From 00cfddc4c6bbcf9e520a5e26c82f60f1316ad110 Mon Sep 17 00:00:00 2001 From: Vithorio Polten Date: Mon, 23 Dec 2024 18:21:23 -0300 Subject: [PATCH] feat(macos): permissions manager --- cmake/compile_definitions/macos.cmake | 2 + src/platform/macos/display.mm | 2 +- src/platform/macos/input.cpp | 37 +------ src/platform/macos/misc.h | 19 +--- src/platform/macos/misc.mm | 61 +---------- src/platform/macos/permissions_manager.h | 67 ++++++++++++ src/platform/macos/permissions_manager.mm | 119 ++++++++++++++++++++++ 7 files changed, 198 insertions(+), 109 deletions(-) create mode 100644 src/platform/macos/permissions_manager.h create mode 100644 src/platform/macos/permissions_manager.mm diff --git a/cmake/compile_definitions/macos.cmake b/cmake/compile_definitions/macos.cmake index fb33d3bf235..fdcc2fb3232 100644 --- a/cmake/compile_definitions/macos.cmake +++ b/cmake/compile_definitions/macos.cmake @@ -44,6 +44,8 @@ set(PLATFORM_TARGET_FILES "${CMAKE_SOURCE_DIR}/src/platform/macos/misc.h" "${CMAKE_SOURCE_DIR}/src/platform/macos/nv12_zero_device.cpp" "${CMAKE_SOURCE_DIR}/src/platform/macos/nv12_zero_device.h" + "${CMAKE_SOURCE_DIR}/src/platform/macos/permissions_manager.mm" + "${CMAKE_SOURCE_DIR}/src/platform/macos/permissions_manager.h" "${CMAKE_SOURCE_DIR}/src/platform/macos/publish.cpp" "${CMAKE_SOURCE_DIR}/third-party/TPCircularBuffer/TPCircularBuffer.c" "${CMAKE_SOURCE_DIR}/third-party/TPCircularBuffer/TPCircularBuffer.h" diff --git a/src/platform/macos/display.mm b/src/platform/macos/display.mm index 5220c68db72..69fdfdd8b0f 100644 --- a/src/platform/macos/display.mm +++ b/src/platform/macos/display.mm @@ -101,7 +101,7 @@ int dummy_img(img_t *img) override { - if (!platf::is_screen_capture_allowed()) { + if (!platf::permissions_manager.is_screen_capture_allowed()) { // If we don't have the screen capture permission, this function will hang // indefinitely without doing anything useful. Exit instead to avoid this. // A non-zero return value indicates failure to the calling function. diff --git a/src/platform/macos/input.cpp b/src/platform/macos/input.cpp index 0e71788b873..9f173a0ed7c 100644 --- a/src/platform/macos/input.cpp +++ b/src/platform/macos/input.cpp @@ -9,6 +9,7 @@ #include #include "misc.h" +#include "permissions_manager.h" #include "src/display_device.h" #include "src/logging.h" @@ -229,11 +230,6 @@ const KeyCodeMap kKeyCodesMap[] = { }; // clang-format on - /** - * Used to avoid spamming permission requests when the user receives an input event - */ - bool accessibility_permission_requested; - int keysym(int keycode) { KeyCodeMap key_map {}; @@ -250,35 +246,13 @@ const KeyCodeMap kKeyCodesMap[] = { return temp_map->mac_keycode; } - std::string - default_accessibility_log_msg() { - return "Accessibility permission is not enabled," - " please enable sunshine in " - "[System Settings > Privacy & Security > Privacy > Accessibility]" - ", then please restart Sunshine for it to take effect"; - } - - void - print_accessibility_status(const bool is_keyboard_event, const bool release) { - if (!release) return; - - if (!has_accessibility_permission()) { - if (!accessibility_permission_requested) { - accessibility_permission_requested = true; - request_accessibility_permission(); - } - BOOST_LOG(info) << "Received " << (is_keyboard_event ? "keyboard" : "mouse") << " event but " - << default_accessibility_log_msg(); - } - } - void keyboard_update(input_t &input, uint16_t modcode, bool release, uint8_t flags) { auto key = keysym(modcode); BOOST_LOG(debug) << "got keycode: 0x"sv << std::hex << modcode << ", translated to: 0x" << std::hex << key << ", release:" << release; - print_accessibility_status(true, release); + permissions_manager.print_accessibility_status(true, release); if (key < 0) { return; @@ -470,7 +444,7 @@ const KeyCodeMap kKeyCodesMap[] = { return; } - print_accessibility_status(false, release); + permissions_manager.print_accessibility_status(false, release); macos_input->mouse_down[mac_button] = !release; @@ -572,9 +546,8 @@ const KeyCodeMap kKeyCodesMap[] = { const auto macos_input = static_cast(result.get()); - accessibility_permission_requested = false; - if (request_accessibility_permission()) { - BOOST_LOG(info) << default_accessibility_log_msg() << ", to allow mouse clicks and keyboard inputs."; + if (permissions_manager.request_accessibility_permission()) { + BOOST_LOG(info) << PermissionsManager::default_accessibility_log_msg() << ", to allow mouse clicks and keyboard inputs."; } // Default to main display diff --git a/src/platform/macos/misc.h b/src/platform/macos/misc.h index 1194bbb32f4..882dad06c88 100644 --- a/src/platform/macos/misc.h +++ b/src/platform/macos/misc.h @@ -4,27 +4,14 @@ */ #pragma once +#include "permissions_manager.h" + #include #include namespace platf { - bool - is_screen_capture_allowed(); - - /** - * Prompts the user for Accessibility permission - * @return returns true if requested permission, false if already has permission - */ - bool - request_accessibility_permission(); - - /** - * Checks for Accessibility permission - * @return returns true if sunshine has Accessibility permission enabled - */ - bool - has_accessibility_permission(); + static auto permissions_manager = PermissionsManager(); } namespace dyn { diff --git a/src/platform/macos/misc.mm b/src/platform/macos/misc.mm index a29f8e48fe0..98a61d7c27c 100644 --- a/src/platform/macos/misc.mm +++ b/src/platform/macos/misc.mm @@ -34,55 +34,11 @@ namespace platf { -// Even though the following two functions are available starting in macOS 10.15, they weren't -// actually in the Mac SDK until Xcode 12.2, the first to include the SDK for macOS 11 -#if __MAC_OS_X_VERSION_MAX_ALLOWED < 110000 // __MAC_11_0 - // If they're not in the SDK then we can use our own function definitions. - // Need to use weak import so that this will link in macOS 10.14 and earlier - extern "C" bool - CGPreflightScreenCaptureAccess(void) __attribute__((weak_import)); - extern "C" bool - CGRequestScreenCaptureAccess(void) __attribute__((weak_import)); -#endif - - namespace { - auto screen_capture_allowed = std::atomic { false }; - } // namespace - - // Return whether screen capture is allowed for this process. - bool - is_screen_capture_allowed() { - return screen_capture_allowed; - } - std::unique_ptr init() { - // This will generate a warning about CGPreflightScreenCaptureAccess and - // CGRequestScreenCaptureAccess being unavailable before macOS 10.15, but - // we have a guard to prevent it from being called on those earlier systems. - // Unfortunately the supported way to silence this warning, using @available, - // produces linker errors for __isPlatformVersionAtLeast, so we have to use - // a different method. - // We also ignore "tautological-pointer-compare" because when compiling with - // Xcode 12.2 and later, these functions are not weakly linked and will never - // be null, and therefore generate this warning. Since we are weakly linking - // when compiling with earlier Xcode versions, the check for null is - // necessary, and so we ignore the warning. -#pragma clang diagnostic push -#pragma clang diagnostic ignored "-Wunguarded-availability-new" -#pragma clang diagnostic ignored "-Wtautological-pointer-compare" - if ([[NSProcessInfo processInfo] isOperatingSystemAtLeastVersion:((NSOperatingSystemVersion) { 10, 15, 0 })] && - // Double check that these weakly-linked symbols have been loaded: - CGPreflightScreenCaptureAccess != nullptr && CGRequestScreenCaptureAccess != nullptr && - !CGPreflightScreenCaptureAccess()) { - BOOST_LOG(error) << "No screen capture permission!"sv; - BOOST_LOG(error) << "Please activate it in 'System Preferences' -> 'Privacy' -> 'Screen Recording'"sv; - CGRequestScreenCaptureAccess(); + if (permissions_manager.request_screen_capture_permission()) { return nullptr; } -#pragma clang diagnostic pop - // Record that we determined that we have the screen capture permission. - screen_capture_allowed = true; return std::make_unique(); } @@ -569,21 +525,6 @@ operator bool() override { return std::make_unique(); } - bool - request_accessibility_permission() { - NSDictionary* options = @{static_cast(kAXTrustedCheckOptionPrompt): @YES}; - return !AXIsProcessTrustedWithOptions(static_cast(options)); - } - - bool - has_accessibility_permission() { - NSDictionary* options = @{static_cast(kAXTrustedCheckOptionPrompt): @NO}; - // We use kAXTrustedCheckOptionPrompt == NO here, - // instead of using XIsProcessTrusted(), - // because this will update the accessibility list with sunshine current path - return AXIsProcessTrustedWithOptions(static_cast(options)); - } - } // namespace platf namespace dyn { diff --git a/src/platform/macos/permissions_manager.h b/src/platform/macos/permissions_manager.h new file mode 100644 index 00000000000..1709f508aa2 --- /dev/null +++ b/src/platform/macos/permissions_manager.h @@ -0,0 +1,67 @@ +/** + * @file src/platform/macos/permissions_manager.h + * @brief Handles macOS platform permissions. + */ +#pragma once + +#include + +#include +#include + +namespace platf { + class PermissionsManager { + public: + static std::string + default_accessibility_log_msg() { + return "Accessibility permission is not enabled," + " please enable sunshine in " + "[System Settings > Privacy & Security > Privacy > Accessibility]" + ", then please restart Sunshine for it to take effect"; + } + + PermissionsManager() = default; + + bool + is_screen_capture_allowed(); + + bool + request_screen_capture_permission(); + + /** + * Checks for Accessibility permission + * @return returns true if sunshine has Accessibility permission enabled + */ + bool + has_accessibility_permission(); + + /** + * Checks for Accessibility permission + * @return returns true if sunshine has Accessibility permission enabled + */ + bool + has_accessibility_permission_cached(); + + /** + * Prompts the user for Accessibility permission + * @return returns true if requested permission, false if already has permission + */ + bool + request_accessibility_permission(); + + /** + * Prompts the user for Accessibility permission + * @return returns true if requested permission, false if already has permission + */ + bool + request_accessibility_permission_once(); + + /** + * Prints the accessibility status based on the input event type and release status + * @param is_keyboard_event indicates if the event is a keyboard event + * @param release indicates if the event is a release event + */ + void + print_accessibility_status(const bool is_keyboard_event, const bool release); + }; +} // namespace platf diff --git a/src/platform/macos/permissions_manager.mm b/src/platform/macos/permissions_manager.mm new file mode 100644 index 00000000000..7ed0b9154b7 --- /dev/null +++ b/src/platform/macos/permissions_manager.mm @@ -0,0 +1,119 @@ +/** + * @file src/platform/macos/permissions_manager.mm + * @brief Handles macOS platform permissions. + */ + +#include "permissions_manager.h" + +#include + +#include "src/logging.h" + +namespace platf { +// Even though the following two functions are available starting in macOS 10.15, they weren't +// actually in the Mac SDK until Xcode 12.2, the first to include the SDK for macOS 11 +#if __MAC_OS_X_VERSION_MAX_ALLOWED < 110000 // __MAC_11_0 + // If they're not in the SDK then we can use our own function definitions. + // Need to use weak import so that this will link in macOS 10.14 and earlier + extern "C" bool + CGPreflightScreenCaptureAccess(void) __attribute__((weak_import)); + extern "C" bool + CGRequestScreenCaptureAccess(void) __attribute__((weak_import)); +#endif + + namespace { + auto + screen_capture_allowed = std::atomic { false }; + /** + * Used to avoid spamming permission requests when the user receives an input event + */ + bool + accessibility_permission_requested = std::atomic { false }; + bool + has_accessibility = std::atomic { false }; + } // namespace + + // Return whether screen capture is allowed for this process. + bool + PermissionsManager::is_screen_capture_allowed() { + return screen_capture_allowed; + } + + bool + PermissionsManager::request_screen_capture_permission() { + // This will generate a warning about CGPreflightScreenCaptureAccess and + // CGRequestScreenCaptureAccess being unavailable before macOS 10.15, but + // we have a guard to prevent it from being called on those earlier systems. + // Unfortunately the supported way to silence this warning, using @available, + // produces linker errors for __isPlatformVersionAtLeast, so we have to use + // a different method. + // We also ignore "tautological-pointer-compare" because when compiling with + // Xcode 12.2 and later, these functions are not weakly linked and will never + // be null, and therefore generate this warning. Since we are weakly linking + // when compiling with earlier Xcode versions, the check for null is + // necessary, and so we ignore the warning. +#pragma clang diagnostic push +#pragma clang diagnostic ignored "-Wunguarded-availability-new" +#pragma clang diagnostic ignored "-Wtautological-pointer-compare" + if ([[NSProcessInfo processInfo] isOperatingSystemAtLeastVersion:((NSOperatingSystemVersion) { 10, 15, 0 })] && + // Double check that these weakly-linked symbols have been loaded: + CGPreflightScreenCaptureAccess != nullptr && CGRequestScreenCaptureAccess != nullptr && + !CGPreflightScreenCaptureAccess()) { + BOOST_LOG(error) << "No screen capture permission!"; + BOOST_LOG(error) << "Please activate it in 'System Preferences' -> 'Privacy' -> 'Screen Recording'"; + CGRequestScreenCaptureAccess(); + return true; + } +#pragma clang diagnostic pop + // Record that we determined that we have the screen capture permission. + screen_capture_allowed = true; + return false; + } + + bool + PermissionsManager::has_accessibility_permission() { + NSDictionary *options = @{static_cast(kAXTrustedCheckOptionPrompt): @NO}; + // We use kAXTrustedCheckOptionPrompt == NO here, + // instead of using XIsProcessTrusted(), + // because this will update the accessibility list with sunshine current path + return AXIsProcessTrustedWithOptions(static_cast(options)); + } + + bool + PermissionsManager::has_accessibility_permission_cached() { + if (has_accessibility) return true; + if (accessibility_permission_requested) return has_accessibility; + has_accessibility = has_accessibility_permission(); + return has_accessibility; + } + + bool + PermissionsManager::request_accessibility_permission() { + if (!has_accessibility_permission()) { + NSDictionary *options = @{static_cast(kAXTrustedCheckOptionPrompt): @YES}; + return !AXIsProcessTrustedWithOptions(static_cast(options)); + } + return false; + } + + bool + PermissionsManager::request_accessibility_permission_once() { + if (!accessibility_permission_requested) { + accessibility_permission_requested = true; + return request_accessibility_permission(); + } + return false; + } + + void + PermissionsManager::print_accessibility_status(const bool is_keyboard_event, const bool release) { + if (!release) return; + + if (!has_accessibility_permission_cached()) { + request_accessibility_permission_once(); + BOOST_LOG(info) << "Received " << (is_keyboard_event ? "keyboard" : "mouse") << " event but " + << default_accessibility_log_msg(); + } + } + +} // namespace platf