Don't use upgrade-key-sets check when scanning during boot. Apps may specify upgrade-key-sets which are different than their current signing keys to prevent a future upgrade with the current set of keys. Every package is re-scanned on boot, however, so the existing application would violate its own recorded upgrade-key-sets. Change the key verification check to ignore upgrade-key-sets on boot. Also default to the same-sig checks if the upgrade-key-set meta-data has been corrupted. Bug: 21785716 Change-Id: I5c0c1e2017ec780a745a74488620bfe95b052269

commit: 465ef5c43940e31ff4479175e51793c63a0e05ab [log] [tgz]
author: dcashman <dcashman@google.com> Thu Jun 11 15:22:05 2015 -0700
committer: dcashman <dcashman@google.com> Fri Jun 12 11:18:50 2015 -0700
tree: 5cf9dbff4b3eb98deadfab9cc590398ab75c49b8
parent: 31ae9936a63f484dd872baa7657c4ce79f27d7ce [diff] [blame]
diff --git a/services/core/java/com/android/server/pm/KeySetManagerService.java b/services/core/java/com/android/server/pm/KeySetManagerService.java
index 7531403..1ee07a5 100644
--- a/services/core/java/com/android/server/pm/KeySetManagerService.java
+++ b/services/core/java/com/android/server/pm/KeySetManagerService.java

@@ -277,6 +277,11 @@
         return mKeySets.get(keySetId);
     }
 
+    /* Checks if an identifier refers to a known keyset */
+    public boolean isIdValidKeySetId(long id) {
+        return mKeySets.get(id) != null;
+    }
+
     /**
      * Fetches the {@link PublicKey public keys} which belong to the specified
      * KeySet id.
commit	465ef5c43940e31ff4479175e51793c63a0e05ab	[log] [tgz]
author	dcashman <dcashman@google.com>	Thu Jun 11 15:22:05 2015 -0700
committer	dcashman <dcashman@google.com>	Fri Jun 12 11:18:50 2015 -0700
tree	5cf9dbff4b3eb98deadfab9cc590398ab75c49b8
parent	31ae9936a63f484dd872baa7657c4ce79f27d7ce [diff] [blame]