Stay organized with collections Save and categorize content based on your preferences.

public final class FileIntegrityManager
extends Object


This class provides access to file integrity related operations.

Summary

Public methods

boolean isApkVeritySupported()

Returns true if APK Verity is supported on the device.

boolean isAppSourceCertificateTrusted(X509Certificate certificate)

Returns whether the given certificate can be used to prove app's install source.

Inherited methods

From class java.lang.Object

Object clone()

Creates and returns a copy of this object.

boolean equals(Object obj)

Indicates whether some other object is "equal to" this one.

void finalize()

Called by the garbage collector on an object when garbage collection determines that there are no more references to the object.

final Class<?> getClass()

Returns the runtime class of this Object.

int hashCode()

Returns a hash code value for the object.

final void notify()

Wakes up a single thread that is waiting on this object's monitor.

final void notifyAll()

Wakes up all threads that are waiting on this object's monitor.

String toString()

Returns a string representation of the object.

final void wait(long timeoutMillis, int nanos)

Causes the current thread to wait until it is awakened, typically by being notified or interrupted, or until a certain amount of real time has elapsed.

final void wait(long timeoutMillis)

Causes the current thread to wait until it is awakened, typically by being notified or interrupted, or until a certain amount of real time has elapsed.

final void wait()

Causes the current thread to wait until it is awakened, typically by being notified or interrupted.

Public methods

isApkVeritySupported

public boolean isApkVeritySupported ()

Returns true if APK Verity is supported on the device. When supported, an APK can be installed with a fs-verity signature (if verified with trusted App Source Certificate) for continuous on-access verification.

Returns
boolean

isAppSourceCertificateTrusted

public boolean isAppSourceCertificateTrusted (X509Certificate certificate)

Returns whether the given certificate can be used to prove app's install source. Always return false if the feature is not supported.

A store can use this API to decide if a signature file needs to be downloaded. Also, if a store has shipped different certificates before (e.g. with stronger and weaker key), it can also use this API to download the best signature on the running device.
Requires Manifest.permission.INSTALL_PACKAGES or Manifest.permission.REQUEST_INSTALL_PACKAGES

Parameters
certificate X509Certificate: This value cannot be null.
Returns
boolean whether the certificate is trusted in the system
Throws
CertificateEncodingException

Content and code samples on this page are subject to the licenses described in the Content License. Java and OpenJDK are trademarks or registered trademarks of Oracle and/or its affiliates.

Last updated 2023-02-08 UTC.