session_manager is responsible for managing the lifecycle of the Chrome process. It confusingly lives in the
login_manager directory and is installed by the chromeos-login package.
session_manager communicates with other processes using D-Bus. It owns the service name
org.chromium.SessionManager at service path
/org/chromium/SessionManager and exports an interface named
This document contains an overview of what
session_manager does. See the docs directory for more information.
session_manager constructs a command line for running Chrome and fork-execs it. The command line is built by
libchromeos-ui‘s ChromiumCommandBuilder class. The command line’s contents are dependent on the presence of various USE flags. The libchromeos-use-flags package lists a number of USE flags in its
IUSE variable; at build-time, it writes all of the set flags to
session_manager then reads this file at startup. (Generating
ui_use_flags.txt in a tiny ancillary package rather than in
chromeos-login avoids the need to build a different copy of the
chromeos-login package for every board.)
Developers should take note of
/etc/chrome_dev.conf, a configuration file that may be modified on-device to add or remove flags from Chrome's command line. The file contains documentation about its format.
After Chrome has displayed its login prompt, it calls
EmitLoginPromptVisible D-Bus method.
session_manager writes a
login-prompt-visible bootstat event, emits a
LoginPromptVisible D-Bus signal on its interface, and makes an asynchronous D-Bus call to Upstart to tell it to emit a
login-prompt-visible event; this latter event is used to trigger other jobs.
When the user successfully logs in within Chrome, Chrome calls
StartSession D-Bus method.
session_manager makes an asynchronous D-Bus call to Upstart’s
StartUserSession method and emits a
SessionStateChanged D-Bus signal on its own interface.
SessionStateChanged signals are emitted if additional users are added to the session.
Other processes on the system may decide to lock the screen after the user has logged in:
To do this, these processes call
LockScreen D-Bus method.
session_manager records the locked state internally and calls Chrome’s
LockScreen D-Bus method. Once Chrome has successfully displayed the lock screen, it calls
HandleLockScreenShown D-Bus method.
session_manager then emits a
ScreenIsLocked D-Bus signal.
After the user successfully types their password to unlock the screen, Chrome calls
HandleLockScreenDismissed D-Bus method.
session_manager updates its internal state to record that the screen is no longer locked and emits a
ScreenIsUnlocked D-Bus signal.
When the user signs out, Chrome calls
StopSession D-Bus method.
SIGTERM to the browser process and waits (3 seconds, by default) for it to exit. If the process is still running, it sends
session_manager then exits.
At this point, the
ui-post-stop script runs. It writes a
ui-post-stop bootstat event and forcibly cleans up by sending
SIGKILL to any remaining
chronos processes and killing orphaned containers.
If Chrome exits unexpectedly,
session_manager typically restarts it (without the
--login-manager flag). If the screen was locked at the time of the crash,
session_manager instead ends the session to avoid exposing a logged-in desktop on a potentially-unattended system.
If Chrome crashes repeatedly,
ui-respawn reboots the system. If the crashes continue, it stops rebooting the system with the hope that it‘ll eventually be autoupdated to a new version that doesn’t crash. See the
ui-respawn script for specifics.