commit 1408242781e5584dcf678ef4b35976551b9da98e
author Rubin Xu <rubinxu@google.com> Wed Apr 19 13:45:16 2023 +0100
committer Rubin Xu <rubinxu@google.com> Wed Apr 19 12:56:02 2023 +0000
tree 98c396a7c3683a81d5cf4decbd689dfad6b160d6
parent 26e2af36b7dcff73d76118910668de4a0417d1ad

Headless: fix system update notification

Allow the OTA client from the main user to send OTA information
back to the framework.

Bug: 262854379
Test: GtsDevicePolicyTestCases:PendingSystemUpdateTest
Change-Id: I607e0515dee1bd8ba9d9a68940c13c1a6d147196

services/devicepolicy/java/com/android/server/devicepolicy/DevicePolicyManagerService.java

diff --git a/services/devicepolicy/java/com/android/server/devicepolicy/DevicePolicyManagerService.java b/services/devicepolicy/java/com/android/server/devicepolicy/DevicePolicyManagerService.java
index 7e5d5aa..ac5a5bab 100644
--- a/services/devicepolicy/java/com/android/server/devicepolicy/DevicePolicyManagerService.java
+++ b/services/devicepolicy/java/com/android/server/devicepolicy/DevicePolicyManagerService.java
@@ -16549,11 +16549,13 @@
                 hasCallingOrSelfPermission(permission.NOTIFY_PENDING_SYSTEM_UPDATE),
                 "Only the system update service can broadcast update information");
 
-        if (UserHandle.getCallingUserId() != UserHandle.USER_SYSTEM) {
-            Slogf.w(LOG_TAG, "Only the system update service in the system user can broadcast "
-                    + "update information.");
-            return;
-        }
+        mInjector.binderWithCleanCallingIdentity(() -> {
+            if (!mUserManager.getUserInfo(UserHandle.getCallingUserId()).isMain()) {
+                Slogf.w(LOG_TAG, "Only the system update service in the main user can broadcast "
+                        + "update information.");
+                return;
+            }
+        });
 
         if (!mOwners.saveSystemUpdateInfo(info)) {
             // Pending system update hasn't changed, don't send duplicate notification.