[guardian-dev] Fwd: SQLCipher for Android 3.0.2 Release

Abel Luck abel at guardianproject.info
Tue Mar 25 07:53:29 EDT 2014


A month old now, but still good news!

~abel

----------  Forwarded Message  ----------

Subject: SQLCipher for Android 3.0.2 Release
Date: Friday 07 February 2014, 17:16:38
From: Nick Parker <nparker at zetetic.net>
To: sqlcipher at googlegroups.com

Hi folks,

We wanted to share the latest release of SQLCipher for Android, 3.0.2.
This is a smaller release, however here are some of the highlights:

*  Added char[] for password to public interface for opening connections
*  Redacting sensitive information being logged to logcat (see below)
*  Build process targeting NDK r9c

The char[] change allows for initialization of a database without using
an immutable String.  The native interface has performed keying
operations via a char[] for awhile, now we have propagated this to the
Java interface.  Note a String can still be provided, however the API
may change in a future release removing it.

Under normal circumstances sensitive data would not be logged, however,
in some exception cases, i.e. on error, slow execution or when verbose
logging levels were enabled, some sensitive information like SQL
statements and surrogate row ids could have been written to logcat.

The updated build process to use r9c of the Android NDK eliminates the
linker warning at runtime found on Android 4.4.

The latest binaries can be found here:

https://s3.amazonaws.com/sqlcipher/SQLCipher+for+Android+v3.0.2.zip

-- 
Nick Parker

-----------------------------------------
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 801 bytes
Desc: This is a digitally signed message part.
URL: <http://lists.mayfirst.org/pipermail/guardian-dev/attachments/20140325/54a003d4/attachment.pgp>


More information about the Guardian-dev mailing list