Allow to pass large blobs and a new content provider to simplify this

Since AIDL is not for passing large data, a blob can be passed to APG by
a Uri. This Uri is opened as a file by APG and read/written to. Note the
file is overwritten by APG, so make sure it is a copy if you want to
keep the original.

With the ApgServiceBlobProvider, Apg has an own ContentProvider that can
be used like mentioned above. For now the data is stored in the dir
where APG stores other files and NOT DELETED after en/decryption. This
is tbd. It can only be accessed by an application with the permission
"org.thialfihar.android.apg.permission.STORE_BLOBS".

ApgCon has been updated accordingly and can handle blobs with `setBlob`
and `getBlobResult`. That is a really easy way to en/decrypt large data.

Note that encrypting by blob should only be used for large files (1MB+).
On all other cases, the data should be passed as as String through the
AIDl-Interface, so no temporary file must be created.

See ApgCon for a complete example of how to connect to the AIDL and use
it. Or use it in your own project!

1 files changed, 2 insertions, 0 deletions

diff --git a/res/values/strings.xml b/res/values/strings.xml
index 5b29e4f12..62e0935a9 100644
--- a/res/values/strings.xml
+++ b/res/values/strings.xml
@@ -288,6 +288,8 @@
     <!-- permission strings -->
     <string name="permission_read_key_details_label">Read key details from APG.</string>
     <string name="permission_read_key_details_description">Read key details of public and secret keys stored in APG, such as key ID and user IDs. The keys themselves can NOT be read.</string>
+	<string name="permission_store_blobs_label">Store blobs to en/decrypt with APG.</string>
+	<string name="permission_store_blobs_description">Store and read files on the android file system through APG. It cannot read files of other applications.</string>
 
     <!-- action strings -->
     <string name="action_encrypt">Encrypt</string>