| // Copyright 2013 The Chromium Authors. All rights reserved. |
| // Use of this source code is governed by a BSD-style license that can be |
| // found in the LICENSE file. |
| |
| #include "chrome/browser/apps/app_shim/extension_app_shim_handler_mac.h" |
| |
| #include <Security/Security.h> |
| |
| #include <utility> |
| |
| #include "apps/app_lifetime_monitor_factory.h" |
| #include "apps/launcher.h" |
| #include "base/bind.h" |
| #include "base/callback.h" |
| #include "base/feature_list.h" |
| #include "base/files/file_path.h" |
| #include "base/hash/sha1.h" |
| #include "base/logging.h" |
| #include "base/mac/foundation_util.h" |
| #include "base/mac/scoped_cftyperef.h" |
| #include "base/macros.h" |
| #include "chrome/browser/apps/app_shim/app_shim_host_bootstrap_mac.h" |
| #include "chrome/browser/apps/app_shim/app_shim_host_mac.h" |
| #include "chrome/browser/apps/app_shim/app_shim_listener.h" |
| #include "chrome/browser/apps/app_shim/app_shim_termination_manager.h" |
| #include "chrome/browser/apps/launch_service/launch_service.h" |
| #include "chrome/browser/browser_process.h" |
| #include "chrome/browser/chrome_notification_types.h" |
| #include "chrome/browser/extensions/launch_util.h" |
| #include "chrome/browser/profiles/avatar_menu.h" |
| #include "chrome/browser/profiles/profile.h" |
| #include "chrome/browser/profiles/profile_attributes_entry.h" |
| #include "chrome/browser/profiles/profile_attributes_storage.h" |
| #include "chrome/browser/profiles/profile_avatar_icon_util.h" |
| #include "chrome/browser/profiles/profile_manager.h" |
| #include "chrome/browser/profiles/profile_window.h" |
| #include "chrome/browser/profiles/profiles_state.h" |
| #include "chrome/browser/ui/browser_list.h" |
| #include "chrome/browser/ui/browser_window.h" |
| #include "chrome/browser/ui/extensions/app_launch_params.h" |
| #include "chrome/browser/ui/extensions/extension_enable_flow.h" |
| #include "chrome/browser/ui/extensions/extension_enable_flow_delegate.h" |
| #include "chrome/browser/ui/user_manager.h" |
| #include "chrome/browser/web_applications/components/web_app_helpers.h" |
| #include "chrome/browser/web_applications/components/web_app_shortcut_mac.h" |
| #include "chrome/browser/web_applications/extensions/web_app_extension_shortcut.h" |
| #include "chrome/common/chrome_features.h" |
| #include "chrome/common/extensions/extension_constants.h" |
| #include "chrome/common/extensions/extension_metrics.h" |
| #include "chrome/common/extensions/manifest_handlers/app_launch_info.h" |
| #include "chrome/common/mac/app_shim_param_traits.h" |
| #include "components/crx_file/id_util.h" |
| #include "content/public/browser/browser_context.h" |
| #include "content/public/browser/notification_details.h" |
| #include "content/public/browser/notification_service.h" |
| #include "content/public/browser/notification_source.h" |
| #include "extensions/browser/app_window/app_window.h" |
| #include "extensions/browser/app_window/app_window_registry.h" |
| #include "extensions/browser/app_window/native_app_window.h" |
| #include "extensions/browser/extension_host.h" |
| #include "extensions/browser/extension_prefs.h" |
| #include "extensions/browser/extension_registry.h" |
| #include "extensions/common/constants.h" |
| #include "ui/base/cocoa/focus_window_set.h" |
| |
| using extensions::AppWindow; |
| using extensions::AppWindowRegistry; |
| using extensions::Extension; |
| using extensions::ExtensionRegistry; |
| using extensions::NativeAppWindow; |
| |
| namespace { |
| |
| typedef AppWindowRegistry::AppWindowList AppWindowList; |
| |
| // Create a SHA1 hex digest of a certificate, for use specifically in building |
| // a code signing requirement string in IsAcceptablyCodeSigned(), below. |
| std::string CertificateSHA1Digest(SecCertificateRef certificate) { |
| base::ScopedCFTypeRef<CFDataRef> certificate_data( |
| SecCertificateCopyData(certificate)); |
| char hash[base::kSHA1Length]; |
| base::SHA1HashBytes(CFDataGetBytePtr(certificate_data), |
| CFDataGetLength(certificate_data), |
| reinterpret_cast<unsigned char*>(hash)); |
| return base::HexEncode(hash, base::kSHA1Length); |
| } |
| |
| // Returns whether |pid|'s code signature is trusted: |
| // - True if the caller is unsigned (there's nothing to verify). |
| // - True if |pid| satisfies the caller's designated requirement. |
| // - False otherwise (|pid| does not satisfy caller's designated requirement). |
| bool IsAcceptablyCodeSignedInternal(pid_t pid) { |
| base::ScopedCFTypeRef<SecCodeRef> own_code; |
| base::ScopedCFTypeRef<CFDictionaryRef> own_signing_info; |
| |
| // Fetch the calling process's designated requirement. The shim can only be |
| // validated if the caller has one (i.e. if the caller is code signed). |
| // |
| // Note: Don't validate |own_code|: updates modify the browser's bundle and |
| // invalidate its code signature while an update is pending. This can be |
| // revisited after https://crbug.com/496298 is resolved. |
| if (SecCodeCopySelf(kSecCSDefaultFlags, own_code.InitializeInto()) != |
| errSecSuccess || |
| SecCodeCopySigningInformation(own_code.get(), kSecCSSigningInformation, |
| own_signing_info.InitializeInto()) != |
| errSecSuccess) { |
| LOG(ERROR) << "Failed to get own code signing information."; |
| return false; |
| } |
| |
| auto* own_certificates = base::mac::GetValueFromDictionary<CFArrayRef>( |
| own_signing_info, kSecCodeInfoCertificates); |
| if (!own_certificates || CFArrayGetCount(own_certificates) < 1) { |
| return true; |
| } |
| |
| auto* own_certificate = base::mac::CFCast<SecCertificateRef>( |
| CFArrayGetValueAtIndex(own_certificates, 0)); |
| auto own_certificate_hash = CertificateSHA1Digest(own_certificate); |
| |
| base::ScopedCFTypeRef<CFStringRef> shim_requirement_string( |
| CFStringCreateWithFormat( |
| kCFAllocatorDefault, nullptr, |
| CFSTR( |
| "identifier \"app_mode_loader\" and certificate leaf = H\"%s\""), |
| own_certificate_hash.c_str())); |
| |
| base::ScopedCFTypeRef<SecRequirementRef> shim_requirement; |
| if (SecRequirementCreateWithString( |
| shim_requirement_string, kSecCSDefaultFlags, |
| shim_requirement.InitializeInto()) != errSecSuccess) { |
| LOG(ERROR) |
| << "Failed to create a SecRequirementRef from the requirement string \"" |
| << shim_requirement_string << "\""; |
| return false; |
| } |
| |
| base::ScopedCFTypeRef<SecCodeRef> guest_code; |
| |
| base::ScopedCFTypeRef<CFNumberRef> pid_cf( |
| CFNumberCreate(kCFAllocatorDefault, kCFNumberIntType, &pid)); |
| const void* guest_attribute_keys[] = {kSecGuestAttributePid}; |
| const void* guest_attribute_values[] = {pid_cf}; |
| base::ScopedCFTypeRef<CFDictionaryRef> guest_attributes(CFDictionaryCreate( |
| nullptr, guest_attribute_keys, guest_attribute_values, |
| base::size(guest_attribute_keys), &kCFTypeDictionaryKeyCallBacks, |
| &kCFTypeDictionaryValueCallBacks)); |
| if (SecCodeCopyGuestWithAttributes(nullptr, guest_attributes, |
| kSecCSDefaultFlags, |
| guest_code.InitializeInto())) { |
| LOG(ERROR) << "Failed to create a SecCodeRef from the app shim's pid."; |
| return false; |
| } |
| |
| return SecCodeCheckValidity(guest_code, kSecCSDefaultFlags, |
| shim_requirement) == errSecSuccess; |
| } |
| |
| // Attempts to launch a packaged app, prompting the user to enable it if |
| // necessary. The prompt is shown in its own window. |
| // This class manages its own lifetime. |
| class EnableViaPrompt : public ExtensionEnableFlowDelegate { |
| public: |
| EnableViaPrompt(Profile* profile, |
| const std::string& extension_id, |
| base::OnceCallback<void()> callback) |
| : profile_(profile), |
| extension_id_(extension_id), |
| callback_(std::move(callback)) {} |
| |
| void Run() { |
| flow_.reset(new ExtensionEnableFlow(profile_, extension_id_, this)); |
| flow_->Start(); |
| } |
| |
| private: |
| ~EnableViaPrompt() override { std::move(callback_).Run(); } |
| |
| // ExtensionEnableFlowDelegate overrides. |
| void ExtensionEnableFlowFinished() override { |
| delete this; |
| } |
| void ExtensionEnableFlowAborted(bool user_initiated) override { |
| delete this; |
| } |
| |
| Profile* profile_; |
| std::string extension_id_; |
| base::OnceCallback<void()> callback_; |
| std::unique_ptr<ExtensionEnableFlow> flow_; |
| |
| DISALLOW_COPY_AND_ASSIGN(EnableViaPrompt); |
| }; |
| |
| bool UsesRemoteViews(const extensions::Extension* extension) { |
| return extension->is_hosted_app() && extension->from_bookmark(); |
| } |
| |
| } // namespace |
| |
| namespace apps { |
| |
| // The state for an individual (app, Profile) pair. This includes the |
| // AppShimHost. |
| struct ExtensionAppShimHandler::ProfileState { |
| ProfileState(ExtensionAppShimHandler::AppState* in_app_state, |
| std::unique_ptr<AppShimHost> in_single_profile_host); |
| ~ProfileState() = default; |
| |
| AppShimHost* GetHost() const; |
| |
| // Weak, owns |this|. |
| ExtensionAppShimHandler::AppState* const app_state; |
| |
| // The AppShimHost for apps that are not multi-profile. |
| const std::unique_ptr<AppShimHost> single_profile_host; |
| |
| // All browser instances for this (app, Profile) pair. |
| std::set<Browser*> browsers; |
| |
| private: |
| DISALLOW_COPY_AND_ASSIGN(ProfileState); |
| }; |
| |
| // The state for an individual app. This includes the state for all |
| // profiles that are using the app. |
| struct ExtensionAppShimHandler::AppState { |
| AppState(std::unique_ptr<AppShimHost> in_multi_profile_host) |
| : multi_profile_host(std::move(in_multi_profile_host)) {} |
| ~AppState() = default; |
| |
| bool IsMultiProfile() const; |
| |
| // Multi-profile apps share the same shim process across multiple profiles. |
| const std::unique_ptr<AppShimHost> multi_profile_host; |
| |
| std::map<Profile*, std::unique_ptr<ProfileState>> profiles; |
| |
| private: |
| DISALLOW_COPY_AND_ASSIGN(AppState); |
| }; |
| |
| ExtensionAppShimHandler::ProfileState::ProfileState( |
| ExtensionAppShimHandler::AppState* in_app_state, |
| std::unique_ptr<AppShimHost> in_single_profile_host) |
| : app_state(in_app_state), |
| single_profile_host(std::move(in_single_profile_host)) { |
| // Assert that the ProfileState and AppState agree about whether or not this |
| // is a multi-profile shim. |
| DCHECK_NE(!!single_profile_host, !!app_state->multi_profile_host); |
| } |
| |
| AppShimHost* ExtensionAppShimHandler::ProfileState::GetHost() const { |
| if (app_state->multi_profile_host) |
| return app_state->multi_profile_host.get(); |
| return single_profile_host.get(); |
| } |
| |
| bool ExtensionAppShimHandler::AppState::IsMultiProfile() const { |
| return multi_profile_host.get(); |
| } |
| |
| std::unique_ptr<AvatarMenu> ExtensionAppShimHandler::Delegate::CreateAvatarMenu( |
| AvatarMenuObserver* observer) { |
| ProfileManager* profile_manager = g_browser_process->profile_manager(); |
| return std::make_unique<AvatarMenu>( |
| &profile_manager->GetProfileAttributesStorage(), observer, nullptr); |
| } |
| |
| Profile* ExtensionAppShimHandler::Delegate::ProfileForPath( |
| const base::FilePath& full_path) { |
| ProfileManager* profile_manager = g_browser_process->profile_manager(); |
| Profile* profile = profile_manager->GetProfileByPath(full_path); |
| |
| // Use IsValidProfile to check if the profile has been created. |
| return profile && profile_manager->IsValidProfile(profile) ? profile : NULL; |
| } |
| |
| void ExtensionAppShimHandler::Delegate::LoadProfileAsync( |
| const base::FilePath& full_path, |
| base::OnceCallback<void(Profile*)> callback) { |
| ProfileManager* profile_manager = g_browser_process->profile_manager(); |
| profile_manager->LoadProfileByPath(full_path, false, std::move(callback)); |
| } |
| |
| bool ExtensionAppShimHandler::Delegate::IsProfileLockedForPath( |
| const base::FilePath& full_path) { |
| return profiles::IsProfileLocked(full_path); |
| } |
| |
| AppWindowList ExtensionAppShimHandler::Delegate::GetWindows( |
| Profile* profile, |
| const std::string& extension_id) { |
| return AppWindowRegistry::Get(profile)->GetAppWindowsForApp(extension_id); |
| } |
| |
| const Extension* ExtensionAppShimHandler::Delegate::MaybeGetAppExtension( |
| content::BrowserContext* context, |
| const std::string& extension_id) { |
| return ExtensionAppShimHandler::MaybeGetAppExtension(context, extension_id); |
| } |
| |
| bool ExtensionAppShimHandler::Delegate::AllowShimToConnect( |
| Profile* profile, |
| const extensions::Extension* extension) { |
| if (!profile || !extension) |
| return false; |
| if (extension->is_hosted_app() && |
| extensions::GetLaunchType(extensions::ExtensionPrefs::Get(profile), |
| extension) == extensions::LAUNCH_TYPE_REGULAR) { |
| return false; |
| } |
| // Note that this will return true for non-hosted apps (e.g, Chrome Remote |
| // Desktop). |
| return true; |
| } |
| |
| std::unique_ptr<AppShimHost> ExtensionAppShimHandler::Delegate::CreateHost( |
| AppShimHost::Client* client, |
| const base::FilePath& profile_path, |
| const std::string& app_id, |
| bool use_remote_cocoa) { |
| return std::make_unique<AppShimHost>(client, app_id, profile_path, |
| use_remote_cocoa); |
| } |
| |
| void ExtensionAppShimHandler::Delegate::EnableExtension( |
| Profile* profile, |
| const std::string& extension_id, |
| base::OnceCallback<void()> callback) { |
| (new EnableViaPrompt(profile, extension_id, std::move(callback)))->Run(); |
| } |
| |
| void ExtensionAppShimHandler::Delegate::LaunchApp( |
| Profile* profile, |
| const Extension* extension, |
| const std::vector<base::FilePath>& files) { |
| extensions::RecordAppLaunchType( |
| extension_misc::APP_LAUNCH_CMD_LINE_APP, extension->GetType()); |
| if (extension->is_hosted_app()) { |
| apps::LaunchService::Get(profile)->OpenApplication( |
| CreateAppLaunchParamsUserContainer( |
| profile, extension, WindowOpenDisposition::NEW_FOREGROUND_TAB, |
| apps::mojom::AppLaunchSource::kSourceCommandLine)); |
| return; |
| } |
| if (files.empty()) { |
| apps::LaunchPlatformApp(profile, extension, |
| extensions::AppLaunchSource::kSourceCommandLine); |
| } else { |
| for (std::vector<base::FilePath>::const_iterator it = files.begin(); |
| it != files.end(); ++it) { |
| apps::LaunchPlatformAppWithPath(profile, extension, *it); |
| } |
| } |
| } |
| |
| void ExtensionAppShimHandler::Delegate::LaunchShim( |
| Profile* profile, |
| const Extension* extension, |
| bool recreate_shims, |
| apps::ShimLaunchedCallback launched_callback, |
| apps::ShimTerminatedCallback terminated_callback) { |
| // Only force recreation of shims when RemoteViews is in use (that is, for |
| // PWAs). Otherwise, shims may be created unexpectedly. |
| // https://crbug.com/941160 |
| if (recreate_shims && UsesRemoteViews(extension)) { |
| // Load the resources needed to build the app shim (icons, etc), and then |
| // recreate the shim and launch it. |
| web_app::GetShortcutInfoForApp( |
| extension, profile, |
| base::BindOnce( |
| &web_app::LaunchShim, |
| web_app::LaunchShimUpdateBehavior::RECREATE_UNCONDITIONALLY, |
| std::move(launched_callback), std::move(terminated_callback))); |
| } else { |
| web_app::LaunchShim( |
| web_app::LaunchShimUpdateBehavior::DO_NOT_RECREATE, |
| std::move(launched_callback), std::move(terminated_callback), |
| web_app::ShortcutInfoForExtensionAndProfile(extension, profile)); |
| } |
| } |
| |
| void ExtensionAppShimHandler::Delegate::LaunchUserManager() { |
| UserManager::Show(base::FilePath(), |
| profiles::USER_MANAGER_SELECT_PROFILE_NO_ACTION); |
| } |
| |
| void ExtensionAppShimHandler::Delegate::MaybeTerminate() { |
| apps::AppShimTerminationManager::Get()->MaybeTerminate(); |
| } |
| |
| ExtensionAppShimHandler::ExtensionAppShimHandler() |
| : delegate_(new Delegate), |
| weak_factory_(this) { |
| // This is instantiated in BrowserProcessImpl::PreMainMessageLoopRun with |
| // AppShimListener. Since PROFILE_CREATED is not fired until |
| // ProfileManager::GetLastUsedProfile/GetLastOpenedProfiles, this should catch |
| // notifications for all profiles. |
| registrar_.Add(this, chrome::NOTIFICATION_PROFILE_CREATED, |
| content::NotificationService::AllBrowserContextsAndSources()); |
| registrar_.Add(this, chrome::NOTIFICATION_PROFILE_DESTROYED, |
| content::NotificationService::AllBrowserContextsAndSources()); |
| BrowserList::AddObserver(this); |
| } |
| |
| ExtensionAppShimHandler::~ExtensionAppShimHandler() { |
| BrowserList::RemoveObserver(this); |
| } |
| |
| AppShimHost* ExtensionAppShimHandler::FindHost(Profile* profile, |
| const std::string& app_id) { |
| auto found_app = apps_.find(app_id); |
| if (found_app == apps_.end()) |
| return nullptr; |
| AppState* app_state = found_app->second.get(); |
| auto found_profile = app_state->profiles.find(profile); |
| if (found_profile == app_state->profiles.end()) |
| return nullptr; |
| ProfileState* profile_state = found_profile->second.get(); |
| return profile_state->GetHost(); |
| } |
| |
| AppShimHost* ExtensionAppShimHandler::GetHostForBrowser(Browser* browser) { |
| Profile* profile = Profile::FromBrowserContext(browser->profile()); |
| const Extension* extension = |
| apps::ExtensionAppShimHandler::MaybeGetAppForBrowser(browser); |
| if (!extension || !extension->is_hosted_app()) |
| return nullptr; |
| ProfileState* profile_state = GetOrCreateProfileState(profile, extension); |
| if (!profile_state) |
| return nullptr; |
| return profile_state->GetHost(); |
| } |
| |
| // static |
| const Extension* ExtensionAppShimHandler::MaybeGetAppExtension( |
| content::BrowserContext* context, |
| const std::string& extension_id) { |
| if (!context) |
| return NULL; |
| |
| ExtensionRegistry* registry = ExtensionRegistry::Get(context); |
| const Extension* extension = |
| registry->GetExtensionById(extension_id, ExtensionRegistry::ENABLED); |
| return extension && |
| (extension->is_platform_app() || extension->is_hosted_app()) |
| ? extension |
| : NULL; |
| } |
| |
| // static |
| const Extension* ExtensionAppShimHandler::MaybeGetAppForBrowser( |
| Browser* browser) { |
| if (!browser || !browser->deprecated_is_app()) |
| return NULL; |
| |
| return MaybeGetAppExtension( |
| browser->profile(), |
| web_app::GetAppIdFromApplicationName(browser->app_name())); |
| } |
| |
| void ExtensionAppShimHandler::RequestUserAttentionForWindow( |
| AppWindow* app_window, |
| AppShimAttentionType attention_type) { |
| Profile* profile = Profile::FromBrowserContext(app_window->browser_context()); |
| AppShimHost* host = FindHost(profile, app_window->extension_id()); |
| if (host && !host->UsesRemoteViews()) |
| host->GetAppShim()->SetUserAttention(attention_type); |
| } |
| |
| void ExtensionAppShimHandler::OnShimLaunchRequested( |
| AppShimHost* host, |
| bool recreate_shims, |
| apps::ShimLaunchedCallback launched_callback, |
| apps::ShimTerminatedCallback terminated_callback) { |
| // A shim can only be launched through an active profile, so find a profile |
| // through which to do the launch. For multi-profile apps, select one |
| // arbitrarily. For non-multi-profile apps, select the specified profile. |
| Profile* profile = nullptr; |
| { |
| auto found_app = apps_.find(host->GetAppId()); |
| DCHECK(found_app != apps_.end()); |
| AppState* app_state = found_app->second.get(); |
| if (app_state->IsMultiProfile()) { |
| DCHECK(!app_state->profiles.empty()); |
| profile = app_state->profiles.begin()->first; |
| } else { |
| profile = delegate_->ProfileForPath(host->GetProfilePath()); |
| } |
| } |
| |
| const Extension* extension = |
| delegate_->MaybeGetAppExtension(profile, host->GetAppId()); |
| if (!profile || !extension) { |
| // If the profile or extension has been unloaded, indicate that the launch |
| // failed. This will close the AppShimHost eventually, if appropriate. |
| std::move(launched_callback).Run(base::Process()); |
| return; |
| } |
| delegate_->LaunchShim(profile, extension, recreate_shims, |
| std::move(launched_callback), |
| std::move(terminated_callback)); |
| } |
| |
| void ExtensionAppShimHandler::OnShimProcessConnected( |
| std::unique_ptr<AppShimHostBootstrap> bootstrap) { |
| const std::string& app_id = bootstrap->GetAppId(); |
| DCHECK(crx_file::id_util::IdIsValid(app_id)); |
| |
| // TODO(https://crbug.com/982024): If no profile path is specified by the |
| // bootstrap, then load an appropriate profile. |
| base::FilePath profile_path = bootstrap->GetProfilePath(); |
| |
| if (delegate_->IsProfileLockedForPath(profile_path)) { |
| LOG(WARNING) << "Requested profile is locked. Showing User Manager."; |
| bootstrap->OnFailedToConnectToHost(APP_SHIM_LAUNCH_PROFILE_LOCKED); |
| delegate_->LaunchUserManager(); |
| return; |
| } |
| |
| LoadProfileAndApp( |
| profile_path, app_id, |
| base::BindOnce( |
| &ExtensionAppShimHandler::OnShimProcessConnectedAndAppLoaded, |
| weak_factory_.GetWeakPtr(), std::move(bootstrap))); |
| } |
| |
| // static |
| ExtensionAppShimHandler* ExtensionAppShimHandler::Get() { |
| // This will only return nullptr in certain unit tests that do not initialize |
| // the app shim host manager. |
| auto* shim_host_manager = |
| g_browser_process->platform_part()->app_shim_listener(); |
| if (shim_host_manager) |
| return shim_host_manager->extension_app_shim_handler(); |
| return nullptr; |
| } |
| |
| void ExtensionAppShimHandler::CloseShimsForProfile(Profile* profile) { |
| for (auto iter_app = apps_.begin(); iter_app != apps_.end();) { |
| AppState* app_state = iter_app->second.get(); |
| app_state->profiles.erase(profile); |
| if (app_state->profiles.empty()) |
| iter_app = apps_.erase(iter_app); |
| else |
| ++iter_app; |
| } |
| } |
| |
| void ExtensionAppShimHandler::CloseShimForApp(Profile* profile, |
| const std::string& app_id) { |
| auto found_app = apps_.find(app_id); |
| if (found_app == apps_.end()) |
| return; |
| AppState* app_state = found_app->second.get(); |
| app_state->profiles.erase(profile); |
| if (app_state->profiles.empty()) |
| apps_.erase(found_app); |
| } |
| |
| void ExtensionAppShimHandler::LoadProfileAndApp( |
| const base::FilePath& profile_path, |
| const std::string& app_id, |
| LoadProfileAppCallback callback) { |
| Profile* profile = delegate_->ProfileForPath(profile_path); |
| if (profile) { |
| OnProfileLoaded(profile_path, app_id, std::move(callback), profile); |
| } else { |
| delegate_->LoadProfileAsync( |
| profile_path, base::BindOnce(&ExtensionAppShimHandler::OnProfileLoaded, |
| weak_factory_.GetWeakPtr(), profile_path, |
| app_id, std::move(callback))); |
| } |
| } |
| |
| void ExtensionAppShimHandler::OnProfileLoaded( |
| const base::FilePath& profile_path, |
| const std::string& app_id, |
| LoadProfileAppCallback callback, |
| Profile* profile) { |
| DCHECK_CURRENTLY_ON(content::BrowserThread::UI); |
| if (!profile) { |
| // User may have deleted the profile this shim was originally created for. |
| // TODO(jackhou): Add some UI for this case and remove the LOG. |
| LOG(ERROR) << "Requested directory is not a known profile '" |
| << profile_path.value() << "'."; |
| std::move(callback).Run(profile, nullptr); |
| return; |
| } |
| |
| // TODO(jeremya): Handle the case that launching the app fails. Probably we |
| // need to watch for 'app successfully launched' or at least 'background page |
| // exists/was created' and time out with failure if we don't see that sign of |
| // life within a certain window. |
| const Extension* extension = delegate_->MaybeGetAppExtension(profile, app_id); |
| if (extension) { |
| std::move(callback).Run(profile, extension); |
| } else { |
| delegate_->EnableExtension( |
| profile, app_id, |
| base::BindOnce(&ExtensionAppShimHandler::OnAppEnabled, |
| weak_factory_.GetWeakPtr(), profile_path, app_id, |
| std::move(callback))); |
| } |
| } |
| |
| void ExtensionAppShimHandler::OnAppEnabled(const base::FilePath& profile_path, |
| const std::string& app_id, |
| LoadProfileAppCallback callback) { |
| // If the profile doesn't exist, it may have been deleted during the enable |
| // prompt. |
| Profile* profile = delegate_->ProfileForPath(profile_path); |
| const Extension* extension = |
| profile ? delegate_->MaybeGetAppExtension(profile, app_id) : nullptr; |
| std::move(callback).Run(profile, extension); |
| } |
| |
| void ExtensionAppShimHandler::OnShimProcessConnectedAndAppLoaded( |
| std::unique_ptr<AppShimHostBootstrap> bootstrap, |
| Profile* profile, |
| const extensions::Extension* extension) { |
| DCHECK_CURRENTLY_ON(content::BrowserThread::UI); |
| // Early-out if the profile or extension failed to load. |
| if (!profile) { |
| bootstrap->OnFailedToConnectToHost(APP_SHIM_LAUNCH_PROFILE_NOT_FOUND); |
| return; |
| } |
| if (!extension) { |
| bootstrap->OnFailedToConnectToHost(APP_SHIM_LAUNCH_APP_NOT_FOUND); |
| return; |
| } |
| AppShimLaunchType launch_type = bootstrap->GetLaunchType(); |
| std::vector<base::FilePath> files = bootstrap->GetLaunchFiles(); |
| |
| ProfileState* profile_state = |
| delegate_->AllowShimToConnect(profile, extension) |
| ? GetOrCreateProfileState(profile, extension) |
| : nullptr; |
| if (profile_state) { |
| DCHECK_EQ(profile_state->app_state->IsMultiProfile(), |
| bootstrap->IsMultiProfile()); |
| AppShimHost* host = profile_state->GetHost(); |
| if (host->HasBootstrapConnected()) { |
| // If another app shim process has already connected to this (profile, |
| // app_id) pair, then focus the windows for the existing process, and |
| // close the new process. |
| OnShimFocus(host, |
| launch_type == APP_SHIM_LAUNCH_NORMAL ? APP_SHIM_FOCUS_REOPEN |
| : APP_SHIM_FOCUS_NORMAL, |
| files); |
| bootstrap->OnFailedToConnectToHost(APP_SHIM_LAUNCH_DUPLICATE_HOST); |
| return; |
| } |
| if (IsAcceptablyCodeSigned(bootstrap->GetAppShimPid())) { |
| host->OnBootstrapConnected(std::move(bootstrap)); |
| } else { |
| // If the connecting shim process doesn't have an acceptable code |
| // signature, reject the connection and re-launch the shim. The internal |
| // re-launch will likely fail, whereupon the shim will be recreated. |
| LOG(ERROR) << "The attaching app shim's code signature is invalid."; |
| bootstrap->OnFailedToConnectToHost(APP_SHIM_LAUNCH_FAILED_VALIDATION); |
| host->LaunchShim(); |
| } |
| } else { |
| // If it's an app that has a shim to launch it but shouldn't use a host |
| // (e.g, a hosted app that opens in a tab), terminate the shim, but still |
| // launch the app (that is, open the relevant browser tabs). |
| bootstrap->OnFailedToConnectToHost(APP_SHIM_LAUNCH_DUPLICATE_HOST); |
| } |
| |
| // If this is not a register-only launch, then launch the app (that is, open |
| // a browser window for it). |
| if (launch_type == APP_SHIM_LAUNCH_NORMAL) |
| delegate_->LaunchApp(profile, extension, files); |
| } |
| |
| bool ExtensionAppShimHandler::IsAcceptablyCodeSigned(pid_t pid) const { |
| return IsAcceptablyCodeSignedInternal(pid); |
| } |
| |
| void ExtensionAppShimHandler::OnShimProcessDisconnected(AppShimHost* host) { |
| const std::string app_id = host->GetAppId(); |
| |
| auto found_app = apps_.find(app_id); |
| DCHECK(found_app != apps_.end()); |
| AppState* app_state = found_app->second.get(); |
| DCHECK(app_state); |
| |
| // For multi-profile apps, just delete the AppState, which will take down |
| // |host| and all profiles' state. |
| if (app_state->IsMultiProfile()) { |
| DCHECK_EQ(host, app_state->multi_profile_host.get()); |
| apps_.erase(found_app); |
| return; |
| } |
| |
| Profile* profile = delegate_->ProfileForPath(host->GetProfilePath()); |
| |
| // For non-RemoteCocoa apps, close all of the windows only if the the shim |
| // process has successfully connected (if it never connected, then let the |
| // app run as normal). |
| bool close_windows = |
| !host->UsesRemoteViews() && host->HasBootstrapConnected(); |
| |
| // Erase the ProfileState, which will delete |host|. |
| auto found_profile = app_state->profiles.find(profile); |
| DCHECK(found_profile != app_state->profiles.end()); |
| ProfileState* profile_state = found_profile->second.get(); |
| DCHECK_EQ(host, profile_state->single_profile_host.get()); |
| app_state->profiles.erase(found_profile); |
| host = nullptr; |
| |
| // Erase |app_state| if this was the last profile. |
| if (app_state->profiles.empty()) |
| apps_.erase(found_app); |
| |
| // Close app windows if we decided to do so above. |
| if (close_windows) { |
| AppWindowList windows = delegate_->GetWindows(profile, app_id); |
| for (auto it = windows.begin(); it != windows.end(); ++it) { |
| if (*it) |
| (*it)->GetBaseWindow()->Close(); |
| } |
| } |
| } |
| |
| void ExtensionAppShimHandler::OnShimFocus( |
| AppShimHost* host, |
| AppShimFocusType focus_type, |
| const std::vector<base::FilePath>& files) { |
| // This path is only for legacy apps (which are perforce single-profile). |
| if (host->UsesRemoteViews()) |
| return; |
| |
| Profile* profile = delegate_->ProfileForPath(host->GetProfilePath()); |
| const Extension* extension = |
| delegate_->MaybeGetAppExtension(profile, host->GetAppId()); |
| if (!extension) { |
| CloseShimForApp(profile, host->GetAppId()); |
| return; |
| } |
| |
| AppWindowList windows = delegate_->GetWindows(profile, host->GetAppId()); |
| for (auto it = windows.rbegin(); it != windows.rend(); ++it) { |
| if (*it) |
| (*it)->GetBaseWindow()->Show(); |
| } |
| |
| if (focus_type == APP_SHIM_FOCUS_NORMAL || |
| (focus_type == APP_SHIM_FOCUS_REOPEN && !windows.empty())) { |
| return; |
| } |
| delegate_->LaunchApp(profile, extension, files); |
| } |
| |
| void ExtensionAppShimHandler::OnShimSelectedProfile( |
| AppShimHost* host, |
| const base::FilePath& profile_path) { |
| LoadProfileAndApp( |
| profile_path, host->GetAppId(), |
| base::BindOnce( |
| &ExtensionAppShimHandler::OnShimSelectedProfileAndAppLoaded, |
| weak_factory_.GetWeakPtr())); |
| } |
| |
| void ExtensionAppShimHandler::OnShimSelectedProfileAndAppLoaded( |
| Profile* profile, |
| const extensions::Extension* extension) { |
| if (!extension) |
| return; |
| |
| auto found_app = apps_.find(extension->id()); |
| if (found_app == apps_.end()) |
| return; |
| AppState* app_state = found_app->second.get(); |
| auto found_profile = app_state->profiles.find(profile); |
| if (found_profile != app_state->profiles.end()) { |
| // If this profile is currently open for the app, focus its windows. |
| ProfileState* profile_state = found_profile->second.get(); |
| for (auto* browser : profile_state->browsers) { |
| if (auto* window = browser->window()) |
| window->Show(); |
| } |
| } else { |
| // Otherwise, launch the app for this profile (which will open a new |
| // window). |
| delegate_->LaunchApp(profile, extension, std::vector<base::FilePath>()); |
| } |
| } |
| |
| void ExtensionAppShimHandler::set_delegate(Delegate* delegate) { |
| delegate_.reset(delegate); |
| } |
| |
| void ExtensionAppShimHandler::Observe( |
| int type, |
| const content::NotificationSource& source, |
| const content::NotificationDetails& details) { |
| switch (type) { |
| case chrome::NOTIFICATION_PROFILE_CREATED: { |
| Profile* profile = content::Source<Profile>(source).ptr(); |
| if (profile->IsOffTheRecord()) |
| return; |
| |
| AppLifetimeMonitorFactory::GetForBrowserContext(profile)->AddObserver( |
| this); |
| break; |
| } |
| case chrome::NOTIFICATION_PROFILE_DESTROYED: { |
| Profile* profile = content::Source<Profile>(source).ptr(); |
| if (profile->IsOffTheRecord()) |
| return; |
| |
| AppLifetimeMonitorFactory::GetForBrowserContext(profile)->RemoveObserver( |
| this); |
| CloseShimsForProfile(profile); |
| break; |
| } |
| default: { |
| NOTREACHED(); // Unexpected notification. |
| break; |
| } |
| } |
| } |
| |
| void ExtensionAppShimHandler::OnAppStart(content::BrowserContext* context, |
| const std::string& app_id) {} |
| |
| void ExtensionAppShimHandler::OnAppActivated(content::BrowserContext* context, |
| const std::string& app_id) { |
| Profile* profile = Profile::FromBrowserContext(context); |
| const Extension* extension = delegate_->MaybeGetAppExtension(context, app_id); |
| if (!extension) |
| return; |
| if (auto* profile_state = GetOrCreateProfileState(profile, extension)) |
| profile_state->GetHost()->LaunchShim(); |
| } |
| |
| void ExtensionAppShimHandler::OnAppDeactivated(content::BrowserContext* context, |
| const std::string& app_id) { |
| CloseShimForApp(static_cast<Profile*>(context), app_id); |
| if (apps_.empty()) |
| delegate_->MaybeTerminate(); |
| } |
| |
| void ExtensionAppShimHandler::OnAppStop(content::BrowserContext* context, |
| const std::string& app_id) {} |
| |
| void ExtensionAppShimHandler::OnBrowserAdded(Browser* browser) { |
| // Don't keep track of browsers that are not associated with an app. |
| const Extension* extension = MaybeGetAppForBrowser(browser); |
| if (!extension) |
| return; |
| if (auto* profile_state = |
| GetOrCreateProfileState(browser->profile(), extension)) { |
| profile_state->browsers.insert(browser); |
| if (profile_state->browsers.size() == 1) |
| OnAppActivated(browser->profile(), extension->id()); |
| } |
| } |
| |
| void ExtensionAppShimHandler::OnBrowserRemoved(Browser* browser) { |
| // Note that |browser| may no longer have an extension, if it was unloaded |
| // before |browser| was closed. Search for |browser| in all |apps_|. |
| for (auto iter_app = apps_.begin(); iter_app != apps_.end(); ++iter_app) { |
| AppState* app_state = iter_app->second.get(); |
| const std::string& app_id = iter_app->first; |
| for (auto iter_profile = app_state->profiles.begin(); |
| iter_profile != app_state->profiles.end(); ++iter_profile) { |
| ProfileState* profile_state = iter_profile->second.get(); |
| auto found = profile_state->browsers.find(browser); |
| if (found != profile_state->browsers.end()) { |
| // If we have no browser windows open after erasing this window, then |
| // close the ProfileState (and potentially the shim as well). |
| profile_state->browsers.erase(found); |
| if (profile_state->browsers.empty()) |
| OnAppDeactivated(browser->profile(), app_id); |
| return; |
| } |
| } |
| } |
| } |
| |
| void ExtensionAppShimHandler::OnBrowserSetLastActive(Browser* browser) { |
| // Defer creation of the avatar menu until the active browser window changes, |
| // to allow tests to override |delegate_|. |
| if (!avatar_menu_) { |
| avatar_menu_ = delegate_->CreateAvatarMenu(this); |
| return; |
| } |
| if (!avatar_menu_) |
| return; |
| avatar_menu_->ActiveBrowserChanged(browser); |
| avatar_menu_->RebuildMenu(); |
| for (auto& iter_app : apps_) { |
| AppState* app_state = iter_app.second.get(); |
| if (app_state->IsMultiProfile()) |
| UpdateHostProfileMenu(app_state->multi_profile_host.get()); |
| } |
| } |
| |
| void ExtensionAppShimHandler::OnAvatarMenuChanged(AvatarMenu* menu) { |
| if (!avatar_menu_) |
| return; |
| for (auto& iter_app : apps_) { |
| AppState* app_state = iter_app.second.get(); |
| if (app_state->IsMultiProfile()) |
| UpdateHostProfileMenu(app_state->multi_profile_host.get()); |
| } |
| } |
| |
| void ExtensionAppShimHandler::UpdateHostProfileMenu(AppShimHost* host) { |
| std::vector<chrome::mojom::ProfileMenuItemPtr> mojo_items; |
| for (size_t i = 0; i < avatar_menu_->GetNumberOfItems(); ++i) { |
| // TODO(https://crbug.com/982024): Skip profiles for which this extension |
| // is not installed. |
| auto mojo_item = chrome::mojom::ProfileMenuItem::New(); |
| const AvatarMenu::Item& item = avatar_menu_->GetItemAt(i); |
| mojo_item->name = item.name; |
| mojo_item->menu_index = item.menu_index; |
| mojo_item->active = item.active; |
| mojo_item->profile_path = item.profile_path; |
| { |
| // Scale the icon as needed (see ProfileMenuController). |
| gfx::Image itemIcon; |
| AvatarMenu::GetImageForMenuButton(item.profile_path, &itemIcon); |
| static constexpr int kMenuAvatarIconSize = 38; |
| if (itemIcon.Width() > kMenuAvatarIconSize || |
| itemIcon.Height() > kMenuAvatarIconSize) { |
| itemIcon = profiles::GetSizedAvatarIcon(itemIcon, /*is_rectangle=*/true, |
| kMenuAvatarIconSize, |
| kMenuAvatarIconSize); |
| } |
| mojo_item->icon = *itemIcon.ToImageSkia(); |
| } |
| mojo_items.push_back(std::move(mojo_item)); |
| } |
| host->GetAppShim()->UpdateProfileMenu(std::move(mojo_items)); |
| } |
| |
| ExtensionAppShimHandler::ProfileState* |
| ExtensionAppShimHandler::GetOrCreateProfileState( |
| Profile* profile, |
| const extensions::Extension* extension) { |
| if (web_app::AppShimLaunchDisabled()) |
| return nullptr; |
| |
| const bool is_multi_profile = |
| base::FeatureList::IsEnabled(features::kAppShimMultiProfile) && |
| extension->from_bookmark(); |
| const base::FilePath profile_path = |
| is_multi_profile ? base::FilePath() : profile->GetPath(); |
| const std::string app_id = extension->id(); |
| const bool use_remote_cocoa = UsesRemoteViews(extension); |
| |
| auto found_app = apps_.find(extension->id()); |
| if (found_app == apps_.end()) { |
| std::unique_ptr<AppShimHost> multi_profile_host; |
| if (is_multi_profile) { |
| multi_profile_host = |
| delegate_->CreateHost(this, profile_path, app_id, use_remote_cocoa); |
| } |
| auto new_app_state = |
| std::make_unique<AppState>(std::move(multi_profile_host)); |
| found_app = |
| apps_.insert(std::make_pair(app_id, std::move(new_app_state))).first; |
| } |
| AppState* app_state = found_app->second.get(); |
| |
| auto found_profile = app_state->profiles.find(profile); |
| if (found_profile == app_state->profiles.end()) { |
| std::unique_ptr<AppShimHost> single_profile_host; |
| if (!is_multi_profile) { |
| single_profile_host = |
| delegate_->CreateHost(this, profile_path, app_id, use_remote_cocoa); |
| } |
| auto new_profile_state = std::make_unique<ProfileState>( |
| app_state, std::move(single_profile_host)); |
| found_profile = |
| app_state->profiles |
| .insert(std::make_pair(profile, std::move(new_profile_state))) |
| .first; |
| } |
| return found_profile->second.get(); |
| } |
| |
| } // namespace apps |