Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / frameworks / base / 5ac2ea1b4d6dbaca045acd4ae9f82bb27089d5f2
commit5ac2ea1b4d6dbaca045acd4ae9f82bb27089d5f2[log] [tgz]
authorChad Brubaker <cbrubaker@google.com>Wed Oct 18 10:35:04 2017 -0700
committerChad Brubaker <cbrubaker@google.com>Wed Oct 18 12:30:30 2017 -0700
treecf5c58e54c768498257b6263b9c22501a3167f3a
parent02cca1e0714ca607d794e0482fab0e8d3e922477 [diff]
Make priv apps not trust user added CAs by default

Privileged applications provide core system functionality and as such a
MiTM in one can put the entire system at risk. These applications should
not be trusting user added CAs by default.

Bug: 65406503
Test: runtest --path framework/base/tests/NetworkSecurityConfigTest
Change-Id: I033258fe1c66ad245d172899df52e9cd02e9ca75
6 files changed
tree: cf5c58e54c768498257b6263b9c22501a3167f3a
  1. apct-tests/
  2. api/
  3. cmds/
  4. config/
  5. core/
  6. data/
  7. docs/
  8. drm/
  9. graphics/
  10. keystore/
  11. legacy-test/
  12. libs/
  13. location/
  14. lowpan/
  15. media/
  16. native/
  17. nfc-extras/
  18. obex/
  19. opengl/
  20. packages/
  21. proto/
  22. rs/
  23. samples/
  24. sax/
  25. services/
  26. telecomm/
  27. telephony/
  28. test-runner/
  29. tests/
  30. tools/
  31. vr/
  32. wifi/
  33. Android.bp
  34. Android.mk
  35. CleanSpec.mk
  36. MODULE_LICENSE_APACHE2
  37. NOTICE
  38. pathmap.mk
  39. PREUPLOAD.cfg