public class JDKPKCS12KeyStore extends KeyStoreSpi implements PKCSObjectIdentifiers, X509ObjectIdentifiers, BCKeyStore
| Modifier and Type | Class and Description |
|---|---|
static class |
JDKPKCS12KeyStore.BCPKCS12KeyStore |
static class |
JDKPKCS12KeyStore.BCPKCS12KeyStore3DES |
static class |
JDKPKCS12KeyStore.DefPKCS12KeyStore |
static class |
JDKPKCS12KeyStore.DefPKCS12KeyStore3DES |
| Modifier and Type | Field and Description |
|---|---|
protected SecureRandom |
random |
bagtypes, canNotDecryptAny, certBag, certTypes, crlBag, crlTypes, data, des_EDE3_CBC, dhKeyAgreement, digestAlgorithm, digestedData, encryptedData, encryptionAlgorithm, envelopedData, id_aa, id_aa_commitmentType, id_aa_contentHint, id_aa_contentIdentifier, id_aa_contentReference, id_aa_encrypKeyPref, id_aa_ets_archiveTimestamp, id_aa_ets_certCRLTimestamp, id_aa_ets_certificateRefs, id_aa_ets_certValues, id_aa_ets_commitmentType, id_aa_ets_contentTimestamp, id_aa_ets_escTimeStamp, id_aa_ets_otherSigCert, id_aa_ets_revocationRefs, id_aa_ets_revocationValues, id_aa_ets_signerAttr, id_aa_ets_signerLocation, id_aa_ets_sigPolicyId, id_aa_msgSigDigest, id_aa_otherSigCert, id_aa_receiptRequest, id_aa_signatureTimeStampToken, id_aa_signerLocation, id_aa_signingCertificate, id_aa_signingCertificateV2, id_aa_sigPolicyId, id_alg_CMS3DESwrap, id_alg_CMSRC2wrap, id_alg_PWRI_KEK, id_ct, id_ct_authData, id_ct_authEnvelopedData, id_ct_compressedData, id_ct_timestampedData, id_ct_TSTInfo, id_cti, id_cti_ets_proofOfApproval, id_cti_ets_proofOfCreation, id_cti_ets_proofOfDelivery, id_cti_ets_proofOfOrigin, id_cti_ets_proofOfReceipt, id_cti_ets_proofOfSender, id_hmacWithSHA1, id_hmacWithSHA224, id_hmacWithSHA256, id_hmacWithSHA384, id_hmacWithSHA512, id_mgf1, id_PBES2, id_PBKDF2, id_pSpecified, id_RSAES_OAEP, id_RSASSA_PSS, id_spq, id_spq_ets_unotice, id_spq_ets_uri, keyBag, md2, md2WithRSAEncryption, md4, md4WithRSAEncryption, md5, md5WithRSAEncryption, pbeWithMD2AndDES_CBC, pbeWithMD2AndRC2_CBC, pbeWithMD5AndDES_CBC, pbeWithMD5AndRC2_CBC, pbeWithSHA1AndDES_CBC, pbeWithSHA1AndRC2_CBC, pbeWithSHAAnd128BitRC2_CBC, pbeWithSHAAnd128BitRC4, pbeWithSHAAnd2_KeyTripleDES_CBC, pbeWithSHAAnd3_KeyTripleDES_CBC, pbewithSHAAnd40BitRC2_CBC, pbeWithSHAAnd40BitRC4, pkcs_1, pkcs_12, pkcs_12PbeIds, pkcs_3, pkcs_5, pkcs_7, pkcs_9, pkcs_9_at_contentType, pkcs_9_at_counterSignature, pkcs_9_at_emailAddress, pkcs_9_at_extendedCertificateAttributes, pkcs_9_at_extensionRequest, pkcs_9_at_friendlyName, pkcs_9_at_challengePassword, pkcs_9_at_localKeyId, pkcs_9_at_messageDigest, pkcs_9_at_signingDescription, pkcs_9_at_signingTime, pkcs_9_at_smimeCapabilities, pkcs_9_at_unstructuredAddress, pkcs_9_at_unstructuredName, pkcs8ShroudedKeyBag, preferSignedData, RC2_CBC, rsaEncryption, safeContentsBag, sdsiCertificate, secretBag, sha1WithRSAEncryption, sha224WithRSAEncryption, sha256WithRSAEncryption, sha384WithRSAEncryption, sha512WithRSAEncryption, signedAndEnvelopedData, signedData, sMIMECapabilitiesVersions, srsaOAEPEncryptionSET, x509Certificate, x509certType, x509CrlcommonName, countryName, crlAccessMethod, id, id_ad, id_ad_caIssuers, id_ad_ocsp, id_at_name, id_at_telephoneNumber, id_ea_rsa, id_pe, id_pkix, id_SHA1, localityName, ocspAccessMethod, organization, organizationalUnitName, ripemd160, ripemd160WithRSAEncryption, stateOrProvinceName| Constructor and Description |
|---|
JDKPKCS12KeyStore(Provider provider,
DERObjectIdentifier keyAlgorithm,
DERObjectIdentifier certAlgorithm) |
| Modifier and Type | Method and Description |
|---|---|
protected byte[] |
cryptData(boolean forEncryption,
AlgorithmIdentifier algId,
char[] password,
boolean wrongPKCS12Zero,
byte[] data) |
Enumeration |
engineAliases() |
boolean |
engineContainsAlias(String alias) |
void |
engineDeleteEntry(String alias)
this is not quite complete - we should follow up on the chain, a bit
tricky if a certificate appears in more than one chain...
|
Certificate |
engineGetCertificate(String alias)
simply return the cert for the private key
|
String |
engineGetCertificateAlias(Certificate cert) |
Certificate[] |
engineGetCertificateChain(String alias) |
Date |
engineGetCreationDate(String alias) |
Key |
engineGetKey(String alias,
char[] password) |
boolean |
engineIsCertificateEntry(String alias) |
boolean |
engineIsKeyEntry(String alias) |
void |
engineLoad(InputStream stream,
char[] password) |
void |
engineSetCertificateEntry(String alias,
Certificate cert) |
void |
engineSetKeyEntry(String alias,
byte[] key,
Certificate[] chain) |
void |
engineSetKeyEntry(String alias,
Key key,
char[] password,
Certificate[] chain) |
int |
engineSize() |
void |
engineStore(KeyStore.LoadStoreParameter param) |
void |
engineStore(OutputStream stream,
char[] password) |
void |
setRandom(SecureRandom rand)
set the random source for the key store
|
protected PrivateKey |
unwrapKey(AlgorithmIdentifier algId,
byte[] data,
char[] password,
boolean wrongPKCS12Zero) |
protected byte[] |
wrapKey(String algorithm,
Key key,
PKCS12PBEParams pbeParams,
char[] password) |
engineEntryInstanceOf, engineGetEntry, engineLoad, engineSetEntryprotected SecureRandom random
public JDKPKCS12KeyStore(Provider provider, DERObjectIdentifier keyAlgorithm, DERObjectIdentifier certAlgorithm)
public void setRandom(SecureRandom rand)
BCKeyStoresetRandom in interface BCKeyStorepublic Enumeration engineAliases()
engineAliases in class KeyStoreSpipublic boolean engineContainsAlias(String alias)
engineContainsAlias in class KeyStoreSpipublic void engineDeleteEntry(String alias) throws KeyStoreException
engineDeleteEntry in class KeyStoreSpiKeyStoreExceptionpublic Certificate engineGetCertificate(String alias)
engineGetCertificate in class KeyStoreSpipublic String engineGetCertificateAlias(Certificate cert)
engineGetCertificateAlias in class KeyStoreSpipublic Certificate[] engineGetCertificateChain(String alias)
engineGetCertificateChain in class KeyStoreSpipublic Date engineGetCreationDate(String alias)
engineGetCreationDate in class KeyStoreSpipublic Key engineGetKey(String alias, char[] password) throws NoSuchAlgorithmException, UnrecoverableKeyException
engineGetKey in class KeyStoreSpiNoSuchAlgorithmExceptionUnrecoverableKeyExceptionpublic boolean engineIsCertificateEntry(String alias)
engineIsCertificateEntry in class KeyStoreSpipublic boolean engineIsKeyEntry(String alias)
engineIsKeyEntry in class KeyStoreSpipublic void engineSetCertificateEntry(String alias, Certificate cert) throws KeyStoreException
engineSetCertificateEntry in class KeyStoreSpiKeyStoreExceptionpublic void engineSetKeyEntry(String alias, byte[] key, Certificate[] chain) throws KeyStoreException
engineSetKeyEntry in class KeyStoreSpiKeyStoreExceptionpublic void engineSetKeyEntry(String alias, Key key, char[] password, Certificate[] chain) throws KeyStoreException
engineSetKeyEntry in class KeyStoreSpiKeyStoreExceptionpublic int engineSize()
engineSize in class KeyStoreSpiprotected PrivateKey unwrapKey(AlgorithmIdentifier algId, byte[] data, char[] password, boolean wrongPKCS12Zero) throws IOException
IOExceptionprotected byte[] wrapKey(String algorithm, Key key, PKCS12PBEParams pbeParams, char[] password) throws IOException
IOExceptionprotected byte[] cryptData(boolean forEncryption,
AlgorithmIdentifier algId,
char[] password,
boolean wrongPKCS12Zero,
byte[] data)
throws IOException
IOExceptionpublic void engineLoad(InputStream stream, char[] password) throws IOException
engineLoad in class KeyStoreSpiIOExceptionpublic void engineStore(KeyStore.LoadStoreParameter param) throws IOException, NoSuchAlgorithmException, CertificateException
engineStore in class KeyStoreSpiIOExceptionNoSuchAlgorithmExceptionCertificateExceptionpublic void engineStore(OutputStream stream, char[] password) throws IOException
engineStore in class KeyStoreSpiIOExceptionCopyright © 2015. All rights reserved.