Android's certificate verification JNI layer #2251
Merged
Commits on May 5, 2022
-
Cronvoy: preparation to unittest certificate verification JNI
Properly testing Android certificate verification logic requires calling into framework code. That cannot be done through Robolectric (framework APIs are faked). Hence, actual instrumentation tests are needed. Having said that, after some exploration on the state of Bazel/Android instrumentation tests, I've realized that the current state of things is non-optimal. As a stopgap solution (until the infrastructure improves), we've decided to test the JNI layer through unittests which fake X509Util. This should be a reasonable middle ground, as X509Util is mostly a compatibility layer on top of Android's API. This CL introduces FakeX509Util and adds allows tests to swap that in by adding a test-only API to AndroidNetworkLibrary. FakeX509Util is not particularly clever: from its perspective a certificate is just a string and for a verification to succeeds, all certificates in a chain must be root certificates (weird, but we don't really care about its logic). Signed-off-by: Stefano Duo <stefanoduo@google.com>
-
Add utility functions to translate between C++ and Java std constructs
Add utility functions to translate between: - C++ strings and Java strings - C++ vector of bytes and Java array of bytes These utility functions will be used in the next commit to implement the JNI layer for certificate verifications (and its unit tests). Signed-off-by: Stefano Duo <stefanoduo@google.com>
-
Implement JNI layer for Android's certificate verification
Add native hooks for AndroidNetworkLibrary Java APIs. Write unittests that mimic calls from native to Java for these new hooks, by making use of a fake X509Util and additional test-only Java -> C++ JNI calls. Signed-off-by: Stefano Duo <stefanoduo@google.com>
Commits on May 6, 2022
-
Signed-off-by: Stefano Duo <stefanoduo@google.com>
-
Signed-off-by: Stefano Duo <stefanoduo@google.com>
Commits on May 9, 2022
-
* Extend FakeX509Util with host and authType checks * Add tests for host and authType * Refactor UTF conversion in its own library * Add unit tests for them Signed-off-by: Stefano Duo <stefanoduo@google.com>
Commits on May 11, 2022
-
Signed-off-by: Stefano Duo <stefanoduo@google.com>
Commits on May 16, 2022
-
Generalize cert verify result enum and delete local refs
Signed-off-by: Stefano Duo <stefanoduo@google.com>
Commits on May 18, 2022
-
JNI: pass strings as arrays through their UTF-8 encoding
Drop string conversion utilities since they're no longer needed. The conversion is now handled on the Java side. Document the expectation that strings passed to jvm_verify_x509_cert_chain and call_jvm_verify_x509_cert_chain must be UTF-8 encoded. Also add a missing DeleteLocalRef. Signed-off-by: Stefano Duo <stefanoduo@google.com>
-
Signed-off-by: Stefano Duo <stefanoduo@google.com>
Commits on May 19, 2022
-
Fix missing argument to call call_jvm_verify_x509_cert_chain
Signed-off-by: Stefano Duo <stefanoduo@google.com>
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.