Verify android library's (aar) signature on runtime

Asked Jan 08 '19 at 16:50

Active Jan 08 '19 at 16:50

Viewed 308 times

I am developing an Android library which I am going to distribute to my business partners. I have signed it with my key store and I want to verify the signature on runtime to see if my library is recompiled using a different signature. But the normal way to verify the signature

PackageManager pm = ctx.getPackageManager();
(PackageInfo packageInfo = pm.getPackageInfo(ctx.getPackageName(), 
PackageManager.GET_SIGNATURES);)

in case of APK is not working as it returns only the application's signature and not the signature I signed my library with. Is there a way to do this?

asked Jan 08 '19 at 16:50

madking

were you able to figure out how to do this? Any help is appreciated – learner Nov 21 '20 at 23:14
@learner unfortunately no. – madking Nov 23 '20 at 13:09

Verify android library's (aar) signature on runtime

0 Answers0