Merge "Harden KeyInfo." into mnc-dev

author: Alex Klyubin <klyubin@google.com> 2015-06-16 20:37:57 +0000
committer: Android (Google) Code Review <android-gerrit@google.com> 2015-06-16 20:37:59 +0000
commit: e826515469274b4675a5ae6948dd04855ff0b786 (patch)
tree: 2f8779eb8a059d4465f0f0a81d7090c5ba810f3e /keystore
parent: 57af75313c005134b85cf29b7e9972ca1fad53dc (diff)
parent: ffdfb57931d1189feef51c4baa866d07265976a3 (diff)
download: frameworks_base-e826515469274b4675a5ae6948dd04855ff0b786.zip
frameworks_base-e826515469274b4675a5ae6948dd04855ff0b786.tar.gz
frameworks_base-e826515469274b4675a5ae6948dd04855ff0b786.tar.bz2
1 files changed, 8 insertions, 6 deletions
diff --git a/keystore/java/android/security/keystore/KeyInfo.java b/keystore/java/android/security/keystore/KeyInfo.java
index e4f921e..03b4100 100644
--- a/keystore/java/android/security/keystore/KeyInfo.java
+++ b/keystore/java/android/security/keystore/KeyInfo.java
@@ -33,6 +33,8 @@ import javax.crypto.SecretKey;
  * is authorized for (e.g., only in {@code CBC} mode, or signing only), whether the key should be
  * encrypted at rest, the key's and validity start and end dates.
  *
+ * <p>Instances of this class are immutable.
+ *
  * <p><h3>Example: Symmetric Key</h3>
  * The following example illustrates how to obtain a {@code KeyInfo} describing the provided Android
  * Keystore {@link SecretKey}.
@@ -102,9 +104,9 @@ public class KeyInfo implements KeySpec {
         mInsideSecureHardware = insideSecureHardware;
         mOrigin = origin;
         mKeySize = keySize;
-        mKeyValidityStart = keyValidityStart;
-        mKeyValidityForOriginationEnd = keyValidityForOriginationEnd;
-        mKeyValidityForConsumptionEnd = keyValidityForConsumptionEnd;
+        mKeyValidityStart = Utils.cloneIfNotNull(keyValidityStart);
+        mKeyValidityForOriginationEnd = Utils.cloneIfNotNull(keyValidityForOriginationEnd);
+        mKeyValidityForConsumptionEnd = Utils.cloneIfNotNull(keyValidityForConsumptionEnd);
         mPurposes = purposes;
         mEncryptionPaddings =
                 ArrayUtils.cloneIfNotEmpty(ArrayUtils.nullToEmpty(encryptionPaddings));
@@ -155,7 +157,7 @@ public class KeyInfo implements KeySpec {
      */
     @Nullable
     public Date getKeyValidityStart() {
-        return mKeyValidityStart;
+        return Utils.cloneIfNotNull(mKeyValidityStart);
     }
 
     /**
@@ -165,7 +167,7 @@ public class KeyInfo implements KeySpec {
      */
     @Nullable
     public Date getKeyValidityForConsumptionEnd() {
-        return mKeyValidityForConsumptionEnd;
+        return Utils.cloneIfNotNull(mKeyValidityForConsumptionEnd);
     }
 
     /**
@@ -175,7 +177,7 @@ public class KeyInfo implements KeySpec {
      */
     @Nullable
     public Date getKeyValidityForOriginationEnd() {
-        return mKeyValidityForOriginationEnd;
+        return Utils.cloneIfNotNull(mKeyValidityForOriginationEnd);
     }
 
     /**
author	Alex Klyubin <klyubin@google.com>	2015-06-16 20:37:57 +0000
committer	Android (Google) Code Review <android-gerrit@google.com>	2015-06-16 20:37:59 +0000
commit	e826515469274b4675a5ae6948dd04855ff0b786 (patch)
tree	2f8779eb8a059d4465f0f0a81d7090c5ba810f3e /keystore
parent	57af75313c005134b85cf29b7e9972ca1fad53dc (diff)
parent	ffdfb57931d1189feef51c4baa866d07265976a3 (diff)
download	frameworks_base-e826515469274b4675a5ae6948dd04855ff0b786.zip frameworks_base-e826515469274b4675a5ae6948dd04855ff0b786.tar.gz frameworks_base-e826515469274b4675a5ae6948dd04855ff0b786.tar.bz2