Use CA certificates from standard location in Brillo. Brillo images have all the CA certificates for the whole system in /system/etc/security/cacerts. For update_engine, we would like to accept only a sub-set of those, but we will start by accepting all the installed certs. Bug: 25089263 Test: `mm`, deployed on a -userdebug build and updated Change-Id: Ib05e6ea1c5efb98a6320ce6288842e2277f67b1f

commit: 35b3584ab4041aa32e1d049bd6ddff5941b03df2 [log] [tgz]
author: Alex Deymo <deymo@google.com> Tue Oct 20 11:21:56 2015 -0700
committer: Gerrit Code Review <noreply-gerritcodereview@google.com> Tue Oct 20 20:52:03 2015 +0000
tree: 3c5a3a2ba44af82cf0ba6b86089bcce5706db3ed
parent: 6eddf26ce30989c0f4812b3b9de17760a40fdea7 [diff] [blame]
diff --git a/platform_constants_chromeos.cc b/platform_constants_chromeos.cc
index d7aeca5..fe67002 100644
--- a/platform_constants_chromeos.cc
+++ b/platform_constants_chromeos.cc

@@ -27,6 +27,7 @@
 const char kOmahaPlatformName[] = "Chrome OS";
 const char kUpdatePayloadPublicKeyPath[] =
     "/usr/share/update_engine/update-payload-key.pub.pem";
+const char kCACertificatesPath[] = "/usr/share/chromeos-ca-certificates";
 const char kOmahaResponseDeadlineFile[] =
     "/tmp/update-check-response-deadline";
commit	35b3584ab4041aa32e1d049bd6ddff5941b03df2	[log] [tgz]
author	Alex Deymo <deymo@google.com>	Tue Oct 20 11:21:56 2015 -0700
committer	Gerrit Code Review <noreply-gerritcodereview@google.com>	Tue Oct 20 20:52:03 2015 +0000
tree	3c5a3a2ba44af82cf0ba6b86089bcce5706db3ed
parent	6eddf26ce30989c0f4812b3b9de17760a40fdea7 [diff] [blame]