Gitiles
Code Review Sign In
gerrit.openfyde.cn / chromium.googlesource.com / chromiumos / platform2 / 77340486083445c0425a99914bed3d2e9269f58a / . / system-proxy / system_proxy_adaptor.h
blob: 8772112f1d858763e406f5473d2b35bff5b14f9b [file] [log] [blame]
Andreea Costinas942284d2020-01-28 16:28:40 +0100[diff] [blame]1// Copyright 2020 The Chromium OS Authors. All rights reserved.
2// Use of this source code is governed by a BSD-style license that can be
3// found in the LICENSE file.
4#ifndef SYSTEM_PROXY_SYSTEM_PROXY_ADAPTOR_H_
5#define SYSTEM_PROXY_SYSTEM_PROXY_ADAPTOR_H_
6
7#include <memory>
Andreea Costinasc7d5ad02020-03-09 09:41:51 +0100[diff] [blame]8#include <string>
Andreea Costinas942284d2020-01-28 16:28:40 +0100[diff] [blame]9#include <vector>
10
Andreea Costinasc7d5ad02020-03-09 09:41:51 +0100[diff] [blame]11#include <base/memory/weak_ptr.h>
Andreea Costinas942284d2020-01-28 16:28:40 +0100[diff] [blame]12#include <brillo/dbus/async_event_sequencer.h>
Andreea Costinas5862b102020-03-19 14:45:36 +0100[diff] [blame]13#include <brillo/http/http_proxy.h>
Andreea Costinas41e06442020-03-09 09:41:51 +0100[diff] [blame]14#include <gtest/gtest_prod.h> // for FRIEND_TEST
Andreea Costinasc7d5ad02020-03-09 09:41:51 +0100[diff] [blame]15#include <patchpanel/proto_bindings/patchpanel_service.pb.h>
Andreea Costinas942284d2020-01-28 16:28:40 +0100[diff] [blame]16
Andreea Costinasdb2cbee2020-06-15 11:43:44 +0200[diff] [blame]17#include "bindings/worker_common.pb.h"
Andreea Costinas942284d2020-01-28 16:28:40 +0100[diff] [blame]18#include "system_proxy/org.chromium.SystemProxy.h"
19
20namespace brillo {
21namespace dbus_utils {
22class DBusObject;
23}
24
25} // namespace brillo
26
27namespace system_proxy {
Andreea Costinasc7d5ad02020-03-09 09:41:51 +0100[diff] [blame]28
Andreea Costinas922fbaf2020-05-28 11:55:22 +0200[diff] [blame]29class KerberosClient;
Andreea Costinasc7d5ad02020-03-09 09:41:51 +0100[diff] [blame]30class SandboxedWorker;
31
Andreea Costinas942284d2020-01-28 16:28:40 +0100[diff] [blame]32// Implementation of the SystemProxy D-Bus interface.
33class SystemProxyAdaptor : public org::chromium::SystemProxyAdaptor,
34 public org::chromium::SystemProxyInterface {
35 public:
36 explicit SystemProxyAdaptor(
37 std::unique_ptr<brillo::dbus_utils::DBusObject> dbus_object);
38 SystemProxyAdaptor(const SystemProxyAdaptor&) = delete;
39 SystemProxyAdaptor& operator=(const SystemProxyAdaptor&) = delete;
Andreea Costinasc7d5ad02020-03-09 09:41:51 +0100[diff] [blame]40 virtual ~SystemProxyAdaptor();
Andreea Costinas942284d2020-01-28 16:28:40 +0100[diff] [blame]41
42 // Registers the D-Bus object and interfaces.
43 void RegisterAsync(
44 const brillo::dbus_utils::AsyncEventSequencer::CompletionAction&
45 completion_callback);
46
47 // org::chromium::SystemProxyInterface: (see org.chromium.SystemProxy.xml).
Andreea Costinas77b180e2020-05-12 15:17:32 +0200[diff] [blame]48 std::vector<uint8_t> SetAuthenticationDetails(
49 const std::vector<uint8_t>& request_blob) override;
Andreea Costinas942284d2020-01-28 16:28:40 +0100[diff] [blame]50 std::vector<uint8_t> ShutDown() override;
51
Andreea Costinas5862b102020-03-19 14:45:36 +0100[diff] [blame]52 void GetChromeProxyServersAsync(
53 const std::string& target_url,
54 const brillo::http::GetChromeProxyServersCallback& callback);
55
Andreea Costinasdb2cbee2020-06-15 11:43:44 +0200[diff] [blame]56 void RequestAuthenticationCredentials(
57 const worker::ProtectionSpace& protection_space);
58
Andreea Costinasc7d5ad02020-03-09 09:41:51 +0100[diff] [blame]59 protected:
60 virtual std::unique_ptr<SandboxedWorker> CreateWorker();
Andreea Costinas91f75352020-07-08 14:47:47 +0200[diff] [blame]61 virtual void ConnectNamespace(SandboxedWorker* worker, bool user_traffic);
Andreea Costinasa89309d2020-05-08 15:51:12 +0200[diff] [blame]62 // Triggers the |WorkerActive| signal.
63 void OnNamespaceConnected(SandboxedWorker* worker, bool user_traffic);
Andreea Costinasc7d5ad02020-03-09 09:41:51 +0100[diff] [blame]64
Andreea Costinas942284d2020-01-28 16:28:40 +0100[diff] [blame]65 private:
Andreea Costinas41e06442020-03-09 09:41:51 +0100[diff] [blame]66 friend class SystemProxyAdaptorTest;
Andreea Costinas77b180e2020-05-12 15:17:32 +0200[diff] [blame]67 FRIEND_TEST(SystemProxyAdaptorTest, SetAuthenticationDetails);
Andreea Costinas922fbaf2020-05-28 11:55:22 +0200[diff] [blame]68 FRIEND_TEST(SystemProxyAdaptorTest, KerberosEnabled);
Andreea Costinas41e06442020-03-09 09:41:51 +0100[diff] [blame]69 FRIEND_TEST(SystemProxyAdaptorTest, ShutDown);
Andreea Costinasa89309d2020-05-08 15:51:12 +0200[diff] [blame]70 FRIEND_TEST(SystemProxyAdaptorTest, ConnectNamespace);
71 FRIEND_TEST(SystemProxyAdaptorTest, ProxyResolutionFilter);
Andreea Costinasdb2cbee2020-06-15 11:43:44 +0200[diff] [blame]72 FRIEND_TEST(SystemProxyAdaptorTest, ProtectionSpaceAuthenticationRequired);
73 FRIEND_TEST(SystemProxyAdaptorTest, ProtectionSpaceNoCredentials);
Andreea Costinas41e06442020-03-09 09:41:51 +0100[diff] [blame]74
Andreea Costinasc7d5ad02020-03-09 09:41:51 +0100[diff] [blame]75 void SetCredentialsTask(SandboxedWorker* worker,
Andreea Costinasdb2cbee2020-06-15 11:43:44 +0200[diff] [blame]76 const worker::Credentials& credentials);
Andreea Costinasc7d5ad02020-03-09 09:41:51 +0100[diff] [blame]77
Andreea Costinas922fbaf2020-05-28 11:55:22 +0200[diff] [blame]78 void SetKerberosEnabledTask(SandboxedWorker* worker,
79 bool kerberos_enabled,
80 const std::string& principal_name);
81
Andreea Costinasc7d5ad02020-03-09 09:41:51 +0100[diff] [blame]82 void ShutDownTask();
83
Andreea Costinas91f75352020-07-08 14:47:47 +0200[diff] [blame]84 void ConnectNamespaceTask(SandboxedWorker* worker, bool user_traffic);
85
Andreea Costinasedb7c8e2020-04-22 10:58:04 +0200[diff] [blame]86 bool StartWorker(SandboxedWorker* worker, bool user_traffic);
Andreea Costinasc7d5ad02020-03-09 09:41:51 +0100[diff] [blame]87
Andreea Costinas77b180e2020-05-12 15:17:32 +0200[diff] [blame]88 // Checks if a worker process exists and if not creates one and sends a
89 // request to patchpanel to setup the network namespace for it. Returns true
90 // if the worker exists or was created successfully, false otherwise.
91 bool CreateWorkerIfNeeded(bool user_traffic);
92
Andreea Costinasa89309d2020-05-08 15:51:12 +0200[diff] [blame]93 // Called when the patchpanel D-Bus service becomes available.
Andreea Costinasedb7c8e2020-04-22 10:58:04 +0200[diff] [blame]94 void OnPatchpanelServiceAvailable(bool is_available);
Andreea Costinasc7d5ad02020-03-09 09:41:51 +0100[diff] [blame]95
Andreea Costinas5862b102020-03-19 14:45:36 +0100[diff] [blame]96 // The callback of |GetChromeProxyServersAsync|.
97 void OnGetProxyServers(bool success, const std::vector<std::string>& servers);
98
Andreea Costinas91f75352020-07-08 14:47:47 +0200[diff] [blame]99 // The number of tries left for setting up the network namespace of the
100 // System-proxy worker for system traffic. TODO(acostinas, b/160736881) Remove
101 // when patchpaneld creates the veth pair directly across the host and worker
102 // network namespaces.
103 int netns_reconnect_attempts_available_;
104
Andreea Costinasc7d5ad02020-03-09 09:41:51 +0100[diff] [blame]105 // Worker that authenticates and forwards to a remote web proxy traffic
106 // coming form Chrome OS system services.
107 std::unique_ptr<SandboxedWorker> system_services_worker_;
108 // Worker that authenticates and forwards to a remote web proxy traffic
109 // coming form ARC++ apps.
110 std::unique_ptr<SandboxedWorker> arc_worker_;
Andreea Costinas922fbaf2020-05-28 11:55:22 +0200[diff] [blame]111 std::unique_ptr<KerberosClient> kerberos_client_;
112
Andreea Costinas942284d2020-01-28 16:28:40 +0100[diff] [blame]113 std::unique_ptr<brillo::dbus_utils::DBusObject> dbus_object_;
Andreea Costinasc7d5ad02020-03-09 09:41:51 +0100[diff] [blame]114 base::WeakPtrFactory<SystemProxyAdaptor> weak_ptr_factory_;
Andreea Costinas942284d2020-01-28 16:28:40 +0100[diff] [blame]115};
116
117} // namespace system_proxy
118#endif // SYSTEM_PROXY_SYSTEM_PROXY_ADAPTOR_H_