Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / frameworks / base / a8e65fd82a323e6065ae9ae6cc8eaa130d3c1efd
commita8e65fd82a323e6065ae9ae6cc8eaa130d3c1efd[log] [tgz]
authorKenny Root <kroot@google.com>Thu Apr 24 11:44:47 2014 -0700
committerKenny Root <kroot@google.com>Tue Apr 29 11:08:50 2014 -0700
tree4b41f44dde2a5873043da66f0c535b30f58f3179
parent25ff2c1ec1b0a3e33710fcf6777abd0fed809877 [diff]
Only remember the signer certificates for Signatures

Previously we would use the JarEntry#getCertificates API which would
return a flattened array of all the signers and their certificate chain.
Since this isn't what was intended, switch to reading the certificate
chains and only paying attention to the signer certificate.

In order to migrate during upgrades of the platform, we'll scan on boot
with a compatibility mode which will check the stores signatures in the
old format by flattening the chains of the scanned packages then
comparing the two sets.

Bug: 13678484
Change-Id: I02a5c53121d8d6f70a51d7e3b98168a41e11482e
4 files changed
tree: 4b41f44dde2a5873043da66f0c535b30f58f3179
  1. api/
  2. cmds/
  3. core/
  4. data/
  5. docs/
  6. drm/
  7. graphics/
  8. include/
  9. keystore/
  10. libs/
  11. location/
  12. media/
  13. native/
  14. nfc-extras/
  15. obex/
  16. opengl/
  17. packages/
  18. policy/
  19. rs/
  20. samples/
  21. sax/
  22. services/
  23. telephony/
  24. test-runner/
  25. tests/
  26. tools/
  27. wifi/
  28. Android.mk
  29. CleanSpec.mk
  30. MODULE_LICENSE_APACHE2
  31. NOTICE
  32. preloaded-classes