From 69b19fbcbec5fa8f5933b9c3f3375052b0059980 Mon Sep 17 00:00:00 2001
From: Pavol Marko <pmarko@chromium.org>
Date: Fri, 30 Jun 2017 16:40:04 +0200
Subject: system_api: Support for temporary policy read

This contains two changes:
- Protobuf change in cryptohome to allow temporary user home mounts and
  return their location.
- New method in login_manager to read policy from a temporary user home
  mount.

Both changes are required to read user policy before actual cryptohome
mount, which will be necessary to decide if ext4 migration is allowed.

BUG=chromium:722371
TEST=none

Change-Id: If734b17b4c1ebd7e3ae1adf698f21493258f2b34
Reviewed-on: https://chromium-review.googlesource.com/562137
Commit-Ready: Pavol Marko <pmarko@chromium.org>
Tested-by: Pavol Marko <pmarko@chromium.org>
Reviewed-by: Dan Erat <derat@chromium.org>
Reviewed-by: Ryo Hashimoto <hashimoto@chromium.org>
Reviewed-by: Andrey Pronin <apronin@chromium.org>
---
 dbus/cryptohome/rpc.proto | 3 +++
 1 file changed, 3 insertions(+)

(limited to 'dbus/cryptohome/rpc.proto')

diff --git a/dbus/cryptohome/rpc.proto b/dbus/cryptohome/rpc.proto
index bd5e6a2..1d81a2d 100644
--- a/dbus/cryptohome/rpc.proto
+++ b/dbus/cryptohome/rpc.proto
@@ -98,6 +98,9 @@ message MountRequest {
   // Performs a public mount, which is used for a Kiosk session. Credentials are
   // not needed in the request; they are synthesized by cryptohomed from id.
   optional bool public_mount = 5;
+  // If set to true, mounts the vault to a temporary location. The mount is not
+  // exposed to the usual locations (/home/user, /home/root).
+  optional bool hidden_mount = 6;
 }
 
 // A BaseReply type is used for all cryptohomed responses. A shared base class
-- 
cgit v1.2.3