Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(764)

Issue 2890843002: Policy implementation for encryptfs to ext4 migration strategy (Closed)

Created:
3 years, 7 months ago by igorcov
Modified:
3 years, 6 months ago
CC:
chromium-reviews, asvitkine+watch_chromium.org, oshima+watch_chromium.org, davemoore+watch_chromium.org, Junichi Uekawa
Target Ref:
refs/heads/master
Project:
chromium
Visibility:
Public.

Description

Policy implementation for encryptfs to ext4 migration strategy Chrome OS encrypts each user’s data with the user’s password. With M60, Chrome OS is switching from ecryptfs to ext4 encryption. ARC N requires ext4 encryption. The policy DeviceEcryptfsMigrationStrategy states whether the device is allowed to use ARC or not. If it's not allowed, the process of data migration should not be launched. Design doc: https://docs.google.com/document/d/18Nz2OClU6CDb7TpZ2MbO4yySvgiOYWsFUxrR4LQYzXU/edit?ts=5915e354# This implementation is planned to become obsolete, and be rolled back after the migration process will finish. The issue for that: http://crbug.com/725493 BUG=722371 TEST=Manual tests and unit tests. Review-Url: https://codereview.chromium.org/2890843002 Cr-Commit-Position: refs/heads/master@{#481499} Committed: https://chromium.googlesource.com/chromium/src/+/24be4caf84c7c14e68c4c10206c3ea0a506c0ee6

Patch Set 1 : Implementation #

Total comments: 25

Patch Set 2 : Fixed review comments #

Total comments: 4

Patch Set 3 : Fixed review comments #

Total comments: 10

Patch Set 4 : Fixed review comments #

Patch Set 5 : Changed flag value #

Total comments: 11

Patch Set 6 : Fixed review comments #

Total comments: 47

Patch Set 7 : Fixed review comments #

Total comments: 15

Patch Set 8 : Fixed review comments #

Total comments: 2

Patch Set 9 : Fixed review comments #

Patch Set 10 : Rebase done #

Patch Set 11 : Fixed the test #

Total comments: 2

Patch Set 12 : Merge done #

Unified diffs Side-by-side diffs Delta from patch set Stats (+224 lines, -2 lines) Patch
M chrome/browser/chromeos/arc/arc_session_manager.cc View 1 2 3 4 5 6 7 8 9 10 11 1 chunk +8 lines, -0 lines 0 comments Download
M chrome/browser/chromeos/arc/arc_util.h View 1 2 3 4 5 6 7 8 9 10 11 1 chunk +12 lines, -0 lines 0 comments Download
M chrome/browser/chromeos/arc/arc_util.cc View 1 2 3 4 5 6 7 8 9 10 11 5 chunks +71 lines, -0 lines 0 comments Download
M chrome/browser/chromeos/arc/arc_util_unittest.cc View 1 2 3 4 5 6 7 8 9 10 11 3 chunks +59 lines, -0 lines 0 comments Download
M chrome/browser/chromeos/login/existing_user_controller.cc View 1 2 3 4 5 6 2 chunks +6 lines, -0 lines 0 comments Download
M chrome/browser/chromeos/login/screens/user_selection_screen.cc View 1 2 3 4 5 6 7 8 9 10 11 2 chunks +2 lines, -1 line 0 comments Download
M chrome/browser/chromeos/policy/device_policy_decoder_chromeos.cc View 1 2 3 4 5 6 7 8 9 10 11 1 chunk +11 lines, -0 lines 0 comments Download
M chrome/test/data/policy/policy_test_cases.json View 1 2 3 4 5 6 7 8 9 10 11 1 chunk +5 lines, -0 lines 0 comments Download
M chromeos/chromeos_switches.h View 1 2 3 4 5 6 7 8 9 10 11 1 chunk +1 line, -0 lines 0 comments Download
M chromeos/chromeos_switches.cc View 1 2 3 4 5 6 7 8 9 10 11 1 chunk +6 lines, -0 lines 0 comments Download
M components/policy/resources/policy_templates.json View 1 2 3 4 5 6 7 8 9 10 11 2 chunks +42 lines, -1 line 0 comments Download
M tools/metrics/histograms/enums.xml View 1 2 3 4 5 6 7 8 9 10 11 1 chunk +1 line, -0 lines 0 comments Download

Messages

Total messages: 80 (54 generated)
igorcov
bartfab@chromium.org: Please review changes in policy related files. hidehiko@chromium.org: Please review changes in ARC related ...
3 years, 7 months ago (2017-05-24 17:46:00 UTC) #12
hidehiko
https://codereview.chromium.org/2890843002/diff/140001/chrome/browser/chromeos/arc/arc_session_manager.cc File chrome/browser/chromeos/arc/arc_session_manager.cc (right): https://codereview.chromium.org/2890843002/diff/140001/chrome/browser/chromeos/arc/arc_session_manager.cc#newcode640 chrome/browser/chromeos/arc/arc_session_manager.cc:640: arc::GetArcAvailabilityPolicyStatus() != Setting kArcDataRemoveRequested pref needs to be guarded. ...
3 years, 7 months ago (2017-05-25 12:41:56 UTC) #13
igorcov
Thank you, hidehiko@ for your comments. Those were valuable and I've changed the code to ...
3 years, 6 months ago (2017-05-31 17:25:36 UTC) #23
hidehiko
+ext4 migration related engs, just in case. tl;dr; Please avoid changing IsArcAvailable() value in process. ...
3 years, 6 months ago (2017-06-01 16:07:16 UTC) #25
igorcov
Thank you hidehiko for your help making a better design for the implementation. I've moved ...
3 years, 6 months ago (2017-06-06 14:16:48 UTC) #30
hidehiko
The direction looks good from ARC's point of view. My main point in this iteration ...
3 years, 6 months ago (2017-06-07 12:22:21 UTC) #34
igorcov
https://codereview.chromium.org/2890843002/diff/490001/chrome/browser/chromeos/arc/arc_util.cc File chrome/browser/chromeos/arc/arc_util.cc (right): https://codereview.chromium.org/2890843002/diff/490001/chrome/browser/chromeos/arc/arc_util.cc#newcode176 chrome/browser/chromeos/arc/arc_util.cc:176: if (command_line->HasSwitch(chromeos::switches::kInitialEncryptionEcryptfs) && On 2017/06/07 12:22:20, hidehiko wrote: > ...
3 years, 6 months ago (2017-06-07 13:45:18 UTC) #35
igorcov
Thank you hidehiko for reviewing this. I've addressed your comments, except the scenario where ARC ...
3 years, 6 months ago (2017-06-08 10:42:26 UTC) #37
hidehiko
Looks good with minor comments, except stale comment. https://codereview.chromium.org/2890843002/diff/550001/chrome/browser/chromeos/arc/arc_util.cc File chrome/browser/chromeos/arc/arc_util.cc (right): https://codereview.chromium.org/2890843002/diff/550001/chrome/browser/chromeos/arc/arc_util.cc#newcode155 chrome/browser/chromeos/arc/arc_util.cc:155: // ...
3 years, 6 months ago (2017-06-09 09:40:39 UTC) #38
igorcov
I've addressed the review comments, but also added a small change from previous version: The ...
3 years, 6 months ago (2017-06-09 12:55:12 UTC) #41
hidehiko
LGTM. Please wait for batfab@'s review. Thank you for clean up!
3 years, 6 months ago (2017-06-09 13:18:41 UTC) #42
kinaba
https://codereview.chromium.org/2890843002/diff/610001/chrome/browser/chromeos/arc/arc_util.cc File chrome/browser/chromeos/arc/arc_util.cc (right): https://codereview.chromium.org/2890843002/diff/610001/chrome/browser/chromeos/arc/arc_util.cc#newcode114 chrome/browser/chromeos/arc/arc_util.cc:114: bool IsArcAllowedForProfile(const Profile* profile) { Returning false from this ...
3 years, 6 months ago (2017-06-12 00:22:07 UTC) #44
igorcov
On 2017/06/12 00:22:07, kinaba wrote: > https://codereview.chromium.org/2890843002/diff/610001/chrome/browser/chromeos/arc/arc_util.cc > File chrome/browser/chromeos/arc/arc_util.cc (right): > > https://codereview.chromium.org/2890843002/diff/610001/chrome/browser/chromeos/arc/arc_util.cc#newcode114 > ...
3 years, 6 months ago (2017-06-12 09:14:10 UTC) #45
kinaba
On 2017/06/12 09:14:10, igorcov wrote: > On 2017/06/12 00:22:07, kinaba wrote: > > > https://codereview.chromium.org/2890843002/diff/610001/chrome/browser/chromeos/arc/arc_util.cc ...
3 years, 6 months ago (2017-06-12 09:18:16 UTC) #46
bartfab (slow)
https://codereview.chromium.org/2890843002/diff/610001/chrome/browser/chromeos/arc/arc_session_manager.cc File chrome/browser/chromeos/arc/arc_session_manager.cc (right): https://codereview.chromium.org/2890843002/diff/610001/chrome/browser/chromeos/arc/arc_session_manager.cc#newcode638 chrome/browser/chromeos/arc/arc_session_manager.cc:638: return; Can we add a unit test for this? ...
3 years, 6 months ago (2017-06-12 12:49:04 UTC) #47
igorcov
Thank you Bartosz for review. I've addressed the comments, please take a look again. https://codereview.chromium.org/2890843002/diff/610001/chrome/browser/chromeos/arc/arc_session_manager.cc ...
3 years, 6 months ago (2017-06-12 16:50:10 UTC) #48
bartfab (slow)
https://codereview.chromium.org/2890843002/diff/610001/chrome/browser/chromeos/arc/arc_util.h File chrome/browser/chromeos/arc/arc_util.h (right): https://codereview.chromium.org/2890843002/diff/610001/chrome/browser/chromeos/arc/arc_util.h#newcode119 chrome/browser/chromeos/arc/arc_util.h:119: // used, and the policy update won't change the ...
3 years, 6 months ago (2017-06-13 09:56:02 UTC) #49
kinaba
lgtm for the points I commented (blocking migration UIs)
3 years, 6 months ago (2017-06-14 05:50:57 UTC) #50
hidehiko
Just FYI. https://codereview.chromium.org/2890843002/diff/710001/chrome/browser/chromeos/arc/arc_session_manager.cc File chrome/browser/chromeos/arc/arc_session_manager.cc (right): https://codereview.chromium.org/2890843002/diff/710001/chrome/browser/chromeos/arc/arc_session_manager.cc#newcode638 chrome/browser/chromeos/arc/arc_session_manager.cc:638: if (!arc::IsArcMigrationAllowed()) { nit: Could you elide ...
3 years, 6 months ago (2017-06-15 13:33:12 UTC) #52
igorcov
https://codereview.chromium.org/2890843002/diff/610001/chrome/browser/chromeos/arc/arc_util.h File chrome/browser/chromeos/arc/arc_util.h (right): https://codereview.chromium.org/2890843002/diff/610001/chrome/browser/chromeos/arc/arc_util.h#newcode119 chrome/browser/chromeos/arc/arc_util.h:119: // used, and the policy update won't change the ...
3 years, 6 months ago (2017-06-16 11:13:04 UTC) #54
igorcov
achuith@chromium.org: Please review changes in chromeos/login.
3 years, 6 months ago (2017-06-16 11:23:25 UTC) #56
achuithb
On 2017/06/16 11:23:25, igorcov wrote: > mailto:achuith@chromium.org: Please review changes in chromeos/login. chromeos/login lgtm
3 years, 6 months ago (2017-06-16 20:19:50 UTC) #58
bartfab (slow)
lgtm https://codereview.chromium.org/2890843002/diff/810001/chrome/browser/chromeos/arc/arc_util_unittest.cc File chrome/browser/chromeos/arc/arc_util_unittest.cc (right): https://codereview.chromium.org/2890843002/diff/810001/chrome/browser/chromeos/arc/arc_util_unittest.cc#newcode527 chrome/browser/chromeos/arc/arc_util_unittest.cc:527: TEST_F(ArcMigrationTest, IsMigrationAllowedNoPolicy) { You used to have tests ...
3 years, 6 months ago (2017-06-21 21:31:16 UTC) #73
commit-bot: I haz the power
CQ is trying da patch. Follow status at: https://chromium-cq-status.appspot.com/v2/patch-status/codereview.chromium.org/2890843002/830001
3 years, 6 months ago (2017-06-22 09:17:41 UTC) #76
igorcov
Thank you Bartosz. https://codereview.chromium.org/2890843002/diff/810001/chrome/browser/chromeos/arc/arc_util_unittest.cc File chrome/browser/chromeos/arc/arc_util_unittest.cc (right): https://codereview.chromium.org/2890843002/diff/810001/chrome/browser/chromeos/arc/arc_util_unittest.cc#newcode527 chrome/browser/chromeos/arc/arc_util_unittest.cc:527: TEST_F(ArcMigrationTest, IsMigrationAllowedNoPolicy) { On 2017/06/21 21:31:16, ...
3 years, 6 months ago (2017-06-22 09:31:23 UTC) #77
commit-bot: I haz the power
3 years, 6 months ago (2017-06-22 10:29:57 UTC) #80
Message was sent while issue was closed.
Committed patchset #12 (id:830001) as
https://chromium.googlesource.com/chromium/src/+/24be4caf84c7c14e68c4c10206c3...

Powered by Google App Engine
This is Rietveld 408576698