1.9 KiB
About test data
.apk
test.apex is copied from ADBD apex built in AOSP.
$ apksigner verify -v test.apex
Verifies
Verified using v1 scheme (JAR signing): false
Verified using v2 scheme (APK Signature Scheme v2): false
Verified using v3 scheme (APK Signature Scheme v3): true
Verified using v4 scheme (APK Signature Scheme v4): false
Verified for SourceStamp: false
Number of signers: 1
APK files are copied from tools/apksig/src/test/resources/com/android/apksig/.
.der
.der files contain the expected public keys. When validating the public keys in tests, if the corresponding .der file is missing, there will be some text as follows in the failure message:
$ echo -en \\x30\\x59\\x30\\x13\\x06\\x07\\x2a\\x86\\x48\\xce\\x3d\\x02\\x01\\x06\\x08\\x2a\\x86\\x48\\xce\\x3d\\x03\\x01\\x07\\x03\\x42\\x00\\x04\\xa6\\x5f\\x11\\x3d\\x22\\xcb\\x49\\x13\\x90\\x83\\x07\\xac\\x31\\xee\\x2b\\xa0\\xe9\\x13\\x8b\\x78\\x5f\\xac\\x65\\x36\\xd1\\x4e\\xa2\\xce\\x90\\xd2\\xb4\\xbf\\xe1\\x94\\xb5\\x0c\\xdc\\x8e\\x16\\x9f\\x54\\xa7\\x3a\\x99\\x1e\\xf0\\xfa\\x76\\x32\\x98\\x25\\xbe\\x07\\x8c\\xc7\\x82\\x74\\x07\\x03\\xda\\x44\\xb4\\xd7\\xeb > tests/data/v3-only-with-stamp.apk.der
You just need to execute this command in the folder libs/apkverify to generate the corresponding .der file. After it, you can run the test again, and the test will pass.
Otherwise, you can also use the command apksigner verify --min-sdk-version 24 --print-certs-pem tests/data/v3-only-with-stamp.apk to get the public key in .pem format and then convert it to .der with openssl.
.apk_digest
.apk_digest files contain the expected apk_digest. They are generated the same way as .der when validating the apk_digest.