| 2bc5e811a817a8c667bca4318ae98582b0ee6dc6 |
|
17-Apr-2014 |
Kenny Root <kroot@google.com> |
Add API to check certificate chain signatures
Add hidden API to check certificate chain signatures when needed. The
getCertificates implementation returns a list of all the certificates and
chains and would expect any caller interested in verifying actual chains
to call getCodeSigners instead.
We add this hidden constructor as a stop-gap until we can switch callers
over to getCodeSigners.
Bug: 13678484
Change-Id: I01cddef287767422454de4c5fd266c812a04d570
|
| 8c9ea6916a5bb232fe1bfd6d61194196685fe81c |
|
30-Apr-2014 |
Kenny Root <kroot@google.com> |
Revert "Add API to check certificate chain signatures"
This reverts commit f8986a989759c43c155ae64f9a3b36f670602521.
Bug: 13678484
Change-Id: Ie2e44c60cc025a8a1e54aa7a6fb4b251ad363aae
|
| dbb6b44240b9ab10f31824987445ee7c8e1b53a1 |
|
29-Apr-2014 |
Kenny Root <kroot@google.com> |
Revert "Add API to check certificate chain signatures"
This reverts commit 323493b69a33b17d06909f31ec58ff73bcb32e86.
This is fixed in frameworks/base with commit
d061458a208cfa4b136883e7a91ffffc5f527f8f
Bug: 13678484
Change-Id: I11b7c4f11cc2b315b5ff5434d9118620648ca00f
|
| 323493b69a33b17d06909f31ec58ff73bcb32e86 |
|
17-Apr-2014 |
Kenny Root <kroot@google.com> |
Add API to check certificate chain signatures
Add hidden API to check certificate chain signatures when needed. The
getCertificates implementation returns a list of all the certificates and
chains and would expect any caller interested in verifying actual chains
to call getCodeSigners instead.
We add this hidden constructor as a stop-gap until we can switch callers
over to getCodeSigners.
(cherry-pick of f8986a989759c43c155ae64f9a3b36f670602521)
Bug: 13678484
Change-Id: I6ad8a168adf6a33b9155f416ed22852ded221382
|
| f8986a989759c43c155ae64f9a3b36f670602521 |
|
17-Apr-2014 |
Kenny Root <kroot@google.com> |
Add API to check certificate chain signatures
Add hidden API to check certificate chain signatures when needed. The
getCertificates implementation returns a list of all the certificates and
chains and would expect any caller interested in verifying actual chains
to call getCodeSigners instead.
We add this hidden constructor as a stop-gap until we can switch callers
over to getCodeSigners.
Bug: 13678484
Change-Id: I6ad8a168adf6a33b9155f416ed22852ded221382
|
| 0c1869ed7f46baf764f9daf4e64c77cd7fbd3516 |
|
29-Nov-2013 |
Narayan Kamath <narayan@google.com> |
Add a JNI wrapper over libziparchive.
All functions delegate directly to the native code. We
do not perform any sort of central directory or local file
related lookups in the java layer.
For each entry, libziparchive gives us an offset to the start
of data for the entry and the compressed size. We use a
RandomAccessFile to seek to that offset and then construct an
InputStream that's bounded between [offset, offset + compressed_size).
We reuse existing code (JarVerifier / Manifest) for certificate
validation & collection.
bug: 10193060
Change-Id: I21eb4e6dc6aa8749e3f63830f9799e1f621d26e6
|
| 1222b64d823e028efa6f02b08a55d788bfd57b16 |
|
07-Nov-2013 |
Narayan Kamath <narayan@google.com> |
Make some sense of Jar parsing / verification
This is the first step towards the end goal of
decoupling JarVerifier / Manifest & ManifestReader
from the public API classes JarFile & JarInputStream.
- This removes some horrible looking hacks
My goal is to decouple JarVerifier / Manifest &
ManifestReader from JarFile / ZipFile and friends.
This also necessiated a pretty big rewrite of JarInputStream
and hopefully it reads a lot clearer now.
- Fix some weird variable naming & null checks
- Remove some horrible message passing code between
JarInputStream and ZipInputStream
- Also, create a BAOS with the appropriate size,
if available.
Tested: harmony/archive.tests.java.util.jar.JarInputStreamTest
Tested: harmony/archive.tests.java.util.jar.JarFileTest
bug: 10193060
Change-Id: I7c39f2cc92a62a2110627ee6473df43d3efb3fe3
|
| 913d5005ab8ce6f2542766b67e6486b4e5d1f11f |
|
06-Nov-2013 |
Narayan Kamath <narayan@google.com> |
Fix a few more oddities in JarFile
- Make fields final where they can be made so
- Make an anonymous class static and move its
definition outside a function
Change-Id: I15846d2308ced2d3b2d6f3e015930c58adab0dfa
|
| 325ff8c68ed5e530e9e1d487b9e2e6d8f8e2bd37 |
|
25-Jun-2013 |
Elliott Hughes <enh@google.com> |
Clean up the #read javadoc.
By being more consistent in parameter naming, we can inherit more javadoc.
Also fix a couple of javadoc warnings in KnownFailure and DataInputStream.
Change-Id: I778f40469404fb50c51cdb1068970974f923180c
|
| 52c906b82c75e811284a1788e5ca0b4330a55a36 |
|
10-Oct-2012 |
Kenny Root <kroot@google.com> |
Add support for ECDSA signatures on jar files
Change-Id: If928f2244b3a0809255d6619c25268beb84f76d3
|
| f589846f86761ffea3c06ab9d105d3f19328d121 |
|
11-May-2011 |
Jesse Wilson <jessewilson@google.com> |
Address code review comments to Adopt DiskLruCache change.
That change was submitted too early. This is the missing
follow-up.
Change-Id: I521455a7d249f8841c989561775c91d4368a8966
http://b/3180373
|
| c729e213248a11cce7a186c559cee78afff91837 |
|
11-Feb-2011 |
Jesse Wilson <jessewilson@google.com> |
Rely on string to do case mapping.
The motivation for this is to remove the only test in our
java-internal directory.
Change-Id: Ieb138f5cb4698cf117ab4fb2d21b800af9756873
|
| 6186821cb13f4ac7ff50950c813394367e021eae |
|
08-Feb-2011 |
Jesse Wilson <jessewilson@google.com> |
Move libcore.base classes to libcore.util and libcore.io.
Change-Id: I2340a9dbad3561fa681a8ab47d4f406e72c913e3
|
| bbf2c7d0462bb2c612e5a1a28e6d0ce5413d746d |
|
12-Nov-2010 |
Elliott Hughes <enh@google.com> |
Tidy up some jar-related code.
...and kill InputStreamHelper by inlining all that's left into the sole caller.
Change-Id: Iadddba9f067a1af2a2a66803aa9ef26ea6dc3396
|
| 80b486724ca19b3c1c3c36334d06856330362f83 |
|
01-Oct-2010 |
Jesse Wilson <jessewilson@google.com> |
Simplify skip() to use skipByReading or the superclass where possible.
Several classes were overriding InputStream.skip() but not doing
anything better than the base class. These were deleted.
Others were allocating skip buffers which was correct, but duplicated
code with our Streams utility class.
The CipherInputStream class had a skip method that always skipped
0 bytes. This has been fixed and tested.
Change-Id: Ic96c600e111c11cf7364b4e0a721791d7e3c2ae1
|
| 7365de1056414750d0a7d1fdd26025fd247f0d04 |
|
12-Aug-2010 |
Jesse Wilson <jessewilson@google.com> |
Sorting imports.
Change-Id: I8347bc625480a1c37a1ed9976193ddfedeb00bbc
|
| c941a854631c4bf2369adc84887bb6dd386a1bcc |
|
22-May-2010 |
Elliott Hughes <enh@google.com> |
Fix build.
Change-Id: I61d838fdb9147b1e488cf6c9ea0aa1e1e87f935e
|
| b1433b3bd4dfc05426e5d9c3100b5fbaa198d8a0 |
|
21-May-2010 |
Elliott Hughes <enh@google.com> |
More messages.properties removal.
Change-Id: Ie90ca910b1d9f23565f8929c63186879932a4dc3
|
| f33eae7e84eb6d3b0f4e86b59605bb3de73009f3 |
|
13-May-2010 |
Elliott Hughes <enh@google.com> |
Remove all trailing whitespace from the dalvik team-maintained parts of libcore.
Gentlemen, you may now set your editors to "strip trailing whitespace"...
Change-Id: I85b2f6c80e5fbef1af6cab11789790b078c11b1b
|
| fd6bb3510c2f94d636f3572dcf5f7f4dcd1a2726 |
|
13-May-2010 |
Elliott Hughes <enh@google.com> |
Remove //$NON-NLS-\d$ cruft.
Mostly done by perl(1), with manual cleanup of the few misspelled instances.
This makes our trailing whitespace slightly worse, but I'll fix all that with
a follow-on change.
Change-Id: I0b4ca98819be6f9519c4ba980d759bd1ee1a0303
|
| cec4dd4b1d33f78997603d0f89c0d0e56e64dbcd |
|
26-Apr-2010 |
Peter Hallam <peterhal@google.com> |
merge more modules into luni
|