entd: move opencryptoki initialization out of entd

reference_extension/client.js

 // Copyright (c) 2010 The Chromium OS Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.
 
 /**
  * Namespace object for the client side code.
  */
 var client = new Object();
 
 /**
  * Port to contact the policy's callback server.
  */
 client.policyCallbackPort = 5199;
 
+client.cryptohome_init_pkcs11 = false;
+
 /**
  * Initialize the client.
  */
 client.onLoad =
 function onLoad() {
   client.modalShade = document.getElementById('modal-shade');
   client.loadManifest();
 };
 
 client.onManifestLoaded =
@@ skipping 105 matching lines @@
             'PKCS#11 services have not started, you may need to clear your ' +
             'TPM to recover.', 'Error',
             { details: 'current state: ' + pkcs11.state + '\n' +
               pkcs11.log });
         }
       } else {
         $("#pkcs11-status").
           text('Ready').
           attr('status', 'green');
 
+        // Use presence of isTokenReady to determine if
+        // cryptohome_init_pkcs11 is true.
+        // TODO(crosbug.com/14277): Remove this conditional and code
+        // to recognize if TPM has been initialized (only check token).
+        client.cryptohome_init_pkcs11 = 'isTokenReady' in pkcs11;
+
         if (retval.data.isLibcrosLoaded && !retval.data.tpm.isEnabled) {
           if (!tpmError) {
             client.showError("Your TPM is not enabled.  Please enable " +
                              "it in the BIOS.");
             $('#entd-message').
               text('Please reboot and enable your TPM.').
               attr('status', 'red');
             tpmError = true;
           }
         } else if (retval.data.isLibcrosLoaded && !retval.data.tpm.isReady) {
@@ skipping 10 matching lines @@
               client.showError('Your TPM is not properly configured.  Please ' +
                                'clear your TPM and try again.', 'Error',
                                options);
             }
 
             $('#entd-message').
               text('Waiting for TPM.').
               attr('status', 'red');
             tpmError = true;
           }
+        } else if (retval.data.isLibcrosLoaded &&
+                   client.cryptohome_init_pkcs11 &&
+                   !pkcs11.isTokenReady) {
+          if (!tpmError) {
+            client.showAlert('Please wait while your TPM Token is being ' +
+                             'created.  This dialog should go away on its ' +
+                             'own when the process completes.', 'Alert',
+                             options);
+            $('#entd-message').
+              text('Waiting for TPM Token.').
+              attr('status', 'red');
+            tpmError = true;
+          }
         } else {
           ready = true;
         }
       }
     } else {
       $("#entd-status").
         text('Waiting...').
         attr('status', 'red');
 
       $("#pkcs11-status").
@@ skipping 165 matching lines @@
   client.invokePolicyCallback(
       'initiateCSR', { certificateId: cert.id, variables: variables },
       onerror);
 }
 
 /**
  * Initiate a token initialization.
  *
  * This causes the token initialization progress dialog to be shown, and manages
  * the asynchronous initialization of a token.
+ * TODO(crosbug.com/14277): Remove token initialization UI.
  */
 client.initToken =
 function initToken(token, force) {
   var slotId = token.slotId;
 
   // Called for any kind of error from the enterprise daemon.
   function onerror(retval) {
     if (retval instanceof client.CallbackError)
       client.showError('There was an error initializing your token. ' +
                        'If the problem persists, clear your TPM and try ' +
@@ skipping 550 matching lines @@
  */
 client.renderToken =
 function renderToken(token) {
   var li = document.createElement('li');
   li.className = 'token';
   li.setAttribute('id', 'token-' + token.slotId);
 
   $(li).html(
       '<table width="100%">' +
       '<tr><td><span class="desc"></span> (<span class="label"></span>)</td>' +
-      '<td rowspan="2" width="1%"><button>Initialize</button></td></tr>' +
-      '<tr><td class="status"></td></tr></table>');
+      '<td rowspan="2" width="1%"><button class="init-button">Initialize' +
+      '</button></td></tr><tr><td class="status"></td></tr></table>');
 
   $(li).find('button').click(function () {
       client.onTokenClick_(client.tokens[token.slotId]);
   });
 
   $(li).find('.status').click(function () {
       client.showTokenDetails(client.tokens[token.slotId]);
   });
 
   client.refreshToken(li, token);
@@ skipping 21 matching lines @@
     status = 'PINs not initialized.';
   } else {
     color = 'red';
     status = 'Token error';
   }
 
   $('.desc', li).text(token.manufacturerID + ', ' + token.model);
   $('.label', li).text(token.label || 'Unlabeled');
   $('.status', li).attr('status', color);
   $('.status', li).text(status);
-  $('button', li).text(color == 'red' ? 'Initialize' : 'Reinitialize');
+  if (client.cryptohome_init_pkcs11) {
+    // If automatic initialization is enabled, do not give the user
+    // the option to initialize.
+    $('.init-button', li).css('display', 'none');
+  } else {
+    $('button', li).text(color == 'red' ? 'Initialize' : 'Reinitialize');
+  }
 }
 
 /**
  * Create the UI for a list of certificates.
  *
  * This will destroy any existing cert UI before proceeding.
  *
  * @param {Array} certs The list of known certificates.
  */
 client.resetCertificates =
@@ skipping 198 matching lines @@
  * @param {string} name The name of the callback that returned this data.
  * @param {Object} arg The argument object originally passed to the callback.
  * @param {Object} data The data returned by the callback.
  */
 client.CallbackError =
 function CallbackError(name, arg, data) {
   this.init_(name, arg, data);
 };
 
 client.CallbackError.prototype.init_ = client.CallbackSuccess.prototype.init_;