add packageName to whitelist
As of !1 (merged), there is a signing key whitelist which is used to allow apps to send install/delete commands to the Privileged Extension. packageName
needs to also be included on that whitelist so both the packageName
and signing certificate must match. This limits the malware possibilities if there is a key compromise of the trusted signing key since the F-Droid package would have to be updated to take advantage of this access. Currently, after a key compromise, the malware could have any packageName
. I think it should be in a form of pairs:
{"org.fdroid.fdroid", "43238d512c1e5eb2d6569f4a3afbf5523418b82e0a3ed1552770abb9a9c9ccab"},
{"org.fdroid.fdroid.swap", "43238d512c1e5eb2d6569f4a3afbf5523418b82e0a3ed1552770abb9a9c9ccab"},