commit | 29045203f3f694cddea7b3f115ea82f648ba0cba | [log] [tgz] |
---|---|---|
author | Alex Klyubin <klyubin@google.com> | Tue May 31 16:04:49 2016 -0700 |
committer | Alex Klyubin <klyubin@google.com> | Tue May 31 16:10:00 2016 -0700 |
tree | b2352445196047a6ff423af54504d4a03536c67a | |
parent | 1c39a112b43e50da4e801d634e28ae7a130c0dcb [diff] |
Use correct cert chain from PKCS#7 SignedData block. This fixes a bug where APK JAR signature verifier returned the wrong certificate chain. Rather than returning the cert chain of the verified SignerInfo, it was returning the bag of certs of the PKCS#7 SignedData block. This issue was introduced in Android N and thus does not affect earlier Android platform versions. Bug: 29055836 Change-Id: I684c0f8e9ff47b922030645e07b6a114c0eb0963