall method_call(
275 login_manager::kSessionManagerInterface,
276 login_manager::kSessionManagerGetServerBackedStateKeys);
277
278 session_manager_proxy_->CallMethod(
279 &method_call,
280 dbus::ObjectProxy::TIMEOUT_USE_DEFAULT,
281 base::Bind(&SessionManagerClientImpl::OnGetServerBackedStateKeys,
282 weak_ptr_factory_.GetWeakPtr(),
283 callback));
284 }
285
286 protected:
Init(dbus::Bus * bus)287 virtual void Init(dbus::Bus* bus) OVERRIDE {
288 session_manager_proxy_ = bus->GetObjectProxy(
289 login_manager::kSessionManagerServiceName,
290 dbus::ObjectPath(login_manager::kSessionManagerServicePath));
291 blocking_method_caller_.reset(
292 new BlockingMethodCaller(bus, session_manager_proxy_));
293
294 // Signals emitted on the session manager's interface.
295 session_manager_proxy_->ConnectToSignal(
296 login_manager::kSessionManagerInterface,
297 login_manager::kOwnerKeySetSignal,
298 base::Bind(&SessionManagerClientImpl::OwnerKeySetReceived,
299 weak_ptr_factory_.GetWeakPtr()),
300 base::Bind(&SessionManagerClientImpl::SignalConnected,
301 weak_ptr_factory_.GetWeakPtr()));
302 session_manager_proxy_->ConnectToSignal(
303 login_manager::kSessionManagerInterface,
304 login_manager::kPropertyChangeCompleteSignal,
305 base::Bind(&SessionManagerClientImpl::PropertyChangeCompleteReceived,
306 weak_ptr_factory_.GetWeakPtr()),
307 base::Bind(&SessionManagerClientImpl::SignalConnected,
308 weak_ptr_factory_.GetWeakPtr()));
309 session_manager_proxy_->ConnectToSignal(
310 login_manager::kSessionManagerInterface,
311 login_manager::kScreenIsLockedSignal,
312 base::Bind(&SessionManagerClientImpl::ScreenIsLockedReceived,
313 weak_ptr_factory_.GetWeakPtr()),
314 base::Bind(&SessionManagerClientImpl::SignalConnected,
315 weak_ptr_factory_.GetWeakPtr()));
316 session_manager_proxy_->ConnectToSignal(
317 login_manager::kSessionManagerInterface,
318 login_manager::kScreenIsUnlockedSignal,
319 base::Bind(&SessionManagerClientImpl::ScreenIsUnlockedReceived,
320 weak_ptr_factory_.GetWeakPtr()),
321 base::Bind(&SessionManagerClientImpl::SignalConnected,
322 weak_ptr_factory_.GetWeakPtr()));
323 }
324
325 private:
326 // Makes a method call to the session manager with no arguments and no
327 // response.
SimpleMethodCallToSessionManager(const std::string & method_name)328 void SimpleMethodCallToSessionManager(const std::string& method_name) {
329 dbus::MethodCall method_call(login_manager::kSessionManagerInterface,
330 method_name);
331 session_manager_proxy_->CallMethod(
332 &method_call,
333 dbus::ObjectProxy::TIMEOUT_USE_DEFAULT,
334 dbus::ObjectProxy::EmptyResponseCallback());
335 }
336
337 // Helper for RetrieveDeviceLocalAccountPolicy and RetrievePolicyForUser.
CallRetrievePolicyByUsername(const std::string & method_name,const std::string & username,const RetrievePolicyCallback & callback)338 void CallRetrievePolicyByUsername(const std::string& method_name,
339 const std::string& username,
340 const RetrievePolicyCallback& callback) {
341 dbus::MethodCall method_call(login_manager::kSessionManagerInterface,
342 method_name);
343 dbus::MessageWriter writer(&method_call);
344 writer.AppendString(username);
345 session_manager_proxy_->CallMethod(
346 &method_call,
347 dbus::ObjectProxy::TIMEOUT_USE_DEFAULT,
348 base::Bind(
349 &SessionManagerClientImpl::OnRetrievePolicy,
350 weak_ptr_factory_.GetWeakPtr(),
351 method_name,
352 callback));
353 }
354
CallStorePolicyByUsername(const std::string & method_name,const std::string & username,const std::string & policy_blob,const StorePolicyCallback & callback)355 void CallStorePolicyByUsername(const std::string& method_name,
356 const std::string& username,
357 const std::string& policy_blob,
358 const StorePolicyCallback& callback) {
359 dbus::MethodCall method_call(login_manager::kSessionManagerInterface,
360 method_name);
361 dbus::MessageWriter writer(&method_call);
362 writer.AppendString(username);
363 // static_cast does not work due to signedness.
364 writer.AppendArrayOfBytes(
365 reinterpret_cast<const uint8*>(policy_blob.data()), policy_blob.size());
366 session_manager_proxy_->CallMethod(
367 &method_call,
368 dbus::ObjectProxy::TIMEOUT_USE_DEFAULT,
369 base::Bind(
370 &SessionManagerClientImpl::OnStorePolicy,
371 weak_ptr_factory_.GetWeakPtr(),
372 method_name,
373 callback));
374 }
375
376 // Called when kSessionManagerRestartJob method is complete.
OnRestartJob(dbus::Response * response)377 void OnRestartJob(dbus::Response* response) {
378 LOG_IF(ERROR, !response)
379 << "Failed to call "
380 << login_manager::kSessionManagerRestartJob;
381 }
382
383 // Called when kSessionManagerStartSession method is complete.
OnStartSession(dbus::Response * response)384 void OnStartSession(dbus::Response* response) {
385 LOG_IF(ERROR, !response)
386 << "Failed to call "
387 << login_manager::kSessionManagerStartSession;
388 }
389
390 // Called when kSessionManagerStopSession method is complete.
OnStopSession(dbus::Response * response)391 void OnStopSession(dbus::Response* response) {
392 LOG_IF(ERROR, !response)
393 << "Failed to call "
394 << login_manager::kSessionManagerStopSession;
395 }
396
397 // Called when kSessionManagerStopSession method is complete.
OnDeviceWipe(dbus::Response * response)398 void OnDeviceWipe(dbus::Response* response) {
399 LOG_IF(ERROR, !response)
400 << "Failed to call "
401 << login_manager::kSessionManagerStartDeviceWipe;
402 }
403
404 // Called when kSessionManagerRetrieveActiveSessions method is complete.
OnRetrieveActiveSessions(const std::string & method_name,const ActiveSessionsCallback & callback,dbus::Response * response)405 void OnRetrieveActiveSessions(const std::string& method_name,
406 const ActiveSessionsCallback& callback,
407 dbus::Response* response) {
408 ActiveSessionsMap sessions;
409 bool success = false;
410 if (!response) {
411 LOG(ERROR) << "Failed to call " << method_name;
412 callback.Run(sessions, success);
413 return;
414 }
415
416 dbus::MessageReader reader(response);
417 dbus::MessageReader array_reader(NULL);
418
419 if (!reader.PopArray(&array_reader)) {
420 LOG(ERROR) << method_name << " response is incorrect: "
421 << response->ToString();
422 } else {
423 while (array_reader.HasMoreData()) {
424 dbus::MessageReader dict_entry_reader(NULL);
425 std::string key;
426 std::string value;
427 if (!array_reader.PopDictEntry(&dict_entry_reader) ||
428 !dict_entry_reader.PopString(&key) ||
429 !dict_entry_reader.PopString(&value)) {
430 LOG(ERROR) << method_name << " response is incorrect: "
431 << response->ToString();
432 } else {
433 sessions[key] = value;
434 }
435 }
436 success = true;
437 }
438 callback.Run(sessions, success);
439 }
440
ExtractString(const std::string & method_name,dbus::Response * response,std::string * extracted)441 void ExtractString(const std::string& method_name,
442 dbus::Response* response,
443 std::string* extracted) {
444 if (!response) {
445 LOG(ERROR) << "Failed to call " << method_name;
446 return;
447 }
448 dbus::MessageReader reader(response);
449 const uint8* values = NULL;
450 size_t length = 0;
451 if (!reader.PopArrayOfBytes(&values, &length)) {
452 LOG(ERROR) << "Invalid response: " << response->ToString();
453 return;
454 }
455 // static_cast does not work due to signedness.
456 extracted->assign(reinterpret_cast<const char*>(values), length);
457 }
458
459 // Called when kSessionManagerRetrievePolicy or
460 // kSessionManagerRetrievePolicyForUser method is complete.
OnRetrievePolicy(const std::string & method_name,const RetrievePolicyCallback & callback,dbus::Response * response)461 void OnRetrievePolicy(const std::string& method_name,
462 const RetrievePolicyCallback& callback,
463 dbus::Response* response) {
464 std::string serialized_proto;
465 ExtractString(method_name, response, &serialized_proto);
466 callback.Run(serialized_proto);
467 }
468
469 // Called when kSessionManagerStorePolicy or kSessionManagerStorePolicyForUser
470 // method is complete.
OnStorePolicy(const std::string & method_name,const StorePolicyCallback & callback,dbus::Response * response)471 void OnStorePolicy(const std::string& method_name,
472 const StorePolicyCallback& callback,
473 dbus::Response* response) {
474 bool success = false;
475 if (!response) {
476 LOG(ERROR) << "Failed to call " << method_name;
477 } else {
478 dbus::MessageReader reader(response);
479 if (!reader.PopBool(&success))
480 LOG(ERROR) << "Invalid response: " << response->ToString();
481 }
482 callback.Run(success);
483 }
484
485 // Called when the owner key set signal is received.
OwnerKeySetReceived(dbus::Signal * signal)486 void OwnerKeySetReceived(dbus::Signal* signal) {
487 dbus::MessageReader reader(signal);
488 std::string result_string;
489 if (!reader.PopString(&result_string)) {
490 LOG(ERROR) << "Invalid signal: " << signal->ToString();
491 return;
492 }
493 const bool success = StartsWithASCII(result_string, "success", false);
494 FOR_EACH_OBSERVER(Observer, observers_, OwnerKeySet(success));
495 }
496
497 // Called when the property change complete signal is received.
PropertyChangeCompleteReceived(dbus::Signal * signal)498 void PropertyChangeCompleteReceived(dbus::Signal* signal) {
499 dbus::MessageReader reader(signal);
500 std::string result_string;
501 if (!reader.PopString(&result_string)) {
502 LOG(ERROR) << "Invalid signal: " << signal->ToString();
503 return;
504 }
505 const bool success = StartsWithASCII(result_string, "success", false);
506 FOR_EACH_OBSERVER(Observer, observers_, PropertyChangeComplete(success));
507 }
508
ScreenIsLockedReceived(dbus::Signal * signal)509 void ScreenIsLockedReceived(dbus::Signal* signal) {
510 FOR_EACH_OBSERVER(Observer, observers_, ScreenIsLocked());
511 }
512
ScreenIsUnlockedReceived(dbus::Signal * signal)513 void ScreenIsUnlockedReceived(dbus::Signal* signal) {
514 FOR_EACH_OBSERVER(Observer, observers_, ScreenIsUnlocked());
515 }
516
517 // Called when the object is connected to the signal.
SignalConnected(const std::string & interface_name,const std::string & signal_name,bool success)518 void SignalConnected(const std::string& interface_name,
519 const std::string& signal_name,
520 bool success) {
521 LOG_IF(ERROR, !success) << "Failed to connect to " << signal_name;
522 }
523
524 // Called when kSessionManagerGetServerBackedStateKeys method is complete.
OnGetServerBackedStateKeys(const StateKeysCallback & callback,dbus::Response * response)525 void OnGetServerBackedStateKeys(const StateKeysCallback& callback,
526 dbus::Response* response) {
527 std::vector<std::string> state_keys;
528 bool first_run = false;
529 if (!response) {
530 LOG(ERROR) << "Failed to call "
531 << login_manager::kSessionManagerStartSession;
532 } else {
533 dbus::MessageReader reader(response);
534 dbus::MessageReader array_reader(NULL);
535
536 if (!reader.PopArray(&array_reader)) {
537 LOG(ERROR) << "Bad response: " << response->ToString();
538 } else {
539 while (array_reader.HasMoreData()) {
540 const uint8* data = NULL;
541 size_t size = 0;
542 if (!array_reader.PopArrayOfBytes(&data, &size)) {
543 LOG(ERROR) << "Bad response: " << response->ToString();
544 state_keys.clear();
545 break;
546 }
547 state_keys.push_back(
548 std::string(reinterpret_cast<const char*>(data), size));
549 }
550 }
551 if (!reader.PopBool(&first_run)) {
552 // TODO(tnagel): After 2014-11-19 turn this warning into an error.
553 LOG(WARNING) << "Chrome OS is too old. Defaulting to first_run=false.";
554 }
555 }
556
557 if (!callback.is_null())
558 callback.Run(state_keys, first_run);
559 }
560
561
562 dbus::ObjectProxy* session_manager_proxy_;
563 scoped_ptr<BlockingMethodCaller> blocking_method_caller_;
564 ObserverList<Observer> observers_;
565
566 // Note: This should remain the last member so it'll be destroyed and
567 // invalidate its weak pointers before any other members are destroyed.
568 base::WeakPtrFactory<SessionManagerClientImpl> weak_ptr_factory_;
569
570 DISALLOW_COPY_AND_ASSIGN(SessionManagerClientImpl);
571 };
572
573 // The SessionManagerClient implementation used on Linux desktop,
574 // which does nothing.
575 class SessionManagerClientStubImpl : public SessionManagerClient {
576 public:
SessionManagerClientStubImpl()577 SessionManagerClientStubImpl() : delegate_(NULL) {}
~SessionManagerClientStubImpl()578 virtual ~SessionManagerClientStubImpl() {}
579
580 // SessionManagerClient overrides
Init(dbus::Bus * bus)581 virtual void Init(dbus::Bus* bus) OVERRIDE {}
SetStubDelegate(StubDelegate * delegate)582 virtual void SetStubDelegate(StubDelegate* delegate) OVERRIDE {
583 delegate_ = delegate;
584 }
AddObserver(Observer * observer)585 virtual void AddObserver(Observer* observer) OVERRIDE {
586 observers_.AddObserver(observer);
587 }
RemoveObserver(Observer * observer)588 virtual void RemoveObserver(Observer* observer) OVERRIDE {
589 observers_.RemoveObserver(observer);
590 }
HasObserver(Observer * observer)591 virtual bool HasObserver(Observer* observer) OVERRIDE {
592 return observers_.HasObserver(observer);
593 }
EmitLoginPromptVisible()594 virtual void EmitLoginPromptVisible() OVERRIDE {}
RestartJob(int pid,const std::string & command_line)595 virtual void RestartJob(int pid, const std::string& command_line) OVERRIDE {}
StartSession(const std::string & user_email)596 virtual void StartSession(const std::string& user_email) OVERRIDE {}
StopSession()597 virtual void StopSession() OVERRIDE {}
StartDeviceWipe()598 virtual void StartDeviceWipe() OVERRIDE {}
RequestLockScreen()599 virtual void RequestLockScreen() OVERRIDE {
600 if (delegate_)
601 delegate_->LockScreenForStub();
602 }
NotifyLockScreenShown()603 virtual void NotifyLockScreenShown() OVERRIDE {
604 FOR_EACH_OBSERVER(Observer, observers_, ScreenIsLocked());
605 }
NotifyLockScreenDismissed()606 virtual void NotifyLockScreenDismissed() OVERRIDE {
607 FOR_EACH_OBSERVER(Observer, observers_, ScreenIsUnlocked());
608 }
RetrieveActiveSessions(const ActiveSessionsCallback & callback)609 virtual void RetrieveActiveSessions(
610 const ActiveSessionsCallback& callback) OVERRIDE {}
RetrieveDevicePolicy(const RetrievePolicyCallback & callback)611 virtual void RetrieveDevicePolicy(
612 const RetrievePolicyCallback& callback) OVERRIDE {
613 base::FilePath owner_key_path;
614 if (!PathService::Get(chromeos::FILE_OWNER_KEY, &owner_key_path)) {
615 callback.Run("");
616 return;
617 }
618 base::FilePath device_policy_path =
619 owner_key_path.DirName().AppendASCII("stub_device_policy");
620 base::PostTaskAndReplyWithResult(
621 base::WorkerPool::GetTaskRunner(false).get(),
622 FROM_HERE,
623 base::Bind(&GetFileContent, device_policy_path),
624 callback);
625 }
RetrievePolicyForUser(const std::string & username,const RetrievePolicyCallback & callback)626 virtual void RetrievePolicyForUser(
627 const std::string& username,
628 const RetrievePolicyCallback& callback) OVERRIDE {
629 base::PostTaskAndReplyWithResult(
630 base::WorkerPool::GetTaskRunner(false).get(),
631 FROM_HERE,
632 base::Bind(&GetFileContent, GetUserFilePath(username, "stub_policy")),
633 callback);
634 }
BlockingRetrievePolicyForUser(const std::string & username)635 virtual std::string BlockingRetrievePolicyForUser(
636 const std::string& username) OVERRIDE {
637 return GetFileContent(GetUserFilePath(username, "stub_policy"));
638 }
RetrieveDeviceLocalAccountPolicy(const std::string & account_name,const RetrievePolicyCallback & callback)639 virtual void RetrieveDeviceLocalAccountPolicy(
640 const std::string& account_name,
641 const RetrievePolicyCallback& callback) OVERRIDE {
642 RetrievePolicyForUser(account_name, callback);
643 }
StoreDevicePolicy(const std::string & policy_blob,const StorePolicyCallback & callback)644 virtual void StoreDevicePolicy(const std::string& policy_blob,
645 const StorePolicyCallback& callback) OVERRIDE {
646 enterprise_management::PolicyFetchResponse response;
647 base::FilePath owner_key_path;
648 if (!response.ParseFromString(policy_blob) ||
649 !PathService::Get(chromeos::FILE_OWNER_KEY, &owner_key_path)) {
650 callback.Run(false);
651 return;
652 }
653
654 if (response.has_new_public_key()) {
655 base::WorkerPool::PostTask(
656 FROM_HERE,
657 base::Bind(&StoreFile, owner_key_path, response.new_public_key()),
658 false);
659 }
660
661 // Chrome will attempt to retrieve the device policy right after storing
662 // during enrollment, so make sure it's written before signaling
663 // completion.
664 // Note also that the owner key will be written before the device policy,
665 // if it was present in the blob.
666 base::FilePath device_policy_path =
667 owner_key_path.DirName().AppendASCII("stub_device_policy");
668 base::WorkerPool::PostTaskAndReply(
669 FROM_HERE,
670 base::Bind(&StoreFile, device_policy_path, policy_blob),
671 base::Bind(callback, true),
672 false);
673 }
StorePolicyForUser(const std::string & username,const std::string & policy_blob,const StorePolicyCallback & callback)674 virtual void StorePolicyForUser(
675 const std::string& username,
676 const std::string& policy_blob,
677 const StorePolicyCallback& callback) OVERRIDE {
678 // The session manager writes the user policy key to a well-known
679 // location. Do the same with the stub impl, so that user policy works and
680 // can be tested on desktop builds.
681 enterprise_management::PolicyFetchResponse response;
682 if (!response.ParseFromString(policy_blob)) {
683 callback.Run(false);
684 return;
685 }
686
687 if (response.has_new_public_key()) {
688 base::FilePath key_path = GetUserFilePath(username, "policy.pub");
689 base::WorkerPool::PostTask(
690 FROM_HERE,
691 base::Bind(&StoreFile, key_path, response.new_public_key()),
692 false);
693 }
694
695 // This file isn't read directly by Chrome, but is used by this class to
696 // reload the user policy across restarts.
697 base::FilePath stub_policy_path = GetUserFilePath(username, "stub_policy");
698 base::WorkerPool::PostTaskAndReply(
699 FROM_HERE,
700 base::Bind(&StoreFile, stub_policy_path, policy_blob),
701 base::Bind(callback, true),
702 false);
703 }
StoreDeviceLocalAccountPolicy(const std::string & account_name,const std::string & policy_blob,const StorePolicyCallback & callback)704 virtual void StoreDeviceLocalAccountPolicy(
705 const std::string& account_name,
706 const std::string& policy_blob,
707 const StorePolicyCallback& callback) OVERRIDE {
708 StorePolicyForUser(account_name, policy_blob, callback);
709 }
SetFlagsForUser(const std::string & username,const std::vector<std::string> & flags)710 virtual void SetFlagsForUser(const std::string& username,
711 const std::vector<std::string>& flags) OVERRIDE {
712 }
713
GetServerBackedStateKeys(const StateKeysCallback & callback)714 virtual void GetServerBackedStateKeys(const StateKeysCallback& callback)
715 OVERRIDE {
716 std::vector<std::string> state_keys;
717 for (int i = 0; i < 5; ++i)
718 state_keys.push_back(crypto::SHA256HashString(base::IntToString(i)));
719
720 if (!callback.is_null())
721 callback.Run(state_keys, false);
722 }
723
724 private:
725 StubDelegate* delegate_; // Weak pointer; may be NULL.
726 ObserverList<Observer> observers_;
727 std::string device_policy_;
728
729 DISALLOW_COPY_AND_ASSIGN(SessionManagerClientStubImpl);
730 };
731
SessionManagerClient()732 SessionManagerClient::SessionManagerClient() {
733 }
734
~SessionManagerClient()735 SessionManagerClient::~SessionManagerClient() {
736 }
737
Create(DBusClientImplementationType type)738 SessionManagerClient* SessionManagerClient::Create(
739 DBusClientImplementationType type) {
740 if (type == REAL_DBUS_CLIENT_IMPLEMENTATION)
741 return new SessionManagerClientImpl();
742 DCHECK_EQ(STUB_DBUS_CLIENT_IMPLEMENTATION, type);
743 return new SessionManagerClientStubImpl();
744 }
745
746 } // namespace chromeos
747