1
0
mirror of https://gitlab.com/fdroid/fdroidserver.git synced 2024-11-14 19:10:11 +01:00

make fdroid verify use common.verify_apks()

This makes the jarsigner the ultimate and only judge of whether two APKs
match.  This is the best tool since APK signatures are jar signatures. This
should be eventually updated to use the official Android APK signing tool
called apksigner.

https://android.googlesource.com/platform/tools/apksig/
This commit is contained in:
Hans-Christoph Steiner 2016-12-20 14:09:45 +01:00
parent 998b6245e9
commit 364e609ebe

View File

@ -78,9 +78,9 @@ def main():
logging.info("...retrieving " + url) logging.info("...retrieving " + url)
net.download_file(url, dldir=tmp_dir) net.download_file(url, dldir=tmp_dir)
compare_result = common.compare_apks( compare_result = common.verify_apks(
os.path.join(unsigned_dir, apkfilename),
remoteapk, remoteapk,
os.path.join(unsigned_dir, apkfilename),
tmp_dir) tmp_dir)
if compare_result: if compare_result:
raise FDroidException(compare_result) raise FDroidException(compare_result)