| xiaoyinh | 2bbdd10 | 2017-05-18 23:29:42 | [diff] [blame^] | 1 | // Copyright 2017 The Chromium Authors. All rights reserved. |
| 2 | // Use of this source code is governed by a BSD-style license that can be |
| 3 | // found in the LICENSE file. |
| 4 | |
| 5 | #include "ash/login/lock_screen_controller.h" |
| 6 | |
| 7 | #include "chromeos/cryptohome/system_salt_getter.h" |
| 8 | #include "chromeos/login/auth/user_context.h" |
| 9 | |
| 10 | namespace ash { |
| 11 | |
| 12 | LockScreenController::LockScreenController() = default; |
| 13 | |
| 14 | LockScreenController::~LockScreenController() = default; |
| 15 | |
| 16 | void LockScreenController::BindRequest(mojom::LockScreenRequest request) { |
| 17 | bindings_.AddBinding(this, std::move(request)); |
| 18 | } |
| 19 | |
| 20 | void LockScreenController::AuthenticateUser(const AccountId& account_id, |
| 21 | const std::string& password, |
| 22 | bool authenticated_by_pin) { |
| 23 | if (!lock_screen_client_) |
| 24 | return; |
| 25 | |
| 26 | chromeos::SystemSaltGetter::Get()->GetSystemSalt(base::Bind( |
| 27 | &LockScreenController::DoAuthenticateUser, base::Unretained(this), |
| 28 | account_id, password, authenticated_by_pin)); |
| 29 | } |
| 30 | |
| 31 | void LockScreenController::SetClient(mojom::LockScreenClientPtr client) { |
| 32 | lock_screen_client_ = std::move(client); |
| 33 | } |
| 34 | |
| 35 | void LockScreenController::ShowErrorMessage(int32_t login_attempts, |
| 36 | const std::string& error_text, |
| 37 | const std::string& help_link_text, |
| 38 | int32_t help_topic_id) { |
| 39 | NOTIMPLEMENTED(); |
| 40 | } |
| 41 | |
| 42 | void LockScreenController::ClearErrors() { |
| 43 | NOTIMPLEMENTED(); |
| 44 | } |
| 45 | |
| 46 | void LockScreenController::DoAuthenticateUser(const AccountId& account_id, |
| 47 | const std::string& password, |
| 48 | bool authenticated_by_pin, |
| 49 | const std::string& system_salt) { |
| 50 | // Hash password before sending through mojo. |
| 51 | // TODO(xiaoyinh): Pin is hashed differently by using a different salt and |
| 52 | // a different hash algorithm. Update this part in PinStorage. |
| 53 | chromeos::Key key(password); |
| 54 | key.Transform(chromeos::Key::KEY_TYPE_SALTED_SHA256_TOP_HALF, system_salt); |
| 55 | lock_screen_client_->AuthenticateUser(account_id, key.GetSecret(), |
| 56 | authenticated_by_pin); |
| 57 | } |
| 58 | |
| 59 | } // namespace ash |