Google Git
Sign in
chromium / chromium / src / 3d7980bda81c3423739506aedf37f92a377c2500 / . / chrome / browser / apps / app_shim / extension_app_shim_handler_mac.cc
blob: 7780ff51912983b350d000dc61e538a75d662edb [file] [log] [blame]
// Copyright 2013 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "chrome/browser/apps/app_shim/extension_app_shim_handler_mac.h"
#include <Security/Security.h>
#include <utility>
#include "apps/app_lifetime_monitor_factory.h"
#include "apps/launcher.h"
#include "base/bind.h"
#include "base/callback.h"
#include "base/feature_list.h"
#include "base/files/file_path.h"
#include "base/hash/sha1.h"
#include "base/logging.h"
#include "base/mac/foundation_util.h"
#include "base/mac/scoped_cftyperef.h"
#include "base/macros.h"
#include "chrome/browser/apps/app_shim/app_shim_host_bootstrap_mac.h"
#include "chrome/browser/apps/app_shim/app_shim_host_mac.h"
#include "chrome/browser/apps/app_shim/app_shim_listener.h"
#include "chrome/browser/apps/app_shim/app_shim_termination_manager.h"
#include "chrome/browser/apps/launch_service/launch_service.h"
#include "chrome/browser/browser_process.h"
#include "chrome/browser/chrome_notification_types.h"
#include "chrome/browser/extensions/launch_util.h"
#include "chrome/browser/profiles/avatar_menu.h"
#include "chrome/browser/profiles/profile.h"
#include "chrome/browser/profiles/profile_attributes_entry.h"
#include "chrome/browser/profiles/profile_attributes_storage.h"
#include "chrome/browser/profiles/profile_avatar_icon_util.h"
#include "chrome/browser/profiles/profile_manager.h"
#include "chrome/browser/profiles/profile_window.h"
#include "chrome/browser/profiles/profiles_state.h"
#include "chrome/browser/ui/browser_list.h"
#include "chrome/browser/ui/browser_window.h"
#include "chrome/browser/ui/extensions/app_launch_params.h"
#include "chrome/browser/ui/extensions/extension_enable_flow.h"
#include "chrome/browser/ui/extensions/extension_enable_flow_delegate.h"
#include "chrome/browser/ui/user_manager.h"
#include "chrome/browser/web_applications/components/web_app_helpers.h"
#include "chrome/browser/web_applications/components/web_app_shortcut_mac.h"
#include "chrome/browser/web_applications/extensions/web_app_extension_shortcut.h"
#include "chrome/common/chrome_features.h"
#include "chrome/common/extensions/extension_constants.h"
#include "chrome/common/extensions/extension_metrics.h"
#include "chrome/common/extensions/manifest_handlers/app_launch_info.h"
#include "chrome/common/mac/app_shim_param_traits.h"
#include "components/crx_file/id_util.h"
#include "content/public/browser/browser_context.h"
#include "content/public/browser/notification_details.h"
#include "content/public/browser/notification_service.h"
#include "content/public/browser/notification_source.h"
#include "extensions/browser/app_window/app_window.h"
#include "extensions/browser/app_window/app_window_registry.h"
#include "extensions/browser/app_window/native_app_window.h"
#include "extensions/browser/extension_host.h"
#include "extensions/browser/extension_prefs.h"
#include "extensions/browser/extension_registry.h"
#include "extensions/common/constants.h"
#include "ui/base/cocoa/focus_window_set.h"
using extensions::AppWindow;
using extensions::AppWindowRegistry;
using extensions::Extension;
using extensions::ExtensionRegistry;
using extensions::NativeAppWindow;
namespace {
typedef AppWindowRegistry::AppWindowList AppWindowList;
// Create a SHA1 hex digest of a certificate, for use specifically in building
// a code signing requirement string in IsAcceptablyCodeSigned(), below.
std::string CertificateSHA1Digest(SecCertificateRef certificate) {
base::ScopedCFTypeRef<CFDataRef> certificate_data(
SecCertificateCopyData(certificate));
char hash[base::kSHA1Length];
base::SHA1HashBytes(CFDataGetBytePtr(certificate_data),
CFDataGetLength(certificate_data),
reinterpret_cast<unsigned char*>(hash));
return base::HexEncode(hash, base::kSHA1Length);
}
// Returns whether |pid|'s code signature is trusted:
// - True if the caller is unsigned (there's nothing to verify).
// - True if |pid| satisfies the caller's designated requirement.
// - False otherwise (|pid| does not satisfy caller's designated requirement).
bool IsAcceptablyCodeSignedInternal(pid_t pid) {
base::ScopedCFTypeRef<SecCodeRef> own_code;
base::ScopedCFTypeRef<CFDictionaryRef> own_signing_info;
// Fetch the calling process's designated requirement. The shim can only be
// validated if the caller has one (i.e. if the caller is code signed).
//
// Note: Don't validate |own_code|: updates modify the browser's bundle and
// invalidate its code signature while an update is pending. This can be
// revisited after https://crbug.com/496298 is resolved.
if (SecCodeCopySelf(kSecCSDefaultFlags, own_code.InitializeInto()) !=
errSecSuccess ||
SecCodeCopySigningInformation(own_code.get(), kSecCSSigningInformation,
own_signing_info.InitializeInto()) !=
errSecSuccess) {
LOG(ERROR) << "Failed to get own code signing information.";
return false;
}
auto* own_certificates = base::mac::GetValueFromDictionary<CFArrayRef>(
own_signing_info, kSecCodeInfoCertificates);
if (!own_certificates || CFArrayGetCount(own_certificates) < 1) {
return true;
}
auto* own_certificate = base::mac::CFCast<SecCertificateRef>(
CFArrayGetValueAtIndex(own_certificates, 0));
auto own_certificate_hash = CertificateSHA1Digest(own_certificate);
base::ScopedCFTypeRef<CFStringRef> shim_requirement_string(
CFStringCreateWithFormat(
kCFAllocatorDefault, nullptr,
CFSTR(
"identifier \"app_mode_loader\" and certificate leaf = H\"%s\""),
own_certificate_hash.c_str()));
base::ScopedCFTypeRef<SecRequirementRef> shim_requirement;
if (SecRequirementCreateWithString(
shim_requirement_string, kSecCSDefaultFlags,
shim_requirement.InitializeInto()) != errSecSuccess) {
LOG(ERROR)
<< "Failed to create a SecRequirementRef from the requirement string \""
<< shim_requirement_string << "\"";
return false;
}
base::ScopedCFTypeRef<SecCodeRef> guest_code;
base::ScopedCFTypeRef<CFNumberRef> pid_cf(
CFNumberCreate(kCFAllocatorDefault, kCFNumberIntType, &pid));
const void* guest_attribute_keys[] = {kSecGuestAttributePid};
const void* guest_attribute_values[] = {pid_cf};
base::ScopedCFTypeRef<CFDictionaryRef> guest_attributes(CFDictionaryCreate(
nullptr, guest_attribute_keys, guest_attribute_values,
base::size(guest_attribute_keys), &kCFTypeDictionaryKeyCallBacks,
&kCFTypeDictionaryValueCallBacks));
if (SecCodeCopyGuestWithAttributes(nullptr, guest_attributes,
kSecCSDefaultFlags,
guest_code.InitializeInto())) {
LOG(ERROR) << "Failed to create a SecCodeRef from the app shim's pid.";
return false;
}
return SecCodeCheckValidity(guest_code, kSecCSDefaultFlags,
shim_requirement) == errSecSuccess;
}
// Attempts to launch a packaged app, prompting the user to enable it if
// necessary. The prompt is shown in its own window.
// This class manages its own lifetime.
class EnableViaPrompt : public ExtensionEnableFlowDelegate {
public:
EnableViaPrompt(Profile* profile,
const std::string& extension_id,
base::OnceCallback<void()> callback)
: profile_(profile),
extension_id_(extension_id),
callback_(std::move(callback)) {}
void Run() {
flow_.reset(new ExtensionEnableFlow(profile_, extension_id_, this));
flow_->Start();
}
private:
~EnableViaPrompt() override { std::move(callback_).Run(); }
// ExtensionEnableFlowDelegate overrides.
void ExtensionEnableFlowFinished() override {
delete this;
}
void ExtensionEnableFlowAborted(bool user_initiated) override {
delete this;
}
Profile* profile_;
std::string extension_id_;
base::OnceCallback<void()> callback_;
std::unique_ptr<ExtensionEnableFlow> flow_;
DISALLOW_COPY_AND_ASSIGN(EnableViaPrompt);
};
bool UsesRemoteViews(const extensions::Extension* extension) {
return extension->is_hosted_app() && extension->from_bookmark();
}
} // namespace
namespace apps {
// The state for an individual (app, Profile) pair. This includes the
// AppShimHost.
struct ExtensionAppShimHandler::ProfileState {
ProfileState(ExtensionAppShimHandler::AppState* in_app_state,
std::unique_ptr<AppShimHost> in_single_profile_host);
~ProfileState() = default;
AppShimHost* GetHost() const;
// Weak, owns |this|.
ExtensionAppShimHandler::AppState* const app_state;
// The AppShimHost for apps that are not multi-profile.
const std::unique_ptr<AppShimHost> single_profile_host;
// All browser instances for this (app, Profile) pair.
std::set<Browser*> browsers;
private:
DISALLOW_COPY_AND_ASSIGN(ProfileState);
};
// The state for an individual app. This includes the state for all
// profiles that are using the app.
struct ExtensionAppShimHandler::AppState {
AppState(std::unique_ptr<AppShimHost> in_multi_profile_host)
: multi_profile_host(std::move(in_multi_profile_host)) {}
~AppState() = default;
bool IsMultiProfile() const;
// Multi-profile apps share the same shim process across multiple profiles.
const std::unique_ptr<AppShimHost> multi_profile_host;
std::map<Profile*, std::unique_ptr<ProfileState>> profiles;
private:
DISALLOW_COPY_AND_ASSIGN(AppState);
};
ExtensionAppShimHandler::ProfileState::ProfileState(
ExtensionAppShimHandler::AppState* in_app_state,
std::unique_ptr<AppShimHost> in_single_profile_host)
: app_state(in_app_state),
single_profile_host(std::move(in_single_profile_host)) {
// Assert that the ProfileState and AppState agree about whether or not this
// is a multi-profile shim.
DCHECK_NE(!!single_profile_host, !!app_state->multi_profile_host);
}
AppShimHost* ExtensionAppShimHandler::ProfileState::GetHost() const {
if (app_state->multi_profile_host)
return app_state->multi_profile_host.get();
return single_profile_host.get();
}
bool ExtensionAppShimHandler::AppState::IsMultiProfile() const {
return multi_profile_host.get();
}
std::unique_ptr<AvatarMenu> ExtensionAppShimHandler::Delegate::CreateAvatarMenu(
AvatarMenuObserver* observer) {
ProfileManager* profile_manager = g_browser_process->profile_manager();
return std::make_unique<AvatarMenu>(
&profile_manager->GetProfileAttributesStorage(), observer, nullptr);
}
Profile* ExtensionAppShimHandler::Delegate::ProfileForPath(
const base::FilePath& full_path) {
ProfileManager* profile_manager = g_browser_process->profile_manager();
Profile* profile = profile_manager->GetProfileByPath(full_path);
// Use IsValidProfile to check if the profile has been created.
return profile && profile_manager->IsValidProfile(profile) ? profile : NULL;
}
void ExtensionAppShimHandler::Delegate::LoadProfileAsync(
const base::FilePath& full_path,
base::OnceCallback<void(Profile*)> callback) {
ProfileManager* profile_manager = g_browser_process->profile_manager();
profile_manager->LoadProfileByPath(full_path, false, std::move(callback));
}
bool ExtensionAppShimHandler::Delegate::IsProfileLockedForPath(
const base::FilePath& full_path) {
return profiles::IsProfileLocked(full_path);
}
AppWindowList ExtensionAppShimHandler::Delegate::GetWindows(
Profile* profile,
const std::string& extension_id) {
return AppWindowRegistry::Get(profile)->GetAppWindowsForApp(extension_id);
}
const Extension* ExtensionAppShimHandler::Delegate::MaybeGetAppExtension(
content::BrowserContext* context,
const std::string& extension_id) {
return ExtensionAppShimHandler::MaybeGetAppExtension(context, extension_id);
}
bool ExtensionAppShimHandler::Delegate::AllowShimToConnect(
Profile* profile,
const extensions::Extension* extension) {
if (!profile || !extension)
return false;
if (extension->is_hosted_app() &&
extensions::GetLaunchType(extensions::ExtensionPrefs::Get(profile),
extension) == extensions::LAUNCH_TYPE_REGULAR) {
return false;
}
// Note that this will return true for non-hosted apps (e.g, Chrome Remote
// Desktop).
return true;
}
std::unique_ptr<AppShimHost> ExtensionAppShimHandler::Delegate::CreateHost(
AppShimHost::Client* client,
const base::FilePath& profile_path,
const std::string& app_id,
bool use_remote_cocoa) {
return std::make_unique<AppShimHost>(client, app_id, profile_path,
use_remote_cocoa);
}
void ExtensionAppShimHandler::Delegate::EnableExtension(
Profile* profile,
const std::string& extension_id,
base::OnceCallback<void()> callback) {
(new EnableViaPrompt(profile, extension_id, std::move(callback)))->Run();
}
void ExtensionAppShimHandler::Delegate::LaunchApp(
Profile* profile,
const Extension* extension,
const std::vector<base::FilePath>& files) {
extensions::RecordAppLaunchType(
extension_misc::APP_LAUNCH_CMD_LINE_APP, extension->GetType());
if (extension->is_hosted_app()) {
apps::LaunchService::Get(profile)->OpenApplication(
CreateAppLaunchParamsUserContainer(
profile, extension, WindowOpenDisposition::NEW_FOREGROUND_TAB,
apps::mojom::AppLaunchSource::kSourceCommandLine));
return;
}
if (files.empty()) {
apps::LaunchPlatformApp(profile, extension,
extensions::AppLaunchSource::kSourceCommandLine);
} else {
for (std::vector<base::FilePath>::const_iterator it = files.begin();
it != files.end(); ++it) {
apps::LaunchPlatformAppWithPath(profile, extension, *it);
}
}
}
void ExtensionAppShimHandler::Delegate::LaunchShim(
Profile* profile,
const Extension* extension,
bool recreate_shims,
apps::ShimLaunchedCallback launched_callback,
apps::ShimTerminatedCallback terminated_callback) {
// Only force recreation of shims when RemoteViews is in use (that is, for
// PWAs). Otherwise, shims may be created unexpectedly.
// https://crbug.com/941160
if (recreate_shims && UsesRemoteViews(extension)) {
// Load the resources needed to build the app shim (icons, etc), and then
// recreate the shim and launch it.
web_app::GetShortcutInfoForApp(
extension, profile,
base::BindOnce(
&web_app::LaunchShim,
web_app::LaunchShimUpdateBehavior::RECREATE_UNCONDITIONALLY,
std::move(launched_callback), std::move(terminated_callback)));
} else {
web_app::LaunchShim(
web_app::LaunchShimUpdateBehavior::DO_NOT_RECREATE,
std::move(launched_callback), std::move(terminated_callback),
web_app::ShortcutInfoForExtensionAndProfile(extension, profile));
}
}
void ExtensionAppShimHandler::Delegate::LaunchUserManager() {
UserManager::Show(base::FilePath(),
profiles::USER_MANAGER_SELECT_PROFILE_NO_ACTION);
}
void ExtensionAppShimHandler::Delegate::MaybeTerminate() {
apps::AppShimTerminationManager::Get()->MaybeTerminate();
}
ExtensionAppShimHandler::ExtensionAppShimHandler()
: delegate_(new Delegate),
weak_factory_(this) {
// This is instantiated in BrowserProcessImpl::PreMainMessageLoopRun with
// AppShimListener. Since PROFILE_CREATED is not fired until
// ProfileManager::GetLastUsedProfile/GetLastOpenedProfiles, this should catch
// notifications for all profiles.
registrar_.Add(this, chrome::NOTIFICATION_PROFILE_CREATED,
content::NotificationService::AllBrowserContextsAndSources());
registrar_.Add(this, chrome::NOTIFICATION_PROFILE_DESTROYED,
content::NotificationService::AllBrowserContextsAndSources());
BrowserList::AddObserver(this);
}
ExtensionAppShimHandler::~ExtensionAppShimHandler() {
BrowserList::RemoveObserver(this);
}
AppShimHost* ExtensionAppShimHandler::FindHost(Profile* profile,
const std::string& app_id) {
auto found_app = apps_.find(app_id);
if (found_app == apps_.end())
return nullptr;
AppState* app_state = found_app->second.get();
auto found_profile = app_state->profiles.find(profile);
if (found_profile == app_state->profiles.end())
return nullptr;
ProfileState* profile_state = found_profile->second.get();
return profile_state->GetHost();
}
AppShimHost* ExtensionAppShimHandler::GetHostForBrowser(Browser* browser) {
Profile* profile = Profile::FromBrowserContext(browser->profile());
const Extension* extension =
apps::ExtensionAppShimHandler::MaybeGetAppForBrowser(browser);
if (!extension || !extension->is_hosted_app())
return nullptr;
ProfileState* profile_state = GetOrCreateProfileState(profile, extension);
if (!profile_state)
return nullptr;
return profile_state->GetHost();
}
// static
const Extension* ExtensionAppShimHandler::MaybeGetAppExtension(
content::BrowserContext* context,
const std::string& extension_id) {
if (!context)
return NULL;
ExtensionRegistry* registry = ExtensionRegistry::Get(context);
const Extension* extension =
registry->GetExtensionById(extension_id, ExtensionRegistry::ENABLED);
return extension &&
(extension->is_platform_app() || extension->is_hosted_app())
? extension
: NULL;
}
// static
const Extension* ExtensionAppShimHandler::MaybeGetAppForBrowser(
Browser* browser) {
if (!browser || !browser->deprecated_is_app())
return NULL;
return MaybeGetAppExtension(
browser->profile(),
web_app::GetAppIdFromApplicationName(browser->app_name()));
}
void ExtensionAppShimHandler::RequestUserAttentionForWindow(
AppWindow* app_window,
AppShimAttentionType attention_type) {
Profile* profile = Profile::FromBrowserContext(app_window->browser_context());
AppShimHost* host = FindHost(profile, app_window->extension_id());
if (host && !host->UsesRemoteViews())
host->GetAppShim()->SetUserAttention(attention_type);
}
void ExtensionAppShimHandler::OnShimLaunchRequested(
AppShimHost* host,
bool recreate_shims,
apps::ShimLaunchedCallback launched_callback,
apps::ShimTerminatedCallback terminated_callback) {
// A shim can only be launched through an active profile, so find a profile
// through which to do the launch. For multi-profile apps, select one
// arbitrarily. For non-multi-profile apps, select the specified profile.
Profile* profile = nullptr;
{
auto found_app = apps_.find(host->GetAppId());
DCHECK(found_app != apps_.end());
AppState* app_state = found_app->second.get();
if (app_state->IsMultiProfile()) {
DCHECK(!app_state->profiles.empty());
profile = app_state->profiles.begin()->first;
} else {
profile = delegate_->ProfileForPath(host->GetProfilePath());
}
}
const Extension* extension =
delegate_->MaybeGetAppExtension(profile, host->GetAppId());
if (!profile || !extension) {
// If the profile or extension has been unloaded, indicate that the launch
// failed. This will close the AppShimHost eventually, if appropriate.
std::move(launched_callback).Run(base::Process());
return;
}
delegate_->LaunchShim(profile, extension, recreate_shims,
std::move(launched_callback),
std::move(terminated_callback));
}
void ExtensionAppShimHandler::OnShimProcessConnected(
std::unique_ptr<AppShimHostBootstrap> bootstrap) {
const std::string& app_id = bootstrap->GetAppId();
DCHECK(crx_file::id_util::IdIsValid(app_id));
// TODO(https://crbug.com/982024): If no profile path is specified by the
// bootstrap, then load an appropriate profile.
base::FilePath profile_path = bootstrap->GetProfilePath();
if (delegate_->IsProfileLockedForPath(profile_path)) {
LOG(WARNING) << "Requested profile is locked. Showing User Manager.";
bootstrap->OnFailedToConnectToHost(APP_SHIM_LAUNCH_PROFILE_LOCKED);
delegate_->LaunchUserManager();
return;
}
LoadProfileAndApp(
profile_path, app_id,
base::BindOnce(
&ExtensionAppShimHandler::OnShimProcessConnectedAndAppLoaded,
weak_factory_.GetWeakPtr(), std::move(bootstrap)));
}
// static
ExtensionAppShimHandler* ExtensionAppShimHandler::Get() {
// This will only return nullptr in certain unit tests that do not initialize
// the app shim host manager.
auto* shim_host_manager =
g_browser_process->platform_part()->app_shim_listener();
if (shim_host_manager)
return shim_host_manager->extension_app_shim_handler();
return nullptr;
}
void ExtensionAppShimHandler::CloseShimsForProfile(Profile* profile) {
for (auto iter_app = apps_.begin(); iter_app != apps_.end();) {
AppState* app_state = iter_app->second.get();
app_state->profiles.erase(profile);
if (app_state->profiles.empty())
iter_app = apps_.erase(iter_app);
else
++iter_app;
}
}
void ExtensionAppShimHandler::CloseShimForApp(Profile* profile,
const std::string& app_id) {
auto found_app = apps_.find(app_id);
if (found_app == apps_.end())
return;
AppState* app_state = found_app->second.get();
app_state->profiles.erase(profile);
if (app_state->profiles.empty())
apps_.erase(found_app);
}
void ExtensionAppShimHandler::LoadProfileAndApp(
const base::FilePath& profile_path,
const std::string& app_id,
LoadProfileAppCallback callback) {
Profile* profile = delegate_->ProfileForPath(profile_path);
if (profile) {
OnProfileLoaded(profile_path, app_id, std::move(callback), profile);
} else {
delegate_->LoadProfileAsync(
profile_path, base::BindOnce(&ExtensionAppShimHandler::OnProfileLoaded,
weak_factory_.GetWeakPtr(), profile_path,
app_id, std::move(callback)));
}
}
void ExtensionAppShimHandler::OnProfileLoaded(
const base::FilePath& profile_path,
const std::string& app_id,
LoadProfileAppCallback callback,
Profile* profile) {
DCHECK_CURRENTLY_ON(content::BrowserThread::UI);
if (!profile) {
// User may have deleted the profile this shim was originally created for.
// TODO(jackhou): Add some UI for this case and remove the LOG.
LOG(ERROR) << "Requested directory is not a known profile '"
<< profile_path.value() << "'.";
std::move(callback).Run(profile, nullptr);
return;
}
// TODO(jeremya): Handle the case that launching the app fails. Probably we
// need to watch for 'app successfully launched' or at least 'background page
// exists/was created' and time out with failure if we don't see that sign of
// life within a certain window.
const Extension* extension = delegate_->MaybeGetAppExtension(profile, app_id);
if (extension) {
std::move(callback).Run(profile, extension);
} else {
delegate_->EnableExtension(
profile, app_id,
base::BindOnce(&ExtensionAppShimHandler::OnAppEnabled,
weak_factory_.GetWeakPtr(), profile_path, app_id,
std::move(callback)));
}
}
void ExtensionAppShimHandler::OnAppEnabled(const base::FilePath& profile_path,
const std::string& app_id,
LoadProfileAppCallback callback) {
// If the profile doesn't exist, it may have been deleted during the enable
// prompt.
Profile* profile = delegate_->ProfileForPath(profile_path);
const Extension* extension =
profile ? delegate_->MaybeGetAppExtension(profile, app_id) : nullptr;
std::move(callback).Run(profile, extension);
}
void ExtensionAppShimHandler::OnShimProcessConnectedAndAppLoaded(
std::unique_ptr<AppShimHostBootstrap> bootstrap,
Profile* profile,
const extensions::Extension* extension) {
DCHECK_CURRENTLY_ON(content::BrowserThread::UI);
// Early-out if the profile or extension failed to load.
if (!profile) {
bootstrap->OnFailedToConnectToHost(APP_SHIM_LAUNCH_PROFILE_NOT_FOUND);
return;
}
if (!extension) {
bootstrap->OnFailedToConnectToHost(APP_SHIM_LAUNCH_APP_NOT_FOUND);
return;
}
AppShimLaunchType launch_type = bootstrap->GetLaunchType();
std::vector<base::FilePath> files = bootstrap->GetLaunchFiles();
ProfileState* profile_state =
delegate_->AllowShimToConnect(profile, extension)
? GetOrCreateProfileState(profile, extension)
: nullptr;
if (profile_state) {
DCHECK_EQ(profile_state->app_state->IsMultiProfile(),
bootstrap->IsMultiProfile());
AppShimHost* host = profile_state->GetHost();
if (host->HasBootstrapConnected()) {
// If another app shim process has already connected to this (profile,
// app_id) pair, then focus the windows for the existing process, and
// close the new process.
OnShimFocus(host,
launch_type == APP_SHIM_LAUNCH_NORMAL ? APP_SHIM_FOCUS_REOPEN
: APP_SHIM_FOCUS_NORMAL,
files);
bootstrap->OnFailedToConnectToHost(APP_SHIM_LAUNCH_DUPLICATE_HOST);
return;
}
if (IsAcceptablyCodeSigned(bootstrap->GetAppShimPid())) {
host->OnBootstrapConnected(std::move(bootstrap));
} else {
// If the connecting shim process doesn't have an acceptable code
// signature, reject the connection and re-launch the shim. The internal
// re-launch will likely fail, whereupon the shim will be recreated.
LOG(ERROR) << "The attaching app shim's code signature is invalid.";
bootstrap->OnFailedToConnectToHost(APP_SHIM_LAUNCH_FAILED_VALIDATION);
host->LaunchShim();
}
} else {
// If it's an app that has a shim to launch it but shouldn't use a host
// (e.g, a hosted app that opens in a tab), terminate the shim, but still
// launch the app (that is, open the relevant browser tabs).
bootstrap->OnFailedToConnectToHost(APP_SHIM_LAUNCH_DUPLICATE_HOST);
}
// If this is not a register-only launch, then launch the app (that is, open
// a browser window for it).
if (launch_type == APP_SHIM_LAUNCH_NORMAL)
delegate_->LaunchApp(profile, extension, files);
}
bool ExtensionAppShimHandler::IsAcceptablyCodeSigned(pid_t pid) const {
return IsAcceptablyCodeSignedInternal(pid);
}
void ExtensionAppShimHandler::OnShimProcessDisconnected(AppShimHost* host) {
const std::string app_id = host->GetAppId();
auto found_app = apps_.find(app_id);
DCHECK(found_app != apps_.end());
AppState* app_state = found_app->second.get();
DCHECK(app_state);
// For multi-profile apps, just delete the AppState, which will take down
// |host| and all profiles' state.
if (app_state->IsMultiProfile()) {
DCHECK_EQ(host, app_state->multi_profile_host.get());
apps_.erase(found_app);
return;
}
Profile* profile = delegate_->ProfileForPath(host->GetProfilePath());
// For non-RemoteCocoa apps, close all of the windows only if the the shim
// process has successfully connected (if it never connected, then let the
// app run as normal).
bool close_windows =
!host->UsesRemoteViews() && host->HasBootstrapConnected();
// Erase the ProfileState, which will delete |host|.
auto found_profile = app_state->profiles.find(profile);
DCHECK(found_profile != app_state->profiles.end());
ProfileState* profile_state = found_profile->second.get();
DCHECK_EQ(host, profile_state->single_profile_host.get());
app_state->profiles.erase(found_profile);
host = nullptr;
// Erase |app_state| if this was the last profile.
if (app_state->profiles.empty())
apps_.erase(found_app);
// Close app windows if we decided to do so above.
if (close_windows) {
AppWindowList windows = delegate_->GetWindows(profile, app_id);
for (auto it = windows.begin(); it != windows.end(); ++it) {
if (*it)
(*it)->GetBaseWindow()->Close();
}
}
}
void ExtensionAppShimHandler::OnShimFocus(
AppShimHost* host,
AppShimFocusType focus_type,
const std::vector<base::FilePath>& files) {
// This path is only for legacy apps (which are perforce single-profile).
if (host->UsesRemoteViews())
return;
Profile* profile = delegate_->ProfileForPath(host->GetProfilePath());
const Extension* extension =
delegate_->MaybeGetAppExtension(profile, host->GetAppId());
if (!extension) {
CloseShimForApp(profile, host->GetAppId());
return;
}
AppWindowList windows = delegate_->GetWindows(profile, host->GetAppId());
for (auto it = windows.rbegin(); it != windows.rend(); ++it) {
if (*it)
(*it)->GetBaseWindow()->Show();
}
if (focus_type == APP_SHIM_FOCUS_NORMAL ||
(focus_type == APP_SHIM_FOCUS_REOPEN && !windows.empty())) {
return;
}
delegate_->LaunchApp(profile, extension, files);
}
void ExtensionAppShimHandler::OnShimSelectedProfile(
AppShimHost* host,
const base::FilePath& profile_path) {
LoadProfileAndApp(
profile_path, host->GetAppId(),
base::BindOnce(
&ExtensionAppShimHandler::OnShimSelectedProfileAndAppLoaded,
weak_factory_.GetWeakPtr()));
}
void ExtensionAppShimHandler::OnShimSelectedProfileAndAppLoaded(
Profile* profile,
const extensions::Extension* extension) {
if (!extension)
return;
auto found_app = apps_.find(extension->id());
if (found_app == apps_.end())
return;
AppState* app_state = found_app->second.get();
auto found_profile = app_state->profiles.find(profile);
if (found_profile != app_state->profiles.end()) {
// If this profile is currently open for the app, focus its windows.
ProfileState* profile_state = found_profile->second.get();
for (auto* browser : profile_state->browsers) {
if (auto* window = browser->window())
window->Show();
}
} else {
// Otherwise, launch the app for this profile (which will open a new
// window).
delegate_->LaunchApp(profile, extension, std::vector<base::FilePath>());
}
}
void ExtensionAppShimHandler::set_delegate(Delegate* delegate) {
delegate_.reset(delegate);
}
void ExtensionAppShimHandler::Observe(
int type,
const content::NotificationSource& source,
const content::NotificationDetails& details) {
switch (type) {
case chrome::NOTIFICATION_PROFILE_CREATED: {
Profile* profile = content::Source<Profile>(source).ptr();
if (profile->IsOffTheRecord())
return;
AppLifetimeMonitorFactory::GetForBrowserContext(profile)->AddObserver(
this);
break;
}
case chrome::NOTIFICATION_PROFILE_DESTROYED: {
Profile* profile = content::Source<Profile>(source).ptr();
if (profile->IsOffTheRecord())
return;
AppLifetimeMonitorFactory::GetForBrowserContext(profile)->RemoveObserver(
this);
CloseShimsForProfile(profile);
break;
}
default: {
NOTREACHED(); // Unexpected notification.
break;
}
}
}
void ExtensionAppShimHandler::OnAppStart(content::BrowserContext* context,
const std::string& app_id) {}
void ExtensionAppShimHandler::OnAppActivated(content::BrowserContext* context,
const std::string& app_id) {
Profile* profile = Profile::FromBrowserContext(context);
const Extension* extension = delegate_->MaybeGetAppExtension(context, app_id);
if (!extension)
return;
if (auto* profile_state = GetOrCreateProfileState(profile, extension))
profile_state->GetHost()->LaunchShim();
}
void ExtensionAppShimHandler::OnAppDeactivated(content::BrowserContext* context,
const std::string& app_id) {
CloseShimForApp(static_cast<Profile*>(context), app_id);
if (apps_.empty())
delegate_->MaybeTerminate();
}
void ExtensionAppShimHandler::OnAppStop(content::BrowserContext* context,
const std::string& app_id) {}
void ExtensionAppShimHandler::OnBrowserAdded(Browser* browser) {
// Don't keep track of browsers that are not associated with an app.
const Extension* extension = MaybeGetAppForBrowser(browser);
if (!extension)
return;
if (auto* profile_state =
GetOrCreateProfileState(browser->profile(), extension)) {
profile_state->browsers.insert(browser);
if (profile_state->browsers.size() == 1)
OnAppActivated(browser->profile(), extension->id());
}
}
void ExtensionAppShimHandler::OnBrowserRemoved(Browser* browser) {
// Note that |browser| may no longer have an extension, if it was unloaded
// before |browser| was closed. Search for |browser| in all |apps_|.
for (auto iter_app = apps_.begin(); iter_app != apps_.end(); ++iter_app) {
AppState* app_state = iter_app->second.get();
const std::string& app_id = iter_app->first;
for (auto iter_profile = app_state->profiles.begin();
iter_profile != app_state->profiles.end(); ++iter_profile) {
ProfileState* profile_state = iter_profile->second.get();
auto found = profile_state->browsers.find(browser);
if (found != profile_state->browsers.end()) {
// If we have no browser windows open after erasing this window, then
// close the ProfileState (and potentially the shim as well).
profile_state->browsers.erase(found);
if (profile_state->browsers.empty())
OnAppDeactivated(browser->profile(), app_id);
return;
}
}
}
}
void ExtensionAppShimHandler::OnBrowserSetLastActive(Browser* browser) {
// Defer creation of the avatar menu until the active browser window changes,
// to allow tests to override |delegate_|.
if (!avatar_menu_) {
avatar_menu_ = delegate_->CreateAvatarMenu(this);
return;
}
if (!avatar_menu_)
return;
avatar_menu_->ActiveBrowserChanged(browser);
avatar_menu_->RebuildMenu();
for (auto& iter_app : apps_) {
AppState* app_state = iter_app.second.get();
if (app_state->IsMultiProfile())
UpdateHostProfileMenu(app_state->multi_profile_host.get());
}
}
void ExtensionAppShimHandler::OnAvatarMenuChanged(AvatarMenu* menu) {
if (!avatar_menu_)
return;
for (auto& iter_app : apps_) {
AppState* app_state = iter_app.second.get();
if (app_state->IsMultiProfile())
UpdateHostProfileMenu(app_state->multi_profile_host.get());
}
}
void ExtensionAppShimHandler::UpdateHostProfileMenu(AppShimHost* host) {
std::vector<chrome::mojom::ProfileMenuItemPtr> mojo_items;
for (size_t i = 0; i < avatar_menu_->GetNumberOfItems(); ++i) {
// TODO(https://crbug.com/982024): Skip profiles for which this extension
// is not installed.
auto mojo_item = chrome::mojom::ProfileMenuItem::New();
const AvatarMenu::Item& item = avatar_menu_->GetItemAt(i);
mojo_item->name = item.name;
mojo_item->menu_index = item.menu_index;
mojo_item->active = item.active;
mojo_item->profile_path = item.profile_path;
{
// Scale the icon as needed (see ProfileMenuController).
gfx::Image itemIcon;
AvatarMenu::GetImageForMenuButton(item.profile_path, &itemIcon);
static constexpr int kMenuAvatarIconSize = 38;
if (itemIcon.Width() > kMenuAvatarIconSize ||
itemIcon.Height() > kMenuAvatarIconSize) {
itemIcon = profiles::GetSizedAvatarIcon(itemIcon, /*is_rectangle=*/true,
kMenuAvatarIconSize,
kMenuAvatarIconSize);
}
mojo_item->icon = *itemIcon.ToImageSkia();
}
mojo_items.push_back(std::move(mojo_item));
}
host->GetAppShim()->UpdateProfileMenu(std::move(mojo_items));
}
ExtensionAppShimHandler::ProfileState*
ExtensionAppShimHandler::GetOrCreateProfileState(
Profile* profile,
const extensions::Extension* extension) {
if (web_app::AppShimLaunchDisabled())
return nullptr;
const bool is_multi_profile =
base::FeatureList::IsEnabled(features::kAppShimMultiProfile) &&
extension->from_bookmark();
const base::FilePath profile_path =
is_multi_profile ? base::FilePath() : profile->GetPath();
const std::string app_id = extension->id();
const bool use_remote_cocoa = UsesRemoteViews(extension);
auto found_app = apps_.find(extension->id());
if (found_app == apps_.end()) {
std::unique_ptr<AppShimHost> multi_profile_host;
if (is_multi_profile) {
multi_profile_host =
delegate_->CreateHost(this, profile_path, app_id, use_remote_cocoa);
}
auto new_app_state =
std::make_unique<AppState>(std::move(multi_profile_host));
found_app =
apps_.insert(std::make_pair(app_id, std::move(new_app_state))).first;
}
AppState* app_state = found_app->second.get();
auto found_profile = app_state->profiles.find(profile);
if (found_profile == app_state->profiles.end()) {
std::unique_ptr<AppShimHost> single_profile_host;
if (!is_multi_profile) {
single_profile_host =
delegate_->CreateHost(this, profile_path, app_id, use_remote_cocoa);
}
auto new_profile_state = std::make_unique<ProfileState>(
app_state, std::move(single_profile_host));
found_profile =
app_state->profiles
.insert(std::make_pair(profile, std::move(new_profile_state)))
.first;
}
return found_profile->second.get();
}
} // namespace apps