Kaladaran/briar
0
0
Fork 0
mirror of https://code.briarproject.org/briar/briar.git synced 2026-02-15 04:18:53 +01:00
Code Issues Projects Releases Wiki Activity

Removed bundle encryption.

Browse Source 
Android doesn't currently store bundles persistently, so it's premature
to protect against accidental information leaks through persistent
bundle storage. Protecting against deliberate information leaks by the
OS is probably futile, so there's currently no need for bundle
encryption.
This commit is contained in:
akwizgran
2013-04-30 15:05:23 +01:00
parent 1d610209d0
commit d5720c085f
31 changed files with 155 additions and 377 deletions
Download Patch File Download Diff File Expand all files Collapse all files

27
briar-api/src/net/sf/briar/api/android/BundleEncrypter.java
View File

@@ -1,27 +0,0 @@
package net.sf.briar.api.android;
import android.os.Bundle;
/**
* Encrypts and decrypts the contents of bundles in case the operating system
* writes them to unencrypted storage.
* <p>
* This interface is designed to be accessed from the UI thread, so
* implementations may not be thread-safe.
*/
public interface BundleEncrypter {
/**
* Encrypts the given bundle, replacing its contents with the encrypted
* data.
*/
void encrypt(Bundle b);
/**
* Decrypts the given bundle, replacing its contents with the decrypted
* data, or returns false if the bundle contains invalid data, which may
* occur if the process that created the encrypted bundle was terminated
* and replaced by the current process.
*/
boolean decrypt(Bundle b);
}

15
briar-api/src/net/sf/briar/api/crypto/CryptoComponent.java
View File

@@ -95,21 +95,6 @@ public interface CryptoComponent {
void encodeTag(byte[] tag, Cipher tagCipher, ErasableKey tagKey,
long connection);
/**
* Encrypts and authenticates the given plaintext so it can be written to
* temporary storage. The ciphertext will not be decryptable after the app
* restarts.
*/
byte[] encryptTemporaryStorage(byte[] plaintext);
/**
* Decrypts and authenticates the given ciphertext that has been read from
* temporary storage. Returns null if the ciphertext cannot be decrypted
* and authenticated (for example, if it was written before the app
* restarted).
*/
byte[] decryptTemporaryStorage(byte[] ciphertext);
/**
* Encrypts and authenticates the given plaintext so it can be written to
* storage. The encryption and authentication keys are derived from the