| f7d0a1e9fc6408eaeda0b60a19f33008320f4228 |
06-May-2014 |
Kenny Root <kroot@google.com> |
Add CRLReason and friends
New API for getting the revocation reason. Add tests and exceptions
associated with it.
Change-Id: Ifd6444ab966c984312f069a6ee330d255110ea85
nvalidityDate.java
easonCode.java
|
| 4782c2cdea4fc7d070c9dac560380cc45852babc |
06-May-2014 |
Kenny Root <kroot@google.com> |
Add java.security.cert.Extension interface
Also convert our existing Extension class to implement this interface.
Change-Id: I123ef6aa4f89897037e51f221c8c5a7994ac2a01
xtension.java
xtensions.java
|
| 166679d093d1bd51fde23952779b8d899d87674a |
06-Jun-2013 |
Brian Carlstrom <bdc@google.com> |
Fix bug in DNParser change
Ensure emailAddress encoded as IA5String
Bug: http://code.google.com/p/android/issues/detail?id=21531
Bug: 5580664
Change-Id: I19b432bc84468828258cbcd44266e4b712e6175d
Bug: 9198822
Change-Id: I8a29f160e870f8deb4b8f3787bb69b4971942c5d
NParser.java
|
| 48b7f507133e46424c599add4bb0e4f96ef56680 |
26-Apr-2013 |
Brian Carlstrom <bdc@google.com> |
Fix additional races in org.apache.harmony.security.x509.Extensions
Bug: https://code.google.com/p/chromium/issues/detail?id=233610
Bug: 8712523
Change-Id: Ie54f62fa37f31e8ea37b5f4905f0ca3d3e22ac8f
xtensions.java
|
| a5cc81bb305432bae2fe6d007a992ec1ede0b387 |
25-Apr-2013 |
Brian Carlstrom <bdc@google.com> |
Do not set valueDecoded until after the value is decoded
Bug: https://code.google.com/p/chromium/issues/detail?id=233610
Bug: 8712523
Change-Id: I976df514e761ffe0d1be1ca8b18e9fe5050c2ba7
xtension.java
|
| 6fa695ae2ba9c2d22146c48f16d12a0d3bbdc728 |
16-Apr-2013 |
Brian Carlstrom <bdc@google.com> |
Ensure emailAddress encoded as IA5String
Bug: http://code.google.com/p/android/issues/detail?id=21531
Bug: 5580664
Change-Id: I19b432bc84468828258cbcd44266e4b712e6175d
NParser.java
|
| dd94f8009771072a170cdba3fc582c63aaaa5387 |
16-Jan-2013 |
Kenny Root <kroot@google.com> |
Make sure alternativeNames are unmodifiable
Add tests to make sure the Collection<List<?>> instance returned from
getSubjectAlternativeNames and getIssuerAlternativeNames is
unmodifiable. Also test the byte arrays returned are clones of
anything kept long-term.
Change-Id: Ia7564665643e63cb04a264b011eeebaeeed3811f
xtensions.java
|
| 28d504c4188a5d25a7209e4d1c131e0afffa1fcf |
07-Jan-2013 |
Kenny Root <kroot@google.com> |
Harmony: fix DirName handling in X.509 certs
In SubjectAlternativeName, the directoryName (4) entry is actually a
CHOICE of a single possibility. Harmony was trying to decode it as the
single possibility itself and running into parsing issues.
Additionally, change T61String (TeletexString) handling to assume UTF8
encoding like the RI does.
Change-Id: Ic0b9541dfed21b59940fa50a27cee2e7704d8950
NParser.java
eneralName.java
|
| 3b14c4bd5c7ce28ed3485bd24285c58424c074af |
07-Jan-2013 |
Kenny Root <kroot@google.com> |
Harmony: ignore invalid IP in subject alt. names
The RI and other providers will ignore invalid IP lengths instead of
throwing a parsing exception. Bring Harmony in line with those other
providers.
Change-Id: I65715a58614543ab296493829338239cf402ae5d
xtensions.java
eneralName.java
eneralNames.java
|
| beee0a569bf1077f0d3be516fed63661fcedde5c |
21-Dec-2012 |
Brian Carlstrom <bdc@google.com> |
Fix X509Certificate.getBasicConstraints implementation for DRLCertFactory
Change-Id: I5d1ba078b0f8f9ec8e2950e0da02481e8162a5e6
asicConstraints.java
xtensions.java
|
| 0251c5ab1c073ee09ba6673383846d2ccf58abf9 |
15-Oct-2012 |
Kenny Root <kroot@google.com> |
SubjectPublicKeyInfo: use algorithm OID as fallback
If the algorithm has a name, but there are no KeyFactory available for
that particular algorithm name, try to use the algorithm OID to find a
KeyFactory before falling back to X509PublicKey.
Change-Id: I2b294f2db3388372479c964f53fdff7fb62f3d8f
lgorithmIdentifier.java
ubjectPublicKeyInfo.java
|
| 5692d40be0e19ef1d0cc988a579576496adf5237 |
11-Oct-2012 |
Brian Carlstrom <bdc@google.com> |
Fix typos from "beed" to "been"
Bug: http://code.google.com/p/android/issues/detail?id=38366
Change-Id: I44c647843e66a57bcbeabad41ec3142faaa1848e
NParser.java
|
| 9b9e9145bc55a47be42a9d3f7ecc9f6b533739b2 |
14-Sep-2012 |
Elliott Hughes <enh@google.com> |
Consistently use "charsetName" for charset names.
Change-Id: I147217077790c1ddfb815e870409abade31839c6
uthorityKeyIdentifier.java
|
| 83a7cea6ad5c5f066e55aeddd6da27d3ef5e62c1 |
07-Aug-2012 |
Kenny Root <kroot@google.com> |
Add chain building to TrustedCertificateStore
Since TrustedCertificateStore has information needed, use it to build
certificate chains.
OpenSSL uses Authority Key Identifier in extensions to determine if the
certificate is the same as itself. There are problems with key rotation
when a different certificate serial signs a key with the same subject
identifier. It appears to be the same with the old code, but it may
generate an invalid chain.
(cherry-picked from 3fb088d79e446063ef743362a030e1cfb80b2178)
Change-Id: I8149bed1a0ae537f75da5dc3f3d7e3ccab353f91
uthorityKeyIdentifier.java
ubjectKeyIdentifier.java
|
| 8626012f833cada8b06c3d82860d2dbe4107ce7a |
15-Nov-2011 |
Jesse Wilson <jessewilson@google.com> |
Don't fail GeneralName parsing if the DNS name contains a wildcard.
This doesn't impact host name validation, which reparses the DNS name
into component parts and uses strict wildcard matching rules against
a particular host name.
Bug: http://b/issue?id=5534658
Bug: http://code.google.com/p/android/issues/detail?id=21311
Change-Id: Iaeaf72a6f8b9ebd9ee2fe68f1bc7830f174f2310
eneralName.java
|
| 196f44e24830d0e7fd17eba627704a162eba779e |
25-Feb-2011 |
Elliott Hughes <enh@google.com> |
Fix more FindBugs warnings: DMI_INVOKING_HASHCODE_ON_ARRAY.
"The code invokes hashCode on an array."
Change-Id: Ib47f878fd42a56fdcdb46b83fd8a4f528af2a534
lgorithmIdentifier.java
xtension.java
eneralName.java
BSCertList.java
|
| 8216dc1fd9d31867770439985c3d66570330e4c7 |
23-Feb-2011 |
Elliott Hughes <enh@google.com> |
Remove most of our remaining non-API StringBuffer usage.
Change-Id: Ia2c621d8a9dfe04cd55aac652d1ac9ea4398afd1
lgorithmIdentifier.java
lternativeName.java
uthorityKeyIdentifier.java
asicConstraints.java
RLDistributionPoints.java
RLNumber.java
ertificate.java
ertificateIssuer.java
ertificateList.java
ertificatePolicies.java
istributionPoint.java
istributionPointName.java
xtendedKeyUsage.java
xtension.java
xtensionValue.java
xtensions.java
eneralNames.java
eneralSubtree.java
nfoAccessSyntax.java
nhibitAnyPolicy.java
nvalidityDate.java
ssuingDistributionPoint.java
eyUsage.java
ameConstraints.java
olicyConstraints.java
olicyInformation.java
easonCode.java
easonFlags.java
ubjectKeyIdentifier.java
BSCertList.java
BSCertificate.java
tils.java
|
| 6ed93fa8be996378e766d3fd2586b51c6fe656b1 |
02-Feb-2011 |
Jesse Wilson <jessewilson@google.com> |
Don't parse or format IP addresses in cert code.
We used to include a full IP address parser and formatter. The
formatter handled one interesting case: a 2x length byte[]
containing both an IP route and mask. Although our code supported
parsing and formatting these, they do not occur in practice. The
Java APIs don't support NameConstraints, which is the only part of
the spec that uses them.
Change-Id: I7a4b22b40a37d6f26ec09fc5188ec1ba43e4d249
http://b/3385492
eneralName.java
|
| 5c27fb80ffd335aa45dc8829ba3ecbc18c01e4e8 |
25-Jan-2011 |
Jesse Wilson <jessewilson@google.com> |
Use generics in Harmony's ASN.1, X.501 and X.509.
This change cleans up this code and uses modern Java idioms. It should not
change the behavior.
Change-Id: Ie869ced7c9e18634409ae194aa9a2c2a5e5ca530
ccessDescription.java
lgorithmIdentifier.java
lternativeName.java
uthorityKeyIdentifier.java
asicConstraints.java
RLDistributionPoints.java
RLNumber.java
ertificate.java
ertificateIssuer.java
ertificateList.java
ertificatePolicies.java
NParser.java
istributionPoint.java
istributionPointName.java
DIPartyName.java
xtendedKeyUsage.java
xtension.java
xtensionValue.java
xtensions.java
eneralName.java
eneralNames.java
eneralSubtree.java
eneralSubtrees.java
nfoAccessSyntax.java
nhibitAnyPolicy.java
nvalidityDate.java
ssuingDistributionPoint.java
eyUsage.java
ameConstraints.java
RAddress.java
therName.java
olicyConstraints.java
olicyInformation.java
olicyQualifierInfo.java
rivateKeyUsagePeriod.java
easonCode.java
easonFlags.java
ubjectKeyIdentifier.java
ubjectPublicKeyInfo.java
BSCertList.java
BSCertificate.java
ime.java
tils.java
alidity.java
509PublicKey.java
|
| 4b25199bc0b7a64a6feaa60e7d5d6b0474341234 |
21-Jan-2011 |
Elliott Hughes <enh@google.com> |
Add an @hidden Byte.toHexString that does the right thing, and use it.
Turns out most callers don't actually give a toss about case anyway, since
they're just for debugging output.
Bug: 3371169
Change-Id: Ib8dc079be2dcbf6f2415ecb9b71d034ee71f68eb
eneralName.java
|
| a4a517c05815ce95849e1007d6e126dc3bcc0091 |
14-Jan-2011 |
Brian Carlstrom <bdc@google.com> |
Merge "GeneralName toLowerCase should use Locale.US" into dalvik-dev
|
| fe921473907c2388cf13d014dd3bcf32d2b6d04a |
13-Jan-2011 |
Brian Carlstrom <bdc@google.com> |
GeneralName toLowerCase should use Locale.US
Bug: 3325637
Change-Id: I8fbbb18debc3c288240d1dde12d032ed583e7cbe
eneralName.java
|
| fb0ec0e650bf8be35acb0d47da0311a7c446aa33 |
14-Jan-2011 |
Elliott Hughes <enh@google.com> |
Remove useless android-changed comments.
I've changed useful ones to regular comments or TODOs, as appropriate.
I've left ones in code like java.util.concurrent where we really are
tracking an upstream source, making the change markers useful.
I've left a handful of others where I intend to actually investigate
the implied TODOs before deciding how to resolve them.
Change-Id: Iaf71059b818596351cf8ee5a3cf3c85586051fa6
eneralName.java
|
| 866e7ae17a3da81a02b0b144e0c9c2b3196d293a |
09-Dec-2010 |
Elliott Hughes <enh@google.com> |
Fix a bunch of javac -Xlint warnings in our code.
I think "fallthrough" uncovered a couple of real bugs in the kxml code, but
other than that there's nothing very exciting here. This addresses all but
one of the non-xml warnings. I'm assuming that we'll move the xml cruft out
into external at some point (since we're deliberately not maintaining it).
Change-Id: Ice81253b019df7b19d6557e719663b7bdc11fb22
NParser.java
xtensions.java
easonCode.java
|
| 9efa300c26865520498c0ed132ff9ebe499e7d84 |
18-Oct-2010 |
Elliott Hughes <enh@google.com> |
Remove more tabs.
Missed these in the big cleanup because they didn't look like code we were maintaining. The
xalan/xpath/et cetera stuff is all still tab-filled, and there are a few package.html files
too (for which I've raised http://b/3107546).
Change-Id: I7ad956f3c410701fec13731c9affbcedd24a4a9a
lgorithmIdentifier.java
xtension.java
xtensions.java
eneralName.java
BSCertList.java
|
| 7365de1056414750d0a7d1fdd26025fd247f0d04 |
12-Aug-2010 |
Jesse Wilson <jessewilson@google.com> |
Sorting imports.
Change-Id: I8347bc625480a1c37a1ed9976193ddfedeb00bbc
lgorithmIdentifier.java
uthorityKeyIdentifier.java
asicConstraints.java
RLDistributionPoints.java
RLNumber.java
ertificateIssuer.java
ertificatePolicies.java
NParser.java
istributionPoint.java
istributionPointName.java
xtendedKeyUsage.java
xtension.java
xtensions.java
eneralName.java
eneralNames.java
eneralSubtrees.java
nfoAccessSyntax.java
nvalidityDate.java
ssuingDistributionPoint.java
eyUsage.java
ameConstraints.java
olicyConstraints.java
rivateKeyUsagePeriod.java
easonCode.java
easonFlags.java
ubjectKeyIdentifier.java
ubjectPublicKeyInfo.java
BSCertList.java
BSCertificate.java
alidity.java
sp/PKIStatusInfo.java
sp/TSTInfo.java
sp/TimeStampReq.java
|
| e810d3b49631329b11440aa5b7a54db181d42ed1 |
15-Jun-2010 |
Elliott Hughes <enh@google.com> |
More charset-related cleanup/optimization.
This patch adds a Charsets class that lets us avoid a hash lookup and an extra
level of method call indirection when calling String.getBytes or "new String"
for a well-known guaranteed charset. It also fixes callers to take advantage.
This also adds a special case to "new String" for the UTF-8 charset to avoid
needless duplication if we guessed the correct buffer size (which we will for
input that happens to be US-ASCII too).
The ModifiedUtf8 class gives a more meaningful name for Utils.convertUTF8WithBuf.
This also removes a dead link and un-tinyurl'ed another.
Change-Id: I02712f53dee16feb3b1db2c14536dc055126cd04
eneralName.java
|
| 897538a36c18f4db8f9f68ee566aec0bda842e9f |
29-May-2010 |
Elliott Hughes <enh@google.com> |
Remove the last exception message catalog.
Bug: 1251121
Change-Id: I45931b9ff908531bda06d6569a4e9618986f821b
RLDistributionPoints.java
NParser.java
istributionPoint.java
eneralName.java
nfoAccessSyntax.java
ameConstraints.java
sp/TSTInfo.java
|
| f33eae7e84eb6d3b0f4e86b59605bb3de73009f3 |
13-May-2010 |
Elliott Hughes <enh@google.com> |
Remove all trailing whitespace from the dalvik team-maintained parts of libcore.
Gentlemen, you may now set your editors to "strip trailing whitespace"...
Change-Id: I85b2f6c80e5fbef1af6cab11789790b078c11b1b
ccessDescription.java
lgorithmIdentifier.java
lternativeName.java
uthorityKeyIdentifier.java
asicConstraints.java
RLDistributionPoints.java
RLNumber.java
ertificate.java
ertificateIssuer.java
ertificateList.java
ertificatePolicies.java
NParser.java
istributionPoint.java
istributionPointName.java
DIPartyName.java
xtendedKeyUsage.java
xtension.java
xtensionValue.java
xtensions.java
eneralName.java
eneralNames.java
eneralSubtree.java
eneralSubtrees.java
nfoAccessSyntax.java
nhibitAnyPolicy.java
nvalidityDate.java
ssuingDistributionPoint.java
eyUsage.java
ameConstraints.java
RAddress.java
therName.java
olicyConstraints.java
olicyInformation.java
olicyQualifierInfo.java
rivateKeyUsagePeriod.java
easonCode.java
easonFlags.java
ubjectKeyIdentifier.java
ubjectPublicKeyInfo.java
BSCertList.java
BSCertificate.java
ime.java
tils.java
alidity.java
509PublicKey.java
sp/MessageImprint.java
sp/PKIFailureInfo.java
sp/PKIStatus.java
sp/PKIStatusInfo.java
sp/TSTInfo.java
sp/TimeStampReq.java
sp/TimeStampResp.java
|
| fd6bb3510c2f94d636f3572dcf5f7f4dcd1a2726 |
13-May-2010 |
Elliott Hughes <enh@google.com> |
Remove //$NON-NLS-\d$ cruft.
Mostly done by perl(1), with manual cleanup of the few misspelled instances.
This makes our trailing whitespace slightly worse, but I'll fix all that with
a follow-on change.
Change-Id: I0b4ca98819be6f9519c4ba980d759bd1ee1a0303
ccessDescription.java
lgorithmIdentifier.java
lternativeName.java
uthorityKeyIdentifier.java
asicConstraints.java
RLDistributionPoints.java
RLNumber.java
ertificate.java
ertificateIssuer.java
ertificateList.java
ertificatePolicies.java
NParser.java
istributionPoint.java
istributionPointName.java
xtendedKeyUsage.java
xtension.java
xtensionValue.java
xtensions.java
eneralName.java
eneralSubtree.java
nfoAccessSyntax.java
nhibitAnyPolicy.java
nvalidityDate.java
ssuingDistributionPoint.java
eyUsage.java
ameConstraints.java
olicyConstraints.java
olicyInformation.java
easonCode.java
easonFlags.java
ubjectKeyIdentifier.java
BSCertList.java
BSCertificate.java
509PublicKey.java
|
| cec4dd4b1d33f78997603d0f89c0d0e56e64dbcd |
26-Apr-2010 |
Peter Hallam <peterhal@google.com> |
merge more modules into luni
ccessDescription.java
lgorithmIdentifier.java
lternativeName.java
uthorityKeyIdentifier.java
asicConstraints.java
RLDistributionPoints.java
RLNumber.java
ertificate.java
ertificateIssuer.java
ertificateList.java
ertificatePolicies.java
NParser.java
istributionPoint.java
istributionPointName.java
DIPartyName.java
xtendedKeyUsage.java
xtension.java
xtensionValue.java
xtensions.java
eneralName.java
eneralNames.java
eneralSubtree.java
eneralSubtrees.java
nfoAccessSyntax.java
nhibitAnyPolicy.java
nvalidityDate.java
ssuingDistributionPoint.java
eyUsage.java
ameConstraints.java
RAddress.java
therName.java
olicyConstraints.java
olicyInformation.java
olicyQualifierInfo.java
rivateKeyUsagePeriod.java
easonCode.java
easonFlags.java
ubjectKeyIdentifier.java
ubjectPublicKeyInfo.java
BSCertList.java
BSCertificate.java
ime.java
tils.java
alidity.java
509PublicKey.java
sp/MessageImprint.java
sp/PKIFailureInfo.java
sp/PKIStatus.java
sp/PKIStatusInfo.java
sp/TSTInfo.java
sp/TimeStampReq.java
sp/TimeStampResp.java
|