1 // Copyright 2016 The Chromium OS Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file.
4 
5 #ifndef LIBBRILLO_INSTALL_ATTRIBUTES_LIBINSTALLATTRIBUTES_H_
6 #define LIBBRILLO_INSTALL_ATTRIBUTES_LIBINSTALLATTRIBUTES_H_
7 
8 #include <map>
9 #include <string>
10 
11 #include <base/files/file_path.h>
12 #include <brillo/brillo_export.h>
13 
14 // Simple caching reader for the (verified) install attributes, a TPM-backed
15 // write once read many store.  Install attributes may be written exactly once
16 // by a single, atomic write-and-lock operation encompassing zero or more
17 // attributes.  Once locked, install attributes cannot be re-written unless TPM
18 // is reset (eg. by powerwashing the device).
19 class BRILLO_EXPORT InstallAttributesReader {
20  public:
21   static const char kAttrMode[];
22 
23   // Constants for the possible device modes.
24   static const char kDeviceModeConsumer[];
25   static const char kDeviceModeEnterprise[];
26   static const char kDeviceModeEnterpriseAD[];
27   static const char kDeviceModeLegacyRetail[];
28   static const char kDeviceModeConsumerKiosk[];
29 
30   InstallAttributesReader();
31   virtual ~InstallAttributesReader();
32 
33   // Try to load install attributes (unless cached already) and return the
34   // attribute for |key| or an empty string in case |key| doesn't exist or in
35   // case install attributes couldn't (yet) be loaded.  The latter is expected
36   // during OOBE (install attributes haven't yet been finalized) or early in the
37   // boot sequence (install attributes haven't yet been verified).
38   const std::string& GetAttribute(const std::string& key);
39 
40   // Try to load install attributes (unless cached already) and return whether
41   // they have yet been written-and-locked.
42   bool IsLocked();
43 
44  protected:
45   // Attributes cache.
46   std::map<std::string, std::string> attributes_;
47 
48   // Path to the *verified* install attributes file on disk.
49   base::FilePath install_attributes_path_;
50 
51   // Whether install attributes have been read successfully.  Reading a file
52   // containing an empty attributes proto indicates consumer mode and counts as
53   // successful, too.
54   bool initialized_ = false;
55 
56 private:
57   // Try to load the verified install attributes from disk.  This is expected to
58   // fail when install attributes haven't yet been finalized (OOBE) or verified
59   // (early in the boot sequence).
60   void TryToLoad();
61 
62   // Empty string to return on error.
63   std::string empty_string_;
64 };
65 
66 #endif  // LIBBRILLO_LIBINSTALLATTRIBUTES_H_
67