java source code of CertificateUtil

android-testdpc-master
- gradle
  - wrapper
    - gradle-wrapper.properties
- nfcprovisioning.txt
- PRIVACY
- gradlew.bat
- LICENSE
- gradlew
- CONTRIB
- build.gradle
- README.md
- app
  - src
    - main
      - res
        xml
        filepaths.xml
        password_constraint_preferences.xml
        device_admin_receiver.xml
        lock_screen_preferences.xml
        lock_task_features_preferences.xml
        profile_policy_header.xml
        device_policy_header.xml
        bind_device_admin_policies.xml
        cross_profile_calendar_preferences.xml
        override_apn_preferences.xml
        drawable-mdpi
        layout
        network_usage_stats.xml
        factory_reset_protection_policy.xml
        lock_now_dialog_prompt.xml
        setup_footer.xml
        string_array_row.xml
        intent_input.xml
        account_row.xml
        wipe_data_dialog_prompt.xml
        insert_apn.xml
        finalize_activity.xml
        wifi_config_dialog.xml
        enable_cosu_activity.xml
        permission_row.xml
        set_support_message.xml
        app_row.xml
        activity_dpc_login.xml
        user_row.xml
        next_footer.xml
        set_permission_policy.xml
        factory_reset_protection_policy_account.xml
        fragment_media_display.xml
        key_generation_prompt.xml
        reset_password_token.xml
        lockdown_settings.xml
        data_usage_item.xml
        edit_delete_row.xml
        provisioning_params_display.xml
        cross_profile_intent.xml
        activity_add_account.xml
        persistent_device_owner_fragment.xml
        system_update_policy.xml
        create_and_manage_user_dialog_prompt.xml
        kiosk_mode_item.xml
        certificate_alias_prompt.xml
        wifi_config_list_header.xml
        search_result_item.xml
        reset_password_dialog.xml
        delegation_scope_row.xml
        search_result.xml
        certificate_password_prompt.xml
        activity_dpc_policy_compliance.xml
        setup_management_fragment.xml
        manage_apps.xml
        enable_component_row.xml
        basic_key_value_pair.xml
        network_usage_app_history_item.xml
        add_intent_or_intent_filter.xml
        transfer_ownership_dialog.xml
        activity_main.xml
        key_generation_result.xml
        freeze_period_row.xml
        available_components_list.xml
        cross_profile_apps.xml
        simple_edittext.xml
        wifi_config_modification.xml
        proxy_config_dialog.xml
        color_picker.xml
        choose_color_item.xml
        choose_logo_item.xml
        eap_tls_wifi_config_dialog.xml
        private_dns_mode.xml
        select_app.xml
        set_user_session_message.xml
        drawable-xhdpi
        values-v26
        bools.xml
        menu
        policy_search_menu.xml
        policy_management_menu.xml
        drawable-xxhdpi
        drawable-xxxhdpi
        values-sw600dp
        dimens.xml
        raw
        emm_disclaimer.txt
        company_disclaimer.txt
        drawable-hdpi
        drawable-sw600dp-xhdpi
        drawable-sw600dp-xxhdpi
        values
        styles.xml
        attrs.xml
        bools.xml
        colors.xml
        dimens.xml
        strings.xml
        drawable-sw600dp-mdpi
        drawable-sw600dp-xxxhdpi
        drawable-sw600dp-hdpi
        drawable
        arrow_up_down.xml
        managed_profile_setup.xml
        managed_device_setup.xml
        arrow_down.xml
        ic_circle.xml
        ic_enterprise_blue.xml
      - AndroidManifest.xml
      - java
        com
        afwsamples
        testdpc
        SetupManagementFragment.java
        DeviceAdminReceiver.java
        comp
        ServiceInterfaceConverter.java
        ProfileOwnerService.java
        DeviceOwnerService.java
        BindDeviceAdminServiceHelper.java
        BindDeviceAdminFragment.java
        OnServiceConnectedListener.java
        PackageMonitorReceiver.java
        CommonReceiverOperations.java
        search
        BaseIndexableFragment.java
        UserRestrictionIndexableFragment.java
        IndexableFragments.java
        SearchItemAdapter.java
        PreferenceIndexSqliteOpenHelper.java
        PreferenceCrawler.java
        PolicySearchFragment.java
        XmlIndexableFragment.java
        PreferenceXmlUtil.java
        PreferenceIndex.java
        policy
        SetSupportMessageFragment.java
        SetUserSessionMessageFragment.java
        UserRestrictionsDisplayFragment.java
        utils
        AuthorizationList.java
        Attestation.java
        AttestationApplicationId.java
        RootOfTrust.java
        CertificateUtils.java
        AttestationPackageInfo.java
        Asn1Utils.java
        blockuninstallation
        BlockUninstallationInfoArrayAdapter.java
        ManageAffiliationIdsFragment.java
        FactoryResetProtectionPolicyFragment.java
        SecurityLogsFragment.java
        resetpassword
        ResetPasswordWithTokenFragment.java
        ResetPasswordService.java
        CrossProfileCalendarFragment.java
        PolicyManagementFragment.java
        OverrideApnFragment.java
        ManageKeepUninstalledPackagesFragment.java
        MeteredDataRestrictionInfoAdapter.java
        NetworkLogsFragment.java
        certificate
        DelegatedCertInstallerFragment.java
        keyguard
        LockScreenPolicyFragment.java
        PasswordConstraintsFragment.java
        SetTrustAgentConfigFragment.java
        keymanagement
        ShowToastCallback.java
        GenerateKeyAndCertificateTask.java
        SignAndVerifyTask.java
        locktask
        KioskModeActivity.java
        LockTaskAppInfoArrayAdapter.java
        SetLockTaskFeaturesFragment.java
        BaseStringItemsFragment.java
        UserRestriction.java
        PersistentDeviceOwnerFragment.java
        UserRestrictionsParentDisplayFragment.java
        systemupdatepolicy
        SystemUpdatePolicyFragment.java
        AvailableComponentsInfoArrayAdapter.java
        networking
        PrivateDnsModeFragment.java
        AlwaysOnVpnFragment.java
        NetworkUsageStatsFragment.java
        SetPrivateDnsTask.java
        GetAvailableComponentsTask.java
        wifimanagement
        WifiModificationFragment.java
        WifiConfigCreationDialog.java
        WifiEapTlsCreateDialogFragment.java
        WifiConfigUtil.java
        PolicyManagementActivity.java
        provision
        ProvisioningSuccessActivity.java
        ProvisioningUtil.java
        CheckInState.java
        DpcLoginActivity.java
        PostProvisioningTask.java
        feedback
        AppStatesService.java
        BootReceiver.java
        FinalizeActivity.java
        common
        ReflectionUtil.java
        MediaDisplayFragment.java
        UserArrayAdapter.java
        preference
        DpcPreferenceBase.java
        CustomConstraint.java
        DpcPreference.java
        DpcPreferenceHelper.java
        DpcListPreference.java
        DpcEditTextPreference.java
        DpcSwitchPreference.java
        ReselectionSpinner.java
        ColorPicker.java
        keyvaluepair
        KeyValuePairDialogFragment.java
        KeyValueBundleArrayFragment.java
        KeyValueBundleFragment.java
        ManageResolveInfoFragment.java
        ProfileOrParentFragment.java
        BundleUtil.java
        BaseSearchablePolicyPreferenceFragment.java
        AccountArrayAdapter.java
        AppInfoArrayAdapter.java
        BaseManageComponentFragment.java
        SelectAppFragment.java
        Util.java
        PermissionsHelper.java
        RestrictionManagerCompat.java
        ResolveInfoSpinnerAdapter.java
        AppInfoSpinnerAdapter.java
        ManageAppFragment.java
        EditDeleteArrayAdapter.java
        CertificateUtil.java
        ProvisioningStateUtil.java
        PackageInstallationUtils.java
        IntentOrIntentFilterFragment.java
        LaunchIntentUtil.java
        ToggleComponentsArrayAdapter.java
        NotificationUtil.java
        OnBackPressedHandler.java
        StringArrayTypeInputAdapter.java
        util
        LooperExecutor.java
        MainThreadExecutor.java
        CrossProfileAppsFragment.java
        DelegatedAdminReceiver.java
        profilepolicy
        delegation
        DelegationScopesArrayAdapter.java
        DelegationFragment.java
        addsystemapps
        EnableSystemAppsByIntentFragment.java
        apprestrictions
        ManagedConfigurationsFragment.java
        AppRestrictionsProxyHandler.java
        AppRestrictionsManagingPackageFragment.java
        AppRestrictionsProxy.java
        crossprofilewidgetprovider
        ManageCrossProfileWidgetProviderUtil.java
        permission
        AppPermissionsArrayAdapter.java
        ManageAppPermissionsFragment.java
        crossprofileintentfilter
        AddCrossProfileIntentFilterFragment.java
        ProfilePolicyManagementFragment.java
        AddAccountActivity.java
        DeviceAdminService.java
        cosu
        CosuConfig.java
        EnableCosuActivity.java
        CosuUtils.java
        transferownership
        PickTransferComponentFragment.java
        SetupManagementActivity.java
      - aidl
        android
        content
        res
        AssetFileDescriptor.aidl
        com
        afwsamples
        testdpc
        comp
        IProfileOwnerService.aidl
        IDeviceOwnerService.aidl
    - replica
      - res
        drawable-mdpi
        drawable-xhdpi
        drawable-xxhdpi
        drawable-hdpi
        values
        strings.xml
      - AndroidManifest.xml
    - test
      - java
        com
        afwsamples
        testdpc
        policy
        PolicyManagementFragmentTest.java
        wifimanagement
        WifiConfigUtilTest.java
        provision
        DpcLoginActivityTest.java
        feedback
        AppStatesServiceTest.java
        common
        PermissionsHelperTest.java
  - libs
  - build.gradle
- settings.gradle
- .gitignore
- doc

/*
 * Copyright (C) 2016 The Android Open Source Project
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *      http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */

package com.afwsamples.testdpc.common;

import android.content.ContentResolver;
import android.net.Uri;
import android.util.Log;

import java.io.IOException;
import java.io.InputStream;
import java.security.KeyStore;
import java.security.KeyStoreException;
import java.security.NoSuchAlgorithmException;
import java.security.PrivateKey;
import java.security.UnrecoverableKeyException;
import java.security.cert.CertificateException;
import java.security.cert.X509Certificate;
import java.util.Collections;
import java.util.Enumeration;

public class CertificateUtil {
    private static final String TAG = "CertificateUtil";

    /**
     * By enumerating the entries in a pkcs12 cert, find out the first entry that contain both
     * private key and certificate.
     *
     * @param contentResolver
     * @param uri uri of pkcs12 cert
     * @param password cert password
     * @return {@link PKCS12ParseInfo} which contains alias, x509 cert and private key, null if
     *         no such an entry.
     * @throws KeyStoreException
     * @throws NoSuchAlgorithmException
     * @throws IOException
     * @throws CertificateException
     * @throws UnrecoverableKeyException
     */
    public static PKCS12ParseInfo parsePKCS12Certificate(
            ContentResolver contentResolver, Uri uri, String password)
            throws KeyStoreException, NoSuchAlgorithmException, IOException, CertificateException,
            UnrecoverableKeyException {
        InputStream inputStream = contentResolver.openInputStream(uri);
        KeyStore keystore = KeyStore.getInstance("PKCS12");
        keystore.load(inputStream, password.toCharArray());
        Enumeration<String> aliases = keystore.aliases();
        // Find an entry contains both private key and user cert.
        for (String alias : Collections.list(aliases)) {
            PrivateKey privateKey = (PrivateKey) keystore.getKey(alias, "".toCharArray());
            if (privateKey == null) {
                continue;
            }
            X509Certificate clientCertificate =
                    (X509Certificate) keystore.getCertificate(alias);
            if (clientCertificate == null) {
                continue;
            }
            Log.d(TAG, "parsePKCS12Certificate: " + alias + " is selected");
            return new PKCS12ParseInfo(alias, clientCertificate, privateKey);
        }
        return null;
    }

    public static class PKCS12ParseInfo {
        public String alias;
        public X509Certificate certificate;
        public PrivateKey privateKey;

        public PKCS12ParseInfo(String alias, X509Certificate certificate, PrivateKey privateKey) {
            this.alias = alias;
            this.certificate = certificate;
            this.privateKey = privateKey;
        }
    }
}