Donate to e Foundation | Murena handsets with /e/OS | Own a part of Murena! Learn more

Commit c9a9ffc5 authored by Doug Zongker's avatar Doug Zongker
Browse files

RecoverySystem: update comment to reflect signature changes 

No functionality change is needed.

Change-Id: I2dd4775e484ffa96daa0d8778add5feb6c257424
parent 57852d13

core/java/android/os/RecoverySystem.java

+11 −6
Original line number Diff line number Diff line
@@ -244,12 +244,17 @@ public class RecoverySystem { 
            // The signature cert matches a trusted key.  Now verify that

            // the digest in the cert matches the actual file data.



            // The verifier in recovery *only* handles SHA1withRSA

            // signatures.  SignApk.java always uses SHA1withRSA, no

            // matter what the cert says to use.  Ignore

            // cert.getSigAlgName(), and instead use whatever

            // algorithm is used by the signature (which should be

            // SHA1withRSA).

            // The verifier in recovery only handles SHA1withRSA and

            // SHA256withRSA signatures.  SignApk chooses which to use

            // based on the signature algorithm of the cert:

            //

            //    "SHA256withRSA" cert -> "SHA256withRSA" signature

            //    "SHA1withRSA" cert   -> "SHA1withRSA" signature

            //    "MD5withRSA" cert    -> "SHA1withRSA" signature (for backwards compatibility)

            //    any other cert       -> SignApk fails

            //

            // Here we ignore whatever the cert says, and instead use

            // whatever algorithm is used by the signature.



            String da = sigInfo.getDigestAlgorithm();

            String dea = sigInfo.getDigestEncryptionAlgorithm();