diff options
author | Kenny Root <kroot@google.com> | 2012-08-31 13:38:11 -0700 |
---|---|---|
committer | Kenny Root <kroot@google.com> | 2012-08-31 16:45:24 -0700 |
commit | a4640c082c8ccf66ebfb50ace5747409ab6aee55 (patch) | |
tree | 7b2266c166f65ef186e913f18110dab6bbd7d9e8 /keystore/java | |
parent | 2701f325a6d4acd920637d2ff6fd6972a9cf836b (diff) | |
download | frameworks_base-a4640c082c8ccf66ebfb50ace5747409ab6aee55.zip frameworks_base-a4640c082c8ccf66ebfb50ace5747409ab6aee55.tar.gz frameworks_base-a4640c082c8ccf66ebfb50ace5747409ab6aee55.tar.bz2 |
Add some NullPointerExceptions to AndroidKeyStore
Existing KeyStore implementations throw NullPointerExceptions beacuse
the KeyStoreSpi doesn't check these arguments for null. Add in checks so
we don't accidentally check some bogus values.
Also switch a RuntimeException to a KeyStoreException
Change-Id: I18f4d4474d607cb2057ea8069b901e0992275e78
Diffstat (limited to 'keystore/java')
-rw-r--r-- | keystore/java/android/security/AndroidKeyStore.java | 41 |
1 files changed, 39 insertions, 2 deletions
diff --git a/keystore/java/android/security/AndroidKeyStore.java b/keystore/java/android/security/AndroidKeyStore.java index 7b6e540..aabfcae 100644 --- a/keystore/java/android/security/AndroidKeyStore.java +++ b/keystore/java/android/security/AndroidKeyStore.java @@ -90,6 +90,10 @@ public class AndroidKeyStore extends KeyStoreSpi { @Override public Certificate[] engineGetCertificateChain(String alias) { + if (alias == null) { + throw new NullPointerException("alias == null"); + } + final X509Certificate leaf = (X509Certificate) engineGetCertificate(alias); if (leaf == null) { return null; @@ -119,6 +123,10 @@ public class AndroidKeyStore extends KeyStoreSpi { @Override public Certificate engineGetCertificate(String alias) { + if (alias == null) { + throw new NullPointerException("alias == null"); + } + byte[] certificate = mKeyStore.get(Credentials.USER_CERTIFICATE + alias); if (certificate != null) { return toCertificate(certificate); @@ -166,6 +174,10 @@ public class AndroidKeyStore extends KeyStoreSpi { @Override public Date engineGetCreationDate(String alias) { + if (alias == null) { + throw new NullPointerException("alias == null"); + } + Date d = getModificationDate(Credentials.USER_PRIVATE_KEY + alias); if (d != null) { return d; @@ -325,7 +337,7 @@ public class AndroidKeyStore extends KeyStoreSpi { @Override public void engineSetKeyEntry(String alias, byte[] userKey, Certificate[] chain) throws KeyStoreException { - throw new RuntimeException("Operation not supported because key encoding is unknown"); + throw new KeyStoreException("Operation not supported because key encoding is unknown"); } @Override @@ -334,6 +346,11 @@ public class AndroidKeyStore extends KeyStoreSpi { throw new KeyStoreException("Entry exists and is not a trusted certificate"); } + // We can't set something to null. + if (cert == null) { + throw new NullPointerException("cert == null"); + } + final byte[] encoded; try { encoded = cert.getEncoded(); @@ -348,6 +365,10 @@ public class AndroidKeyStore extends KeyStoreSpi { @Override public void engineDeleteEntry(String alias) throws KeyStoreException { + if (!isKeyEntry(alias) && !isCertificateEntry(alias)) { + return; + } + if (!Credentials.deleteAllTypesForAlias(mKeyStore, alias)) { throw new KeyStoreException("No such entry " + alias); } @@ -380,6 +401,10 @@ public class AndroidKeyStore extends KeyStoreSpi { @Override public boolean engineContainsAlias(String alias) { + if (alias == null) { + throw new NullPointerException("alias == null"); + } + return mKeyStore.contains(Credentials.USER_PRIVATE_KEY + alias) || mKeyStore.contains(Credentials.USER_CERTIFICATE + alias) || mKeyStore.contains(Credentials.CA_CERTIFICATE + alias); @@ -396,12 +421,24 @@ public class AndroidKeyStore extends KeyStoreSpi { } private boolean isKeyEntry(String alias) { + if (alias == null) { + throw new NullPointerException("alias == null"); + } + return mKeyStore.contains(Credentials.USER_PRIVATE_KEY + alias); } + private boolean isCertificateEntry(String alias) { + if (alias == null) { + throw new NullPointerException("alias == null"); + } + + return mKeyStore.contains(Credentials.CA_CERTIFICATE + alias); + } + @Override public boolean engineIsCertificateEntry(String alias) { - return !isKeyEntry(alias) && mKeyStore.contains(Credentials.CA_CERTIFICATE + alias); + return !isKeyEntry(alias) && isCertificateEntry(alias); } @Override |