WifiEnterpriseConfig.java revision ae64b185fca97c23f72d0e71f63d9511f6dd06ce
19b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff/* 29b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * Copyright (C) 2013 The Android Open Source Project 39b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * 49b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * Licensed under the Apache License, Version 2.0 (the "License"); 59b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * you may not use this file except in compliance with the License. 69b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * You may obtain a copy of the License at 79b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * 89b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * http://www.apache.org/licenses/LICENSE-2.0 99b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * 109b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * Unless required by applicable law or agreed to in writing, software 119b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * distributed under the License is distributed on an "AS IS" BASIS, 129b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 139b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * See the License for the specific language governing permissions and 149b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * limitations under the License. 159b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff */ 169b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriffpackage android.net.wifi; 179b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff 189b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriffimport android.os.Parcel; 199b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriffimport android.os.Parcelable; 209b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriffimport android.security.Credentials; 219b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriffimport android.text.TextUtils; 2226d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff 2326d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriffimport java.io.ByteArrayInputStream; 2426d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriffimport java.security.KeyFactory; 2526d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriffimport java.security.NoSuchAlgorithmException; 2626d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriffimport java.security.PrivateKey; 2726d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriffimport java.security.cert.CertificateEncodingException; 2826d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriffimport java.security.cert.CertificateException; 2926d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriffimport java.security.cert.CertificateFactory; 3026d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriffimport java.security.cert.X509Certificate; 3126d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriffimport java.security.spec.InvalidKeySpecException; 3226d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriffimport java.security.spec.PKCS8EncodedKeySpec; 339b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriffimport java.util.HashMap; 349b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriffimport java.util.Map; 359b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff 36ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde/** 37fdc028383a01eaaa9bf93cb5d3ce50bd744eab52Irfan Sheriff * Enterprise configuration details for Wi-Fi. Stores details about the EAP method 38fdc028383a01eaaa9bf93cb5d3ce50bd744eab52Irfan Sheriff * and any associated credentials. 39fdc028383a01eaaa9bf93cb5d3ce50bd744eab52Irfan Sheriff */ 409b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriffpublic class WifiEnterpriseConfig implements Parcelable { 419b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff 42ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde /** @hide */ 43ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde public static final String EMPTY_VALUE = "NULL"; 44ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde /** @hide */ 45ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde public static final String EAP_KEY = "eap"; 46ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde /** @hide */ 47ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde public static final String PHASE2_KEY = "phase2"; 48ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde /** @hide */ 49ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde public static final String IDENTITY_KEY = "identity"; 50ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde /** @hide */ 51ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde public static final String ANON_IDENTITY_KEY = "anonymous_identity"; 52ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde /** @hide */ 53ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde public static final String PASSWORD_KEY = "password"; 54ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde /** @hide */ 55ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde public static final String SUBJECT_MATCH_KEY = "subject_match"; 56ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde /** @hide */ 57b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande public static final String ALTSUBJECT_MATCH_KEY = "altsubject_match"; 58b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande /** @hide */ 59c91bc62f2bdca18c0ed96a740cbaa0383ea2860aJan Nordqvist public static final String DOM_SUFFIX_MATCH_KEY = "domain_suffix_match"; 60c91bc62f2bdca18c0ed96a740cbaa0383ea2860aJan Nordqvist /** @hide */ 61ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde public static final String OPP_KEY_CACHING = "proactive_key_caching"; 62ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde /** 63ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde * String representing the keystore OpenSSL ENGINE's ID. 64ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde * @hide 65ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde */ 66ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde public static final String ENGINE_ID_KEYSTORE = "keystore"; 67ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde 68ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde /** 69ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde * String representing the keystore URI used for wpa_supplicant. 70ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde * @hide 71ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde */ 72ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde public static final String KEYSTORE_URI = "keystore://"; 73ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde 74ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde /** 75ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde * String to set the engine value to when it should be enabled. 76ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde * @hide 77ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde */ 78ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde public static final String ENGINE_ENABLE = "1"; 79ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde 80ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde /** 81ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde * String to set the engine value to when it should be disabled. 82ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde * @hide 83ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde */ 84ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde public static final String ENGINE_DISABLE = "0"; 85ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde 86ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde /** @hide */ 87ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde public static final String CA_CERT_PREFIX = KEYSTORE_URI + Credentials.CA_CERTIFICATE; 88ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde /** @hide */ 89ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde public static final String CLIENT_CERT_PREFIX = KEYSTORE_URI + Credentials.USER_CERTIFICATE; 90ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde /** @hide */ 91ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde public static final String CLIENT_CERT_KEY = "client_cert"; 92ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde /** @hide */ 93ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde public static final String CA_CERT_KEY = "ca_cert"; 94ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde /** @hide */ 95ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde public static final String ENGINE_KEY = "engine"; 96ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde /** @hide */ 97ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde public static final String ENGINE_ID_KEY = "engine_id"; 98ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde /** @hide */ 99ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde public static final String PRIVATE_KEY_ID_KEY = "key_id"; 100b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande /** @hide */ 101b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande public static final String REALM_KEY = "realm"; 102b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande /** @hide */ 103b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande public static final String PLMN_KEY = "plmn"; 104b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande 105ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde 1069b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff private HashMap<String, String> mFields = new HashMap<String, String>(); 10726d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff private X509Certificate mCaCert; 10826d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff private PrivateKey mClientPrivateKey; 10926d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff private X509Certificate mClientCertificate; 1109b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff 1119b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff public WifiEnterpriseConfig() { 112e095675c872f40f630aa3f9189eb5c02f3cfee6dIrfan Sheriff // Do not set defaults so that the enterprise fields that are not changed 113e095675c872f40f630aa3f9189eb5c02f3cfee6dIrfan Sheriff // by API are not changed underneath 114e095675c872f40f630aa3f9189eb5c02f3cfee6dIrfan Sheriff // This is essential because an app may not have all fields like password 115e095675c872f40f630aa3f9189eb5c02f3cfee6dIrfan Sheriff // available. It allows modification of subset of fields. 116e095675c872f40f630aa3f9189eb5c02f3cfee6dIrfan Sheriff 1179b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 1189b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff 1199b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff /** Copy constructor */ 1209b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff public WifiEnterpriseConfig(WifiEnterpriseConfig source) { 1219b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff for (String key : source.mFields.keySet()) { 1229b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff mFields.put(key, source.mFields.get(key)); 1239b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 1249b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 1259b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff 1269b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff @Override 1279b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff public int describeContents() { 1289b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff return 0; 1299b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 1309b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff 13186ee9640ee6d6bd9bb655af830eea5515400f25bIrfan Sheriff @Override 1329b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff public void writeToParcel(Parcel dest, int flags) { 1339b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff dest.writeInt(mFields.size()); 1349b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff for (Map.Entry<String, String> entry : mFields.entrySet()) { 1359b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff dest.writeString(entry.getKey()); 1369b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff dest.writeString(entry.getValue()); 1379b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 13826d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff 13926d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff writeCertificate(dest, mCaCert); 14026d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff 14126d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff if (mClientPrivateKey != null) { 14226d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff String algorithm = mClientPrivateKey.getAlgorithm(); 14326d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff byte[] userKeyBytes = mClientPrivateKey.getEncoded(); 14426d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff dest.writeInt(userKeyBytes.length); 14526d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff dest.writeByteArray(userKeyBytes); 14626d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff dest.writeString(algorithm); 14726d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff } else { 14826d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff dest.writeInt(0); 14926d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff } 15026d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff 15126d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff writeCertificate(dest, mClientCertificate); 15226d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff } 15326d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff 15426d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff private void writeCertificate(Parcel dest, X509Certificate cert) { 15526d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff if (cert != null) { 15626d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff try { 15726d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff byte[] certBytes = cert.getEncoded(); 15826d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff dest.writeInt(certBytes.length); 15926d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff dest.writeByteArray(certBytes); 16026d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff } catch (CertificateEncodingException e) { 16126d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff dest.writeInt(0); 16226d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff } 16326d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff } else { 16426d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff dest.writeInt(0); 16526d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff } 1669b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 1679b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff 1689b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff public static final Creator<WifiEnterpriseConfig> CREATOR = 1699b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff new Creator<WifiEnterpriseConfig>() { 1709b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff public WifiEnterpriseConfig createFromParcel(Parcel in) { 1719b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff WifiEnterpriseConfig enterpriseConfig = new WifiEnterpriseConfig(); 1729b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff int count = in.readInt(); 1739b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff for (int i = 0; i < count; i++) { 1749b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff String key = in.readString(); 1759b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff String value = in.readString(); 1769b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff enterpriseConfig.mFields.put(key, value); 1779b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 17826d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff 17926d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff enterpriseConfig.mCaCert = readCertificate(in); 18026d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff 18126d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff PrivateKey userKey = null; 18226d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff int len = in.readInt(); 18326d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff if (len > 0) { 18426d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff try { 18526d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff byte[] bytes = new byte[len]; 18626d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff in.readByteArray(bytes); 18726d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff String algorithm = in.readString(); 18826d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff KeyFactory keyFactory = KeyFactory.getInstance(algorithm); 18926d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff userKey = keyFactory.generatePrivate(new PKCS8EncodedKeySpec(bytes)); 19026d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff } catch (NoSuchAlgorithmException e) { 19126d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff userKey = null; 19226d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff } catch (InvalidKeySpecException e) { 19326d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff userKey = null; 19426d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff } 19526d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff } 19626d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff 19726d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff enterpriseConfig.mClientPrivateKey = userKey; 19826d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff enterpriseConfig.mClientCertificate = readCertificate(in); 1999b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff return enterpriseConfig; 2009b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 2019b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff 20226d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff private X509Certificate readCertificate(Parcel in) { 20326d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff X509Certificate cert = null; 20426d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff int len = in.readInt(); 20526d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff if (len > 0) { 20626d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff try { 20726d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff byte[] bytes = new byte[len]; 20826d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff in.readByteArray(bytes); 20926d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff CertificateFactory cFactory = CertificateFactory.getInstance("X.509"); 21026d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff cert = (X509Certificate) cFactory 21126d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff .generateCertificate(new ByteArrayInputStream(bytes)); 21226d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff } catch (CertificateException e) { 21326d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff cert = null; 21426d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff } 21526d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff } 21626d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff return cert; 21726d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff } 21826d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff 2199b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff public WifiEnterpriseConfig[] newArray(int size) { 2209b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff return new WifiEnterpriseConfig[size]; 2219b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 2229b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff }; 2239b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff 224fdc028383a01eaaa9bf93cb5d3ce50bd744eab52Irfan Sheriff /** The Extensible Authentication Protocol method used */ 2259b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff public static final class Eap { 226fdc028383a01eaaa9bf93cb5d3ce50bd744eab52Irfan Sheriff /** No EAP method used. Represents an empty config */ 227e095675c872f40f630aa3f9189eb5c02f3cfee6dIrfan Sheriff public static final int NONE = -1; 228fdc028383a01eaaa9bf93cb5d3ce50bd744eab52Irfan Sheriff /** Protected EAP */ 2299b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff public static final int PEAP = 0; 230fdc028383a01eaaa9bf93cb5d3ce50bd744eab52Irfan Sheriff /** EAP-Transport Layer Security */ 2319b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff public static final int TLS = 1; 232fdc028383a01eaaa9bf93cb5d3ce50bd744eab52Irfan Sheriff /** EAP-Tunneled Transport Layer Security */ 2339b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff public static final int TTLS = 2; 234fdc028383a01eaaa9bf93cb5d3ce50bd744eab52Irfan Sheriff /** EAP-Password */ 2359b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff public static final int PWD = 3; 236c8505931420dd9a76acf940a56b31354cd0105b0Vinit Deshpande /** EAP-Subscriber Identity Module */ 2377fee7232ee2ae45fb3cd4fcce314e8f1101ae8dbRoger Chang public static final int SIM = 4; 238c8505931420dd9a76acf940a56b31354cd0105b0Vinit Deshpande /** EAP-Authentication and Key Agreement */ 2397fee7232ee2ae45fb3cd4fcce314e8f1101ae8dbRoger Chang public static final int AKA = 5; 240adf9e95ecc5d0867adf1dc2d7adcac958457b98eJean-Michel Bachot /** EAP-Authentication and Key Agreement Prime */ 241adf9e95ecc5d0867adf1dc2d7adcac958457b98eJean-Michel Bachot public static final int AKA_PRIME = 6; 2429b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff /** @hide */ 243adf9e95ecc5d0867adf1dc2d7adcac958457b98eJean-Michel Bachot public static final String[] strings = { "PEAP", "TLS", "TTLS", "PWD", "SIM", "AKA", "AKA'" }; 24440843589c46164c90fde29ad1c58291f17d4d9e6Irfan Sheriff 24540843589c46164c90fde29ad1c58291f17d4d9e6Irfan Sheriff /** Prevent initialization */ 24640843589c46164c90fde29ad1c58291f17d4d9e6Irfan Sheriff private Eap() {} 2479b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 2489b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff 249fdc028383a01eaaa9bf93cb5d3ce50bd744eab52Irfan Sheriff /** The inner authentication method used */ 2509b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff public static final class Phase2 { 2519b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff public static final int NONE = 0; 252fdc028383a01eaaa9bf93cb5d3ce50bd744eab52Irfan Sheriff /** Password Authentication Protocol */ 2539b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff public static final int PAP = 1; 254fdc028383a01eaaa9bf93cb5d3ce50bd744eab52Irfan Sheriff /** Microsoft Challenge Handshake Authentication Protocol */ 2559b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff public static final int MSCHAP = 2; 256fdc028383a01eaaa9bf93cb5d3ce50bd744eab52Irfan Sheriff /** Microsoft Challenge Handshake Authentication Protocol v2 */ 2579b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff public static final int MSCHAPV2 = 3; 258fdc028383a01eaaa9bf93cb5d3ce50bd744eab52Irfan Sheriff /** Generic Token Card */ 2599b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff public static final int GTC = 4; 2609b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff private static final String PREFIX = "auth="; 2619b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff /** @hide */ 262ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde public static final String[] strings = {EMPTY_VALUE, "PAP", "MSCHAP", 263ade8de3c4a021d6b0e753d77be148236af5f39efVinit Deshapnde "MSCHAPV2", "GTC" }; 26440843589c46164c90fde29ad1c58291f17d4d9e6Irfan Sheriff 26540843589c46164c90fde29ad1c58291f17d4d9e6Irfan Sheriff /** Prevent initialization */ 26640843589c46164c90fde29ad1c58291f17d4d9e6Irfan Sheriff private Phase2() {} 2679b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 2689b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff 269ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde /** Internal use only 270ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde * @hide 271ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde */ 272ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde public HashMap<String, String> getFields() { 2739b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff return mFields; 2749b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 2759b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff 2769b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff /** 2779b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * Set the EAP authentication method. 2789b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * @param eapMethod is one {@link Eap#PEAP}, {@link Eap#TLS}, {@link Eap#TTLS} or 2799b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * {@link Eap#PWD} 280fdc028383a01eaaa9bf93cb5d3ce50bd744eab52Irfan Sheriff * @throws IllegalArgumentException on an invalid eap method 2819b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff */ 2829b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff public void setEapMethod(int eapMethod) { 2839b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff switch (eapMethod) { 2849b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff /** Valid methods */ 28526a98001ad3ec626f18fd57165ccc404f80d4e51Vinit Deshpande case Eap.TLS: 28626a98001ad3ec626f18fd57165ccc404f80d4e51Vinit Deshpande setPhase2Method(Phase2.NONE); 28726a98001ad3ec626f18fd57165ccc404f80d4e51Vinit Deshpande /* fall through */ 2889b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff case Eap.PEAP: 2899b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff case Eap.PWD: 2909b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff case Eap.TTLS: 2917fee7232ee2ae45fb3cd4fcce314e8f1101ae8dbRoger Chang case Eap.SIM: 2927fee7232ee2ae45fb3cd4fcce314e8f1101ae8dbRoger Chang case Eap.AKA: 293adf9e95ecc5d0867adf1dc2d7adcac958457b98eJean-Michel Bachot case Eap.AKA_PRIME: 294ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde mFields.put(EAP_KEY, Eap.strings[eapMethod]); 295ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde mFields.put(OPP_KEY_CACHING, "1"); 2969b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff break; 2979b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff default: 2989b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff throw new IllegalArgumentException("Unknown EAP method"); 2999b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 3009b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 3019b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff 3029b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff /** 3039b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * Get the eap method. 3049b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * @return eap method configured 3059b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff */ 3069b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff public int getEapMethod() { 307ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde String eapMethod = mFields.get(EAP_KEY); 308e095675c872f40f630aa3f9189eb5c02f3cfee6dIrfan Sheriff return getStringIndex(Eap.strings, eapMethod, Eap.NONE); 3099b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 3109b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff 3119b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff /** 3129b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * Set Phase 2 authentication method. Sets the inner authentication method to be used in 3139b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * phase 2 after setting up a secure channel 3149b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * @param phase2Method is the inner authentication method and can be one of {@link Phase2#NONE}, 3159b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * {@link Phase2#PAP}, {@link Phase2#MSCHAP}, {@link Phase2#MSCHAPV2}, 3169b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * {@link Phase2#GTC} 317fdc028383a01eaaa9bf93cb5d3ce50bd744eab52Irfan Sheriff * @throws IllegalArgumentException on an invalid phase2 method 3189b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * 3199b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff */ 3209b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff public void setPhase2Method(int phase2Method) { 3219b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff switch (phase2Method) { 3229b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff case Phase2.NONE: 323ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde mFields.put(PHASE2_KEY, EMPTY_VALUE); 3249b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff break; 3259b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff /** Valid methods */ 3269b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff case Phase2.PAP: 3279b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff case Phase2.MSCHAP: 3289b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff case Phase2.MSCHAPV2: 3299b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff case Phase2.GTC: 330ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde mFields.put(PHASE2_KEY, convertToQuotedString( 3319b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff Phase2.PREFIX + Phase2.strings[phase2Method])); 3329b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff break; 3339b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff default: 3349b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff throw new IllegalArgumentException("Unknown Phase 2 method"); 3359b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 3369b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 3379b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff 3389b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff /** 3399b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * Get the phase 2 authentication method. 3409b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * @return a phase 2 method defined at {@link Phase2} 3419b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * */ 3429b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff public int getPhase2Method() { 343ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde String phase2Method = removeDoubleQuotes(mFields.get(PHASE2_KEY)); 344e095675c872f40f630aa3f9189eb5c02f3cfee6dIrfan Sheriff // Remove auth= prefix 345e095675c872f40f630aa3f9189eb5c02f3cfee6dIrfan Sheriff if (phase2Method.startsWith(Phase2.PREFIX)) { 346e095675c872f40f630aa3f9189eb5c02f3cfee6dIrfan Sheriff phase2Method = phase2Method.substring(Phase2.PREFIX.length()); 347e095675c872f40f630aa3f9189eb5c02f3cfee6dIrfan Sheriff } 3489b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff return getStringIndex(Phase2.strings, phase2Method, Phase2.NONE); 3499b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 3509b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff 3519b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff /** 3529b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * Set the identity 3539b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * @param identity 3549b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff */ 3559b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff public void setIdentity(String identity) { 356ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde setFieldValue(IDENTITY_KEY, identity, ""); 3579b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 3589b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff 3599b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff /** 3609b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * Get the identity 3619b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * @return the identity 3629b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff */ 3639b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff public String getIdentity() { 364ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde return getFieldValue(IDENTITY_KEY, ""); 3659b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 3669b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff 3679b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff /** 3689b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * Set anonymous identity. This is used as the unencrypted identity with 3699b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * certain EAP types 3709b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * @param anonymousIdentity the anonymous identity 3719b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff */ 3729b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff public void setAnonymousIdentity(String anonymousIdentity) { 373ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde setFieldValue(ANON_IDENTITY_KEY, anonymousIdentity, ""); 3749b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 3759b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff 3769b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff /** Get the anonymous identity 3779b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * @return anonymous identity 3789b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff */ 3799b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff public String getAnonymousIdentity() { 380ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde return getFieldValue(ANON_IDENTITY_KEY, ""); 3819b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 3829b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff 3839b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff /** 3849b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * Set the password. 3859b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * @param password the password 3869b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff */ 3879b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff public void setPassword(String password) { 388ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde setFieldValue(PASSWORD_KEY, password, ""); 3899b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 3909b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff 3919b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff /** 39240843589c46164c90fde29ad1c58291f17d4d9e6Irfan Sheriff * Get the password. 39340843589c46164c90fde29ad1c58291f17d4d9e6Irfan Sheriff * 39440843589c46164c90fde29ad1c58291f17d4d9e6Irfan Sheriff * Returns locally set password value. For networks fetched from 39540843589c46164c90fde29ad1c58291f17d4d9e6Irfan Sheriff * framework, returns "*". 39640843589c46164c90fde29ad1c58291f17d4d9e6Irfan Sheriff */ 39740843589c46164c90fde29ad1c58291f17d4d9e6Irfan Sheriff public String getPassword() { 398ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde return getFieldValue(PASSWORD_KEY, ""); 39940843589c46164c90fde29ad1c58291f17d4d9e6Irfan Sheriff } 40040843589c46164c90fde29ad1c58291f17d4d9e6Irfan Sheriff 40140843589c46164c90fde29ad1c58291f17d4d9e6Irfan Sheriff /** 4029b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * Set CA certificate alias. 4039b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * 4049b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * <p> See the {@link android.security.KeyChain} for details on installing or choosing 4059b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * a certificate 4069b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * </p> 4079b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * @param alias identifies the certificate 40826d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff * @hide 4099b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff */ 41026d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff public void setCaCertificateAlias(String alias) { 411ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde setFieldValue(CA_CERT_KEY, alias, CA_CERT_PREFIX); 4129b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 4139b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff 4149b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff /** 4159b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * Get CA certificate alias 4169b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * @return alias to the CA certificate 41726d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff * @hide 4189b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff */ 41926d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff public String getCaCertificateAlias() { 420ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde return getFieldValue(CA_CERT_KEY, CA_CERT_PREFIX); 4219b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 4229b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff 4239b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff /** 42426d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff * Specify a X.509 certificate that identifies the server. 42526d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff * 42626d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff * <p>A default name is automatically assigned to the certificate and used 427fdc028383a01eaaa9bf93cb5d3ce50bd744eab52Irfan Sheriff * with this configuration. The framework takes care of installing the 428fdc028383a01eaaa9bf93cb5d3ce50bd744eab52Irfan Sheriff * certificate when the config is saved and removing the certificate when 429fdc028383a01eaaa9bf93cb5d3ce50bd744eab52Irfan Sheriff * the config is removed. 430fdc028383a01eaaa9bf93cb5d3ce50bd744eab52Irfan Sheriff * 43126d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff * @param cert X.509 CA certificate 43226d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff * @throws IllegalArgumentException if not a CA certificate 43326d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff */ 43426d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff public void setCaCertificate(X509Certificate cert) { 4350b4732c2248fa2b92a44f045dfcadb3547076ef4Irfan Sheriff if (cert != null) { 4360b4732c2248fa2b92a44f045dfcadb3547076ef4Irfan Sheriff if (cert.getBasicConstraints() >= 0) { 4370b4732c2248fa2b92a44f045dfcadb3547076ef4Irfan Sheriff mCaCert = cert; 4380b4732c2248fa2b92a44f045dfcadb3547076ef4Irfan Sheriff } else { 4390b4732c2248fa2b92a44f045dfcadb3547076ef4Irfan Sheriff throw new IllegalArgumentException("Not a CA certificate"); 4400b4732c2248fa2b92a44f045dfcadb3547076ef4Irfan Sheriff } 44126d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff } else { 4420b4732c2248fa2b92a44f045dfcadb3547076ef4Irfan Sheriff mCaCert = null; 44326d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff } 44426d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff } 44526d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff 44626d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff /** 44740843589c46164c90fde29ad1c58291f17d4d9e6Irfan Sheriff * Get CA certificate 44840843589c46164c90fde29ad1c58291f17d4d9e6Irfan Sheriff * @return X.509 CA certificate 44940843589c46164c90fde29ad1c58291f17d4d9e6Irfan Sheriff */ 45040843589c46164c90fde29ad1c58291f17d4d9e6Irfan Sheriff public X509Certificate getCaCertificate() { 45140843589c46164c90fde29ad1c58291f17d4d9e6Irfan Sheriff return mCaCert; 45240843589c46164c90fde29ad1c58291f17d4d9e6Irfan Sheriff } 45340843589c46164c90fde29ad1c58291f17d4d9e6Irfan Sheriff 45440843589c46164c90fde29ad1c58291f17d4d9e6Irfan Sheriff /** 455ade8de3c4a021d6b0e753d77be148236af5f39efVinit Deshapnde * @hide 456ade8de3c4a021d6b0e753d77be148236af5f39efVinit Deshapnde */ 457ade8de3c4a021d6b0e753d77be148236af5f39efVinit Deshapnde public void resetCaCertificate() { 458ade8de3c4a021d6b0e753d77be148236af5f39efVinit Deshapnde mCaCert = null; 459ade8de3c4a021d6b0e753d77be148236af5f39efVinit Deshapnde } 460ade8de3c4a021d6b0e753d77be148236af5f39efVinit Deshapnde 461ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde /** Set Client certificate alias. 4629b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * 4639b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * <p> See the {@link android.security.KeyChain} for details on installing or choosing 4649b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * a certificate 4659b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * </p> 4669b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * @param alias identifies the certificate 46726d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff * @hide 4689b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff */ 46926d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff public void setClientCertificateAlias(String alias) { 470ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde setFieldValue(CLIENT_CERT_KEY, alias, CLIENT_CERT_PREFIX); 471ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde setFieldValue(PRIVATE_KEY_ID_KEY, alias, Credentials.USER_PRIVATE_KEY); 4729b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff // Also, set engine parameters 4739b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff if (TextUtils.isEmpty(alias)) { 474ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde mFields.put(ENGINE_KEY, ENGINE_DISABLE); 475ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde mFields.put(ENGINE_ID_KEY, EMPTY_VALUE); 4769b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } else { 477ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde mFields.put(ENGINE_KEY, ENGINE_ENABLE); 478ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde mFields.put(ENGINE_ID_KEY, convertToQuotedString(ENGINE_ID_KEYSTORE)); 4799b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 4809b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 4819b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff 4829b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff /** 4839b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * Get client certificate alias 4849b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * @return alias to the client certificate 48526d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff * @hide 4869b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff */ 48726d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff public String getClientCertificateAlias() { 488ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde return getFieldValue(CLIENT_CERT_KEY, CLIENT_CERT_PREFIX); 4899b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 4909b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff 4919b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff /** 49226d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff * Specify a private key and client certificate for client authorization. 49326d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff * 49426d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff * <p>A default name is automatically assigned to the key entry and used 495fdc028383a01eaaa9bf93cb5d3ce50bd744eab52Irfan Sheriff * with this configuration. The framework takes care of installing the 496fdc028383a01eaaa9bf93cb5d3ce50bd744eab52Irfan Sheriff * key entry when the config is saved and removing the key entry when 497fdc028383a01eaaa9bf93cb5d3ce50bd744eab52Irfan Sheriff * the config is removed. 498fdc028383a01eaaa9bf93cb5d3ce50bd744eab52Irfan Sheriff 49926d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff * @param privateKey 50026d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff * @param clientCertificate 501fdc028383a01eaaa9bf93cb5d3ce50bd744eab52Irfan Sheriff * @throws IllegalArgumentException for an invalid key or certificate. 50226d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff */ 50326d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff public void setClientKeyEntry(PrivateKey privateKey, X509Certificate clientCertificate) { 50426d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff if (clientCertificate != null) { 50526d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff if (clientCertificate.getBasicConstraints() != -1) { 50626d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff throw new IllegalArgumentException("Cannot be a CA certificate"); 50726d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff } 50826d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff if (privateKey == null) { 50926d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff throw new IllegalArgumentException("Client cert without a private key"); 51026d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff } 51126d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff if (privateKey.getEncoded() == null) { 51226d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff throw new IllegalArgumentException("Private key cannot be encoded"); 51326d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff } 51426d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff } 51526d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff 51626d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff mClientPrivateKey = privateKey; 51726d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff mClientCertificate = clientCertificate; 51826d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff } 51926d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff 52040843589c46164c90fde29ad1c58291f17d4d9e6Irfan Sheriff /** 52140843589c46164c90fde29ad1c58291f17d4d9e6Irfan Sheriff * Get client certificate 52240843589c46164c90fde29ad1c58291f17d4d9e6Irfan Sheriff * 52340843589c46164c90fde29ad1c58291f17d4d9e6Irfan Sheriff * @return X.509 client certificate 52440843589c46164c90fde29ad1c58291f17d4d9e6Irfan Sheriff */ 52540843589c46164c90fde29ad1c58291f17d4d9e6Irfan Sheriff public X509Certificate getClientCertificate() { 52640843589c46164c90fde29ad1c58291f17d4d9e6Irfan Sheriff return mClientCertificate; 52726d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff } 52826d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff 529ade8de3c4a021d6b0e753d77be148236af5f39efVinit Deshapnde /** 530ade8de3c4a021d6b0e753d77be148236af5f39efVinit Deshapnde * @hide 531ade8de3c4a021d6b0e753d77be148236af5f39efVinit Deshapnde */ 532ade8de3c4a021d6b0e753d77be148236af5f39efVinit Deshapnde public void resetClientKeyEntry() { 533ade8de3c4a021d6b0e753d77be148236af5f39efVinit Deshapnde mClientPrivateKey = null; 534ade8de3c4a021d6b0e753d77be148236af5f39efVinit Deshapnde mClientCertificate = null; 53526d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff } 53626d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff 537ade8de3c4a021d6b0e753d77be148236af5f39efVinit Deshapnde /** 538ade8de3c4a021d6b0e753d77be148236af5f39efVinit Deshapnde * @hide 539ade8de3c4a021d6b0e753d77be148236af5f39efVinit Deshapnde */ 540ade8de3c4a021d6b0e753d77be148236af5f39efVinit Deshapnde public PrivateKey getClientPrivateKey() { 541ade8de3c4a021d6b0e753d77be148236af5f39efVinit Deshapnde return mClientPrivateKey; 54226d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff } 54326d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff 54426d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff /** 545b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande * Set subject match (deprecated). This is the substring to be matched against the subject of 546b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande * the authentication server certificate. 5479b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * @param subjectMatch substring to be matched 548b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande * @deprecated in favor of altSubjectMatch 5499b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff */ 5509b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff public void setSubjectMatch(String subjectMatch) { 551ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde setFieldValue(SUBJECT_MATCH_KEY, subjectMatch, ""); 5529b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 5539b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff 5549b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff /** 555b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande * Get subject match (deprecated) 5569b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * @return the subject match string 557b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande * @deprecated in favor of altSubjectMatch 5589b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff */ 5599b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff public String getSubjectMatch() { 560ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde return getFieldValue(SUBJECT_MATCH_KEY, ""); 5619b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 5629b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff 563b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande /** 564b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande * Set alternate subject match. This is the substring to be matched against the 565b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande * alternate subject of the authentication server certificate. 566b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande * @param altSubjectMatch substring to be matched, for example 567b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande * DNS:server.example.com;EMAIL:server@example.com 568b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande */ 569b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande public void setAltSubjectMatch(String altSubjectMatch) { 570b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande setFieldValue(ALTSUBJECT_MATCH_KEY, altSubjectMatch, ""); 571b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande } 572b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande 573b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande /** 574b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande * Get alternate subject match 575b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande * @return the alternate subject match string 576b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande */ 577b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande public String getAltSubjectMatch() { 578b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande return getFieldValue(ALTSUBJECT_MATCH_KEY, ""); 579c91bc62f2bdca18c0ed96a740cbaa0383ea2860aJan Nordqvist } 580c91bc62f2bdca18c0ed96a740cbaa0383ea2860aJan Nordqvist 581c91bc62f2bdca18c0ed96a740cbaa0383ea2860aJan Nordqvist /** 582c91bc62f2bdca18c0ed96a740cbaa0383ea2860aJan Nordqvist * Set the domain_suffix_match directive on wpa_supplicant. This is the parameter to use 583c91bc62f2bdca18c0ed96a740cbaa0383ea2860aJan Nordqvist * for Hotspot 2.0 defined matching of AAA server certs per WFA HS2.0 spec, section 7.3.3.2, 584c91bc62f2bdca18c0ed96a740cbaa0383ea2860aJan Nordqvist * second paragraph. 585c91bc62f2bdca18c0ed96a740cbaa0383ea2860aJan Nordqvist * 586c91bc62f2bdca18c0ed96a740cbaa0383ea2860aJan Nordqvist * From wpa_supplicant documentation: 587c91bc62f2bdca18c0ed96a740cbaa0383ea2860aJan Nordqvist * Constraint for server domain name. If set, this FQDN is used as a suffix match requirement 588c91bc62f2bdca18c0ed96a740cbaa0383ea2860aJan Nordqvist * for the AAAserver certificate in SubjectAltName dNSName element(s). If a matching dNSName is 589c91bc62f2bdca18c0ed96a740cbaa0383ea2860aJan Nordqvist * found, this constraint is met. If no dNSName values are present, this constraint is matched 590c91bc62f2bdca18c0ed96a740cbaa0383ea2860aJan Nordqvist * against SubjectName CN using same suffix match comparison. 591c91bc62f2bdca18c0ed96a740cbaa0383ea2860aJan Nordqvist * Suffix match here means that the host/domain name is compared one label at a time starting 592c91bc62f2bdca18c0ed96a740cbaa0383ea2860aJan Nordqvist * from the top-level domain and all the labels in domain_suffix_match shall be included in the 593c91bc62f2bdca18c0ed96a740cbaa0383ea2860aJan Nordqvist * certificate. The certificate may include additional sub-level labels in addition to the 594c91bc62f2bdca18c0ed96a740cbaa0383ea2860aJan Nordqvist * required labels. 595c91bc62f2bdca18c0ed96a740cbaa0383ea2860aJan Nordqvist * For example, domain_suffix_match=example.com would match test.example.com but would not 596c91bc62f2bdca18c0ed96a740cbaa0383ea2860aJan Nordqvist * match test-example.com. 597c91bc62f2bdca18c0ed96a740cbaa0383ea2860aJan Nordqvist * @param domain The domain value 598c91bc62f2bdca18c0ed96a740cbaa0383ea2860aJan Nordqvist */ 59937f0820d6c23aa92a2b591327a734916131cb69aJan Nordqvist public void setDomainSuffixMatch(String domain) { 600c91bc62f2bdca18c0ed96a740cbaa0383ea2860aJan Nordqvist setFieldValue(DOM_SUFFIX_MATCH_KEY, domain); 601c91bc62f2bdca18c0ed96a740cbaa0383ea2860aJan Nordqvist } 602c91bc62f2bdca18c0ed96a740cbaa0383ea2860aJan Nordqvist 603c91bc62f2bdca18c0ed96a740cbaa0383ea2860aJan Nordqvist /** 604c91bc62f2bdca18c0ed96a740cbaa0383ea2860aJan Nordqvist * Get the domain_suffix_match value. See setDomSuffixMatch. 605c91bc62f2bdca18c0ed96a740cbaa0383ea2860aJan Nordqvist * @return The domain value. 606c91bc62f2bdca18c0ed96a740cbaa0383ea2860aJan Nordqvist */ 607a0d929e505432a8c84f3899696c910db16bd73bfVinit Deshpande public String getDomainSuffixMatch() { 608c91bc62f2bdca18c0ed96a740cbaa0383ea2860aJan Nordqvist return getFieldValue(DOM_SUFFIX_MATCH_KEY, ""); 609b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande } 610b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande 611b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande /** 612a0d929e505432a8c84f3899696c910db16bd73bfVinit Deshpande * Set realm for passpoint credential; realm identifies a set of networks where your 613a0d929e505432a8c84f3899696c910db16bd73bfVinit Deshpande * passpoint credential can be used 614b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande * @param realm the realm 615b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande */ 616b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande public void setRealm(String realm) { 617b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande setFieldValue(REALM_KEY, realm, ""); 618b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande } 619b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande 620b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande /** 621a0d929e505432a8c84f3899696c910db16bd73bfVinit Deshpande * Get realm for passpoint credential; see {@link #setRealm(String)} for more information 622b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande * @return the realm 623b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande */ 624b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande public String getRealm() { 625b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande return getFieldValue(REALM_KEY, ""); 626b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande } 627b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande 628b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande /** 629a0d929e505432a8c84f3899696c910db16bd73bfVinit Deshpande * Set plmn (Public Land Mobile Network) of the provider of passpoint credential 630a0d929e505432a8c84f3899696c910db16bd73bfVinit Deshpande * @param plmn the plmn value derived from mcc (mobile country code) & mnc (mobile network code) 631b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande */ 632b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande public void setPlmn(String plmn) { 633b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande setFieldValue(PLMN_KEY, plmn, ""); 634b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande } 635b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande 636b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande /** 637a0d929e505432a8c84f3899696c910db16bd73bfVinit Deshpande * Get plmn (Public Land Mobile Network) for passpoint credential; see {@link #setPlmn 638a0d929e505432a8c84f3899696c910db16bd73bfVinit Deshpande * (String)} for more information 639b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande * @return the plmn 640b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande */ 641b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande public String getPlmn() { 642b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande return getFieldValue(PLMN_KEY, ""); 643b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande } 644b21d2489c1bd330e39f4489c7f221ebb4dffc283Vinit Deshpande 64526d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff /** See {@link WifiConfiguration#getKeyIdForCredentials} @hide */ 64626d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff String getKeyId(WifiEnterpriseConfig current) { 647ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde String eap = mFields.get(EAP_KEY); 648ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde String phase2 = mFields.get(PHASE2_KEY); 64926d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff 65026d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff // If either eap or phase2 are not initialized, use current config details 65126d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff if (TextUtils.isEmpty((eap))) { 652ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde eap = current.mFields.get(EAP_KEY); 65326d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff } 65426d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff if (TextUtils.isEmpty(phase2)) { 655ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde phase2 = current.mFields.get(PHASE2_KEY); 65626d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff } 65726d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff return eap + "_" + phase2; 65826d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff } 65926d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff 6609b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff private String removeDoubleQuotes(String string) { 6610b4732c2248fa2b92a44f045dfcadb3547076ef4Irfan Sheriff if (TextUtils.isEmpty(string)) return ""; 6629b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff int length = string.length(); 6639b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff if ((length > 1) && (string.charAt(0) == '"') 6649b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff && (string.charAt(length - 1) == '"')) { 6659b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff return string.substring(1, length - 1); 6669b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 6679b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff return string; 6689b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 6699b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff 6709b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff private String convertToQuotedString(String string) { 6719b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff return "\"" + string + "\""; 6729b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 6739b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff 6749b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff /** Returns the index at which the toBeFound string is found in the array. 6759b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * @param arr array of strings 6769b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * @param toBeFound string to be found 6779b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * @param defaultIndex default index to be returned when string is not found 6789b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * @return the index into array 6799b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff */ 6809b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff private int getStringIndex(String arr[], String toBeFound, int defaultIndex) { 68126d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff if (TextUtils.isEmpty(toBeFound)) return defaultIndex; 6829b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff for (int i = 0; i < arr.length; i++) { 683e095675c872f40f630aa3f9189eb5c02f3cfee6dIrfan Sheriff if (toBeFound.equals(arr[i])) return i; 6849b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 6859b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff return defaultIndex; 6869b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 6879b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff 6889b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff /** Returns the field value for the key. 6899b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * @param key into the hash 6909b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * @param prefix is the prefix that the value may have 6919b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * @return value 692ade8de3c4a021d6b0e753d77be148236af5f39efVinit Deshapnde * @hide 6939b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff */ 694ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde public String getFieldValue(String key, String prefix) { 6959b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff String value = mFields.get(key); 69626d0076f0dbb021c4e5cc1b37b632b2223fd9278Irfan Sheriff // Uninitialized or known to be empty after reading from supplicant 697ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde if (TextUtils.isEmpty(value) || EMPTY_VALUE.equals(value)) return ""; 698dda5a7152fd6e5933503aba8e8badbbba0631839Vinit Deshapnde 699dda5a7152fd6e5933503aba8e8badbbba0631839Vinit Deshapnde value = removeDoubleQuotes(value); 700dda5a7152fd6e5933503aba8e8badbbba0631839Vinit Deshapnde if (value.startsWith(prefix)) { 701dda5a7152fd6e5933503aba8e8badbbba0631839Vinit Deshapnde return value.substring(prefix.length()); 702dda5a7152fd6e5933503aba8e8badbbba0631839Vinit Deshapnde } else { 703dda5a7152fd6e5933503aba8e8badbbba0631839Vinit Deshapnde return value; 704dda5a7152fd6e5933503aba8e8badbbba0631839Vinit Deshapnde } 7059b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 7069b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff 7079b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff /** Set a value with an optional prefix at key 7089b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * @param key into the hash 7099b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * @param value to be set 7109b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff * @param prefix an optional value to be prefixed to actual value 711ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde * @hide 7129b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff */ 713ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde public void setFieldValue(String key, String value, String prefix) { 7149b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff if (TextUtils.isEmpty(value)) { 715ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde mFields.put(key, EMPTY_VALUE); 7169b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } else { 7179b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff mFields.put(key, convertToQuotedString(prefix + value)); 7189b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 7199b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 7209b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff 721ade8de3c4a021d6b0e753d77be148236af5f39efVinit Deshapnde 722ade8de3c4a021d6b0e753d77be148236af5f39efVinit Deshapnde /** Set a value with an optional prefix at key 723ade8de3c4a021d6b0e753d77be148236af5f39efVinit Deshapnde * @param key into the hash 724ade8de3c4a021d6b0e753d77be148236af5f39efVinit Deshapnde * @param value to be set 725ade8de3c4a021d6b0e753d77be148236af5f39efVinit Deshapnde * @param prefix an optional value to be prefixed to actual value 726ade8de3c4a021d6b0e753d77be148236af5f39efVinit Deshapnde * @hide 727ade8de3c4a021d6b0e753d77be148236af5f39efVinit Deshapnde */ 728ade8de3c4a021d6b0e753d77be148236af5f39efVinit Deshapnde public void setFieldValue(String key, String value) { 729ade8de3c4a021d6b0e753d77be148236af5f39efVinit Deshapnde if (TextUtils.isEmpty(value)) { 730ffadfb9ffdced62db215319d3edc7717802088fbVinit Deshapnde mFields.put(key, EMPTY_VALUE); 731ade8de3c4a021d6b0e753d77be148236af5f39efVinit Deshapnde } else { 732ade8de3c4a021d6b0e753d77be148236af5f39efVinit Deshapnde mFields.put(key, convertToQuotedString(value)); 733ade8de3c4a021d6b0e753d77be148236af5f39efVinit Deshapnde } 734ade8de3c4a021d6b0e753d77be148236af5f39efVinit Deshapnde } 735ade8de3c4a021d6b0e753d77be148236af5f39efVinit Deshapnde 7369b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff @Override 7379b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff public String toString() { 7389b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff StringBuffer sb = new StringBuffer(); 7399b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff for (String key : mFields.keySet()) { 740ae64b185fca97c23f72d0e71f63d9511f6dd06cePaul Stewart // Don't display password in toString(). 741ae64b185fca97c23f72d0e71f63d9511f6dd06cePaul Stewart String value = (key == PASSWORD_KEY) ? "<removed>" : mFields.get(key); 742ae64b185fca97c23f72d0e71f63d9511f6dd06cePaul Stewart sb.append(key).append(" ").append(value).append("\n"); 7439b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 7449b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff return sb.toString(); 7459b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff } 7469b81319002634cf7118055f7aafaa26c27d4e5e8Irfan Sheriff} 747