mirrors/fdroidserver
1
0
Fork 0
mirror of https://github.com/f-droid/fdroidserver.git synced 2025-09-13 14:32:28 +03:00
Code Issues Projects Releases Packages Wiki Activity Actions

install: verify sig for all downloaded APKs if apksigner is installed

Browse source
This commit is contained in:
Hans-Christoph Steiner 2024-11-05 15:06:00 +01:00
parent addb7b9acc
commit 05e091804d
1 changed files with 4 additions and 4 deletions
Download patch file Download diff file Expand all files Collapse all files

8
fdroidserver/install.py
View file

@ -198,10 +198,6 @@ def install_fdroid_apk(privacy_mode=False):
else: else:
return _('F-Droid.apk could not be downloaded from any known source!') return _('F-Droid.apk could not be downloaded from any known source!')
if common.config and common.config.get('apksigner'):
# TODO this should always verify, but that requires APK sig verification in Python #94
logging.info(_('Verifying package {path} with apksigner.').format(path=f))
common.verify_apk_signature(f)
fingerprint = common.apk_signer_fingerprint(f) fingerprint = common.apk_signer_fingerprint(f)
if fingerprint.upper() != common.FDROIDORG_FINGERPRINT: if fingerprint.upper() != common.FDROIDORG_FINGERPRINT:
return _('{path} has the wrong fingerprint ({fingerprint})!').format( return _('{path} has the wrong fingerprint ({fingerprint})!').format(
@ -211,6 +207,10 @@ def install_fdroid_apk(privacy_mode=False):
def install_apk(f): def install_apk(f):
if common.config and common.config.get('apksigner'):
# TODO this should always verify, but that requires APK sig verification in Python #94
logging.info(_('Verifying package {path} with apksigner.').format(path=f))
common.verify_apk_signature(f)
if common.config and common.config.get('adb'): if common.config and common.config.get('adb'):
if devices(): if devices():
install_apks_to_devices([f]) install_apks_to_devices([f])