Add SetupWraith into allow list of invoke signRSA API, and remove priv_app from the allow list and modify the error message.

Doc: https://docs.google.com/document/d/19LFE0xWE6E-TfM8MQbxk2lCyNeW-nALBrGA6VX6Donc/edit?resourcekey=0-pe8SXOdScbmqtVQHRDubVw# Test: Manual Bug: b/175603696 Change-Id: Ibde963798d3fc5d4696b2d547f0ef3beab579d38
2021-05-10 16:13:04 -07:00
parent abad8b076d
commit 18be093969
1 changed files with 5 additions and 3 deletions
--- a/libwvdrmengine/mediadrm/src_hidl/WVDrmPlugin.cpp
+++ b/libwvdrmengine/mediadrm/src_hidl/WVDrmPlugin.cpp
@@ -1780,9 +1780,11 @@ Return<void> WVDrmPlugin::signRSA(

  const auto& self = android::hardware::IPCThreadState::self();
  const char* sid = self->getCallingSid();
-  if (!sid || (!strstr(sid, "mediashell_app") && !strstr(sid, "priv_app")
-               && !strstr(sid, "mediadrmserver"))) {
-    ALOGE("Only mediashell/priv-app/mediadrmserver can call signRSA");
+  if (!sid || (!strstr(sid, ":mediashell_app:")
+              && !strstr(sid, ":mediadrmserver:")
+              && !strstr(sid, ":setupwraith_app:"))) {
+    ALOGE("Only mediashell/mediadrmserver/setupwraith_app can call signRSA, "
+          "but actually: %s", sid);
    _hidl_cb(Status::ERROR_DRM_UNKNOWN, hidl_vec<uint8_t>());
    return Void();
  }