Reputation: 81
android key store entries cleaning
I have an app that uses AndroidKeystore, and I wanted to cleanup my app specific key entries from Android Key Store, when my app got uninstalled(so, app does not have much control to call deleteEntry).
I believe that android cleans up when my app got uninstalled, but I donno how to confirm. I could not find much info on clenaup on android-dev either.
Can anybody confirm or give help on how we be sure that an app's keystore entries will be deleted when that app is uninstalled ?
Upvotes: 8
Views: 4106
Answers (2)
Reputation: 5032
Yes, your keystore keys are automatically removed when your app is deleted. Specifically, whenever an app is deleted, PackageManagerService.removeKeyStoreDataIfNeeded is called. This calls KeyStoreService::clear_uid which finds and removes all key aliases for the specified app UID.
Upvotes: 7
Reputation: 3818
Yes, the keys will be removed from AndroidKeyStore . In order tu assure it, you can use methods that create the key if it doesn't exist after KeyStore.getInstance() call and verify those are being called upon app-uninstall.
private static void init() throws KeyStoreException {
keyStore = KeyStore.getInstance(ANDROID_KEY_STORE);
try {
keyStore = loadKeystore();
} catch (CertificateException | IOException | NoSuchAlgorithmException e) {
e.printStackTrace();
}
if (!keyStore.containsAlias(KEY_ALIAS)) {
Log.w(Constants.TAG, "GENERATING KEYS");
//KEY ABSENT, generate it
}else{
//EXISTING KEY
}
}
Also see this reply
Upvotes: 0
Related Questions
- Extract Key from android keystore
- Does Clear Data on App Settings clears all Android KeyStore stored for that certain app?
- Android - remove key/alias from keystore
- Android KeyStore GUI
- Android KeyStore - keys not always persisted
- Keystore for Android app
- Android Keystore file
- Keystore: delete password
- Keystore not replaced by Google
- Android Keystore Rebuild? is it possible