| Index: chrome/browser/chromeos/policy/enterprise_install_attributes.h
|
| diff --git a/chrome/browser/chromeos/policy/enterprise_install_attributes.h b/chrome/browser/chromeos/policy/enterprise_install_attributes.h
|
| deleted file mode 100644
|
| index bd411faeacca035fffc4cae76a497150a8d6c394..0000000000000000000000000000000000000000
|
| --- a/chrome/browser/chromeos/policy/enterprise_install_attributes.h
|
| +++ /dev/null
|
| @@ -1,200 +0,0 @@
|
| -// Copyright (c) 2012 The Chromium Authors. All rights reserved.
|
| -// Use of this source code is governed by a BSD-style license that can be
|
| -// found in the LICENSE file.
|
| -
|
| -#ifndef CHROME_BROWSER_CHROMEOS_POLICY_ENTERPRISE_INSTALL_ATTRIBUTES_H_
|
| -#define CHROME_BROWSER_CHROMEOS_POLICY_ENTERPRISE_INSTALL_ATTRIBUTES_H_
|
| -
|
| -#include <map>
|
| -#include <string>
|
| -
|
| -#include "base/callback.h"
|
| -#include "base/compiler_specific.h"
|
| -#include "base/files/file_path.h"
|
| -#include "base/gtest_prod_util.h"
|
| -#include "base/macros.h"
|
| -#include "base/memory/weak_ptr.h"
|
| -#include "chromeos/dbus/cryptohome_client.h"
|
| -#include "chromeos/dbus/dbus_method_call_status.h"
|
| -#include "components/policy/core/common/cloud/cloud_policy_constants.h"
|
| -
|
| -namespace policy {
|
| -
|
| -// Brokers access to the enterprise-related installation-time attributes on
|
| -// ChromeOS.
|
| -// TODO(zelidrag, mnissler): Rename + move this class - http://crbug.com/249513.
|
| -class EnterpriseInstallAttributes {
|
| - public:
|
| - // EnterpriseInstallAttributes status codes. Do not change the numeric ids or
|
| - // the meaning of the existing codes to preserve the interpretability of old
|
| - // logfiles.
|
| - enum LockResult {
|
| - LOCK_SUCCESS = 0, // Success.
|
| - LOCK_NOT_READY = 1, // Backend/TPM still initializing.
|
| - LOCK_TIMEOUT = 2, // Backend/TPM timed out.
|
| - LOCK_BACKEND_INVALID = 3, // Backend failed to initialize.
|
| - LOCK_ALREADY_LOCKED = 4, // TPM has already been locked.
|
| - LOCK_SET_ERROR = 5, // Failed to set attributes.
|
| - LOCK_FINALIZE_ERROR = 6, // Backend failed to lock.
|
| - LOCK_READBACK_ERROR = 7, // Inconsistency reading back registration data.
|
| - LOCK_WRONG_DOMAIN = 8, // Device already registered to another domain.
|
| - LOCK_WRONG_MODE = 9, // Device already locked to a different mode.
|
| - };
|
| -
|
| - // A callback to handle responses of methods returning a LockResult value.
|
| - typedef base::Callback<void(LockResult lock_result)> LockResultCallback;
|
| -
|
| - // Return serialized InstallAttributes of an enterprise-owned configuration.
|
| - static std::string GetEnterpriseOwnedInstallAttributesBlobForTesting(
|
| - const std::string& user_name);
|
| -
|
| - explicit EnterpriseInstallAttributes(
|
| - chromeos::CryptohomeClient* cryptohome_client);
|
| - ~EnterpriseInstallAttributes();
|
| -
|
| - // Tries to read install attributes from the cache file which is created early
|
| - // during the boot process. The cache file is used to work around slow
|
| - // cryptohome startup, which takes a while to register its DBus interface.
|
| - // (See http://crosbug.com/37367 for background on this.)
|
| - void Init(const base::FilePath& cache_file);
|
| -
|
| - // Makes sure the local caches for enterprise-related install attributes are
|
| - // up to date with what cryptohome has. This method checks the readiness of
|
| - // attributes and read them if ready. Actual read will be performed in
|
| - // ReadAttributesIfReady().
|
| - void ReadImmutableAttributes(const base::Closure& callback);
|
| -
|
| - // Locks the device to be an enterprise device registered by the given user.
|
| - // This can also be called after the lock has already been taken, in which
|
| - // case it checks that the passed user agrees with the locked attribute.
|
| - // |callback| must not be null and is called with the result. Must not be
|
| - // called while a previous LockDevice() invocation is still pending.
|
| - void LockDevice(const std::string& user,
|
| - DeviceMode device_mode,
|
| - const std::string& device_id,
|
| - const LockResultCallback& callback);
|
| -
|
| - // Checks whether this is an enterprise device.
|
| - bool IsEnterpriseDevice() const;
|
| -
|
| - // Checks whether this is a consumer kiosk enabled device.
|
| - bool IsConsumerKioskDeviceWithAutoLaunch();
|
| -
|
| - // Gets the domain this device belongs to or an empty string if the device is
|
| - // not an enterprise device.
|
| - std::string GetDomain() const;
|
| -
|
| - // Gets the device id that was generated when the device was registered.
|
| - // Returns an empty string if the device is not an enterprise device or the
|
| - // device id was not stored in the lockbox (prior to R19).
|
| - std::string GetDeviceId();
|
| -
|
| - // Gets the mode the device was enrolled to. The return value for devices that
|
| - // are not locked yet will be DEVICE_MODE_UNKNOWN.
|
| - DeviceMode GetMode();
|
| -
|
| - protected:
|
| - // True if install attributes have been read successfully. False if read
|
| - // failed or no read attempt was made.
|
| - bool device_locked_;
|
| -
|
| - // Whether the TPM / install attributes consistency check is running.
|
| - bool consistency_check_running_;
|
| -
|
| - // To be run after the consistency check has finished.
|
| - base::Closure post_check_action_;
|
| -
|
| - // Wether the LockDevice() initiated TPM calls are running.
|
| - bool device_lock_running_;
|
| -
|
| - std::string registration_user_;
|
| - std::string registration_domain_;
|
| - std::string registration_device_id_;
|
| - DeviceMode registration_mode_;
|
| -
|
| - private:
|
| - FRIEND_TEST_ALL_PREFIXES(EnterpriseInstallAttributesTest,
|
| - DeviceLockedFromOlderVersion);
|
| - FRIEND_TEST_ALL_PREFIXES(EnterpriseInstallAttributesTest,
|
| - GetRegistrationUser);
|
| - FRIEND_TEST_ALL_PREFIXES(EnterpriseInstallAttributesTest, Init);
|
| - FRIEND_TEST_ALL_PREFIXES(EnterpriseInstallAttributesTest,
|
| - InitForConsumerKiosk);
|
| - FRIEND_TEST_ALL_PREFIXES(EnterpriseInstallAttributesTest, LockCanonicalize);
|
| - FRIEND_TEST_ALL_PREFIXES(EnterpriseInstallAttributesTest,
|
| - VerifyFakeInstallAttributesCache);
|
| -
|
| - // Constants for the possible device modes that can be stored in the lockbox.
|
| - static const char kConsumerDeviceMode[];
|
| - static const char kEnterpriseDeviceMode[];
|
| - static const char kLegacyRetailDeviceMode[];
|
| - static const char kConsumerKioskDeviceMode[];
|
| - static const char kUnknownDeviceMode[];
|
| -
|
| - // Field names in the lockbox.
|
| - static const char kAttrEnterpriseDeviceId[];
|
| - static const char kAttrEnterpriseDomain[];
|
| - static const char kAttrEnterpriseMode[];
|
| - static const char kAttrEnterpriseOwned[];
|
| - static const char kAttrEnterpriseUser[];
|
| - static const char kAttrConsumerKioskEnabled[];
|
| -
|
| - // Called by |cryptohome_client_| when the cryptohome service becomes
|
| - // initially available over D-Bus.
|
| - void OnCryptohomeServiceInitiallyAvailable(bool service_is_ready);
|
| -
|
| - // Translates DeviceMode constants to strings used in the lockbox.
|
| - std::string GetDeviceModeString(DeviceMode mode);
|
| -
|
| - // Translates strings used in the lockbox to DeviceMode values.
|
| - DeviceMode GetDeviceModeFromString(const std::string& mode);
|
| -
|
| - // Decodes the install attributes provided in |attr_map|.
|
| - void DecodeInstallAttributes(
|
| - const std::map<std::string, std::string>& attr_map);
|
| -
|
| - // Helper for ReadImmutableAttributes.
|
| - void ReadAttributesIfReady(
|
| - const base::Closure& callback,
|
| - chromeos::DBusMethodCallStatus call_status,
|
| - bool result);
|
| -
|
| - // Helper for LockDevice(). Handles the result of InstallAttributesIsReady()
|
| - // and continue processing LockDevice if the result is true.
|
| - void LockDeviceIfAttributesIsReady(
|
| - const std::string& user,
|
| - DeviceMode device_mode,
|
| - const std::string& device_id,
|
| - const LockResultCallback& callback,
|
| - chromeos::DBusMethodCallStatus call_status,
|
| - bool result);
|
| -
|
| - // Confirms the registered user and invoke the callback.
|
| - void OnReadImmutableAttributes(const std::string& user,
|
| - const LockResultCallback& callback);
|
| -
|
| - // Check state of install attributes against TPM lock state and generate UMA
|
| - // for the result. Asynchronously retry |dbus_retries| times in case of DBUS
|
| - // errors (cryptohomed startup is slow).
|
| - void TriggerConsistencyCheck(int dbus_retries);
|
| -
|
| - // Callback for TpmIsOwned() DBUS call. Generates UMA or schedules retry in
|
| - // case of DBUS error.
|
| - void OnTpmOwnerCheckCompleted(int dbus_retries_remaining,
|
| - chromeos::DBusMethodCallStatus call_status,
|
| - bool result);
|
| -
|
| - // Gets the user that registered the device. Returns an empty string if the
|
| - // device is not an enterprise device.
|
| - std::string GetRegistrationUser() const;
|
| -
|
| - chromeos::CryptohomeClient* cryptohome_client_;
|
| -
|
| - base::WeakPtrFactory<EnterpriseInstallAttributes> weak_ptr_factory_;
|
| -
|
| - DISALLOW_COPY_AND_ASSIGN(EnterpriseInstallAttributes);
|
| -};
|
| -
|
| -} // namespace policy
|
| -
|
| -#endif // CHROME_BROWSER_CHROMEOS_POLICY_ENTERPRISE_INSTALL_ATTRIBUTES_H_
|
|
|
Chromium Code Reviews
Issue 2382833002:
Rename policy::EnterpriseInstallAttributes to chromeos::InstallAttributes. (Closed)
