open-keychain/README.md

156 lines
4.5 KiB
Markdown
Raw Normal View History

2012-06-13 11:59:26 -04:00
# APG
2012-03-09 06:13:28 -05:00
2012-06-13 11:59:26 -04:00
This is a fork of Android Privacy Guard (APG)
2012-03-09 06:13:28 -05:00
2012-06-13 11:59:26 -04:00
I will try to reintegrate the various forks and develope a new user interface and API via AIDL and build a new stable version.
2012-03-09 06:13:28 -05:00
2012-03-12 11:57:05 -04:00
# Contribute
2012-06-13 11:59:26 -04:00
Fork APG and do a merge request. I will merge your changes back into the main project.
2012-03-12 11:57:05 -04:00
2012-09-05 16:41:21 -04:00
# Build
2012-03-12 11:57:05 -04:00
2012-09-05 16:41:21 -04:00
## Build with Ant
2012-03-12 11:57:05 -04:00
2013-01-03 07:09:45 -05:00
1. Have Android SDK "tools" directory in your PATH (http://developer.android.com/sdk/index.html)
2. Change to "APG" directory with ``cd APG``
3. Execute ``android update project -p .`` and ``android update project -p android-libs/ActionBarSherlock``
4. Execute ``ant debug``
2012-09-05 16:41:21 -04:00
## Build with Eclipse
2013-01-03 07:09:45 -05:00
1. File -> Import -> Android -> Existing Android Code Into Workspace, choose "APG/android-libs/ActionBarSherlock"
2. File -> Import -> Android -> Existing Android Code Into Workspace, choose "APG"
2012-11-19 16:42:55 -05:00
3. APG can now be build
2012-03-12 11:57:05 -04:00
# Libraries
2013-01-03 07:09:45 -05:00
All JAR-Libraries are provided in this repository under "libs", all Android Library projects are under "android-libs".
2012-03-12 11:57:05 -04:00
* ActionBarSherlock to provide an ActionBar for Android < 3.0
* Spongy Castle Crypto Lib (Android version of Bouncy Castle)
2012-03-12 11:57:05 -04:00
* android-support-v4.jar: Compatibility Lib
2012-04-12 20:34:46 -04:00
* barcodescanner-android-integration-supportv4.jar: Barcode Scanner Integration
2012-03-09 06:13:28 -05:00
## Build Barcode Scanner Integration
2012-03-09 06:13:28 -05:00
1. Checkout their SVN (see http://code.google.com/p/zxing/source/checkout)
2013-01-03 07:09:45 -05:00
2. Change android-home variable in "build.properties" in the main directory to point to your Android SDK
2012-03-09 06:13:28 -05:00
3. Change directory to android-integration
2012-11-19 16:42:55 -05:00
4. Build using ``ant build``
2013-01-03 07:09:45 -05:00
5. We use "android-integration-supportv4.jar"
2012-03-09 06:13:28 -05:00
On error see: http://code.google.com/p/zxing/issues/detail?id=1207
## Build Spongy Castle
2012-03-09 06:13:28 -05:00
2012-10-25 08:52:13 -04:00
Spongy Castle is the stock Bouncy Castle libraries with a couple of small changes to make it work on Android.
see http://rtyley.github.com/spongycastle/
# Notes
## Eclipse: "GC overhead limit exceeded"
If you have problems starting APG from Eclipse, consider increasing the memory limits in eclipse.ini.
See http://docs.oseems.com/general/application/eclipse/fix-gc-overhead-limit-exceeded for more information.
## Generate pressed dashboard icons
2012-03-12 11:57:05 -04:00
1. Open svg file in Inkscape
2012-11-15 17:25:21 -05:00
2. Extensions -> Color -> darker (2 times!)
2012-11-15 20:34:21 -05:00
# Security Model
2012-11-15 17:25:21 -05:00
## Basic goals
* Intents without permissions should only work based on user interaction (e.g. click a button in a dialog)
Android primitives to exchange data: Intent, Intent with return values, Send (also an Intent), Content Provider, AIDL
2012-12-14 12:22:03 -05:00
## Permission
* ACCESS_API: Encrypt/Sign/Decrypt/Create keys without user interaction (intents, remote service), Read key information (not the actual keys)(content provider)
* ACCESS_KEYS: get and import actual public and secret keys (remote service)
2012-11-15 17:25:21 -05:00
## Intents
### Without permission
* android.intent.action.VIEW connected to .gpg and .asc files: Import Key and Decrypt
* android.intent.action.SEND connected to all mime types (text/plain and every binary data like files and images): Encrypt and Decrypt
* IMPORT
* IMPORT_FROM_FILE
* IMPORT_FROM_QR_CODE
* IMPORT_FROM_NFC
* SHARE_KEYRING
* SHARE_KEYRING_WITH_QR_CODE
* SHARE_KEYRING_WITH_NFC
2012-11-15 17:25:21 -05:00
* EDIT_KEY
* SELECT_PUBLIC_KEYS
* SELECT_SECRET_KEY
* ENCRYPT
* ENCRYPT_FILE
* DECRYPT
* DECRYPT_FILE
2012-11-15 20:34:21 -05:00
### With permission ACCESS_API
2012-11-15 17:25:21 -05:00
* CREATE_KEY
* ENCRYPT_AND_RETURN
* GENERATE_SIGNATURE
* DECRYPT_AND_RETURN
## Content Provider
* The whole content provider requires a permission (only read)
2012-12-14 12:22:03 -05:00
* Don't give out blobs (keys can be accessed by ACCESS_KEYS via remote service)
2012-11-15 17:25:21 -05:00
* Make an internal and external content provider (or pathes with <path-permission>)
* Look at android:grantUriPermissions especially for ApgServiceBlobProvider
* Only give out android:readPermission
2012-12-14 12:22:03 -05:00
## ApgApiService (Remote Service)
* ACCESS_API
2012-11-15 17:25:21 -05:00
2012-12-14 12:22:03 -05:00
## ApgKeyService (Remote Service)
2012-12-19 08:05:08 -05:00
* ACCESS_KEYS
# Licenses
APG is licensed under Apache License v2.
## Libraries
* ActionBarSherlock
http://actionbarsherlock.com/
Apache License v2
* SpongyCastle
https://github.com/rtyley/spongycastle
MIT X11 License
* ZXing QRCode Integration
http://code.google.com/p/zxing/
Apache License v2
* HTMLCleaner
http://htmlcleaner.sourceforge.net/
BSD License
* HtmlSpanner
Apache License v2
## Images
* icon.svg
modified version of kgpg_key2_kopete.svgz
* dashboard_manage_keys.svg, dashboard_my_keys.svg, key.svg
http://rrze-icon-set.berlios.de/
Creative Commons Attribution Share-Alike licence 3.0
* dashboard_decrypt.svg, dashboard_encrypt.svg, dashboard_help.svg
http://tango.freedesktop.org/
Public Domain
* dashboard_scan_qrcode.svg
New creation for APG
Apache License v2