1 /*
2 * Copyright (c) 2023-2024 Huawei Device Co., Ltd.
3 * Licensed under the Apache License, Version 2.0 (the "License");
4 * you may not use this file except in compliance with the License.
5 * You may obtain a copy of the License at
6 *
7 * http://www.apache.org/licenses/LICENSE-2.0
8 *
9 * Unless required by applicable law or agreed to in writing, software
10 * distributed under the License is distributed on an "AS IS" BASIS,
11 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12 * See the License for the specific language governing permissions and
13 * limitations under the License.
14 */
15
16 #include "disable_usb_plugin.h"
17
18 #include "bool_serializer.h"
19 #include "edm_constants.h"
20 #include "edm_ipc_interface_code.h"
21 #include "edm_utils.h"
22 #include "usb_policy_utils.h"
23 #include "plugin_manager.h"
24
25 namespace OHOS {
26 namespace EDM {
27 const bool REGISTER_RESULT = PluginManager::GetInstance()->AddPlugin(DisableUsbPlugin::GetPlugin());
28
InitPlugin(std::shared_ptr<IPluginTemplate<DisableUsbPlugin,bool>> ptr)29 void DisableUsbPlugin::InitPlugin(std::shared_ptr<IPluginTemplate<DisableUsbPlugin, bool>> ptr)
30 {
31 EDMLOGI("DisableUsbPlugin InitPlugin...");
32 std::map<std::string, std::map<IPlugin::PermissionType, std::string>> tagPermissions;
33 std::map<IPlugin::PermissionType, std::string> typePermissionsForTag11;
34 std::map<IPlugin::PermissionType, std::string> typePermissionsForTag12;
35 typePermissionsForTag11.emplace(IPlugin::PermissionType::SUPER_DEVICE_ADMIN,
36 "ohos.permission.ENTERPRISE_MANAGE_USB");
37 typePermissionsForTag12.emplace(IPlugin::PermissionType::SUPER_DEVICE_ADMIN,
38 "ohos.permission.ENTERPRISE_MANAGE_RESTRICTIONS");
39 typePermissionsForTag12.emplace(IPlugin::PermissionType::BYOD_DEVICE_ADMIN,
40 "ohos.permission.PERSONAL_MANAGE_RESTRICTIONS");
41 tagPermissions.emplace(EdmConstants::PERMISSION_TAG_VERSION_11, typePermissionsForTag11);
42 tagPermissions.emplace(EdmConstants::PERMISSION_TAG_VERSION_12, typePermissionsForTag12);
43
44 IPlugin::PolicyPermissionConfig config = IPlugin::PolicyPermissionConfig(tagPermissions, IPlugin::ApiType::PUBLIC);
45 ptr->InitAttribute(EdmInterfaceCode::DISABLE_USB, "disable_usb", config, true);
46 ptr->SetSerializer(BoolSerializer::GetInstance());
47 ptr->SetOnHandlePolicyListener(&DisableUsbPlugin::OnSetPolicy, FuncOperateType::SET);
48 ptr->SetOnAdminRemoveListener(&DisableUsbPlugin::OnAdminRemove);
49 }
50
OnSetPolicy(bool & data)51 ErrCode DisableUsbPlugin::OnSetPolicy(bool &data)
52 {
53 EDMLOGI("DisableUsbPlugin OnSetPolicy...disable = %{public}d", data);
54 if (data && HasConflictPolicy()) {
55 return EdmReturnErrCode::CONFIGURATION_CONFLICT_FAILED;
56 }
57 return UsbPolicyUtils::SetUsbDisabled(data);
58 }
59
HasConflictPolicy()60 bool DisableUsbPlugin::HasConflictPolicy()
61 {
62 auto policyManager = IPolicyManager::GetInstance();
63 std::string allowUsbDevice;
64 policyManager->GetPolicy("", "allowed_usb_devices", allowUsbDevice);
65 if (!allowUsbDevice.empty()) {
66 EDMLOGE("DisableUsbPlugin POLICY CONFLICT! allowedUsbDevice: %{public}s", allowUsbDevice.c_str());
67 return true;
68 }
69 std::string disallowUsbDevice;
70 policyManager->GetPolicy("", "disallowed_usb_devices", disallowUsbDevice);
71 if (!disallowUsbDevice.empty()) {
72 EDMLOGE("DisableUsbPlugin POLICY CONFLICT! disallowUsbDevice: %{public}s", disallowUsbDevice.c_str());
73 return true;
74 }
75 std::string usbStoragePolicy;
76 policyManager->GetPolicy("", "usb_read_only", usbStoragePolicy);
77 if (usbStoragePolicy == std::to_string(EdmConstants::STORAGE_USB_POLICY_DISABLED) ||
78 usbStoragePolicy == std::to_string(EdmConstants::STORAGE_USB_POLICY_READ_ONLY)) {
79 EDMLOGE("DisableUsbPlugin POLICY CONFLICT! usbStoragePolicy: %{public}s", usbStoragePolicy.c_str());
80 return true;
81 }
82 return false;
83 }
84
OnGetPolicy(std::string & policyData,MessageParcel & data,MessageParcel & reply,int32_t userId)85 ErrCode DisableUsbPlugin::OnGetPolicy(std::string &policyData, MessageParcel &data, MessageParcel &reply,
86 int32_t userId)
87 {
88 EDMLOGI("DisableUsbPlugin OnGetPolicy %{public}s...", policyData.c_str());
89 bool isDisabled = false;
90 pluginInstance_->serializer_->Deserialize(policyData, isDisabled);
91 reply.WriteInt32(ERR_OK);
92 reply.WriteBool(isDisabled);
93 return ERR_OK;
94 }
95
OnAdminRemove(const std::string & adminName,bool & data,int32_t userId)96 ErrCode DisableUsbPlugin::OnAdminRemove(const std::string &adminName, bool &data, int32_t userId)
97 {
98 EDMLOGI("DisableUsbPlugin OnAdminRemove %{public}d...", data);
99 if (!data) {
100 return ERR_OK;
101 }
102 return UsbPolicyUtils::SetUsbDisabled(!data);
103 }
104 } // namespace EDM
105 } // namespace OHOS
106