b05b62d - platform/build

commit	b05b62df2e69e59fcb0698b25bd4eca8686fb1d0	[log] [tgz]
author	Alex Klyubin <klyubin@google.com>	Wed Jan 13 10:32:47 2016 -0800
committer	Alex Klyubin <klyubin@google.com>	Wed Feb 10 17:19:08 2016 -0800
tree	57349363f2665ce37a515447510364c9b7d58eeb
parent	405e71dcd3e96457766c3ac3f2aa3d4bd9f95e32 [diff]

Sign APKs using SHA-256 instead of SHA-1 when possible.

This changes the build system to provide the signapk tool with the
minSdkVersion of the APK being signed. signapk in turn will then use
SHA-256 instead of SHA-1 if minSdkVersion is 18 (JB MR2) or higher
(see c2c49ed0c13846f7f96249c7419971dfcddc9215).

To avoid increasing incremental OTA update package sizes for already
released platforms, release build scripts disable the above logic when
signing target files ZIPs for pre-N platforms.

Bug: 25643280

(cherry picked from commit 2cfd1d108c82bdedccb03917e09aa5e677e8fde2)

Change-Id: I38450d07ddc05c705de40313f843beada8db7d98

core/definitions.mk[diff]
core/prebuilt_internal.mk[diff]
tools/releasetools/common.py[diff]
tools/releasetools/sign_target_files_apks.py[diff]

4 files changed

tree: 57349363f2665ce37a515447510364c9b7d58eeb

core/
libs/
target/
tools/
.gitignore
buildspec.mk.default
CleanSpec.mk
envsetup.sh