Examples with KeyChainConnection android.security.KeyChain.KeyChainConnection used on opensource projects

Example 1 with KeyChainConnection

use of android.security.KeyChain.KeyChainConnection in project android_frameworks_base by ResurrectionRemix.

the class DevicePolicyManagerService method installKeyPair.

@Override
public boolean installKeyPair(ComponentName who, byte[] privKey, byte[] cert, byte[] chain, String alias, boolean requestAccess) {
    enforceCanManageInstalledKeys(who);
    final int callingUid = mInjector.binderGetCallingUid();
    final long id = mInjector.binderClearCallingIdentity();
    try {
        final KeyChainConnection keyChainConnection = KeyChain.bindAsUser(mContext, UserHandle.getUserHandleForUid(callingUid));
        try {
            IKeyChainService keyChain = keyChainConnection.getService();
            if (!keyChain.installKeyPair(privKey, cert, chain, alias)) {
                return false;
            }
            if (requestAccess) {
                keyChain.setGrant(callingUid, alias, true);
            }
            return true;
        } catch (RemoteException e) {
            Log.e(LOG_TAG, "Installing certificate", e);
        } finally {
            keyChainConnection.close();
        }
    } catch (InterruptedException e) {
        Log.w(LOG_TAG, "Interrupted while installing certificate", e);
        Thread.currentThread().interrupt();
    } finally {
        mInjector.binderRestoreCallingIdentity(id);
    }
    return false;
}

Example 2 with KeyChainConnection

use of android.security.KeyChain.KeyChainConnection in project android_frameworks_base by ResurrectionRemix.

the class DevicePolicyManagerService method removeKeyPair.

@Override
public boolean removeKeyPair(ComponentName who, String alias) {
    enforceCanManageInstalledKeys(who);
    final UserHandle userHandle = new UserHandle(UserHandle.getCallingUserId());
    final long id = Binder.clearCallingIdentity();
    try {
        final KeyChainConnection keyChainConnection = KeyChain.bindAsUser(mContext, userHandle);
        try {
            IKeyChainService keyChain = keyChainConnection.getService();
            return keyChain.removeKeyPair(alias);
        } catch (RemoteException e) {
            Log.e(LOG_TAG, "Removing keypair", e);
        } finally {
            keyChainConnection.close();
        }
    } catch (InterruptedException e) {
        Log.w(LOG_TAG, "Interrupted while removing keypair", e);
        Thread.currentThread().interrupt();
    } finally {
        Binder.restoreCallingIdentity(id);
    }
    return false;
}

Example 3 with KeyChainConnection

use of android.security.KeyChain.KeyChainConnection in project android_frameworks_base by DirtyUnicorns.

the class DevicePolicyManagerService method installCaCert.

@Override
public boolean installCaCert(ComponentName admin, byte[] certBuffer) throws RemoteException {
    enforceCanManageCaCerts(admin);
    byte[] pemCert;
    try {
        X509Certificate cert = parseCert(certBuffer);
        pemCert = Credentials.convertToPem(cert);
    } catch (CertificateException ce) {
        Log.e(LOG_TAG, "Problem converting cert", ce);
        return false;
    } catch (IOException ioe) {
        Log.e(LOG_TAG, "Problem reading cert", ioe);
        return false;
    }
    final UserHandle userHandle = new UserHandle(UserHandle.getCallingUserId());
    final long id = mInjector.binderClearCallingIdentity();
    try {
        final KeyChainConnection keyChainConnection = KeyChain.bindAsUser(mContext, userHandle);
        try {
            keyChainConnection.getService().installCaCertificate(pemCert);
            return true;
        } catch (RemoteException e) {
            Log.e(LOG_TAG, "installCaCertsToKeyChain(): ", e);
        } finally {
            keyChainConnection.close();
        }
    } catch (InterruptedException e1) {
        Log.w(LOG_TAG, "installCaCertsToKeyChain(): ", e1);
        Thread.currentThread().interrupt();
    } finally {
        mInjector.binderRestoreCallingIdentity(id);
    }
    return false;
}

Example 4 with KeyChainConnection

use of android.security.KeyChain.KeyChainConnection in project android_frameworks_base by DirtyUnicorns.

the class DevicePolicyManagerService method removeKeyPair.

@Override
public boolean removeKeyPair(ComponentName who, String alias) {
    enforceCanManageInstalledKeys(who);
    final UserHandle userHandle = new UserHandle(UserHandle.getCallingUserId());
    final long id = Binder.clearCallingIdentity();
    try {
        final KeyChainConnection keyChainConnection = KeyChain.bindAsUser(mContext, userHandle);
        try {
            IKeyChainService keyChain = keyChainConnection.getService();
            return keyChain.removeKeyPair(alias);
        } catch (RemoteException e) {
            Log.e(LOG_TAG, "Removing keypair", e);
        } finally {
            keyChainConnection.close();
        }
    } catch (InterruptedException e) {
        Log.w(LOG_TAG, "Interrupted while removing keypair", e);
        Thread.currentThread().interrupt();
    } finally {
        Binder.restoreCallingIdentity(id);
    }
    return false;
}

Example 5 with KeyChainConnection

use of android.security.KeyChain.KeyChainConnection in project android_packages_apps_Settings by SudaMod.

the class TrustedCredentialsSettings method getX509CertsFromCertHolder.

@Override
public List<X509Certificate> getX509CertsFromCertHolder(CertHolder certHolder) {
    List<X509Certificate> certificates = null;
    try {
        KeyChainConnection keyChainConnection = mKeyChainConnectionByProfileId.get(certHolder.mProfileId);
        IKeyChainService service = keyChainConnection.getService();
        List<String> chain = service.getCaCertificateChainAliases(certHolder.mAlias, true);
        final int n = chain.size();
        certificates = new ArrayList<X509Certificate>(n);
        for (int i = 0; i < n; ++i) {
            byte[] encodedCertificate = service.getEncodedCaCertificate(chain.get(i), true);
            X509Certificate certificate = KeyChain.toCertificate(encodedCertificate);
            certificates.add(certificate);
        }
    } catch (RemoteException ex) {
        Log.e(TAG, "RemoteException while retrieving certificate chain for root " + certHolder.mAlias, ex);
    }
    return certificates;
}