mirrors/nextcloud-android
1
0
Fork 0
mirror of https://github.com/nextcloud/android.git synced 2024-11-27 09:39:25 +03:00
Code Issues Projects Releases Packages Wiki Activity

Merge pull request #1184 from Wikinaut/show-certificate-digest

Browse source 
fix #1024 show cert fingerprints when adding new account w/ untrusted certificate
This commit is contained in:
Maria Asensio 2015-11-06 11:23:30 +01:00
commit 19cce9c90f
3 changed files with 79 additions and 20 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

25
res/layout/ssl_untrusted_cert_layout.xml
View file

@ -377,7 +377,6 @@
android:text="" android:text=""
android:textAppearance="?android:attr/textAppearanceSmall" android:textAppearance="?android:attr/textAppearanceSmall"
/> />
<TextView <TextView
android:id="@+id/label_signature" android:id="@+id/label_signature"
@ -404,16 +403,24 @@
android:text="" android:text=""
android:textAppearance="?android:attr/textAppearanceSmall" android:textAppearance="?android:attr/textAppearanceSmall"
/> />
<TextView <TextView
android:id="@+id/value_signature" android:id="@+id/label_certificate_fingerprint"
android:layout_width="wrap_content" android:layout_width="wrap_content"
android:layout_height="wrap_content" android:layout_height="wrap_content"
android:paddingBottom="5dp" android:paddingBottom="5dp"
android:text="" android:text="@string/ssl_validator_label_certificate_fingerprint"
android:textAppearance="?android:attr/textAppearanceSmall" android:textAppearance="?android:attr/textAppearanceSmall"
/> />
<TextView
android:id="@+id/value_certificate_fingerprint"
android:layout_width="wrap_content"
android:layout_height="wrap_content"
android:paddingBottom="5dp"
android:text=""
android:textAppearance="?android:attr/textAppearanceSmall"
/>
</LinearLayout> </LinearLayout>

3
res/values/strings.xml
View file

@ -254,6 +254,9 @@
<string name="ssl_validator_label_validity_to">To:</string> <string name="ssl_validator_label_validity_to">To:</string>
<string name="ssl_validator_label_signature">Signature:</string> <string name="ssl_validator_label_signature">Signature:</string>
<string name="ssl_validator_label_signature_algorithm">Algorithm:</string> <string name="ssl_validator_label_signature_algorithm">Algorithm:</string>
<string name="digest_algorithm_not_available">This digest algorithm is not available on your phone.</string>
<string name="ssl_validator_label_certificate_fingerprint">Fingerprint:</string>
<string name="certificate_load_problem">There is a problem loading the certificate.</string>
<string name="ssl_validator_null_cert">The certificate could not be shown.</string> <string name="ssl_validator_null_cert">The certificate could not be shown.</string>
<string name="ssl_validator_no_info_about_error">- No information about the error</string> <string name="ssl_validator_no_info_about_error">- No information about the error</string>

71
src/com/owncloud/android/ui/adapter/X509CertificateViewAdapter.java
View file

@ -20,6 +20,9 @@
*/ */
package com.owncloud.android.ui.adapter; package com.owncloud.android.ui.adapter;
import java.security.MessageDigest;
import java.security.NoSuchAlgorithmException;
import java.security.cert.CertificateEncodingException;
import java.security.cert.X509Certificate; import java.security.cert.X509Certificate;
import java.text.DateFormat; import java.text.DateFormat;
import java.util.Date; import java.util.Date;
@ -31,6 +34,7 @@ import javax.security.auth.x500.X500Principal;
import com.owncloud.android.R; import com.owncloud.android.R;
import com.owncloud.android.ui.dialog.SslUntrustedCertDialog; import com.owncloud.android.ui.dialog.SslUntrustedCertDialog;
import android.util.Log;
import android.view.View; import android.view.View;
import android.widget.TextView; import android.widget.TextView;
@ -42,7 +46,9 @@ public class X509CertificateViewAdapter implements SslUntrustedCertDialog.Certif
//private final static String TAG = X509CertificateViewAdapter.class.getSimpleName(); //private final static String TAG = X509CertificateViewAdapter.class.getSimpleName();
private X509Certificate mCertificate = null; private X509Certificate mCertificate = null;
private static final String TAG = X509CertificateViewAdapter.class.getSimpleName();
public X509CertificateViewAdapter(X509Certificate certificate) { public X509CertificateViewAdapter(X509Certificate certificate) {
mCertificate = certificate; mCertificate = certificate;
} }
@ -63,25 +69,68 @@ public class X509CertificateViewAdapter implements SslUntrustedCertDialog.Certif
} }
} }
private byte[] getDigest(String algorithm, byte[] message) {
MessageDigest md = null;
try {
md = MessageDigest.getInstance(algorithm);
} catch (NoSuchAlgorithmException e) {
return null;
}
md.reset();
return md.digest(message);
}
private void showSignature(View dialogView) { private void showSignature(View dialogView) {
TextView sigView = ((TextView)dialogView.findViewById(R.id.value_signature)); byte[] cert = null;
TextView algorithmView = ((TextView)dialogView.findViewById(R.id.value_signature_algorithm));
sigView.setText(getHex(mCertificate.getSignature())); TextView certFingerprintView = ((TextView) dialogView.findViewById(R.id.value_certificate_fingerprint));
algorithmView.setText(mCertificate.getSigAlgName()); TextView algorithmView = ((TextView) dialogView.findViewById(R.id.value_signature_algorithm));
try {
cert = mCertificate.getEncoded();
if (cert == null) {
certFingerprintView.setText(R.string.certificate_load_problem);
algorithmView.setText(R.string.certificate_load_problem);
} else {
certFingerprintView.setText(
getDigestHexBytesWithColonsAndNewLines(dialogView, "SHA-256", cert)
+ getDigestHexBytesWithColonsAndNewLines(dialogView, "SHA-1", cert)
+ getDigestHexBytesWithColonsAndNewLines(dialogView, "MD5", cert));
algorithmView.setText(mCertificate.getSigAlgName());
}
} catch (CertificateEncodingException e) {
Log.e(TAG, "Problem while trying to decode the certificate.");
}
} }
public String getHex(final byte [] raw) { private final String getDigestHexBytesWithColonsAndNewLines(View dialogView, final String digestType, final byte [] cert) {
if (raw == null) { final byte[] rawDigest;
return null; final String newLine = System.getProperty("line.separator");
rawDigest = getDigest(digestType, cert);
if ( rawDigest == null) {
return digestType + ":" + newLine + dialogView.getContext().getString(R.string.digest_algorithm_not_available) + newLine + newLine;
} }
final StringBuilder hex = new StringBuilder(2 * raw.length);
for (final byte b : raw) { final StringBuilder hex = new StringBuilder(3 * rawDigest.length);
for (final byte b : rawDigest) {
final int hiVal = (b & 0xF0) >> 4; final int hiVal = (b & 0xF0) >> 4;
final int loVal = b & 0x0F; final int loVal = b & 0x0F;
hex.append((char) ('0' + (hiVal + (hiVal / 10 * 7)))); hex.append((char) ('0' + (hiVal + (hiVal / 10 * 7))));
hex.append((char) ('0' + (loVal + (loVal / 10 * 7)))); hex.append((char) ('0' + (loVal + (loVal / 10 * 7))));
hex.append(":");
} }
return hex.toString(); return digestType + ":" + newLine + hex.toString().replaceFirst("\\:$","") + newLine + newLine;
} }
private void showValidity(Date notBefore, Date notAfter, View dialogView) { private void showValidity(Date notBefore, Date notAfter, View dialogView) {