1 /* 2 * Copyright (c) 2023 Huawei Device Co., Ltd. 3 * Licensed under the Apache License, Version 2.0 (the "License"); 4 * you may not use this file except in compliance with the License. 5 * You may obtain a copy of the License at 6 * 7 * http://www.apache.org/licenses/LICENSE-2.0 8 * 9 * Unless required by applicable law or agreed to in writing, software 10 * distributed under the License is distributed on an "AS IS" BASIS, 11 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 12 * See the License for the specific language governing permissions and 13 * limitations under the License. 14 */ 15 #include "ext_permission_manager.h" 16 17 #include "accesstoken_kit.h" 18 #include "hilog_wrapper.h" 19 #include "ipc_skeleton.h" 20 #include "tokenid_kit.h" 21 22 namespace OHOS { 23 namespace ExternalDeviceManager { 24 using namespace OHOS::Security::AccessToken; 25 VerifyPermission(std::string permissionName)26bool ExtPermissionManager::VerifyPermission(std::string permissionName) 27 { 28 AccessTokenID callerToken = IPCSkeleton::GetCallingTokenID(); 29 int result = AccessTokenKit::VerifyAccessToken(callerToken, permissionName); 30 if (result == PERMISSION_GRANTED) { 31 EDM_LOGI(MODULE_DEV_MGR, "%{public}s VerifyAccessToken: %{public}d", __func__, result); 32 return true; 33 } 34 return false; 35 } 36 IsSystemApp()37bool ExtPermissionManager::IsSystemApp() 38 { 39 uint64_t fullTokenId = IPCSkeleton::GetCallingFullTokenID(); 40 if (TokenIdKit::IsSystemAppByFullTokenID(fullTokenId)) { 41 return true; 42 } 43 AccessTokenID callerToken = IPCSkeleton::GetCallingTokenID(); 44 ATokenTypeEnum tokenType = AccessTokenKit::GetTokenTypeFlag(callerToken); 45 return tokenType != ATokenTypeEnum::TOKEN_HAP; 46 } 47 } // namespace ExternalDeviceManager 48 } // namespace OHOS