Add DevicePolicyManager API to install a client cert chain. When installing a keypair the caller will have the option to specify a certificate chain which will later be returned to whoever requests access to the keypair via KeyChain. Bug: 18239590 Change-Id: Id21ef026e31537db38d891cb9b712dd4fe7159c7

commit: b43659170824dd8d753d9249fe6ccfd37c6221ae [log] [tgz]
author: Rubin Xu <rubinxu@google.com> Wed Mar 23 12:13:22 2016 +0000
committer: Rubin Xu <rubinxu@google.com> Wed Mar 30 11:57:58 2016 +0100
tree: c9b45209e1828431ae5cbe3043fb6b522db65a24
parent: 6b69b122025631290380f4350f7bd0074bad10dd [diff] [blame]
diff --git a/keystore/java/android/security/IKeyChainService.aidl b/keystore/java/android/security/IKeyChainService.aidl
index cfcb4e0..deea972 100644
--- a/keystore/java/android/security/IKeyChainService.aidl
+++ b/keystore/java/android/security/IKeyChainService.aidl

@@ -27,12 +27,13 @@
     // APIs used by KeyChain
     String requestPrivateKey(String alias);
     byte[] getCertificate(String alias);
+    byte[] getCaCertificates(String alias);
 
     // APIs used by CertInstaller
     void installCaCertificate(in byte[] caCertificate);
 
     // APIs used by DevicePolicyManager
-    boolean installKeyPair(in byte[] privateKey, in byte[] userCert, String alias);
+    boolean installKeyPair(in byte[] privateKey, in byte[] userCert, in byte[] certChain, String alias);
     boolean removeKeyPair(String alias);
 
     // APIs used by Settings
commit	b43659170824dd8d753d9249fe6ccfd37c6221ae	[log] [tgz]
author	Rubin Xu <rubinxu@google.com>	Wed Mar 23 12:13:22 2016 +0000
committer	Rubin Xu <rubinxu@google.com>	Wed Mar 30 11:57:58 2016 +0100
tree	c9b45209e1828431ae5cbe3043fb6b522db65a24
parent	6b69b122025631290380f4350f7bd0074bad10dd [diff] [blame]