moparisthebest/open-keychain
1
0
Fork 0
mirror of https://github.com/moparisthebest/open-keychain synced 2024-11-27 11:12:15 -05:00
Code Issues Releases Wiki Activity

Improve Passphrase class with finalize()

Browse Source
This commit is contained in:
Dominik Schürmann 2015-03-19 13:58:26 +01:00
parent 834ce03f9e
commit 0bcc2793c3
1 changed files with 34 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

40
OpenKeychain/src/main/java/org/sufficientlysecure/keychain/util/Passphrase.java
View File

@ -26,6 +26,16 @@ import org.sufficientlysecure.keychain.Constants;
import java.util.Arrays; import java.util.Arrays;
/**
* Passwords should not be stored as Strings in memory.
* This class wraps a char[] that can be erased after it is no longer used.
* See also:
* <p/>
* http://docs.oracle.com/javase/6/docs/technotes/guides/security/crypto/CryptoSpec.html#PBEEx
* https://github.com/c-a-m/passfault/blob/master/core/src/main/java/org/owasp/passfault/SecureString.java
* http://stackoverflow.com/q/8881291
* http://stackoverflow.com/a/15844273
*/
public class Passphrase implements Parcelable { public class Passphrase implements Parcelable {
private char[] mPassphrase; private char[] mPassphrase;
@ -39,7 +49,6 @@ public class Passphrase implements Parcelable {
editable.getChars(0, pl, mPassphrase, 0); editable.getChars(0, pl, mPassphrase, 0);
// TODO: clean up internal char[] of EditText after getting the passphrase? // TODO: clean up internal char[] of EditText after getting the passphrase?
// editText.getText().replace() // editText.getText().replace()
System.gc();
} }
public Passphrase(EditText editText) { public Passphrase(EditText editText) {
@ -54,6 +63,9 @@ public class Passphrase implements Parcelable {
mPassphrase = passphrase.toCharArray(); mPassphrase = passphrase.toCharArray();
} }
/**
* Creates a passphrase object with an empty ("") passphrase
*/
public Passphrase() { public Passphrase() {
setEmpty(); setEmpty();
} }
@ -62,22 +74,38 @@ public class Passphrase implements Parcelable {
return mPassphrase; return mPassphrase;
} }
public boolean isEmpty() {
return (mPassphrase.length == 0);
}
public void setEmpty() { public void setEmpty() {
removeFromMemory(); removeFromMemory();
mPassphrase = new char[0]; mPassphrase = new char[0];
} }
public boolean isEmpty() {
return (length() == 0);
}
public int length() {
return mPassphrase.length;
}
public char charAt(int index) {
return mPassphrase[index];
}
/**
* Manually clear the underlying array holding the characters
*/
public void removeFromMemory() { public void removeFromMemory() {
if (mPassphrase != null) { if (mPassphrase != null) {
Arrays.fill(mPassphrase, ' '); Arrays.fill(mPassphrase, ' ');
System.gc();
} }
} }
@Override
public void finalize() throws Throwable {
removeFromMemory();
super.finalize();
}
@Override @Override
public String toString() { public String toString() {
if (Constants.DEBUG) { if (Constants.DEBUG) {