summaryrefslogtreecommitdiffstats
path: root/keystore
Commit message (Collapse)AuthorAgeFilesLines
* Don't rely on the system locale for converting to/from bytes.Nick Kralevich2010-03-102-11/+41
| | | | | | | | | | | | | | | | | | | | By default, when java converts Strings to bytes, it uses the default system locale. This can be specified by the -Dfile.encoding option. If no file encoding is specified, java uses ISO8859_1. Unfortunately, not all unicode characters can be mapped to ISO8859_1. Unmappable characters may be replaced by a byte within ISO8859_1, which may change the meaning of the String. This is especially problematic for password strings, and has been used to compromise the security of passwords in the past. Thankfully, Android uses UTF-8 by default, so this bug doesn't effect Android devices. However, it's recommended to explicitly list the character set when converting to/from bytes to avoid the potential ambiguity. Change-Id: Iec927e27ed3fc103696c439f6bd3e8779a37ade8
* Better file permissions enforcement on system keystore.Oscar Montemayor2010-02-221-0/+3
|
* Fix for bug 2427961 ↵Oscar Montemayor2010-02-091-2/+3
| | | | | | android.security.tests.SystemKeyStoreTest:testBasicAccess is failing. Fixed issues in test.
* KeyStore: minor improvements.Chia-chi Yeh2010-02-061-20/+21
| | | | | Make constants final. Only converts ArrayLists to arrays when necessary.
* Apps on SD card.Oscar Montemayor2010-01-151-1/+1
| | | | | Added support for retrieving and generating keys as Hex Strings. Using keys to mount encrypted FS.
* Apps on SD card.Oscar Montemayor2010-01-152-1/+39
| | | | Added support for retrieving and generating keys as Hex Strings.
* Apps on SD card project.Oscar Montemayor2010-01-063-0/+188
| | | | A simple keystore to store system-only key material, by leveraging file system access permissions.
* Add unit test for the new keystore.Chung-yih Wang2009-09-294-0/+226
| | | | | | Since we need to test the keystore with user system in order to test the reset(), password(), lock() and unlock(), we have to take advantage of the ActivityUnitTestCase to run the test with the user 'system'.
* KeyStore: remove classes used by old keystore.Chia-chi Yeh2009-09-242-229/+0
|
* KeyStore: return null when response code indicates an error.Chia-chi Yeh2009-09-241-3/+5
|
* Remove old keystore and related files.Hung-ying Tyan2009-09-246-1207/+0
|
* KeyStore: rename scan() to saw().Chia-chi Yeh2009-09-221-3/+3
|
* KeyStore: add java interface.Chia-chi Yeh2009-09-212-3/+224
|
* Add a helper class to send out credentials.Chia-chi Yeh2009-09-181-0/+98
| | | | Change-Id: I9a550c6edc55d5c2c601223c011922b183cb4d30
* Fix a minor bug in is_alnum_string()...Hung-ying Tyan2009-09-171-4/+0
| | | | and remove some verbose logging
* Add tests and misc fixes on keystore.Hung-ying Tyan2009-09-112-14/+21
| | | | | | | | | * Refactor netkeystore.c to make client and server code testable. * Add a client test for setting new passwd and changing passwd. * Exclude "." and ".." from reset_keystore(). * Change ServerCommand.executeCommand() to accept variable length of arguments and add convert() to marshalling the args to bytes. * Keystore.java is revised accordingly.
* Add two CertTool helper classes.Hung-ying Tyan2009-09-102-44/+186
| | | | Also add the unlock action string to Keystore.
* keystore: remove "#include <openssl/engine.h>".Chia-chi Yeh2009-09-101-1/+0
|
* Replace the delimiter whitespace with '\0'.Chung-yih Wang2009-09-091-5/+4
| | | | | | | | + Use '\0' as the delimiter. + Allow whitespace character for keystore password. In previous implementation, we use space as the delimiter. That will stop user from using passphrase with whitespace character.
* Print error message if the buffer size is too small.Chung-yih Wang2009-09-021-1/+4
|
* Store CA certificate chain into one single key entry with PEM format.Chung-yih Wang2009-09-012-17/+17
| | | | Extract all CA certificates in a PKCS12 keystore into a single entry in keystore with multiple PEMs.
* Merge change 21259 into eclairAndroid (Google) Code Review2009-08-261-4/+9
|\ | | | | | | | | * changes: Make certificate-handling-related constants public
| * Make certificate-handling-related constants publicHung-ying Tyan2009-08-141-4/+9
| |
* | am c8ab08aa: Merge change 21124 into donutJean-Baptiste Queru2009-08-182-0/+190
|\ \ | |/ |/| | | | | | | | | Merge commit 'c8ab08aa86aea3b693f731c9e817eeb71ab4c1cd' into eclair * commit 'c8ab08aa86aea3b693f731c9e817eeb71ab4c1cd': Add license-related files
| * Add license-related filesJean-Baptiste Queru2009-08-132-0/+190
| | | | | | | | BUG=1573996
* | Fix network order for marshalling in keystore interface.repo sync2009-08-101-15/+16
|/ | | | This will fix the endian issue for heterogeneous architectures in keystore marshalling interface.
* Fix the auto notification cleanup when vpn is disconnected.Chung-yih Wang2009-08-031-1/+5
| | | | + add the log print if the browser give the incorrect data in addCertificate().
* Change some log.i to log.d.Hung-ying Tyan2009-08-011-4/+6
|
* Support x509-user-cert mime type in browser.Chung-yih Wang2009-07-282-2/+2
| | | | + Fix the public key matching and intent parameter mismatch.
* Forgot to convert the jstring to char* in certificate request.Chung-yih Wang2009-07-281-4/+8
|
* Change to SPKAC certificate request format for keygen.Chung-yih Wang2009-07-243-38/+27
|
* Cleanup the old keystore APIs.Chung-yih Wang2009-07-221-106/+0
|
* Return error codes for storing the key/cert in addPkcs12Keystore()Chung-yih Wang2009-07-221-10/+28
|
* Support addPkcs12Keystore function in CertTool library.Chung-yih Wang2009-07-184-20/+256
| | | | | The function will be called from the credential storage for decoding the pkcs12 file and saving the certs/keys into mini-keystore.
* Add password field for WiFi configuration.Chung-yih Wang2009-07-052-5/+11
| | | | | | | 1. the certtool.h is modified for avoiding the side effect, for saving the configuration with wpa_supplicant. 2. put the loadLibrary back in CertTool.java 3. Fix incorrect JNI declarations.
* Migrate to the CertTool library.Chung-yih Wang2009-07-042-0/+12
| | | | | | | | | | Keystore is reimplemented and it is mainly for storing (key, value) pair generically. The certificate related APIs are moved to the class CertTool instead. Updates: Provide the getInstance() which gives the singleton. Fix the missing construction of the BIO in cert.c.
* Fix null data handling in ServiceCommand.writeCommand()Hung-ying Tyan2009-07-031-1/+1
|
* Remove the null-termination for Java string compatibility.Chung-yih Wang2009-07-022-4/+12
| | | | | | 1. Also change the keyname delimiter in CertTool.java. 2. Return NOTFOUND if the result.len==0 in the listKeys(). 3. Define the keystore states in the class Keystore.
* Add CertTool for handling the keygen and certificate download.Chung-yih Wang2009-07-028-141/+829
| | | | | | | 1. Have the new Keystore for mini-keystore impelemntation. 2. Add CertTool library and jni dll for handling keygen and certificates. 3. Make Reply hidden. 4. Revert some 'incorrect' change and correct the description.
* Change addCertificate to take byte[] instead of String as we don't know the ↵Grace Kloba2009-06-191-2/+2
| | | | | | encoding. In WebView, if we run into the certificate, we will save it to the Keystore instead of sending it to the WebKit.
* Change the keystore APIs.Chung-yih Wang2009-06-171-14/+106
| | | | | 1. simplify the keypair selection in UI. 2. add the user certificate and key into the keystore for keygen feature.
* Change the first parameter of Keystore.generateKeyPair() to int.Hung-ying Tyan2009-06-162-31/+12
| | | | | | * changes change the parameter to the index to the supported key strengths remove the exception class as it is not useful now
* Add keygen API to Keystore.Hung-ying Tyan2009-06-162-0/+69
|
* Provide the Keystore feature in the framework.Chung-yih Wang2009-06-112-0/+281
-- added the keystore library for Java application. -- changed the marshalling of the keystore function return.