Donate to e Foundation | Murena handsets with /e/OS | Own a part of Murena! Learn more

Skip to content
Commit 07ee8ed0 authored by Victor Hsieh's avatar Victor Hsieh
Browse files

Deprecate API: isAppSourceCertificateTrusted 

In the original plan, "app source" such as a store may generate signature
over an app file and install with it. A trusted app source is configurable
by each OEM currently. A next step (that did not happen) is to allow
users to add their trusted app source.

The API is supposed to be used by a store/installer to decide whether
they should download .fsv_sig or not.

As this approach is not scalable, and in fact has not been used at all
per our analysis, we're deprecating the feature, including this API.

When the deprecation feature flag is on, the API simply returns false
(i.e. telling the client no store is trusted and don't bother to
download .fsv_sig; although no one is using it).

A next step is to mark this API @removed in the next release.

Bug: 277347701
Bug: 277348711
Test: flipping the flag com.android.server.security.deprecate_fsv_sig
      atest android.security.cts.FileIntegrityManagerTest
Change-Id: I65730d25a74e6a708c855781d5b20f57d79039e7
parent 58dd38aa
Hide whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment