FileIntegrityManager

Kotlin |Java

public final class FileIntegrityManager
extends Object

java.lang.Object
↳	android.security.FileIntegrityManager

This class provides access to file integrity related operations.

Summary

Public methods
`boolean`	`isApkVeritySupported()` Returns whether fs-verity is supported on the device.
`boolean`	`isAppSourceCertificateTrusted(X509Certificate certificate)` This method was deprecated in API level VanillaIceCream. The feature is no longer supported, and this API now always returns false.

Inherited methods

From class


        
          java.lang.Object

`Object`	`clone()` Creates and returns a copy of this object.
`boolean`	`equals(Object obj)` Indicates whether some other object is "equal to" this one.
`void`	`finalize()` Called by the garbage collector on an object when garbage collection determines that there are no more references to the object.
`final Class<?>`	`getClass()` Returns the runtime class of this `Object`.
`int`	`hashCode()` Returns a hash code value for the object.
`final void`	`notify()` Wakes up a single thread that is waiting on this object's monitor.
`final void`	`notifyAll()` Wakes up all threads that are waiting on this object's monitor.
`String`	`toString()` Returns a string representation of the object.
`final void`	`wait(long timeoutMillis, int nanos)` Causes the current thread to wait until it is awakened, typically by being notified or interrupted, or until a certain amount of real time has elapsed.
`final void`	`wait(long timeoutMillis)` Causes the current thread to wait until it is awakened, typically by being notified or interrupted, or until a certain amount of real time has elapsed.
`final void`	`wait()` Causes the current thread to wait until it is awakened, typically by being notified or interrupted.

Public methods

isApkVeritySupported

Added in API level 30

public boolean isApkVeritySupported ()

Returns whether fs-verity is supported on the device. fs-verity provides on-access verification, although the app APIs are only made available to apps in a later SDK version. Only when this method returns true, the other fs-verity APIs in the same class can succeed.

The app may not need this method and just call the other APIs normally and handle any failure. If some app feature really depends on fs-verity (e.g. protecting integrity of a large file download), an early check of support status may avoid any cost if it is to fail late.

Note: for historical reasons this is named isApkVeritySupported() instead of isFsVeritySupported(). It has also been available since API level 30, predating the other fs-verity APIs.

Returns
`boolean`

isAppSourceCertificateTrusted

Added in API level 30
Deprecated in API level VanillaIceCream

public boolean isAppSourceCertificateTrusted (X509Certificate certificate)

This method was deprecated in API level VanillaIceCream.
The feature is no longer supported, and this API now always returns false.

Returns whether the given certificate can be used to prove app's install source. Always return false if the feature is not supported.

A store can use this API to decide if a signature file needs to be downloaded. Also, if a store has shipped different certificates before (e.g. with stronger and weaker key), it can also use this API to download the best signature on the running device.
Requires Manifest.permission.INSTALL_PACKAGES or Manifest.permission.REQUEST_INSTALL_PACKAGES

Parameters
`certificate`	`X509Certificate`: This value cannot be `null`.

Returns
`boolean`	whether the certificate is trusted in the system

Throws
`CertificateEncodingException`