Add API for checking which CA certs were installed by the DO/PO With this API, the system can determine whether a CA cert was installed by the user or the user's DO/PO. Bug: 32692748 Test: unit tests (see DevicePolicyManagerTest.java for invocation) Test: cts-tradefed run cts-dev --module CtsDevicePolicyManagerTestCases Change-Id: I3bcae5ac18ec2b110154184fc515df804fd73da6

commit: 05dc9f764c9d399add8b7495e680f66d098c55eb [log] [tgz]
author: Bartosz Fabianowski <bartfab@google.com> Wed Feb 22 23:41:14 2017 +0100
committer: Bartosz Fabianowski <bartfab@google.com> Fri Mar 03 19:42:51 2017 +0100
tree: 9ef2b8247c040c633438baffc7dd38e9f819339d
parent: f063264d3a1393608501f9c07180a1f3cfbb8b7f [diff] [blame]
diff --git a/keystore/java/android/security/IKeyChainService.aidl b/keystore/java/android/security/IKeyChainService.aidl
index b685431..c4bb72c 100644
--- a/keystore/java/android/security/IKeyChainService.aidl
+++ b/keystore/java/android/security/IKeyChainService.aidl

@@ -29,8 +29,8 @@
     byte[] getCertificate(String alias);
     byte[] getCaCertificates(String alias);
 
-    // APIs used by CertInstaller
-    void installCaCertificate(in byte[] caCertificate);
+    // APIs used by CertInstaller and DevicePolicyManager
+    String installCaCertificate(in byte[] caCertificate);
 
     // APIs used by DevicePolicyManager
     boolean installKeyPair(in byte[] privateKey, in byte[] userCert, in byte[] certChain, String alias);
commit	05dc9f764c9d399add8b7495e680f66d098c55eb	[log] [tgz]
author	Bartosz Fabianowski <bartfab@google.com>	Wed Feb 22 23:41:14 2017 +0100
committer	Bartosz Fabianowski <bartfab@google.com>	Fri Mar 03 19:42:51 2017 +0100
tree	9ef2b8247c040c633438baffc7dd38e9f819339d
parent	f063264d3a1393608501f9c07180a1f3cfbb8b7f [diff] [blame]