summaryrefslogtreecommitdiffstats
path: root/cmds/keystore
Commit message (Collapse)AuthorAgeFilesLines
* Remove the simulator target from all makefiles.Jeff Brown2011-07-111-4/+0
| | | | | | Bug: 5010576 Change-Id: I04d722f258951a3078fe07899f5bbe8aac02a8e8
* Revert "Add keychain user with special keystore access permissions"Brian Carlstrom2011-06-301-1/+0
| | | | | | | | | | | This reverts commit 8c2a1a90a81f04573bfa578eab32f5fd4a30eafb. Conflicts: cmds/keystore/keystore.c Bug:4970237 Change-Id: I626023d695becfada47e5f319b18e0889b766563
* KeyStore: fix test-keystoreChia-chi Yeh2011-06-271-4/+5
| | | | Change-Id: I1dcbd5c3cc7569c397d2480cda76288a9e28cd5c
* KeyStore: allow system user to get secrets from keystore.Chia-chi Yeh2011-06-261-1/+1
| | | | Change-Id: I9cb41344c17fb33e6614a45d46368a9c43e3dce7
* Reinitialize KeyStore::mMasterKey after unlock (and add test-keystore)Brian Carlstrom2011-06-232-0/+273
| | | | | | Bug: 4599735 Change-Id: Iee38a2e2929c45b6405214c9012819da09b273af
* KeyStore.reset changesBrian Carlstrom2011-06-021-3/+1
| | | | | | | | | | | | | restore keystore reset behavior of removing master key. otherwise after reboot keystore has is LOCKED and not UNINITIALIZED cmds/keystore/keystore.cpp when removing password, reset the keystore, so it doesn't remain locked with a now bogus password. core/java/com/android/internal/widget/LockPatternUtils.java Change-Id: If5e0bb50b42599e9ca27a8b91d6cec12528419a1
* Integrating keystore with keyguard (Part 1 of 4)Brian Carlstrom2011-06-015-621/+851
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Summary: frameworks/base keystore rewrite keyguard integration with keystore on keyguard entry or keyguard change KeyStore API simplification packages/apps/Settings Removed com.android.credentials.SET_PASSWORD intent support Added keyguard requirement for keystore use packages/apps/CertInstaller Tracking KeyStore API changes Fix for NPE in CertInstaller when certificate lacks basic constraints packages/apps/KeyChain Tracking KeyStore API changes Details: frameworks/base Move keystore from C to C++ while rewriting password implementation. Removed global variables. Added many comments. cmds/keystore/Android.mk cmds/keystore/keystore.h cmds/keystore/keystore.c => cmds/keystore/keystore.cpp cmds/keystore/keystore_cli.c => cmds/keystore/keystore_cli.cpp Changed saveLockPattern and saveLockPassword to notify the keystore on changes so that the keystore master key can be reencrypted when the keyguard changes. core/java/com/android/internal/widget/LockPatternUtils.java Changed unlock screens to pass values for keystore unlock or initialization policy/src/com/android/internal/policy/impl/PasswordUnlockScreen.java policy/src/com/android/internal/policy/impl/PatternUnlockScreen.java KeyStore API changes - renamed test() to state(), which now return a State enum - made APIs with byte[] key arguments private - added new KeyStore.isEmpty used to determine if a keyguard is required keystore/java/android/security/KeyStore.java In addition to tracking KeyStore API changes, added new testIsEmpty and improved some existing tests to validate expect values. keystore/tests/src/android/security/KeyStoreTest.java packages/apps/Settings Removing com.android.credentials.SET_PASSWORD intent with the removal of the ability to set an explicit keystore password now that the keyguard value is used. Changed to ensure keyguard is enabled for keystore install or unlock. Cleaned up interwoven dialog handing into discrete dialog helper classes. AndroidManifest.xml src/com/android/settings/CredentialStorage.java Remove layout for entering new password res/layout/credentials_dialog.xml Remove enable credentials checkbox res/xml/security_settings_misc.xml src/com/android/settings/SecuritySettings.java Added ability to specify minimum quality key to ChooseLockGeneric Activity. Used by CredentialStorage, but could also be used by CryptKeeperSettings. Changed ChooseLockGeneric to understand minimum quality for keystore in addition to DPM and device encryption. src/com/android/settings/ChooseLockGeneric.java Changed to use getActivePasswordQuality from getKeyguardStoredPasswordQuality based on experience in CredentialStorage. Removed bogus class javadoc. src/com/android/settings/CryptKeeperSettings.java Tracking KeyStore API changes src/com/android/settings/vpn/VpnSettings.java src/com/android/settings/wifi/WifiSettings.java Removing now unused string resources res/values-af/strings.xml res/values-am/strings.xml res/values-ar/strings.xml res/values-bg/strings.xml res/values-ca/strings.xml res/values-cs/strings.xml res/values-da/strings.xml res/values-de/strings.xml res/values-el/strings.xml res/values-en-rGB/strings.xml res/values-es-rUS/strings.xml res/values-es/strings.xml res/values-fa/strings.xml res/values-fi/strings.xml res/values-fr/strings.xml res/values-hr/strings.xml res/values-hu/strings.xml res/values-in/strings.xml res/values-it/strings.xml res/values-iw/strings.xml res/values-ja/strings.xml res/values-ko/strings.xml res/values-lt/strings.xml res/values-lv/strings.xml res/values-ms/strings.xml res/values-nb/strings.xml res/values-nl/strings.xml res/values-pl/strings.xml res/values-pt-rPT/strings.xml res/values-pt/strings.xml res/values-rm/strings.xml res/values-ro/strings.xml res/values-ru/strings.xml res/values-sk/strings.xml res/values-sl/strings.xml res/values-sr/strings.xml res/values-sv/strings.xml res/values-sw/strings.xml res/values-th/strings.xml res/values-tl/strings.xml res/values-tr/strings.xml res/values-uk/strings.xml res/values-vi/strings.xml res/values-zh-rCN/strings.xml res/values-zh-rTW/strings.xml res/values-zu/strings.xml res/values/strings.xml packages/apps/CertInstaller Tracking KeyStore API changes src/com/android/certinstaller/CertInstaller.java Fix for NPE in CertInstaller when certificate lacks basic constraints src/com/android/certinstaller/CredentialHelper.java packages/apps/KeyChain Tracking KeyStore API changes src/com/android/keychain/KeyChainActivity.java src/com/android/keychain/KeyChainService.java support/src/com/android/keychain/tests/support/IKeyChainServiceTestSupport.aidl support/src/com/android/keychain/tests/support/KeyChainServiceTestSupport.java tests/src/com/android/keychain/tests/KeyChainServiceTest.java Change-Id: Ic141fb5d4b43d12fe62cb1e29c7cbd891b4be35d
* Add keychain user with special keystore access permissionsBrian Carlstrom2011-04-081-0/+1
| | | | Change-Id: I02fe5171add62c5cd9f57b01bc137f3bc1cb3a69
* KeyStore: Update the parameters of generating master keys.Chia-chi Yeh2010-10-011-24/+71
| | | | | | | | To improve the security, the parameters to generate the master key has been changed. Special cares has been taken to prevent from permanent damages of the existing data during the transition process. Change-Id: I0c93f3de28a9fcd314932675ccfb65a7f11fa3ff
* KeyStore: Initialize IV correctly.Chia-chi Yeh2010-09-301-1/+1
| | | | Change-Id: Idbf207dfcc11b92e606cbf4fd3732ed7a8aa3416
* KeyStore: Fix the return value when send() or recv() has an error.Chia-chi Yeh2010-09-301-1/+4
| | | | Change-Id: I20a63c76bd29b1a9f8959a6c4fe5a5b8a9a971b4
* keystore: rephrase the comment to make the usage more clear.Chia-chi Yeh2010-03-171-3/+5
| | | | Change-Id: I529ca7ed443060089c95fe96dd230288be4b6c96
* Merge "keystore: add AID_ROOT into the user table."Chia-chi Yeh2010-03-081-5/+6
|\
| * keystore: add AID_ROOT into the user table.Chia-chi Yeh2010-03-091-5/+6
| | | | | | | | Change-Id: I4b9cf24d75ca79583d7913bbb2c33745a2316cde
* | keystore: allow '\0's in keys and add guards for cplusplus.Chia-chi Yeh2010-03-081-4/+10
|/ | | | Change-Id: I0af6ed7c5d51ce4ca39cb837e475942800cf6e2d
* keystore: compute the padding in an intuitive way.Chia-chi Yeh2009-12-301-7/+3
|
* keystore: Add paddings before checksumming.Chia-chi Yeh2009-12-221-10/+13
| | | | | | Also fix a file descriptor leak when file system is nearly full. Bug: 2339184
* keystore: remove old implementation and test.Chia-chi Yeh2009-09-249-1532/+0
| | | | The new tests will be implemented in java.
* keystore: rename scan() to saw().Chia-chi Yeh2009-09-221-4/+4
|
* keystore: exclude builds for simulator.Chia-chi Yeh2009-09-221-0/+4
|
* keystore: enable delete(), scan(), exist() when keystore is locked.Chia-chi Yeh2009-09-211-4/+14
| | | | Also check end-of-file explicitly.
* keystore: switch to multi-user version.Chia-chi Yeh2009-09-184-61/+87
|
* keystore: add multi-user support.Chia-chi Yeh2009-09-183-0/+662
| | | | Change-Id: I60268261110934a1d60efa341ff530f94415724f
* Fix a minor bug in is_alnum_string()...Hung-ying Tyan2009-09-171-5/+8
| | | | and remove some verbose logging
* Add tests and misc fixes on keystore.Hung-ying Tyan2009-09-117-24/+94
| | | | | | | | | * Refactor netkeystore.c to make client and server code testable. * Add a client test for setting new passwd and changing passwd. * Exclude "." and ".." from reset_keystore(). * Change ServerCommand.executeCommand() to accept variable length of arguments and add convert() to marshalling the args to bytes. * Keystore.java is revised accordingly.
* Replace the delimiter whitespace with '\0'.Chung-yih Wang2009-09-095-87/+96
| | | | | | | | + Use '\0' as the delimiter. + Allow whitespace character for keystore password. In previous implementation, we use space as the delimiter. That will stop user from using passphrase with whitespace character.
* Fix network order for marshalling in keystore interface.repo sync2009-08-102-1/+8
| | | | This will fix the endian issue for heterogeneous architectures in keystore marshalling interface.
* Merge change 9438 into donutAndroid (Google) Code Review2009-07-311-2/+3
|\ | | | | | | | | * changes: Change some log.i to log.d.
| * Change some log.i to log.d.Hung-ying Tyan2009-08-011-2/+3
| |
* | Add unit tests for netkeystore.Chung-yih Wang2009-07-303-7/+308
|/ | | | + some boundary checks.
* Add memcpy and strcpy boundary check.Chung-yih Wang2009-07-241-1/+31
|
* keystore: Fix a compile warning.Chia-chi Yeh2009-07-161-1/+1
|
* Merge change 6198 into donutAndroid (Google) Code Review2009-07-061-0/+53
|\ | | | | | | | | * changes: keystore: Provide a generic getter for native components.
| * keystore: Provide a generic getter for native components.Chia-chi Yeh2009-07-061-0/+53
| |
* | Add password field for WiFi configuration.Chung-yih Wang2009-07-051-4/+12
|/ | | | | | | 1. the certtool.h is modified for avoiding the side effect, for saving the configuration with wpa_supplicant. 2. put the loadLibrary back in CertTool.java 3. Fix incorrect JNI declarations.
* Two small checks in keymgmt.Chung-yih Wang2009-07-033-1/+10
| | | | | 1. Enforce the state check in listkey(). 2. Enforce the password length check.
* Remove the null-termination for Java string compatibility.Chung-yih Wang2009-07-021-1/+1
| | | | | | 1. Also change the keyname delimiter in CertTool.java. 2. Return NOTFOUND if the result.len==0 in the listKeys(). 3. Define the keystore states in the class Keystore.
* Implement the generic mini-keystore for security.Chung-yih Wang2009-07-0210-619/+1098
| | | | | | | | | | | | | | | 1. We will progressively migrate to this implementation. 2. For richc to have a quick review on the keymgmt part. 3. Add remove_key and make sure all functions are working. 4. Add permission check for get operation. 5. Return the retry count if unlock failed. 6. Add the reset operation for keystore reset. 7. Add the putfile shell command for putting the key value from file. 8. Fix the boundary issue during parsing command. 9. Use the ' ' as delimiter and reset the reply structure for each request. 10. Add change password retry count check. 11. Extract the read_marshal/write_marshal for certtool.h. 12. Remove the old implementation.
* Change the keystore APIs.Chung-yih Wang2009-06-173-72/+235
| | | | | 1. simplify the keypair selection in UI. 2. add the user certificate and key into the keystore for keygen feature.
* Provide the Keystore feature in the framework.Chung-yih Wang2009-06-112-20/+27
| | | | | -- added the keystore library for Java application. -- changed the marshalling of the keystore function return.
* First version of the keystore service.Chung-yih Wang2009-06-084-0/+467
The keystore service is protected by the user 'keystore'. Only keystore user/group can access the key content. All users are able to do the following commands from shell as well: listcerts listuserkeys installcert removecert installuserkey removeuserkey
generated by cgit v1.1 at 2024-09-18 02:05:51 +0000