/* * Copyright (c) 2023-2024 Huawei Device Co., Ltd. * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. */ #include "disable_usb_plugin.h" #include "bool_serializer.h" #include "edm_constants.h" #include "edm_ipc_interface_code.h" #include "edm_utils.h" #include "usb_policy_utils.h" #include "plugin_manager.h" namespace OHOS { namespace EDM { const bool REGISTER_RESULT = PluginManager::GetInstance()->AddPlugin(DisableUsbPlugin::GetPlugin()); void DisableUsbPlugin::InitPlugin(std::shared_ptr> ptr) { EDMLOGI("DisableUsbPlugin InitPlugin..."); std::map perms; perms.insert(std::make_pair(EdmConstants::PERMISSION_TAG_VERSION_11, "ohos.permission.ENTERPRISE_MANAGE_USB")); perms.insert(std::make_pair(EdmConstants::PERMISSION_TAG_VERSION_12, "ohos.permission.ENTERPRISE_MANAGE_RESTRICTIONS")); IPlugin::PolicyPermissionConfig config = IPlugin::PolicyPermissionConfig(perms, IPlugin::PermissionType::SUPER_DEVICE_ADMIN, IPlugin::ApiType::PUBLIC); ptr->InitAttribute(EdmInterfaceCode::DISABLE_USB, "disable_usb", config, true); ptr->SetSerializer(BoolSerializer::GetInstance()); ptr->SetOnHandlePolicyListener(&DisableUsbPlugin::OnSetPolicy, FuncOperateType::SET); ptr->SetOnAdminRemoveListener(&DisableUsbPlugin::OnAdminRemove); } ErrCode DisableUsbPlugin::OnSetPolicy(bool &data) { EDMLOGI("DisableUsbPlugin OnSetPolicy...disable = %{public}d", data); if (data && HasConflictPolicy()) { return EdmReturnErrCode::CONFIGURATION_CONFLICT_FAILED; } return UsbPolicyUtils::SetUsbDisabled(data); } bool DisableUsbPlugin::HasConflictPolicy() { auto policyManager = IPolicyManager::GetInstance(); std::string allowUsbDevice; policyManager->GetPolicy("", "allowed_usb_devices", allowUsbDevice); if (!allowUsbDevice.empty()) { EDMLOGE("DisableUsbPlugin POLICY CONFLICT! allowedUsbDevice: %{public}s", allowUsbDevice.c_str()); return true; } std::string disallowUsbDevice; policyManager->GetPolicy("", "disallowed_usb_devices", disallowUsbDevice); if (!disallowUsbDevice.empty()) { EDMLOGE("DisableUsbPlugin POLICY CONFLICT! disallowUsbDevice: %{public}s", disallowUsbDevice.c_str()); return true; } std::string usbStoragePolicy; policyManager->GetPolicy("", "usb_read_only", usbStoragePolicy); if (usbStoragePolicy == std::to_string(EdmConstants::STORAGE_USB_POLICY_DISABLED) || usbStoragePolicy == std::to_string(EdmConstants::STORAGE_USB_POLICY_READ_ONLY)) { EDMLOGE("DisableUsbPlugin POLICY CONFLICT! usbStoragePolicy: %{public}s", usbStoragePolicy.c_str()); return true; } return false; } ErrCode DisableUsbPlugin::OnGetPolicy(std::string &policyData, MessageParcel &data, MessageParcel &reply, int32_t userId) { EDMLOGI("DisableUsbPlugin OnGetPolicy %{public}s...", policyData.c_str()); bool isDisabled = false; pluginInstance_->serializer_->Deserialize(policyData, isDisabled); reply.WriteInt32(ERR_OK); reply.WriteBool(isDisabled); return ERR_OK; } ErrCode DisableUsbPlugin::OnAdminRemove(const std::string &adminName, bool &data, int32_t userId) { EDMLOGI("DisableUsbPlugin OnAdminRemove %{public}d...", data); if (!data) { return ERR_OK; } return UsbPolicyUtils::SetUsbDisabled(!data); } } // namespace EDM } // namespace OHOS