Fork of OpenKeychain for bug fixes on newer Android versions
Go to file
Peter Cai 8f9728cd60 Catch SecurityException from using a stale Tag object
Applications are not supposed to be able to do any I/O using a stale Tag
object. This was not checked in older Android versions, but enforced
later since Android 13 (and possibly in Android 12L).

When we are checking for a disconnected tag, the Tag object can become
stale if the same tag (or another tag) gets rediscovered. In addition,
if NfcService is restarted for some reason, the cookie value used to
check for this will also be reset to 0. In any case, a SecurityException
could be raised when checking for a disconnected tag, and we should be
able to handle this case.
2022-12-12 18:27:40 -05:00
.github ci: disable GitHub publish. maven repos are not public 2021-03-17 10:55:46 +01:00
.tx Pull from transifex 2018-06-11 10:19:26 +02:00
extern extern/openpgp-api-lib: bump to latest revision 2021-05-02 19:03:59 +05:30
fastlane Changelog 4.8 2017-11-28 19:36:14 +01:00
gradle/wrapper Bump Gradle 2021-03-16 14:51:55 +01:00
graphics Remove experimental Linked Identities feature 2018-10-22 12:49:52 +02:00
nfcsweetspot Gradle cleanup 2021-03-16 15:00:20 +01:00
OpenKeychain Catch SecurityException from using a stale Tag object 2022-12-12 18:27:40 -05:00
resources remove whitespaces from files 2017-06-13 11:58:01 +02:00
sshauthentication-api Version 5.7.1 2021-03-18 17:25:49 +01:00
.gitignore Manage Google Play, F-Droid via fastlane 2017-04-27 20:53:14 +03:00
.gitmodules ditch minidns 2020-05-30 15:47:09 +02:00
build.gradle ci: publish sshauthentication to GitHub Packages 2021-03-17 10:11:28 +01:00
CHANGELOG Better use HEAD instead of master to link to files 2015-06-01 10:26:30 +02:00
gradle.properties Gradle memory 2021-02-15 07:57:11 +01:00
gradlew Bump Gradle 2021-03-16 14:51:55 +01:00
gradlew.bat Bump Gradle 2021-03-16 14:51:55 +01:00
jitpack.yml remove Github packages, configure jitpack 2021-03-17 11:27:30 +01:00
LICENSE LICENSE must be GPLv3 2014-01-28 10:28:42 +01:00
README.md Add note about maintenance mode to readme 2021-08-17 11:27:38 +02:00
settings.gradle more build system updates, ditch unused android tests 2020-05-30 20:06:50 +02:00

WARNING: This software is no longer actively developed. We will still apply security fixes where reported, and do basic maintenance work, but no new features or will be worked on. We will try to consider and merge contributions where possible.

OpenKeychain (for Android)

OpenKeychain is an OpenPGP implementation for Android.
For a more detailed description and installation instructions go to https://www.openkeychain.org .

Get it on F-Droid Get it on Google Play

Branches

  • The development of OpenKeychain happens in the "master" branch.
  • For every release a new branch, e.g., "3.2-fixes" is created to backport fixes from "master"

How to help the project?

Translate the application

Translations are managed at Transifex, please contribute there at https://www.transifex.com/projects/p/open-keychain/

Contribute Code

  1. Lookout for interesting issues on Github. We have tagged issues were we explicitly like to see contributions: https://github.com/open-keychain/open-keychain/labels/help%20wanted
  2. Read this README, especially the notes about coding style
  3. Fork OpenKeychain and contribute code (the best part 😎 )
  4. Open a pull request on Github. We will help with occurring problems and merge your changes back into the main project.
  5. PROFIT

For bigger changes

  1. Join the development mailinglist at https://lists.riseup.net/www/subscribe/openkeychain
  2. Propose bigger changes and discuss the consequences

I am happy about every code contribution and appreciate your effort to help us developing OpenKeychain!

Development

Development mailinglist at https://lists.riseup.net/www/subscribe/openkeychain

Build with Gradle

  1. Clone the project from GitHub
  2. Get all external submodules with git submodule update --init --recursive
  3. Have Android SDK "tools", "platform-tools", and "build-tools" directories in your PATH (http://developer.android.com/sdk/index.html)
  4. Open the Android SDK Manager (shell command: android). Expand the Tools directory and select "Android SDK Build-tools (Version 27.0.3)". Expand the Extras directory and install "Android Support Library", as well as "Local Maven repository for Support Libraries" Select SDK Platform for API levels 27.
  5. Export ANDROID_HOME pointing to your Android SDK
  6. Execute ./gradlew assembleFdroidDebug
  7. You can install the app with adb install -r OpenKeychain/build/outputs/apk/OpenKeychain-fdroid-debug.apk

The "google" flavor is only used to include donations via Play Store, for development the "fdroid" flavor should be used.

Run Tests

  1. Use OpenJDK instead of Oracle JDK
  2. Execute ./gradlew clean testFdroidDebugUnitTest --continue

Run Jacoco Test Coverage

  1. Use OpenJDK instead of Oracle JDK
  2. Execute ./gradlew clean testFdroidDebugUnitTest jacocoTestReport
  3. Report is here: OpenKeychain/build/reports/jacoco/jacocoTestReport/html/index.html

Development with Android Studio

We are using the newest Android Studio for development. Development with Eclipse is currently not possible because we are using the new project structure.

  1. Clone the project from Github
  2. Get all external submodules with git submodule update --init --recursive
  3. From Android Studio: File -> Import Project -> Select the cloned top folder

Libraries

Bouncy Castle

OpenKeychain uses a forked version with some small changes. These changes will been sent to Bouncy Castle.

see

Bouncy Castle resources

Documentation

Build System

We try to make our builds as reproducible/deterministic as possible.

Update Gradle version

  • Always use a fixed Android Gradle plugin version not a dynamic one, e.g. 0.7.3 instead of 0.7.+ (allows offline builds without lookups for new versions, also some minor Android plugin versions had serious issues, i.e. 0.7.2 and 0.8.1)
  • Update every build.gradle file with the new gradle version and/or gradle plugin version
    • build.gradle
    • OpenKeychain/build.gradle
  • run ./gradlew wrapper twice to update gradle and download the new gradle jar file
  • commit the corresponding Gradle wrapper to the repository (allows easy building for new contributors without the need to install the required Gradle version using a package manager)

Update SDK and Build Tools

  • Change SDK and Build Tools in git submodules "openkeychain-api-lib" and "openpgp-api-lib" manually. They should also build on their own without the ext variables.

Update library

  • You can check for library updates with ``./gradlew dependencyUpdates -Drevision=release

Add new library

  • You can add the library as a Maven dependency or as a git submodule (if patches are required) in the "extern" folder.
  • You can get all transitive dependencies with ./gradlew -q dependencies OpenKeychain:dependencies
  • If added as a git submodule, change the compileSdkVersion in build.gradle to use the variables from the root project:
android {
    compileSdkVersion rootProject.ext.compileSdkVersion
}
  • You can check for wrong compileSdkVersion by find -name build.gradle | xargs grep compileSdkVersion

Slow Gradle?

Error:Configuration with name 'default' not found.

Gradle project dependencies are missing. Do a git submodule init && git submodule update

Build on Mac OS X fails?

Try exporting JAVA_TOOL_OPTIONS="-Dfile.encoding=UTF8"

Translations

Translations are hosted on Transifex, which is configured by ".tx/config".

  1. To pull newest translations install transifex client (e.g. apt-get install transifex-client)
  2. Config Transifex client with "~/.transifexrc"
  3. Go into root folder of git repo
  4. execute tx pull -af --skip

see http://help.transifex.net/features/client/index.html#user-client

Coding Style

Code

  • Indentation: 4 spaces, no tabs.
  • Maximum line width for code and comments: 100.
  • Opening braces don't go on their own line.
  • Field names: Non-public, non-static fields start with m.
  • Acronyms are words: Treat acronyms as words in names, yielding !XmlHttpRequest, getUrl(), etc.
  • Fully Qualify Imports: Do not use wildcard-imports such as import foo.*;
  • Android Studio warnings should be fixed, or suppressed if they are incorrect.

The full coding style can be found at http://source.android.com/source/code-style.html

Automated syntax check with CheckStyle

Linux

  1. Paste the tools/checkstyle.xml file to ~/.AndroidStudioPreview/config/codestyles/
  2. Go to Settings > Code Style > Java, select OpenPgpChecker, as well as Code Style > XML and select OpenPgpChecker again.
  3. Start code inspection and see the results by selecting Analyze > Inspect Code from Android-Studio or you can directly run checkstyle via cli with .tools/checkstyle. Make sure it's executable first.

Mac OSX

  1. Paste the tools/checkstyle.xml file to ~/Library/Preferences/AndroidStudioPreview/codestyles
  2. Go to Preferences > Code Style > Java, select OpenPgpChecker, as well as Code Style > XML and select OpenPgpChecker again.
  3. Start code inspection and see the results by selecting Analyze > Inspect Code from Android-Studio or you can directly run checkstyle via cli with .tools/checkstyle. Make sure it's executable first.

Windows

  1. Paste the tools/checkstyle.xml file to C:\Users\<UserName>\.AndroidStudioPreview\config\codestyles
  2. Go to File > Settings > Code Style > Java, select OpenPgpChecker, as well as Code Style > XML and select OpenPgpChecker again.
  3. Start code inspection and see the results by selecting Analyze > Inspect Code from Android-Studio.

Licenses

Copyright 2017 Schürmann & Breitmoser GbR

Licensed under the GPLv3.

Google Play and the Google Play logo are trademarks of Google Inc.