Google Git
Sign in
chromium/codesearch/chromium/src/HEAD/./remoting/host/setup/start_host_main.cc
blob: 226147ef89d0dbee2c4cda2aa7a956688cd1f3be [file]
// Copyright 2012 The Chromium Authors
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "remoting/host/setup/start_host_main.h"
#include <stddef.h>
#include <stdio.h>
#include <iostream>
#include "base/at_exit.h"
#include "base/command_line.h"
#include "base/compiler_specific.h"
#include "base/functional/bind.h"
#include "base/logging/logging_settings.h"
#include "base/message_loop/message_pump_type.h"
#include "base/notreached.h"
#include "base/run_loop.h"
#include "base/strings/string_split.h"
#include "base/strings/string_util.h"
#include "base/strings/stringprintf.h"
#include "base/task/single_thread_task_executor.h"
#include "base/task/single_thread_task_runner.h"
#include "base/task/thread_pool/thread_pool_instance.h"
#include "base/threading/thread.h"
#include "build/build_config.h"
#include "mojo/core/embedder/embedder.h"
#include "net/ssl/client_cert_store.h"
#include "net/url_request/url_request_context_getter.h"
#include "remoting/base/certificate_helpers.h"
#include "remoting/base/logging.h"
#include "remoting/base/url_request_context_getter.h"
#include "remoting/host/setup/cloud_host_starter.h"
#include "remoting/host/setup/corp_host_starter.h"
#include "remoting/host/setup/host_starter.h"
#include "remoting/host/setup/oauth_host_starter.h"
#include "remoting/host/setup/pin_validator.h"
#include "services/network/public/cpp/shared_url_loader_factory.h"
#include "services/network/transitional_url_loader_factory_owner.h"
#if BUILDFLAG(IS_POSIX)
#include <termios.h>
#include <unistd.h>
#endif // BUILDFLAG(IS_POSIX)
#if BUILDFLAG(IS_LINUX)
#include "remoting/base/crash/crash_reporting_crashpad.h"
#include "remoting/host/linux/host_types.h"
#include "remoting/host/setup/daemon_controller_delegate_linux_single_process.h"
#include "remoting/host/setup/start_host_as_root.h"
#endif // BUILDFLAG(IS_LINUX)
#if BUILDFLAG(IS_WIN)
#include <windows.h>
#include "base/process/process_info.h"
#include "remoting/base/crash/crash_reporting_breakpad.h"
#endif // BUILDFLAG(IS_WIN)
namespace remoting {
namespace {
// Flags for registering the host and generating the host config.
constexpr char kPinSwitchName[] = "pin";
constexpr char kAuthCodeSwitchName[] = "code";
constexpr char kRedirectUrlSwitchName[] = "redirect-url";
// If set, this flag is used to compare against the email address of the user
// who generated the OAuth authorization code.
constexpr char kHostOwnerSwitchName[] = "host-owner";
// Specifies the username for the account to associate with this instance when
// using the Corp registration process.
constexpr char kCorpUserSwitchName[] = "corp-user";
// Specifies the account email to be used when configuring a machine using the
// Cloud registration process.
constexpr char kCloudUserSwitchName[] = "cloud-user";
// Specifies the API_KEY to use when registering the cloud host instance.
constexpr char kCloudApiKeySwitchName[] = "cloud-api-key";
// TODO: joedow - switch to using `display-name` for consistency. Remove `name`
// after we no longer need to support start_host for Pre-M125 packages.
constexpr char kNameSwitchName[] = "name";
constexpr char kDisplayNameSwitchName[] = "display-name";
// Used to disable crash reporting.
constexpr char kDisableCrashReportingSwitchName[] = "disable-crash-reporting";
constexpr char kInvalidPinErrorMessage[] =
"Please provide a numeric PIN consisting of at least six digits.\n";
#if BUILDFLAG(IS_LINUX)
// The host type to use.
constexpr char kHostTypeSwitchName[] = "host-type";
#endif
// True if the host was started successfully.
bool g_started = false;
base::SingleThreadTaskExecutor* g_main_thread_task_executor = nullptr;
// The active RunLoop.
base::RunLoop* g_active_run_loop = nullptr;
void PrintDefaultHelpMessage(const char* process_name) {
// Optional args are shown first as the most common issue is needing to
// generate the auth-code again and this ordering makes it easy to fix the
// command line to rerun the tool.
std::cerr << base::StringPrintf(
"Please visit https://remotedesktop.google.com/headless for "
"instructions on running this tool and help generating the command "
"line arguments.\n"
"\n"
"Example usage:\n%s --%s=<auth code> --%s=<redirect url> "
"[--%s=<host display name>] [--%s=<6+ digit PIN>] [--%s]",
process_name, kAuthCodeSwitchName, kRedirectUrlSwitchName,
kDisplayNameSwitchName, kPinSwitchName, kDisableCrashReportingSwitchName);
#if BUILDFLAG(IS_LINUX)
std::cerr << base::StringPrintf(" [--%s=<host type>]", kHostTypeSwitchName)
<< "\n\n";
HostType::PrintHostTypeHelp();
#endif
std::cerr << "\n";
}
void PrintCorpUserHelpMessage(const char* process_name) {
UNSAFE_TODO(fprintf(
stdout,
"Setting up a machine for a corp user requires the username of that "
"user and an optional display name.\n\nExample usage:\n"
"%s --%s=<username> [--%s=corp-machine-name]\n",
process_name, kCorpUserSwitchName, kDisplayNameSwitchName));
}
void PrintCloudUserHelpMessage(const char* process_name) {
// TODO: joedow - Add a link to public documentation and/or samples when they
// are available.
UNSAFE_TODO(fprintf(
stdout,
"Setting up a Compute Engine Instance requires the email address of "
"the user.\n\nAn optional API_KEY, created for the project the "
"Compute Engine Instance is in, can be provided. Otherwise an access "
"token will be retrieved for the default service account.\n\nAn "
"optional display name can also be provided, otherwise the hostname, "
"or FQDN, of the instance will be used.\n\n"
"Example usage:\n%s --%s=<user_email_address> [--%s=<API_KEY>] "
"[--%s=cloud-instance-display-name] [--%s]\n",
process_name, kCloudUserSwitchName, kCloudApiKeySwitchName,
kDisplayNameSwitchName, kDisableCrashReportingSwitchName));
}
// Lets us hide the PIN that a user types.
void SetEcho(bool echo) {
#if BUILDFLAG(IS_WIN)
DWORD mode;
HANDLE console_handle = GetStdHandle(STD_INPUT_HANDLE);
if (!GetConsoleMode(console_handle, &mode)) {
LOG(ERROR) << "GetConsoleMode failed";
return;
}
SetConsoleMode(console_handle,
(mode & ~ENABLE_ECHO_INPUT) | (echo ? ENABLE_ECHO_INPUT : 0));
#else
termios term;
tcgetattr(STDIN_FILENO, &term);
if (echo) {
term.c_lflag |= ECHO;
} else {
term.c_lflag &= ~ECHO;
}
tcsetattr(STDIN_FILENO, TCSANOW, &term);
#endif // !BUILDFLAG(IS_WIN)
}
// Reads a newline-terminated string from stdin.
std::string ReadString(bool no_echo) {
if (no_echo) {
SetEcho(false);
}
const int kMaxLen = 1024;
std::string str(kMaxLen, 0);
char* result = UNSAFE_TODO(fgets(&str[0], kMaxLen, stdin));
if (no_echo) {
printf("\n");
SetEcho(true);
}
if (!result) {
return std::string();
}
size_t newline_index = str.find('\n');
if (newline_index != std::string::npos) {
str[newline_index] = '\0';
}
str.resize(strlen(&str[0]));
return str;
}
// Called when the HostStarter has finished.
void OnDone(HostStarter::Result result) {
if (!g_main_thread_task_executor->task_runner()->BelongsToCurrentThread()) {
g_main_thread_task_executor->task_runner()->PostTask(
FROM_HERE, base::BindOnce(&OnDone, result));
return;
}
switch (result) {
case HostStarter::START_COMPLETE:
g_started = true;
printf("Host started successfully.\n");
break;
case HostStarter::NETWORK_ERROR:
fprintf(stderr, "Couldn't start host: network error.\n");
break;
case HostStarter::OAUTH_ERROR:
fprintf(stderr, "Couldn't start host: OAuth error.\n");
break;
case HostStarter::PERMISSION_DENIED:
fprintf(stderr, "Couldn't start host: Permission denied.\n");
break;
case HostStarter::REGISTRATION_ERROR:
fprintf(stderr, "Couldn't start host: Registration error.\n");
break;
case HostStarter::START_ERROR:
fprintf(stderr, "Couldn't start host.\n");
break;
}
g_active_run_loop->Quit();
}
bool InitializeParamsForOAuthFlow(HostStarter::Params& params,
const base::CommandLine* command_line) {
if (command_line->HasSwitch("host-id")) {
// This is an undocumented parameter as it was added for a scenario that is
// partially supported but infrequently used.
// TODO: joedow - Remove this param after switching to the Corp workflow.
params.id = command_line->GetSwitchValueASCII("host-id");
}
params.name = command_line->GetSwitchValueASCII(kDisplayNameSwitchName);
if (params.name.empty()) {
// Fallback to the 'name' switch if it was provided instead. We want to
// support this as some folks have documented the usage of this tool and
// refer to the old flag name.
params.name = command_line->GetSwitchValueASCII(kNameSwitchName);
}
params.pin = command_line->GetSwitchValueASCII(kPinSwitchName);
params.auth_code = command_line->GetSwitchValueASCII(kAuthCodeSwitchName);
params.redirect_url =
command_line->GetSwitchValueASCII(kRedirectUrlSwitchName);
params.owner_email = base::ToLowerASCII(
command_line->GetSwitchValueASCII(kHostOwnerSwitchName));
params.enable_crash_reporting =
!command_line->HasSwitch(kDisableCrashReportingSwitchName);
if (params.auth_code.empty() || params.redirect_url.empty()) {
return false;
}
if (params.name.empty()) {
fprintf(stdout, "Enter a name for this computer: ");
fflush(stdout);
params.name = ReadString(false);
}
if (params.pin.empty()) {
while (true) {
fprintf(stdout, "Enter a PIN of at least six digits: ");
fflush(stdout);
params.pin = ReadString(true);
if (!remoting::IsPinValid(params.pin)) {
UNSAFE_TODO(fprintf(stdout, kInvalidPinErrorMessage));
fflush(stdout);
continue;
}
std::string pin_confirmation;
fprintf(stdout, "Enter the same PIN again: ");
fflush(stdout);
pin_confirmation = ReadString(true);
if (params.pin != pin_confirmation) {
fprintf(stdout, "You entered different PINs.\n");
fflush(stdout);
continue;
}
break;
}
} else {
if (!remoting::IsPinValid(params.pin)) {
UNSAFE_TODO(fprintf(stderr, kInvalidPinErrorMessage));
return false;
}
}
return true;
}
bool InitializeCorpMachineParams(HostStarter::Params& params,
const base::CommandLine* command_line) {
// Crash reporting is always enabled for this flow.
params.enable_crash_reporting = true;
// Count the number of args provided so we can show a helpful error message
// if the user provides an unexpected value.
size_t corp_arg_count = 1;
// Some legacy scripts may still provide an email domain for this parameter
// however the username is the preferred value when calling the Directory
// service. If we are given an email, strip the domain and treat it like a
// username.
std::string corp_user_value = base::ToLowerASCII(
command_line->GetSwitchValueASCII(kCorpUserSwitchName));
auto parts = base::SplitStringOnce(corp_user_value, '@');
if (!parts) {
params.username = std::move(corp_user_value);
} else {
params.username = std::move(parts->first);
}
// Allow user to specify a display name.
if (command_line->HasSwitch(kDisplayNameSwitchName)) {
corp_arg_count++;
params.name = command_line->GetSwitchValueASCII(kDisplayNameSwitchName);
}
// Allow debugging switches.
if (command_line->HasSwitch("v")) {
corp_arg_count++;
}
if (command_line->HasSwitch("vmodule")) {
corp_arg_count++;
}
if (command_line->GetSwitches().size() > corp_arg_count) {
return false;
}
return true;
}
bool InitializeCloudMachineParams(HostStarter::Params& params,
const base::CommandLine* command_line) {
// Count the number of args provided so we can show a helpful error message
// if the user provides an unexpected value.
size_t cloud_arg_count = 1;
params.owner_email = base::ToLowerASCII(
command_line->GetSwitchValueASCII(kCloudUserSwitchName));
// Allow user to specify a display name.
if (command_line->HasSwitch(kDisplayNameSwitchName)) {
cloud_arg_count++;
params.name = command_line->GetSwitchValueASCII(kDisplayNameSwitchName);
}
if (command_line->HasSwitch(kCloudApiKeySwitchName)) {
// Using a cloud API_KEY means start-host will not attempt to retrieve an
// access token for the default service-account.
params.api_key = command_line->GetSwitchValueASCII(kCloudApiKeySwitchName);
cloud_arg_count++;
}
bool has_disable_crash_reporting_switch =
command_line->HasSwitch(kDisableCrashReportingSwitchName);
params.enable_crash_reporting = !has_disable_crash_reporting_switch;
if (has_disable_crash_reporting_switch) {
cloud_arg_count++;
}
// Allow debugging switches.
if (command_line->HasSwitch("v")) {
cloud_arg_count++;
}
if (command_line->HasSwitch("vmodule")) {
cloud_arg_count++;
}
if (command_line->GetSwitches().size() > cloud_arg_count) {
return false;
}
return true;
}
} // namespace
int StartHostMain(int argc, char** argv) {
// google_apis::GetOAuth2ClientID/Secret need a static CommandLine.
base::CommandLine::Init(argc, argv);
base::CommandLine* command_line = base::CommandLine::ForCurrentProcess();
// This object instance is required by Chrome code (for example,
// FilePath, LazyInstance, MessageLoop).
base::AtExitManager exit_manager;
logging::LoggingSettings settings;
settings.logging_dest =
logging::LOG_TO_SYSTEM_DEBUG_LOG | logging::LOG_TO_STDERR;
logging::InitLogging(settings);
base::ThreadPoolInstance::CreateAndStartWithDefaultParams(
"RemotingHostSetup");
mojo::core::Init();
base::SingleThreadTaskExecutor main_thread_task_executor;
g_main_thread_task_executor = &main_thread_task_executor;
base::Thread::Options io_thread_options(base::MessagePumpType::IO, 0);
base::Thread io_thread("IO thread");
io_thread.StartWithOptions(std::move(io_thread_options));
#if defined(REMOTING_ENABLE_CRASH_REPORTING)
// We don't have a config file yet so we can't use IsUsageStatsAllowed().
// We check the command line parameter instead. This allows even corp users
// to disable crash reporting for the start-host command itself (e.g. during
// setup), which does not affect the actual host daemon process (which will
// still force crash reporting on corp users).
if (!command_line->HasSwitch(kDisableCrashReportingSwitchName)) {
#if BUILDFLAG(IS_LINUX)
InitializeCrashpadReporting();
#elif BUILDFLAG(IS_WIN)
InitializeBreakpadReporting();
#endif // BUILDFLAG(IS_LINUX)
}
#endif // defined(REMOTING_ENABLE_CRASH_REPORTING)
#if BUILDFLAG(IS_LINUX)
const HostType* host_type = nullptr;
if (command_line->HasSwitch(kHostTypeSwitchName)) {
std::string host_type_name =
command_line->GetSwitchValueASCII(kHostTypeSwitchName);
host_type = HostType::Find(host_type_name);
if (!host_type) {
std::cerr << "Invalid host type: " << host_type_name << "\n\n";
PrintDefaultHelpMessage(argv[0]);
return 1;
}
}
DaemonController::SetHostType(host_type);
// If the host type is not specified, `host_type` will be nullptr so we use
// DaemonController to determine the current host type if it is already
// running. The currently running host will be restarted instead of fallback
// to the default host type.
bool is_multi_process = DaemonController::Create()->is_multi_process();
// If the user is trying to set up a multi-process host unelevated, we just
// replace the current process with a sudo command to elevate.
if (is_multi_process && getuid() != 0) {
std::vector<const char*> sudo_argv;
sudo_argv.push_back("sudo");
// Use '-k' to prevent silently piggybacking off a recent sudo session.
sudo_argv.push_back("-k");
// Use '--' to prevent any subsequent arguments from being interpreted as
// sudo options.
sudo_argv.push_back("--");
for (const auto& arg : command_line->argv()) {
sudo_argv.push_back(arg.c_str());
}
sudo_argv.push_back(nullptr); // NULL-terminated
execvp(sudo_argv[0], const_cast<char**>(sudo_argv.data()));
// If execvp returns, it failed.
PLOG(ERROR) << "Failed to re-run with sudo";
return 1;
}
// Minimize the amount of code that runs as root on Posix systems.
// Note that StartHostAsRoot() is only for the single-process host. For the
// multi-process host, we just set up everything as root using the common
// code path.
if (getuid() == 0 && !is_multi_process) {
return remoting::StartHostAsRoot();
}
#endif // BUILDFLAG(IS_LINUX)
#if BUILDFLAG(IS_LINUX)
if (command_line->HasSwitch("no-start")) {
// On Linux, registering the host with systemd and starting it is the only
// reason start_host requires root. The --no-start options skips that final
// step, allowing it to be run non-interactively if the parent process has
// root and can do complete the setup itself. Since this functionality is
// Linux-specific, it isn't plumbed through the platform-independent daemon
// controller code, and must be configured on the Linux delegate explicitly.
DaemonControllerDelegateLinuxSingleProcess::set_start_host_after_setup(
false);
// Remove the switch from the command line to simplify arg count checks.
command_line->RemoveSwitch("no-start");
}
#endif // BUILDFLAG(IS_LINUX)
#if BUILDFLAG(IS_WIN)
// The tool must be run elevated on Windows so the host has access to the
// directories used to store the configuration JSON files.
if (!base::IsCurrentProcessElevated()) {
UNSAFE_TODO(fprintf(stderr, "Error: %s must be run as an elevated process.",
argv[0]));
return 1;
}
#endif // BUILDFLAG(IS_WIN)
if (command_line->HasSwitch("help") || command_line->HasSwitch("h") ||
command_line->HasSwitch("?") || !command_line->GetArgs().empty()) {
PrintDefaultHelpMessage(argv[0]);
return 1;
}
HostStarter::Params params;
bool use_corp_machine_flow = command_line->HasSwitch(kCorpUserSwitchName);
bool use_cloud_machine_flow = command_line->HasSwitch(kCloudUserSwitchName);
if (use_corp_machine_flow) {
if (!InitializeCorpMachineParams(params, command_line)) {
PrintCorpUserHelpMessage(argv[0]);
return 1;
}
} else if (use_cloud_machine_flow) {
if (!InitializeCloudMachineParams(params, command_line)) {
PrintCloudUserHelpMessage(argv[0]);
return 1;
}
} else if (!InitializeParamsForOAuthFlow(params, command_line)) {
PrintDefaultHelpMessage(argv[0]);
return 1;
}
scoped_refptr<net::URLRequestContextGetter> url_request_context_getter(
new remoting::URLRequestContextGetter(io_thread.task_runner()));
network::TransitionalURLLoaderFactoryOwner url_loader_factory_owner(
url_request_context_getter, /*is_trusted=*/use_corp_machine_flow);
// Start the host.
std::unique_ptr<HostStarter> host_starter;
if (use_corp_machine_flow) {
host_starter =
ProvisionCorpMachine(url_loader_factory_owner.GetURLLoaderFactory(),
CreateClientCertStoreInstance());
} else if (use_cloud_machine_flow) {
fprintf(stdout,
"*** Warning: This workflow is experimental and not fully "
"supported at this time ***\n");
host_starter =
ProvisionCloudInstance(url_loader_factory_owner.GetURLLoaderFactory());
} else {
host_starter =
CreateOAuthHostStarter(url_loader_factory_owner.GetURLLoaderFactory());
}
host_starter->StartHost(std::move(params), base::BindOnce(&OnDone));
// Run the task executor until the StartHost completion callback.
base::RunLoop run_loop;
g_active_run_loop = &run_loop;
run_loop.Run();
g_main_thread_task_executor = nullptr;
g_active_run_loop = nullptr;
// Destroy the HostStarter and URLRequestContextGetter before stopping the
// IO thread.
host_starter.reset();
url_request_context_getter = nullptr;
io_thread.Stop();
return g_started ? 0 : 1;
}
} // namespace remoting