Google Git
Sign in
android / platform / frameworks / base / 2904520
commit29045203f3f694cddea7b3f115ea82f648ba0cba[log] [tgz]
authorAlex Klyubin <klyubin@google.com>Tue May 31 16:04:49 2016 -0700
committerAlex Klyubin <klyubin@google.com>Tue May 31 16:10:00 2016 -0700
treeb2352445196047a6ff423af54504d4a03536c67a
parent1c39a112b43e50da4e801d634e28ae7a130c0dcb [diff]
Use correct cert chain from PKCS#7 SignedData block.

This fixes a bug where APK JAR signature verifier returned the wrong
certificate chain. Rather than returning the cert chain of the
verified SignerInfo, it was returning the bag of certs of the PKCS#7
SignedData block.

This issue was introduced in Android N and thus does not affect
earlier Android platform versions.

Bug: 29055836
Change-Id: I684c0f8e9ff47b922030645e07b6a114c0eb0963
1 file changed
tree: b2352445196047a6ff423af54504d4a03536c67a
  1. api/
  2. cmds/
  3. core/
  4. data/
  5. docs/
  6. drm/
  7. graphics/
  8. include/
  9. keystore/
  10. libs/
  11. location/
  12. media/
  13. native/
  14. nfc-extras/
  15. obex/
  16. opengl/
  17. packages/
  18. proto/
  19. rs/
  20. samples/
  21. sax/
  22. services/
  23. telecomm/
  24. telephony/
  25. test-runner/
  26. tests/
  27. tools/
  28. wifi/
  29. Android.mk
  30. CleanSpec.mk
  31. compiled-classes-phone
  32. MODULE_LICENSE_APACHE2
  33. NOTICE
  34. preloaded-classes