Skip to content
Commit 0a8c784d authored by Mohammad Samiul Islam's avatar Mohammad Samiul Islam
Browse files

Allow apex packages to be signed with key that has rollback capability 

When a key is rotated with a new key, it may continue to trust the old
one. As such, trusted old key should be able to update.

We no longer need to handle "key-downgrade" separately in any situation.
An update will be installed iff it is signed by a trusted key (even
during Rollbacks/Downgrades).

Bug: 136002636
Test: atest StagedInstallTest#testTrustedOldKeyIsAccepted
Change-Id: I3455bd00e13a9271fe25cfaac1476ad7e55eb5f3
Merged-In: I3455bd00e13a9271fe25cfaac1476ad7e55eb5f3
parent b929a547
Hide whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment