summaryrefslogtreecommitdiffstats
path: root/security
Commit message (Collapse)AuthorAgeFilesLines
* Remove explicit 8192 arguments to BufferedReader and friends.Elliott Hughes2010-03-235-18/+6
| | | | | | | | | | | These were clearly added just to shut up our own warning, and are now unnecessary and misleading to future maintainers. There's one barely-related change: InputStreamReader and OutputStreamWriter are very similar, and this patch makes them more similar, and adds a few missing modifiers from their fields. Change-Id: I959011f914ff215e92bbfa41c1bac66465803685
* Remove all remaining "@since Android" tags.Elliott Hughes2010-03-227-11/+3
| | | | | | | I've fixed a few typos, and removed a few of the more egregiously nonsensical or incorrect comments that were nearby. Change-Id: I35851baebd532f949cc269f4738a26eeb9b6e697
* Add some certimport.sh documentionBrian Carlstrom2010-03-161-0/+33
| | | | | | | | | hku had some questions about the meaning of the filenames in cacerts. ngm responded so I captured the knowledge in the certimport.sh for future reference so we can continue to follow the convention. Change-Id: I79b4ed333e541f09d60143f785e5b10d3f5e60f4
* Fix all instances of "new Integer" (et cetera).Elliott Hughes2010-03-115-26/+24
| | | | | | (This doesn't include libcore/xml/ because I don't want to get in the way there.) Change-Id: I46f638105d26e82d09128fca605117322229e146
* am a536d01c: Merge "Fix certimport.sh to check for Bouncy Castle provider ↵Brian Carlstrom2010-03-091-4/+32
|\ | | | | | | | | | | | | | | | | installation (and add 1.6 JDK to PATH)" Merge commit 'a536d01c1c0119322d655a9ec35665a36abbed6d' into dalvik-dev * commit 'a536d01c1c0119322d655a9ec35665a36abbed6d': Fix certimport.sh to check for Bouncy Castle provider installation (and add 1.6 JDK to PATH)
| * Fix certimport.sh to check for Bouncy Castle provider installation (and add ↵Brian Carlstrom2010-03-091-4/+32
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | 1.6 JDK to PATH) Now if certimport.sh is run on a machine without the BouncyCastleProvider installed, it will suggest how to apt-get install the proper package. At enh's suggestion, I tried running with out own local Bouncy Castle classes to see what would happen, but the code ended up depending on our NativeCrypto JNI code and there that isn't proper JNI code to be loading into a RI JDK. Also at enh's suggestion, we now prepend a JDK 1.6 bin directory to the path for correctly correct default behavior. I do make sure it exists and warn if it does not. Change-Id: Ic936a6cc69fa3795e917c052ed79d19b2e66b5a1
* | Merge remote branch 'goog/master' into mmElliott Hughes2010-02-223-0/+171
|\ \ | |/ | | | | | | Conflicts: libcore/JavaLibrary.mk
| * Merge "Add two TrustCenter roots: - TC TrustCenter Class 2 CA II - TC ↵Nagendra Modadugu2010-02-043-0/+171
| |\ | | | | | | | | | TrustCenter Universal CA I"
| | * Add two TrustCenter roots:Nagendra Modadugu2010-02-043-0/+171
| | | | | | | | | | | | | | | - TC TrustCenter Class 2 CA II - TC TrustCenter Universal CA I
* | | Resync a load of tests with upstream, make our build faster.Elliott Hughes2010-02-1950-292/+17
|/ / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | I started off with a mission to remove uses of dalvik.annotation.* (stuff like @TestTargetNew and other useless junk that just makes it harder to stay in sync with upstream). I wrote a script to go through tests showing me the diff between what we have and what upstream has, thinking that in cases where upstream has also added tests, I may as well pull them in at the same time... ...but I didn't realize how close we were to having dx fill its 1.5GiB heap. After trying various alternatives, I decided to bite the bullet and break core-tests up into one .jar per module. This adds parallelism back into this, the slowest part of our build. (I can do even better, but I'll do that in a separate patch, preferably after we've merged recent changes from master.) Only a couple of dependencies were problematic: the worthless TestSuiteFactory which already contained a comment suggesting we get rid of it, and the fact that some tests -- most notably the concurrent ones -- also contained main methods that started the JUnit tty-based TestRunner. (In the long run, we want to be running the harmony tests directly from a pristine "svn co" of upstream, using DalvikRunner. But this will be a big help in the meantime, and starts the work of getting our current copy of the tests into a state where we can start to extract any meaningful changes/additions we've made.)
* | am ffea5ceb: am 0e9d568e: Merge "Mark libcore cert tests using expired certs ↵Brett Chabot2010-01-272-2/+7
|\ \ | | | | | | | | | | | | | | | | | | | | | | | | as known failures." into eclair Merge commit 'ffea5cebcb45bb58d61b903f4e04c45f48442c86' * commit 'ffea5cebcb45bb58d61b903f4e04c45f48442c86': Mark libcore cert tests using expired certs as known failures.
| * | Mark libcore cert tests using expired certs as known failures.Brett Chabot2010-01-212-2/+7
| | | | | | | | | | | | | | | | | | Bug 2322662 Change-Id: If35a5a75f664535bd4eb97cf11a6afe5b0e5b4a9
* | | Spelling fixesBrian Carlstrom2010-01-262-2/+2
| | |
* | | Fix spelling of explicitlyJesse Wilson2010-01-261-1/+1
| |/ |/|
* | Remove StartCom MD5 root which is no longer in use:Nagendra Modadugu2010-01-212-90/+0
| | | | | | | | - Free SSL Certification Authority
* | Remove expired root CAs:Nagendra Modadugu2010-01-203-99/+0
| | | | | | | | | | - IPS SERVIDORES/emailAddress=ips@mail.ips.es - Secure Server Certification Authority
* | Add StartCom CA certificates:Nagendra Modadugu2010-01-203-0/+277
| | | | | | | | | | - StartCom Certification Authority - StartCom Extended Validation Server CA
* | Add two Verisign Root CA certificates:Nagendra Modadugu2010-01-203-0/+200
| | | | | | | | | | - VeriSign Class 3 Extended Validation SSL SGC CA - VeriSign Class 3 Public Primary Certification Authority - G5
* | am e732bb04: am 1c7705b6: Merge change I96996494 into eclair-mr2Elliott Hughes2009-11-242-35/+15
|\ \ | | | | | | | | | | | | | | | | | | Merge commit 'e732bb040be84bd2ac652ca53330b80367a65725' * commit 'e732bb040be84bd2ac652ca53330b80367a65725': Fix browser crashes if server certificates have > 32 subjectAltNames.
| * | Fix browser crashes if server certificates have > 32 subjectAltNames.Elliott Hughes2009-11-242-35/+15
| |/ | | | | | | | | | | | | | | | | Android-only changes added an arbitrary limit that upstream doesn't have. This limit-free implementation is still more efficient than upstream (which always allocates three Vectors). Dr No: danfuzz Bug: 2281869
* | Remove 'GTE CyberTrust Root', which expired on 2/23/06.Nagendra Modadugu2009-11-052-47/+0
| |
* | A new hygenic way for tests to clean up before or after execution.Jesse Wilson2009-10-252-0/+8
| | | | | | | | This replaces PrefsTester and is more general purpose.
* | Respond to impossible CloneNotSupportedExceptions with AssertionErrors.Jesse Wilson2009-10-163-4/+3
| | | | | | | | See bug 2183132.
* | Fix build.Elliott Hughes2009-10-141-3/+0
| | | | | | | | Work around apicheck bug.
* | Update libcore/security to Harmony r823222.Elliott Hughes2009-10-13260-4623/+2095
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Squashed commit of the following: commit e3083dde77b71fa817c8a52d9edafcb6325cfc25 Author: Elliott Hughes <enh@google.com> Date: Fri Oct 9 13:10:11 2009 -0700 security_dalvik commit 0fc0101e5dbfb3e3044702579ab8087a4e07984a Author: Elliott Hughes <enh@google.com> Date: Fri Oct 9 13:09:48 2009 -0700 security_527399
* | Rewrite Support_Exec to support timeouts on waiting processes.Jesse Wilson2009-10-091-11/+10
|/ | | | | | Also rewriting SupportExec to use ProcessBuilder rather than Runtime.exec(). Changed callers to use the ProcessBuilder directly rather than calling-through chained methods.
* Merge change 26055 into eclairAndroid (Google) Code Review2009-09-211-1/+16
|\ | | | | | | | | * changes: Replaced an O(N) algorithm with an O(1) algorithm. This shaves off 2/3 of the server cert checking time or ~200ms on Sapphire. This is in preparation for tripling the number of certs in an upcoming change.
| * Replaced an O(N) algorithm with an O(1) algorithm. This shaves off 2/3 of ↵Bob Lee2009-09-201-1/+16
| | | | | | | | the server cert checking time or ~200ms on Sapphire. This is in preparation for tripling the number of certs in an upcoming change.
* | Fix cert code to use the String form for TELETEX-encoded certs; see bug 2102191.Jesse Wilson2009-09-104-1/+105
|/
* Update GlobalSign Root CA to one that expires in 2028.Nagendra Modadugu2009-09-032-32/+31
|
* Add Entrust root and intermediate certs.Nagendra Modadugu2009-09-015-0/+290
|
* Each time we start an SSL session, we have to find the trust anchor. This ↵Bob Lee2009-08-265-48/+205
| | | | used to be an O(N) operation. If the trust anchor we're looking for was close to N, finding it could take a couple seconds. This change makes the operation O(1).
* Removing MD2Urs Grob2009-07-2925-517/+1250
|
* Adding:Nagendra Modadugu2009-06-154-0/+365
| | | | | | QuoVadis Root Certification Authority QuoVadis Root CA 2 QuoVadis Root CA 3
* Reactivating tests disabled because of ClassLoader loopUrs Grob2009-05-282-6/+8
| | | | | | | Since ClassLoader.isAncestorOf has been fixed these tests now succeed. So they can be reactivated. BUG=1732214
* AI 148447: Marking some more tests as broken, because theyJorg Pleumann2009-05-071-0/+2
| | | | | | | | don't work properly in the CTS environment for some reason. BUG=1285921 Automated import of CL 148447
* AI 147896: Some more fixes for tests that failed inJorg Pleumann2009-04-282-16/+7
| | | | | | | | | | | | | | | | the CTS, but worked fine in run-core-tests: - One cert test needs isolation, because it destroys the security provider. - The Thread.sleep() tests were too flaky. - Tests that tried to open a temporary DEX file failed in the CTS because we do not have access to the system DEX cache. We are now simply creating our own. The Java plan in the CTS should now pass fully. Yippie! BUG=1285921 Automated import of CL 147896
* AI 147838: A couple of fixes for making theJorg Pleumann2009-04-273-3/+32
| | | | | | | | | | | | | core tests work better in the CTS environment. Some tests had to be marked broken either because they either expose different behavior than in run-core-tests or they take too much time (beyond the CTS' timeout). BUG=1285921 Automated import of CL 147838
* AI 147660: Fixes for tests in the security module.Urs Grob2009-04-2416-161/+321
| | | | | | | Some tests are still failing in the cts host environment. This CL fixes most of them in the security module BUG=1285921 Automated import of CL 147660
* AI 147464: Some small bugfixes for the core tests.Jorg Pleumann2009-04-237-72/+100
| | | | | | | | | | | | Some need to be marked broken, because they take too long (or even forever) due to implementation problems. Some need to take into account differences between the CTS environment and the Dalvik VM, so they succeed in both cases. BUG=1285921 Automated import of CL 147464
* AI 145288: Removing tabs from tests.Urs Grob2009-04-091-1/+1
| | | | | | BUG=1285921 Automated import of CL 145288
* AI 143458: Bringing the security tests down to zero failures (andJorg Pleumann2009-03-3059-105/+908
| | | | | | | adding lots of missing headers in the process). BUG=1285921 Automated import of CL 143458
* auto import from //branches/cupcake_rel/...@141571The Android Open Source Project2009-03-191-9/+18
|
* auto import from //branches/cupcake_rel/...@140373The Android Open Source Project2009-03-182-6/+0
|
* auto import from //branches/cupcake_rel/...@138607The Android Open Source Project2009-03-1345-794/+440
|
* auto import from //depot/cupcake/@135843The Android Open Source Project2009-03-031166-0/+208205
|
* auto import from //depot/cupcake/@135843The Android Open Source Project2009-03-031166-208194/+0
|
* auto import from //depot/cupcake/@132589The Android Open Source Project2009-03-031-12/+1
|
* auto import from //depot/cupcake/@137055The Android Open Source Project2009-03-021-1/+12
|
* auto import from //branches/cupcake/...@131421The Android Open Source Project2009-02-134-3/+13
|
generated by cgit v1.1 at 2024-12-26 20:26:33 +0000