cryptohome/storage/out_of_process_mount_helper.h - mirrors/cros/chromiumos/platform2 - Git at Google

 // Copyright 2019 The Chromium OS Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.

 // OutOfProcessMountHelper objects carry out mount(2) and unmount(2) operations
 // for a single cryptohome mount, but do so out-of-process.

 #ifndef CRYPTOHOME_STORAGE_OUT_OF_PROCESS_MOUNT_HELPER_H_
 #define CRYPTOHOME_STORAGE_OUT_OF_PROCESS_MOUNT_HELPER_H_

 #include <sys/types.h>

 #include <memory>
 #include <set>
 #include <string>
 #include <utility>
 #include <vector>

 #include <base/files/file_path.h>
 #include <base/macros.h>
 #include <brillo/process/process.h>
 #include <brillo/secure_blob.h>
 #include <chromeos/dbus/service_constants.h>

 #include "cryptohome/platform.h"
 #include "cryptohome/storage/mount_constants.h"
 #include "cryptohome/storage/mount_helper.h"
 #include "cryptohome/storage/mount_namespace.h"

 using base::FilePath;

 namespace cryptohome {

 // Forward declare classes in
 // cryptohome/namespace_mounter/namespace_mounter_ipc.proto
 class OutOfProcessMountRequest;
 class OutOfProcessMountResponse;

 class OutOfProcessMountHelper : public MountHelperInterface {
  public:
   OutOfProcessMountHelper(const brillo::SecureBlob& system_salt,
                           std::unique_ptr<MountNamespace> chrome_mnt_ns,
                           bool legacy_home,
                           bool bind_mount_downloads,
                           Platform* platform)
       : system_salt_(system_salt),
         chrome_mnt_ns_(std::move(chrome_mnt_ns)),
         legacy_home_(legacy_home),
         bind_mount_downloads_(bind_mount_downloads),
         platform_(platform),
         username_(),
         write_to_helper_(-1) {}
   OutOfProcessMountHelper(const OutOfProcessMountHelper&) = delete;
   OutOfProcessMountHelper& operator=(const OutOfProcessMountHelper&) = delete;

   ~OutOfProcessMountHelper() = default;

   // Carries out dircrypto mount(2) operations for an ephemeral cryptohome,
   // but does so out of process.
   bool PerformEphemeralMount(const std::string& username) override;

   // Tears down an ephemeral cryptohome mount by terminating the out-of-process
   // helper.
   bool TearDownEphemeralMount() override;

   // Tears down the non-ephemeral cryptohome mount by terminating the
   // out-of-process helper.
   void TearDownNonEphemeralMount() override;

   // Returns whether an ephemeral mount operation can be performed.
   bool CanPerformEphemeralMount() const override;

   // Returns whether a mount operation has been performed.
   bool MountPerformed() const override;

   // Returns whether |path| is the destination of an existing mount.
   bool IsPathMounted(const base::FilePath& path) const override;

   // Carries out dircrypto mount(2) operations for a regular cryptohome.
   bool PerformMount(const Options& mount_opts,
                     const std::string& username,
                     const std::string& fek_signature,
                     const std::string& fnek_signature,
                     bool is_pristine,
                     MountError* error) override;

  private:
   // Launches an out-of-process helper, sends |request|, and waits until it
   // receives |response|. The timeout for receiving |response| is
   // |kOutOfProcessHelperMountTimeout| seconds.
   bool LaunchOutOfProcessHelper(const OutOfProcessMountRequest& request,
                                 OutOfProcessMountResponse* response);

   // Kills the out-of-process helper if it's still running, and Reset()s the
   // Process instance to close all pipe file descriptors.
   void KillOutOfProcessHelperIfNecessary();

   // Tears down the existing cryptohome mount by terminating the out-of-process
   // helper.
   bool TearDownExistingMount();

   // Stores the global system salt.
   brillo::SecureBlob system_salt_;

   // If populated, mount namespace where to perform the mount.
   std::unique_ptr<MountNamespace> chrome_mnt_ns_;

   // Whether to make the legacy home directory (/home/chronos/user) available.
   bool legacy_home_;

   // Whether to bind mount Downloads/
   bool bind_mount_downloads_;

   Platform* platform_;  // Un-owned.

   // Username the mount belongs to, if a mount has been performed.
   // Empty otherwise.
   std::string username_;

   // Tracks the helper process.
   std::unique_ptr<brillo::Process> helper_process_;

   // Pipe used to communicate with the helper process.
   // This file descriptor is owned by |helper_process_|, so it's not
   // scoped.
   int write_to_helper_;

   // Set of mounts returned by the helper.
   std::set<std::string> mounted_paths_;
 };

 }  // namespace cryptohome

 #endif  // CRYPTOHOME_STORAGE_OUT_OF_PROCESS_MOUNT_HELPER_H_
	// Copyright 2019 The Chromium OS Authors. All rights reserved.
	// Use of this source code is governed by a BSD-style license that can be
	// found in the LICENSE file.

	// OutOfProcessMountHelper objects carry out mount(2) and unmount(2) operations
	// for a single cryptohome mount, but do so out-of-process.

	#ifndef CRYPTOHOME_STORAGE_OUT_OF_PROCESS_MOUNT_HELPER_H_
	#define CRYPTOHOME_STORAGE_OUT_OF_PROCESS_MOUNT_HELPER_H_

	#include <sys/types.h>

	#include <memory>
	#include <set>
	#include <string>
	#include <utility>
	#include <vector>

	#include <base/files/file_path.h>
	#include <base/macros.h>
	#include <brillo/process/process.h>
	#include <brillo/secure_blob.h>
	#include <chromeos/dbus/service_constants.h>

	#include "cryptohome/platform.h"
	#include "cryptohome/storage/mount_constants.h"
	#include "cryptohome/storage/mount_helper.h"
	#include "cryptohome/storage/mount_namespace.h"

	using base::FilePath;

	namespace cryptohome {

	// Forward declare classes in
	// cryptohome/namespace_mounter/namespace_mounter_ipc.proto
	class OutOfProcessMountRequest;
	class OutOfProcessMountResponse;

	class OutOfProcessMountHelper : public MountHelperInterface {
	public:
	OutOfProcessMountHelper(const brillo::SecureBlob& system_salt,
	std::unique_ptr<MountNamespace> chrome_mnt_ns,
	bool legacy_home,
	bool bind_mount_downloads,
	Platform* platform)
	: system_salt_(system_salt),
	chrome_mnt_ns_(std::move(chrome_mnt_ns)),
	legacy_home_(legacy_home),
	bind_mount_downloads_(bind_mount_downloads),
	platform_(platform),
	username_(),
	write_to_helper_(-1) {}
	OutOfProcessMountHelper(const OutOfProcessMountHelper&) = delete;
	OutOfProcessMountHelper& operator=(const OutOfProcessMountHelper&) = delete;

	~OutOfProcessMountHelper() = default;

	// Carries out dircrypto mount(2) operations for an ephemeral cryptohome,
	// but does so out of process.
	bool PerformEphemeralMount(const std::string& username) override;

	// Tears down an ephemeral cryptohome mount by terminating the out-of-process
	// helper.
	bool TearDownEphemeralMount() override;

	// Tears down the non-ephemeral cryptohome mount by terminating the
	// out-of-process helper.
	void TearDownNonEphemeralMount() override;

	// Returns whether an ephemeral mount operation can be performed.
	bool CanPerformEphemeralMount() const override;

	// Returns whether a mount operation has been performed.
	bool MountPerformed() const override;

	// Returns whether \|path\| is the destination of an existing mount.
	bool IsPathMounted(const base::FilePath& path) const override;

	// Carries out dircrypto mount(2) operations for a regular cryptohome.
	bool PerformMount(const Options& mount_opts,
	const std::string& username,
	const std::string& fek_signature,
	const std::string& fnek_signature,
	bool is_pristine,
	MountError* error) override;

	private:
	// Launches an out-of-process helper, sends \|request\|, and waits until it
	// receives \|response\|. The timeout for receiving \|response\| is
	// \|kOutOfProcessHelperMountTimeout\| seconds.
	bool LaunchOutOfProcessHelper(const OutOfProcessMountRequest& request,
	OutOfProcessMountResponse* response);

	// Kills the out-of-process helper if it's still running, and Reset()s the
	// Process instance to close all pipe file descriptors.
	void KillOutOfProcessHelperIfNecessary();

	// Tears down the existing cryptohome mount by terminating the out-of-process
	// helper.
	bool TearDownExistingMount();

	// Stores the global system salt.
	brillo::SecureBlob system_salt_;

	// If populated, mount namespace where to perform the mount.
	std::unique_ptr<MountNamespace> chrome_mnt_ns_;

	// Whether to make the legacy home directory (/home/chronos/user) available.
	bool legacy_home_;

	// Whether to bind mount Downloads/
	bool bind_mount_downloads_;

	Platform* platform_; // Un-owned.

	// Username the mount belongs to, if a mount has been performed.
	// Empty otherwise.
	std::string username_;

	// Tracks the helper process.
	std::unique_ptr<brillo::Process> helper_process_;

	// Pipe used to communicate with the helper process.
	// This file descriptor is owned by \|helper_process_\|, so it's not
	// scoped.
	int write_to_helper_;

	// Set of mounts returned by the helper.
	std::set<std::string> mounted_paths_;
	};

	} // namespace cryptohome

	#endif // CRYPTOHOME_STORAGE_OUT_OF_PROCESS_MOUNT_HELPER_H_