classpath
[Top][All Lists]
Advanced

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

PATCH: Certificates support


From: Casey Marshall
Subject: PATCH: Certificates support
Date: Sun, 20 Apr 2003 15:49:17 -0700
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.2.1) Gecko/20030303

Hi,

Attached is a patch that I've been working on this past week, which adds some digital certificates support, including 1.4 API compatibility and an implementation of X.509 certificates and certificate revocation lists.

What is attached is not totally complete, but has a significant amount of functionality in place (the CertificateFactory can read X.509 certificates and CRLs generated by OpenSSL and can verify self-signed certificates).

This is a rather large patch, and adds a lot of new classes.

Cheers,

--
Casey Marshall || address@hidden

Attachment: patch.certificates.gz
Description: application/gzip

2003-04-20  Casey Marshall  <address@hidden>

        Removed files:
        - java/security/Engine.java: moved to gnu/java/security/Engine.java.
        - gnu/java/security/provider/DERReader.java: obsoleted by
          gnu/java/security/der/DERReader.java.
        - gnu/java/security/provider/DERWriter.java: obsoleted by
          gnu/java/security/der/DERWriter.java.

        Added files:
        + gnu/java/io/Base64InputStream.java: input stream for decoding
          Base-64.
        + gnu/java/io/ASN1ParsingException.java: used to signal
          high-level errors in DER encoded data.
        + gnu/java/security/OID.java: object identifier class.
        + gnu/java/security/der/BitString.java: ASN.1 BIT STRING type.
        + gnu/java/security/der/DER.java: DER constants.
        + gnu/java/security/der/DERReader.java: DER parser.
        + gnu/java/security/der/DERValue.java: A single value read or
          written to a DER stream.
        + gnu/java/security/der/DERWriter.java: DER encoder.
        + gnu/java/security/Engine.java: from java/security/Engine.java.
          (Changes from java/security/Engine.java follow)
          * Class and getInstance method made public.
          * getInstance now throws java.lang.reflect.InvocationTargetException.
          * Added additional getInstance method that takes an array of
            parameters to be passed to the constructor.
        + gnu/java/security/provider/DSAKeyFactory.java: translator for
          DSA keys.
        + gnu/java/security/provider/X509CertificateFactory.java: X.509
          certificate factory class.
        + gnu/java/security/x509/X500DistinguishedName.java: ASN.1 Name
          construct implementation.
        + gnu/java/security/x509/X509Certificate.java: X.509
          certificate class.
        + gnu/java/security/x509/X509CRL.java: X.509 certificate
          revocation list.
        + gnu/java/security/x509/X509CRLEntry.java: X.509 certificate
          revocation list entry.
        + java/security/cert/CRLSelector.java.
        + java/security/cert/CertPathBuilder.java.
        + java/security/cert/CertPathBuilderResult.java.
        + java/security/cert/CertPathBuilderSpi.java.
        + java/security/cert/CertPathParameters.java.
        + java/security/cert/CertPathValidator.java.
        + java/security/cert/CertPathValidatorResult.java.
        + java/security/cert/CertPathValidatorSpi.java.
        + java/security/cert/CertSelector.java.
        + java/security/cert/CertStore.java.
        + java/security/cert/CertStoreParameters.java.
        + java/security/cert/CertStoreSpi.java.
        + java/security/cert/CollectionCertStoreParameters.java.
        + java/security/cert/LDAPCertStoreParameters.java.
        + java/security/cert/PKIXBuilderParameters.java.
        + java/security/cert/PKIXCertPathBuilderResult.java.
        + java/security/cert/PKIXCertPathChecker.java.
        + java/security/cert/PKIXCertPathValidatorResult.java.
        + java/security/cert/PKIXParameters.java.
        + java/security/cert/PolicyNode.java.
        + java/security/cert/PolicyQualifierInfo.java.
        + java/security/cert/TrustAnchor.java.
        + javax/security/auth/x500/X500Principal.java.

        Modified files:
        * gnu/java/security/der/DEREncodingException.java: extend
          java.io.IOException.
        * gnu/java/security/provider/DSAParameters.java: use new DER
          parser. Fixed bug in engineInit(AlgorithmParameterSpec).
        * gnu/java/security/provider/DSASignature.java: use new DER
          parser.
        * gnu/java/security/provider/DSAPrivateKey.java: added
          toString() method.
        * gnu/java/security/provider/DSAPrivateKey.java: fixed bug in
          constructor. Added toString() method.
        * gnu/java/security/provider/Gnu.java: added new key factory and
          certificate factory entries.
        * java/security/AlgorithmParameterGenerator.java: accomodate
          changes to Engine class.
        * java/security/AlgorithmParameters.java: likewise.
        * java/security/KeyFactory.java: likewise.
        * java/security/KeyPairGenerator.java: likewise.
        * java/security/KeyStore.java: likewise.
        * java/security/MessageDigest.java: likewise.
        * java/security/SecureRandom.java: likewise.
        * java/security/Signature.java: likewise.
        * java/security/cert/CertificateFactory.java: (JDK 1.4 compatibility)
          getInstance(String) and getInstance(String, String) modified
          to use generic getInstance method.
          getInstance(String, Provider) method added.
          getInstance(String, String, Provider) method removed.
          generateCertPath(InputStream) method added.
          generateCertPath(InputStream, String) method added.
          generateCertPath(List) method added.
          getCertPathEncodings() method added.
        * java/security/cert/CertificateFactorySpi.java: (1.4 compatibility)
          engineGenerateCertPath(InputStream) method added.
          engineGenerateCertPath(InputStream, String) method added.
          engineGenerateCertPath(List) method added.
          engineGetCertPathEncodings() method added.

Attachment: pgpH3xN4R58VH.pgp
Description: PGP signature


reply via email to

[Prev in Thread] Current Thread [Next in Thread]