CryptoUtil (pki-javadoc)

java.lang.Object
- com.netscape.cmsutil.crypto.CryptoUtil

public class CryptoUtil
extends java.lang.Object

Field Summary

Fields
Modifier and Type	Field and Description
`static java.lang.String`	`CERT_BEGIN_HEADING`
`static java.lang.String`	`CERT_END_HEADING`
`static java.lang.String`	`CERTREQ_BEGIN_HEADING`
`static java.lang.String`	`CERTREQ_END_HEADING`
`static java.util.List<java.lang.Integer>`	`clientECCipherList`
`static java.lang.Integer[]`	`clientECCiphers`
`static int`	`LINE_COUNT`

Constructor Summary

Constructors
Constructor and Description

CryptoUtil()

Constructors
Constructor and Description
`CryptoUtil()`

Method Summary

All Methods Static Methods Concrete Methods
Modifier and Type	Method and Description
`static boolean`	`arraysEqual(byte[] bytes, byte[] ints)`
`static byte[]`	`base64Decode(java.lang.String s)`
`static java.lang.String`	`base64Encode(byte[] bytes)`
`static java.lang.String`	`byte2string(byte[] id)`
`static java.lang.String`	`certFormat(java.lang.String content)`
`static boolean`	`compare(byte[] src, byte[] dest)` Compares 2 byte arrays to see if they are the same.
`static netscape.security.x509.X509Key`	`convertPublicKeyToX509Key(java.security.PublicKey pubk)`
`static netscape.security.pkcs.PKCS10`	`createCertificationRequest(java.lang.String subjectName, java.security.KeyPair keyPair)` Creates a PKCS#10 request.
`static netscape.security.pkcs.PKCS10`	`createCertificationRequest(java.lang.String subjectName, java.security.KeyPair keyPair, java.lang.String alg)`
`static netscape.security.pkcs.PKCS10`	`createCertificationRequest(java.lang.String subjectName, netscape.security.x509.X509Key pubk, org.mozilla.jss.crypto.PrivateKey prik)` Creates a PKCS#10 request.
`static netscape.security.pkcs.PKCS10`	`createCertificationRequest(java.lang.String subjectName, netscape.security.x509.X509Key pubk, org.mozilla.jss.crypto.PrivateKey prik, java.lang.String alg)`
`static netscape.security.pkcs.PKCS10`	`createCertificationRequest(java.lang.String subjectName, netscape.security.x509.X509Key pubk, org.mozilla.jss.crypto.PrivateKey prik, java.lang.String alg, netscape.security.x509.Extensions exts)`
`static byte[]`	`createPKIArchiveOptions(org.mozilla.jss.CryptoManager manager, org.mozilla.jss.crypto.CryptoToken token, java.lang.String transportCert, org.mozilla.jss.crypto.SymmetricKey vek, java.lang.String passphrase, org.mozilla.jss.crypto.KeyGenAlgorithm keyGenAlg, int symKeySize, org.mozilla.jss.crypto.IVParameterSpec IV)`
`static byte[]`	`createPKIArchiveOptions(org.mozilla.jss.crypto.CryptoToken token, java.security.PublicKey wrappingKey, org.mozilla.jss.crypto.PrivateKey toBeWrapped, org.mozilla.jss.crypto.KeyGenAlgorithm keyGenAlg, int symKeySize, org.mozilla.jss.crypto.IVParameterSpec IV)`
`static void`	`createSharedSecret(java.lang.String nickname)`
`static netscape.security.x509.X509CertInfo`	`createX509CertInfo(java.security.KeyPair pair, int serialno, java.lang.String issuername, java.lang.String subjname, java.util.Date notBefore, java.util.Date notAfter)` Creates a Certificate template.
`static netscape.security.x509.X509CertInfo`	`createX509CertInfo(java.security.PublicKey publickey, int serialno, java.lang.String issuername, java.lang.String subjname, java.util.Date notBefore, java.util.Date notAfter)`
`static netscape.security.x509.X509CertInfo`	`createX509CertInfo(netscape.security.x509.X509Key x509key, java.math.BigInteger serialno, netscape.security.x509.CertificateIssuerName issuernameObj, java.lang.String subjname, java.util.Date notBefore, java.util.Date notAfter, java.lang.String alg)`
`static netscape.security.x509.X509CertInfo`	`createX509CertInfo(netscape.security.x509.X509Key x509key, java.math.BigInteger serialno, java.lang.String issuername, java.lang.String subjname, java.util.Date notBefore, java.util.Date notAfter)`
`static netscape.security.x509.X509CertInfo`	`createX509CertInfo(netscape.security.x509.X509Key x509key, java.math.BigInteger serialno, java.lang.String issuername, java.lang.String subjname, java.util.Date notBefore, java.util.Date notAfter, java.lang.String alg)`
`static void`	`deleteAllCertificates(java.lang.String nickname)` Deletes all certificates by a nickname.
`static void`	`deletePrivateKey(org.mozilla.jss.crypto.PrivateKey prikey)` Deletes a private key.
`static void`	`deleteSharedSecret(java.lang.String nickname)`
`static java.util.List<byte[]>`	`exportSharedSecret(java.lang.String nickname, java.security.cert.X509Certificate wrappingCert, org.mozilla.jss.crypto.SymmetricKey wrappingKey)`
`static org.mozilla.jss.crypto.PrivateKey`	`findPrivateKeyFromID(byte[] id)` Retrieves a private key from a unique key ID.
`static java.security.KeyPair`	`generateECCKeyPair(org.mozilla.jss.crypto.CryptoToken token, java.lang.String curveName)`
`static java.security.KeyPair`	`generateECCKeyPair(org.mozilla.jss.crypto.CryptoToken token, java.lang.String curveName, org.mozilla.jss.crypto.KeyPairGeneratorSpi.Usage[] usage_ops, org.mozilla.jss.crypto.KeyPairGeneratorSpi.Usage[] usage_mask)`
`static java.security.KeyPair`	`generateECCKeyPair(org.mozilla.jss.crypto.CryptoToken token, java.lang.String curveName, org.mozilla.jss.crypto.KeyPairGeneratorSpi.Usage[] usage_ops, org.mozilla.jss.crypto.KeyPairGeneratorSpi.Usage[] usage_mask, boolean temporary, int sensitive, int extractable)`
`static java.security.KeyPair`	`generateECCKeyPair(java.lang.String token, int keysize)` Generates an ecc key pair.
`static java.security.KeyPair`	`generateECCKeyPair(java.lang.String token, int keysize, org.mozilla.jss.crypto.KeyPairGeneratorSpi.Usage[] usage_ops, org.mozilla.jss.crypto.KeyPairGeneratorSpi.Usage[] usage_mask)`
`static java.security.KeyPair`	`generateECCKeyPair(java.lang.String token, int keysize, org.mozilla.jss.crypto.KeyPairGeneratorSpi.Usage[] usage_ops, org.mozilla.jss.crypto.KeyPairGeneratorSpi.Usage[] usage_mask, boolean temporary, int sensitive, int extractable)`
`static java.security.KeyPair`	`generateECCKeyPair(java.lang.String token, java.lang.String curveName)` Generates an ecc key pair by curve name
`static java.security.KeyPair`	`generateECCKeyPair(java.lang.String token, java.lang.String curveName, org.mozilla.jss.crypto.KeyPairGeneratorSpi.Usage[] usage_ops, org.mozilla.jss.crypto.KeyPairGeneratorSpi.Usage[] usage_mask)`
`static java.security.KeyPair`	`generateECCKeyPair(java.lang.String token, java.lang.String curveName, org.mozilla.jss.crypto.KeyPairGeneratorSpi.Usage[] usage_ops, org.mozilla.jss.crypto.KeyPairGeneratorSpi.Usage[] usage_mask, boolean temporary, int sensitive, int extractable)`
`static org.mozilla.jss.crypto.SymmetricKey`	`generateKey(org.mozilla.jss.crypto.CryptoToken token, org.mozilla.jss.crypto.KeyGenAlgorithm alg, int keySize)` Generates a symmetric key.
`static java.security.KeyPair`	`generateRSAKeyPair(java.lang.String token, int keysize)` Generates a RSA key pair.
`static netscape.security.x509.X509CertImpl[]`	`getAllUserCerts()` Retrieves all user certificates from all tokens.
`static java.lang.String[]`	`getECcurves()`
`static java.util.Vector<java.lang.String>`	`getECKeyCurve(netscape.security.x509.X509Key key)`
`static byte[]`	`getModulus(java.security.PublicKey pubk)`
`static byte[]`	`getNonceData(int size)` Generates a nonve_iv for padding.
`static java.lang.String`	`getPKCS10FromKey(java.lang.String dn, byte[] modulus, byte[] exponent, byte[] prikdata)`
`static java.lang.String`	`getPKCS10FromKey(java.lang.String dn, byte[] modulus, byte[] exponent, byte[] prikdata, java.lang.String alg)`
`static org.mozilla.jss.crypto.PrivateKey`	`getPrivateKey(java.lang.String nickname)` Retrieves a private key by nickname.
`static byte[]`	`getPublicExponent(java.security.PublicKey pubk)`
`static netscape.security.x509.X509Key`	`getPublicX509ECCKey(byte[] encoded)`
`static netscape.security.x509.X509Key`	`getPublicX509Key(byte[] modulus, byte[] exponent)`
`static java.lang.String`	`getSubjectName(org.mozilla.jss.asn1.SEQUENCE crmfMsgs)`
`static org.mozilla.jss.crypto.SymmetricKey`	`getSymKeyByName(org.mozilla.jss.crypto.CryptoToken token, java.lang.String name)`
`static org.mozilla.jss.crypto.CryptoToken`	`getTokenByName(java.lang.String token)` Retrieves handle to a JSS token.
`static java.security.cert.X509Certificate[]`	`getX509CertificateFromPKCS7(byte[] b)`
`static netscape.security.x509.X509Key`	`getX509KeyFromCRMFMsgs(org.mozilla.jss.asn1.SEQUENCE crmfMsgs)`
`static byte[]`	`hexString2Bytes(java.lang.String string)` Converts string containing pairs of characters in the range of '0' to '9', 'a' to 'f' to an array of bytes such that each pair of characters in the string represents an individual byte
`static void`	`importCertificateChain(java.lang.String certchain)`
`static org.mozilla.jss.crypto.PrivateKey`	`importPKIArchiveOptions(org.mozilla.jss.crypto.CryptoToken token, org.mozilla.jss.crypto.PrivateKey unwrappingKey, java.security.PublicKey pubkey, byte[] data)`
`static void`	`importSharedSecret(byte[] wrappedSessionKey, byte[] wrappedSharedSecret, java.lang.String subsystemCertNickname, java.lang.String sharedSecretNickname)`
`static void`	`importUserCertificate(netscape.security.x509.X509CertImpl cert, java.lang.String nickname)` Imports a user certificate, and trusts the certificate.
`static void`	`importUserCertificate(netscape.security.x509.X509CertImpl cert, java.lang.String nickname, boolean trust)`
`static org.mozilla.jss.crypto.X509Certificate`	`importUserCertificateChain(java.lang.String c, java.lang.String nickname)` Imports a PKCS#7 certificate chain that includes the user certificate, and trusts the certificate.
`static boolean`	`isCertTrusted(org.mozilla.jss.crypto.InternalCertificate cert)` To certificate server point of view, SSL trust is what we referring.
`static boolean`	`isECCKey(netscape.security.x509.X509Key key)`
`static boolean`	`isTrust(int flag)`
`static java.lang.String`	`normalizeCertAndReq(java.lang.String s)`
`static java.lang.String`	`normalizeCertStr(java.lang.String s)`
`static org.mozilla.jss.asn1.SEQUENCE`	`parseCRMFMsgs(byte[] cert_request)`
`static java.lang.String`	`reqFormat(java.lang.String content)`
`static void`	`setClientCiphers()`
`static void`	`setClientCiphers(java.lang.String clientOverrideCiphers)`
`static boolean`	`sharedSecretExists(java.lang.String nickname)`
`static netscape.security.x509.X509CertImpl`	`signCert(org.mozilla.jss.crypto.PrivateKey privateKey, netscape.security.x509.X509CertInfo certInfo, org.mozilla.jss.crypto.SignatureAlgorithm sigAlg)`
`static netscape.security.x509.X509CertImpl`	`signCert(org.mozilla.jss.crypto.PrivateKey privateKey, netscape.security.x509.X509CertInfo certInfo, java.lang.String alg)` Signs certificate.
`static netscape.security.x509.X509CertImpl`	`signECCCert(org.mozilla.jss.crypto.PrivateKey privateKey, netscape.security.x509.X509CertInfo certInfo)`
`static netscape.security.x509.X509CertImpl`	`signECCCert(org.mozilla.jss.crypto.PrivateKey privateKey, netscape.security.x509.X509CertInfo certInfo, java.lang.String alg)`
`static byte[]`	`string2byte(java.lang.String id)`
`static java.lang.String`	`stripCertBrackets(java.lang.String s)` strips out the begin and end certificate brackets
`static void`	`trustCert(org.mozilla.jss.crypto.InternalCertificate cert)` Trusts a certificate.
`static void`	`trustCertByNickname(java.lang.String nickname)` Trusts a certificate by nickname.
`static void`	`unTrustCert(org.mozilla.jss.crypto.InternalCertificate cert)`
`static byte[]`	`unwrapUsingPassphrase(byte[] wrappedRecoveredKey, java.lang.String recoveryPassphrase)`
`static byte[]`	`unwrapUsingSymmetricKey(org.mozilla.jss.crypto.CryptoToken token, org.mozilla.jss.crypto.IVParameterSpec IV, byte[] wrappedRecoveredKey, org.mozilla.jss.crypto.SymmetricKey recoveryKey, org.mozilla.jss.crypto.EncryptionAlgorithm alg)`
`static byte[]`	`wrapPassphrase(org.mozilla.jss.crypto.CryptoToken token, java.lang.String passphrase, org.mozilla.jss.crypto.IVParameterSpec IV, org.mozilla.jss.crypto.SymmetricKey sk, org.mozilla.jss.crypto.EncryptionAlgorithm alg)`
`static byte[]`	`wrapSymmetricKey(org.mozilla.jss.CryptoManager manager, org.mozilla.jss.crypto.CryptoToken token, java.lang.String transportCert, org.mozilla.jss.crypto.SymmetricKey sk)`
`static byte[]`	`wrapSymmetricKey(org.mozilla.jss.crypto.CryptoToken token, org.mozilla.jss.crypto.SymmetricKey secret, org.mozilla.jss.crypto.SymmetricKey wrapper, org.mozilla.jss.crypto.IVParameterSpec IV)` Wrap a symmetric Key with a SymmetricKey

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

CERTREQ_BEGIN_HEADING

public static final java.lang.String CERTREQ_BEGIN_HEADING

See Also:: Constant Field Values

CERTREQ_END_HEADING

public static final java.lang.String CERTREQ_END_HEADING

See Also:: Constant Field Values

LINE_COUNT
```
public static final int LINE_COUNT
```
See Also:

Constant Field Values

CERT_BEGIN_HEADING

public static final java.lang.String CERT_BEGIN_HEADING

See Also:: Constant Field Values

CERT_END_HEADING

public static final java.lang.String CERT_END_HEADING

See Also:: Constant Field Values

clientECCiphers

public static final java.lang.Integer[] clientECCiphers

clientECCipherList

public static java.util.List<java.lang.Integer> clientECCipherList

Constructor Detail
- CryptoUtil
```
public CryptoUtil()
```

Method Detail

arraysEqual

public static boolean arraysEqual(byte[] bytes,
                                  byte[] ints)

getTokenByName

public static org.mozilla.jss.crypto.CryptoToken getTokenByName(java.lang.String token)
                                                         throws org.mozilla.jss.CryptoManager.NotInitializedException,
                                                                org.mozilla.jss.NoSuchTokenException

Retrieves handle to a JSS token.

Throws:: org.mozilla.jss.CryptoManager.NotInitializedException; org.mozilla.jss.NoSuchTokenException

generateRSAKeyPair

public static java.security.KeyPair generateRSAKeyPair(java.lang.String token,
                                                       int keysize)
                                                throws org.mozilla.jss.CryptoManager.NotInitializedException,
                                                       org.mozilla.jss.NoSuchTokenException,
                                                       java.security.NoSuchAlgorithmException,
                                                       org.mozilla.jss.crypto.TokenException

Generates a RSA key pair.

Throws:: org.mozilla.jss.CryptoManager.NotInitializedException; org.mozilla.jss.NoSuchTokenException; java.security.NoSuchAlgorithmException; org.mozilla.jss.crypto.TokenException

isECCKey

public static boolean isECCKey(netscape.security.x509.X509Key key)

generateECCKeyPair

public static java.security.KeyPair generateECCKeyPair(java.lang.String token,
                                                       int keysize)
                                                throws org.mozilla.jss.CryptoManager.NotInitializedException,
                                                       org.mozilla.jss.NoSuchTokenException,
                                                       java.security.NoSuchAlgorithmException,
                                                       org.mozilla.jss.crypto.TokenException

Generates an ecc key pair.

Throws:: org.mozilla.jss.CryptoManager.NotInitializedException; org.mozilla.jss.NoSuchTokenException; java.security.NoSuchAlgorithmException; org.mozilla.jss.crypto.TokenException

generateECCKeyPair

public static java.security.KeyPair generateECCKeyPair(java.lang.String token,
                                                       int keysize,
                                                       org.mozilla.jss.crypto.KeyPairGeneratorSpi.Usage[] usage_ops,
                                                       org.mozilla.jss.crypto.KeyPairGeneratorSpi.Usage[] usage_mask)
                                                throws org.mozilla.jss.CryptoManager.NotInitializedException,
                                                       org.mozilla.jss.NoSuchTokenException,
                                                       java.security.NoSuchAlgorithmException,
                                                       org.mozilla.jss.crypto.TokenException

Throws:: org.mozilla.jss.CryptoManager.NotInitializedException; org.mozilla.jss.NoSuchTokenException; java.security.NoSuchAlgorithmException; org.mozilla.jss.crypto.TokenException

generateECCKeyPair

public static java.security.KeyPair generateECCKeyPair(java.lang.String token,
                                                       int keysize,
                                                       org.mozilla.jss.crypto.KeyPairGeneratorSpi.Usage[] usage_ops,
                                                       org.mozilla.jss.crypto.KeyPairGeneratorSpi.Usage[] usage_mask,
                                                       boolean temporary,
                                                       int sensitive,
                                                       int extractable)
                                                throws org.mozilla.jss.CryptoManager.NotInitializedException,
                                                       org.mozilla.jss.NoSuchTokenException,
                                                       java.security.NoSuchAlgorithmException,
                                                       org.mozilla.jss.crypto.TokenException

Throws:: org.mozilla.jss.CryptoManager.NotInitializedException; org.mozilla.jss.NoSuchTokenException; java.security.NoSuchAlgorithmException; org.mozilla.jss.crypto.TokenException

generateECCKeyPair

public static java.security.KeyPair generateECCKeyPair(java.lang.String token,
                                                       java.lang.String curveName)
                                                throws org.mozilla.jss.CryptoManager.NotInitializedException,
                                                       org.mozilla.jss.NoSuchTokenException,
                                                       java.security.NoSuchAlgorithmException,
                                                       org.mozilla.jss.crypto.TokenException

Generates an ecc key pair by curve name

Throws:: org.mozilla.jss.CryptoManager.NotInitializedException; org.mozilla.jss.NoSuchTokenException; java.security.NoSuchAlgorithmException; org.mozilla.jss.crypto.TokenException

generateECCKeyPair

public static java.security.KeyPair generateECCKeyPair(org.mozilla.jss.crypto.CryptoToken token,
                                                       java.lang.String curveName)
                                                throws org.mozilla.jss.CryptoManager.NotInitializedException,
                                                       org.mozilla.jss.NoSuchTokenException,
                                                       java.security.NoSuchAlgorithmException,
                                                       org.mozilla.jss.crypto.TokenException

Throws:: org.mozilla.jss.CryptoManager.NotInitializedException; org.mozilla.jss.NoSuchTokenException; java.security.NoSuchAlgorithmException; org.mozilla.jss.crypto.TokenException

generateECCKeyPair

public static java.security.KeyPair generateECCKeyPair(java.lang.String token,
                                                       java.lang.String curveName,
                                                       org.mozilla.jss.crypto.KeyPairGeneratorSpi.Usage[] usage_ops,
                                                       org.mozilla.jss.crypto.KeyPairGeneratorSpi.Usage[] usage_mask)
                                                throws org.mozilla.jss.CryptoManager.NotInitializedException,
                                                       org.mozilla.jss.NoSuchTokenException,
                                                       java.security.NoSuchAlgorithmException,
                                                       org.mozilla.jss.crypto.TokenException

Throws:: org.mozilla.jss.CryptoManager.NotInitializedException; org.mozilla.jss.NoSuchTokenException; java.security.NoSuchAlgorithmException; org.mozilla.jss.crypto.TokenException

generateECCKeyPair

public static java.security.KeyPair generateECCKeyPair(java.lang.String token,
                                                       java.lang.String curveName,
                                                       org.mozilla.jss.crypto.KeyPairGeneratorSpi.Usage[] usage_ops,
                                                       org.mozilla.jss.crypto.KeyPairGeneratorSpi.Usage[] usage_mask,
                                                       boolean temporary,
                                                       int sensitive,
                                                       int extractable)
                                                throws org.mozilla.jss.CryptoManager.NotInitializedException,
                                                       org.mozilla.jss.NoSuchTokenException,
                                                       java.security.NoSuchAlgorithmException,
                                                       org.mozilla.jss.crypto.TokenException

Throws:: org.mozilla.jss.CryptoManager.NotInitializedException; org.mozilla.jss.NoSuchTokenException; java.security.NoSuchAlgorithmException; org.mozilla.jss.crypto.TokenException

generateECCKeyPair

public static java.security.KeyPair generateECCKeyPair(org.mozilla.jss.crypto.CryptoToken token,
                                                       java.lang.String curveName,
                                                       org.mozilla.jss.crypto.KeyPairGeneratorSpi.Usage[] usage_ops,
                                                       org.mozilla.jss.crypto.KeyPairGeneratorSpi.Usage[] usage_mask)
                                                throws org.mozilla.jss.CryptoManager.NotInitializedException,
                                                       org.mozilla.jss.NoSuchTokenException,
                                                       java.security.NoSuchAlgorithmException,
                                                       org.mozilla.jss.crypto.TokenException

Throws:: org.mozilla.jss.CryptoManager.NotInitializedException; org.mozilla.jss.NoSuchTokenException; java.security.NoSuchAlgorithmException; org.mozilla.jss.crypto.TokenException

generateECCKeyPair

public static java.security.KeyPair generateECCKeyPair(org.mozilla.jss.crypto.CryptoToken token,
                                                       java.lang.String curveName,
                                                       org.mozilla.jss.crypto.KeyPairGeneratorSpi.Usage[] usage_ops,
                                                       org.mozilla.jss.crypto.KeyPairGeneratorSpi.Usage[] usage_mask,
                                                       boolean temporary,
                                                       int sensitive,
                                                       int extractable)
                                                throws org.mozilla.jss.CryptoManager.NotInitializedException,
                                                       org.mozilla.jss.NoSuchTokenException,
                                                       java.security.NoSuchAlgorithmException,
                                                       org.mozilla.jss.crypto.TokenException

Throws:: org.mozilla.jss.CryptoManager.NotInitializedException; org.mozilla.jss.NoSuchTokenException; java.security.NoSuchAlgorithmException; org.mozilla.jss.crypto.TokenException

setClientCiphers

public static void setClientCiphers(java.lang.String clientOverrideCiphers)
                             throws java.net.SocketException

Throws:: java.net.SocketException

setClientCiphers

public static void setClientCiphers()
                             throws java.net.SocketException

Throws:: java.net.SocketException

getModulus

public static byte[] getModulus(java.security.PublicKey pubk)

getPublicExponent

public static byte[] getPublicExponent(java.security.PublicKey pubk)

base64Encode

public static java.lang.String base64Encode(byte[] bytes)
                                     throws java.io.IOException

Throws:: java.io.IOException

base64Decode

public static byte[] base64Decode(java.lang.String s)
                           throws java.io.IOException

Throws:: java.io.IOException

reqFormat

public static java.lang.String reqFormat(java.lang.String content)

getPKCS10FromKey

public static java.lang.String getPKCS10FromKey(java.lang.String dn,
                                                byte[] modulus,
                                                byte[] exponent,
                                                byte[] prikdata)
                                         throws java.io.IOException,
                                                java.security.InvalidKeyException,
                                                org.mozilla.jss.crypto.TokenException,
                                                java.security.NoSuchProviderException,
                                                java.security.cert.CertificateException,
                                                java.security.SignatureException,
                                                org.mozilla.jss.CryptoManager.NotInitializedException,
                                                java.security.NoSuchAlgorithmException

Throws:: java.io.IOException; java.security.InvalidKeyException; org.mozilla.jss.crypto.TokenException; java.security.NoSuchProviderException; java.security.cert.CertificateException; java.security.SignatureException; org.mozilla.jss.CryptoManager.NotInitializedException; java.security.NoSuchAlgorithmException

getPKCS10FromKey

public static java.lang.String getPKCS10FromKey(java.lang.String dn,
                                                byte[] modulus,
                                                byte[] exponent,
                                                byte[] prikdata,
                                                java.lang.String alg)
                                         throws java.io.IOException,
                                                java.security.InvalidKeyException,
                                                org.mozilla.jss.crypto.TokenException,
                                                java.security.NoSuchProviderException,
                                                java.security.cert.CertificateException,
                                                java.security.SignatureException,
                                                org.mozilla.jss.CryptoManager.NotInitializedException,
                                                java.security.NoSuchAlgorithmException

Throws:: java.io.IOException; java.security.InvalidKeyException; org.mozilla.jss.crypto.TokenException; java.security.NoSuchProviderException; java.security.cert.CertificateException; java.security.SignatureException; org.mozilla.jss.CryptoManager.NotInitializedException; java.security.NoSuchAlgorithmException

certFormat

public static java.lang.String certFormat(java.lang.String content)

stripCertBrackets
```
public static java.lang.String stripCertBrackets(java.lang.String s)
```
strips out the begin and end certificate brackets

Parameters:

s - the string potentially bracketed with "-----BEGIN CERTIFICATE-----" and "-----END CERTIFICATE-----"

Returns:

string without the brackets

normalizeCertAndReq

public static java.lang.String normalizeCertAndReq(java.lang.String s)

normalizeCertStr

public static java.lang.String normalizeCertStr(java.lang.String s)

importCertificateChain

public static void importCertificateChain(java.lang.String certchain)
                                   throws java.io.IOException,
                                          org.mozilla.jss.CryptoManager.NotInitializedException,
                                          org.mozilla.jss.crypto.TokenException,
                                          java.security.cert.CertificateEncodingException,
                                          java.security.cert.CertificateException

Throws:: java.io.IOException; org.mozilla.jss.CryptoManager.NotInitializedException; org.mozilla.jss.crypto.TokenException; java.security.cert.CertificateEncodingException; java.security.cert.CertificateException

parseCRMFMsgs

public static org.mozilla.jss.asn1.SEQUENCE parseCRMFMsgs(byte[] cert_request)
                                                   throws java.io.IOException,
                                                          org.mozilla.jss.asn1.InvalidBERException

Throws:: java.io.IOException; org.mozilla.jss.asn1.InvalidBERException

getX509KeyFromCRMFMsgs

public static netscape.security.x509.X509Key getX509KeyFromCRMFMsgs(org.mozilla.jss.asn1.SEQUENCE crmfMsgs)
                                                             throws java.io.IOException,
                                                                    java.security.NoSuchAlgorithmException,
                                                                    java.security.InvalidKeyException,
                                                                    org.mozilla.jss.crypto.InvalidKeyFormatException

Throws:: java.io.IOException; java.security.NoSuchAlgorithmException; java.security.InvalidKeyException; org.mozilla.jss.crypto.InvalidKeyFormatException

getPublicX509Key

public static netscape.security.x509.X509Key getPublicX509Key(byte[] modulus,
                                                              byte[] exponent)
                                                       throws java.security.InvalidKeyException

Throws:: java.security.InvalidKeyException

getPublicX509ECCKey

public static netscape.security.x509.X509Key getPublicX509ECCKey(byte[] encoded)
                                                          throws java.security.InvalidKeyException

Throws:: java.security.InvalidKeyException

convertPublicKeyToX509Key

public static netscape.security.x509.X509Key convertPublicKeyToX509Key(java.security.PublicKey pubk)
                                                                throws java.security.InvalidKeyException

Throws:: java.security.InvalidKeyException

getSubjectName

public static java.lang.String getSubjectName(org.mozilla.jss.asn1.SEQUENCE crmfMsgs)
                                       throws java.io.IOException

Throws:: java.io.IOException

createX509CertInfo

public static netscape.security.x509.X509CertInfo createX509CertInfo(java.security.KeyPair pair,
                                                                     int serialno,
                                                                     java.lang.String issuername,
                                                                     java.lang.String subjname,
                                                                     java.util.Date notBefore,
                                                                     java.util.Date notAfter)
                                                              throws java.io.IOException,
                                                                     java.security.cert.CertificateException,
                                                                     java.security.InvalidKeyException

Creates a Certificate template.

Throws:: java.io.IOException; java.security.cert.CertificateException; java.security.InvalidKeyException

createX509CertInfo

public static netscape.security.x509.X509CertInfo createX509CertInfo(java.security.PublicKey publickey,
                                                                     int serialno,
                                                                     java.lang.String issuername,
                                                                     java.lang.String subjname,
                                                                     java.util.Date notBefore,
                                                                     java.util.Date notAfter)
                                                              throws java.io.IOException,
                                                                     java.security.cert.CertificateException,
                                                                     java.security.InvalidKeyException

Throws:: java.io.IOException; java.security.cert.CertificateException; java.security.InvalidKeyException

createX509CertInfo

public static netscape.security.x509.X509CertInfo createX509CertInfo(netscape.security.x509.X509Key x509key,
                                                                     java.math.BigInteger serialno,
                                                                     java.lang.String issuername,
                                                                     java.lang.String subjname,
                                                                     java.util.Date notBefore,
                                                                     java.util.Date notAfter)
                                                              throws java.io.IOException,
                                                                     java.security.cert.CertificateException,
                                                                     java.security.InvalidKeyException

Throws:: java.io.IOException; java.security.cert.CertificateException; java.security.InvalidKeyException

createX509CertInfo

public static netscape.security.x509.X509CertInfo createX509CertInfo(netscape.security.x509.X509Key x509key,
                                                                     java.math.BigInteger serialno,
                                                                     java.lang.String issuername,
                                                                     java.lang.String subjname,
                                                                     java.util.Date notBefore,
                                                                     java.util.Date notAfter,
                                                                     java.lang.String alg)
                                                              throws java.io.IOException,
                                                                     java.security.cert.CertificateException,
                                                                     java.security.InvalidKeyException,
                                                                     java.security.NoSuchAlgorithmException

Throws:: java.io.IOException; java.security.cert.CertificateException; java.security.InvalidKeyException; java.security.NoSuchAlgorithmException

createX509CertInfo

public static netscape.security.x509.X509CertInfo createX509CertInfo(netscape.security.x509.X509Key x509key,
                                                                     java.math.BigInteger serialno,
                                                                     netscape.security.x509.CertificateIssuerName issuernameObj,
                                                                     java.lang.String subjname,
                                                                     java.util.Date notBefore,
                                                                     java.util.Date notAfter,
                                                                     java.lang.String alg)
                                                              throws java.io.IOException,
                                                                     java.security.cert.CertificateException,
                                                                     java.security.InvalidKeyException,
                                                                     java.security.NoSuchAlgorithmException

Throws:: java.io.IOException; java.security.cert.CertificateException; java.security.InvalidKeyException; java.security.NoSuchAlgorithmException

signECCCert

public static netscape.security.x509.X509CertImpl signECCCert(org.mozilla.jss.crypto.PrivateKey privateKey,
                                                              netscape.security.x509.X509CertInfo certInfo)
                                                       throws org.mozilla.jss.NoSuchTokenException,
                                                              org.mozilla.jss.CryptoManager.NotInitializedException,
                                                              java.security.NoSuchAlgorithmException,
                                                              org.mozilla.jss.NoSuchTokenException,
                                                              org.mozilla.jss.crypto.TokenException,
                                                              java.security.InvalidKeyException,
                                                              java.security.SignatureException,
                                                              java.io.IOException,
                                                              java.security.cert.CertificateException

Throws:: org.mozilla.jss.NoSuchTokenException; org.mozilla.jss.CryptoManager.NotInitializedException; java.security.NoSuchAlgorithmException; org.mozilla.jss.crypto.TokenException; java.security.InvalidKeyException; java.security.SignatureException; java.io.IOException; java.security.cert.CertificateException

signECCCert

public static netscape.security.x509.X509CertImpl signECCCert(org.mozilla.jss.crypto.PrivateKey privateKey,
                                                              netscape.security.x509.X509CertInfo certInfo,
                                                              java.lang.String alg)
                                                       throws org.mozilla.jss.NoSuchTokenException,
                                                              org.mozilla.jss.CryptoManager.NotInitializedException,
                                                              java.security.NoSuchAlgorithmException,
                                                              org.mozilla.jss.NoSuchTokenException,
                                                              org.mozilla.jss.crypto.TokenException,
                                                              java.security.InvalidKeyException,
                                                              java.security.SignatureException,
                                                              java.io.IOException,
                                                              java.security.cert.CertificateException

Throws:: org.mozilla.jss.NoSuchTokenException; org.mozilla.jss.CryptoManager.NotInitializedException; java.security.NoSuchAlgorithmException; org.mozilla.jss.crypto.TokenException; java.security.InvalidKeyException; java.security.SignatureException; java.io.IOException; java.security.cert.CertificateException

signCert

public static netscape.security.x509.X509CertImpl signCert(org.mozilla.jss.crypto.PrivateKey privateKey,
                                                           netscape.security.x509.X509CertInfo certInfo,
                                                           java.lang.String alg)
                                                    throws org.mozilla.jss.NoSuchTokenException,
                                                           org.mozilla.jss.CryptoManager.NotInitializedException,
                                                           java.security.NoSuchAlgorithmException,
                                                           org.mozilla.jss.NoSuchTokenException,
                                                           org.mozilla.jss.crypto.TokenException,
                                                           java.security.InvalidKeyException,
                                                           java.security.SignatureException,
                                                           java.io.IOException,
                                                           java.security.cert.CertificateException

Signs certificate.

Throws:: org.mozilla.jss.NoSuchTokenException; org.mozilla.jss.CryptoManager.NotInitializedException; java.security.NoSuchAlgorithmException; org.mozilla.jss.crypto.TokenException; java.security.InvalidKeyException; java.security.SignatureException; java.io.IOException; java.security.cert.CertificateException

signCert

public static netscape.security.x509.X509CertImpl signCert(org.mozilla.jss.crypto.PrivateKey privateKey,
                                                           netscape.security.x509.X509CertInfo certInfo,
                                                           org.mozilla.jss.crypto.SignatureAlgorithm sigAlg)
                                                    throws org.mozilla.jss.NoSuchTokenException,
                                                           org.mozilla.jss.CryptoManager.NotInitializedException,
                                                           java.security.NoSuchAlgorithmException,
                                                           org.mozilla.jss.NoSuchTokenException,
                                                           org.mozilla.jss.crypto.TokenException,
                                                           java.security.InvalidKeyException,
                                                           java.security.SignatureException,
                                                           java.io.IOException,
                                                           java.security.cert.CertificateException

Throws:: org.mozilla.jss.NoSuchTokenException; org.mozilla.jss.CryptoManager.NotInitializedException; java.security.NoSuchAlgorithmException; org.mozilla.jss.crypto.TokenException; java.security.InvalidKeyException; java.security.SignatureException; java.io.IOException; java.security.cert.CertificateException

createCertificationRequest

public static netscape.security.pkcs.PKCS10 createCertificationRequest(java.lang.String subjectName,
                                                                       netscape.security.x509.X509Key pubk,
                                                                       org.mozilla.jss.crypto.PrivateKey prik)
                                                                throws java.security.NoSuchAlgorithmException,
                                                                       java.security.NoSuchProviderException,
                                                                       java.security.InvalidKeyException,
                                                                       java.io.IOException,
                                                                       java.security.cert.CertificateException,
                                                                       java.security.SignatureException

Creates a PKCS#10 request.

Throws:: java.security.NoSuchAlgorithmException; java.security.NoSuchProviderException; java.security.InvalidKeyException; java.io.IOException; java.security.cert.CertificateException; java.security.SignatureException

createCertificationRequest

public static netscape.security.pkcs.PKCS10 createCertificationRequest(java.lang.String subjectName,
                                                                       netscape.security.x509.X509Key pubk,
                                                                       org.mozilla.jss.crypto.PrivateKey prik,
                                                                       java.lang.String alg)
                                                                throws java.security.NoSuchAlgorithmException,
                                                                       java.security.NoSuchProviderException,
                                                                       java.security.InvalidKeyException,
                                                                       java.io.IOException,
                                                                       java.security.cert.CertificateException,
                                                                       java.security.SignatureException

Throws:: java.security.NoSuchAlgorithmException; java.security.NoSuchProviderException; java.security.InvalidKeyException; java.io.IOException; java.security.cert.CertificateException; java.security.SignatureException

createCertificationRequest

public static netscape.security.pkcs.PKCS10 createCertificationRequest(java.lang.String subjectName,
                                                                       netscape.security.x509.X509Key pubk,
                                                                       org.mozilla.jss.crypto.PrivateKey prik,
                                                                       java.lang.String alg,
                                                                       netscape.security.x509.Extensions exts)
                                                                throws java.security.NoSuchAlgorithmException,
                                                                       java.security.NoSuchProviderException,
                                                                       java.security.InvalidKeyException,
                                                                       java.io.IOException,
                                                                       java.security.cert.CertificateException,
                                                                       java.security.SignatureException

Throws:: java.security.NoSuchAlgorithmException; java.security.NoSuchProviderException; java.security.InvalidKeyException; java.io.IOException; java.security.cert.CertificateException; java.security.SignatureException

createCertificationRequest

public static netscape.security.pkcs.PKCS10 createCertificationRequest(java.lang.String subjectName,
                                                                       java.security.KeyPair keyPair)
                                                                throws java.security.NoSuchAlgorithmException,
                                                                       java.security.NoSuchProviderException,
                                                                       java.security.InvalidKeyException,
                                                                       java.io.IOException,
                                                                       java.security.cert.CertificateException,
                                                                       java.security.SignatureException

Creates a PKCS#10 request.

Throws:: java.security.NoSuchAlgorithmException; java.security.NoSuchProviderException; java.security.InvalidKeyException; java.io.IOException; java.security.cert.CertificateException; java.security.SignatureException

createCertificationRequest

public static netscape.security.pkcs.PKCS10 createCertificationRequest(java.lang.String subjectName,
                                                                       java.security.KeyPair keyPair,
                                                                       java.lang.String alg)
                                                                throws java.security.NoSuchAlgorithmException,
                                                                       java.security.NoSuchProviderException,
                                                                       java.security.InvalidKeyException,
                                                                       java.io.IOException,
                                                                       java.security.cert.CertificateException,
                                                                       java.security.SignatureException

Throws:: java.security.NoSuchAlgorithmException; java.security.NoSuchProviderException; java.security.InvalidKeyException; java.io.IOException; java.security.cert.CertificateException; java.security.SignatureException

unTrustCert

public static void unTrustCert(org.mozilla.jss.crypto.InternalCertificate cert)

trustCertByNickname

public static void trustCertByNickname(java.lang.String nickname)
                                throws org.mozilla.jss.CryptoManager.NotInitializedException,
                                       org.mozilla.jss.crypto.TokenException

Trusts a certificate by nickname.

Throws:: org.mozilla.jss.CryptoManager.NotInitializedException; org.mozilla.jss.crypto.TokenException

trustCert

public static void trustCert(org.mozilla.jss.crypto.InternalCertificate cert)

Trusts a certificate.

isCertTrusted

public static boolean isCertTrusted(org.mozilla.jss.crypto.InternalCertificate cert)

To certificate server point of view, SSL trust is what we referring.

isTrust

public static boolean isTrust(int flag)

generateKey

public static org.mozilla.jss.crypto.SymmetricKey generateKey(org.mozilla.jss.crypto.CryptoToken token,
                                                              org.mozilla.jss.crypto.KeyGenAlgorithm alg,
                                                              int keySize)
                                                       throws org.mozilla.jss.crypto.TokenException,
                                                              java.security.NoSuchAlgorithmException,
                                                              java.lang.IllegalStateException,
                                                              java.security.InvalidAlgorithmParameterException

Generates a symmetric key.

Throws:: org.mozilla.jss.crypto.TokenException; java.security.NoSuchAlgorithmException; java.lang.IllegalStateException; java.security.InvalidAlgorithmParameterException

compare

public static boolean compare(byte[] src,
                              byte[] dest)

Compares 2 byte arrays to see if they are the same.

byte2string

public static java.lang.String byte2string(byte[] id)

string2byte

public static byte[] string2byte(java.lang.String id)

hexString2Bytes
```
public static byte[] hexString2Bytes(java.lang.String string)
```
Converts string containing pairs of characters in the range of '0' to '9', 'a' to 'f' to an array of bytes such that each pair of characters in the string represents an individual byte

findPrivateKeyFromID

public static org.mozilla.jss.crypto.PrivateKey findPrivateKeyFromID(byte[] id)
                                                              throws org.mozilla.jss.CryptoManager.NotInitializedException,
                                                                     org.mozilla.jss.crypto.TokenException

Retrieves a private key from a unique key ID.

Throws:: org.mozilla.jss.CryptoManager.NotInitializedException; org.mozilla.jss.crypto.TokenException

getAllUserCerts

public static netscape.security.x509.X509CertImpl[] getAllUserCerts()
                                                             throws org.mozilla.jss.CryptoManager.NotInitializedException,
                                                                    org.mozilla.jss.crypto.TokenException

Retrieves all user certificates from all tokens.

Throws:: org.mozilla.jss.CryptoManager.NotInitializedException; org.mozilla.jss.crypto.TokenException

deletePrivateKey

public static void deletePrivateKey(org.mozilla.jss.crypto.PrivateKey prikey)
                             throws org.mozilla.jss.CryptoManager.NotInitializedException,
                                    org.mozilla.jss.crypto.TokenException

Deletes a private key.

Throws:: org.mozilla.jss.CryptoManager.NotInitializedException; org.mozilla.jss.crypto.TokenException

getPrivateKey

public static org.mozilla.jss.crypto.PrivateKey getPrivateKey(java.lang.String nickname)
                                                       throws org.mozilla.jss.CryptoManager.NotInitializedException,
                                                              org.mozilla.jss.crypto.TokenException

Retrieves a private key by nickname.

Throws:: org.mozilla.jss.CryptoManager.NotInitializedException; org.mozilla.jss.crypto.TokenException

deleteAllCertificates

public static void deleteAllCertificates(java.lang.String nickname)
                                  throws org.mozilla.jss.CryptoManager.NotInitializedException,
                                         org.mozilla.jss.crypto.TokenException

Deletes all certificates by a nickname.

Throws:: org.mozilla.jss.CryptoManager.NotInitializedException; org.mozilla.jss.crypto.TokenException

importUserCertificateChain

public static org.mozilla.jss.crypto.X509Certificate importUserCertificateChain(java.lang.String c,
                                                                                java.lang.String nickname)
                                                                         throws org.mozilla.jss.CryptoManager.NotInitializedException,
                                                                                org.mozilla.jss.CryptoManager.NicknameConflictException,
                                                                                org.mozilla.jss.CryptoManager.UserCertConflictException,
                                                                                org.mozilla.jss.crypto.NoSuchItemOnTokenException,
                                                                                org.mozilla.jss.crypto.TokenException,
                                                                                java.security.cert.CertificateEncodingException

Imports a PKCS#7 certificate chain that includes the user certificate, and trusts the certificate.

Throws:: org.mozilla.jss.CryptoManager.NotInitializedException; org.mozilla.jss.CryptoManager.NicknameConflictException; org.mozilla.jss.CryptoManager.UserCertConflictException; org.mozilla.jss.crypto.NoSuchItemOnTokenException; org.mozilla.jss.crypto.TokenException; java.security.cert.CertificateEncodingException

importUserCertificate

public static void importUserCertificate(netscape.security.x509.X509CertImpl cert,
                                         java.lang.String nickname)
                                  throws org.mozilla.jss.CryptoManager.NotInitializedException,
                                         java.security.cert.CertificateEncodingException,
                                         org.mozilla.jss.crypto.NoSuchItemOnTokenException,
                                         org.mozilla.jss.crypto.TokenException,
                                         org.mozilla.jss.CryptoManager.NicknameConflictException,
                                         org.mozilla.jss.CryptoManager.UserCertConflictException

Imports a user certificate, and trusts the certificate.

Throws:: org.mozilla.jss.CryptoManager.NotInitializedException; java.security.cert.CertificateEncodingException; org.mozilla.jss.crypto.NoSuchItemOnTokenException; org.mozilla.jss.crypto.TokenException; org.mozilla.jss.CryptoManager.NicknameConflictException; org.mozilla.jss.CryptoManager.UserCertConflictException

importUserCertificate

public static void importUserCertificate(netscape.security.x509.X509CertImpl cert,
                                         java.lang.String nickname,
                                         boolean trust)
                                  throws org.mozilla.jss.CryptoManager.NotInitializedException,
                                         java.security.cert.CertificateEncodingException,
                                         org.mozilla.jss.crypto.NoSuchItemOnTokenException,
                                         org.mozilla.jss.crypto.TokenException,
                                         org.mozilla.jss.CryptoManager.NicknameConflictException,
                                         org.mozilla.jss.CryptoManager.UserCertConflictException

Throws:: org.mozilla.jss.CryptoManager.NotInitializedException; java.security.cert.CertificateEncodingException; org.mozilla.jss.crypto.NoSuchItemOnTokenException; org.mozilla.jss.crypto.TokenException; org.mozilla.jss.CryptoManager.NicknameConflictException; org.mozilla.jss.CryptoManager.UserCertConflictException

getX509CertificateFromPKCS7

public static java.security.cert.X509Certificate[] getX509CertificateFromPKCS7(byte[] b)
                                                                        throws java.io.IOException

Throws:: java.io.IOException

getNonceData
```
public static byte[] getNonceData(int size)
```
Generates a nonve_iv for padding.

Returns:

unwrapUsingPassphrase

public static byte[] unwrapUsingPassphrase(byte[] wrappedRecoveredKey,
                                           java.lang.String recoveryPassphrase)
                                    throws java.io.IOException,
                                           org.mozilla.jss.asn1.InvalidBERException,
                                           java.security.InvalidKeyException,
                                           java.lang.IllegalStateException,
                                           java.security.NoSuchAlgorithmException,
                                           java.security.InvalidAlgorithmParameterException,
                                           org.mozilla.jss.CryptoManager.NotInitializedException,
                                           org.mozilla.jss.crypto.TokenException,
                                           org.mozilla.jss.crypto.IllegalBlockSizeException,
                                           org.mozilla.jss.crypto.BadPaddingException

Throws:: java.io.IOException; org.mozilla.jss.asn1.InvalidBERException; java.security.InvalidKeyException; java.lang.IllegalStateException; java.security.NoSuchAlgorithmException; java.security.InvalidAlgorithmParameterException; org.mozilla.jss.CryptoManager.NotInitializedException; org.mozilla.jss.crypto.TokenException; org.mozilla.jss.crypto.IllegalBlockSizeException; org.mozilla.jss.crypto.BadPaddingException

unwrapUsingSymmetricKey

public static byte[] unwrapUsingSymmetricKey(org.mozilla.jss.crypto.CryptoToken token,
                                             org.mozilla.jss.crypto.IVParameterSpec IV,
                                             byte[] wrappedRecoveredKey,
                                             org.mozilla.jss.crypto.SymmetricKey recoveryKey,
                                             org.mozilla.jss.crypto.EncryptionAlgorithm alg)
                                      throws java.security.NoSuchAlgorithmException,
                                             org.mozilla.jss.crypto.TokenException,
                                             org.mozilla.jss.crypto.BadPaddingException,
                                             org.mozilla.jss.crypto.IllegalBlockSizeException,
                                             java.security.InvalidKeyException,
                                             java.security.InvalidAlgorithmParameterException

Throws:: java.security.NoSuchAlgorithmException; org.mozilla.jss.crypto.TokenException; org.mozilla.jss.crypto.BadPaddingException; org.mozilla.jss.crypto.IllegalBlockSizeException; java.security.InvalidKeyException; java.security.InvalidAlgorithmParameterException

wrapPassphrase

public static byte[] wrapPassphrase(org.mozilla.jss.crypto.CryptoToken token,
                                    java.lang.String passphrase,
                                    org.mozilla.jss.crypto.IVParameterSpec IV,
                                    org.mozilla.jss.crypto.SymmetricKey sk,
                                    org.mozilla.jss.crypto.EncryptionAlgorithm alg)
                             throws java.security.NoSuchAlgorithmException,
                                    org.mozilla.jss.crypto.TokenException,
                                    java.security.InvalidKeyException,
                                    java.security.InvalidAlgorithmParameterException,
                                    org.mozilla.jss.crypto.IllegalBlockSizeException,
                                    org.mozilla.jss.crypto.BadPaddingException,
                                    java.io.IOException

Throws:: java.security.NoSuchAlgorithmException; org.mozilla.jss.crypto.TokenException; java.security.InvalidKeyException; java.security.InvalidAlgorithmParameterException; org.mozilla.jss.crypto.IllegalBlockSizeException; org.mozilla.jss.crypto.BadPaddingException; java.io.IOException

wrapSymmetricKey

public static byte[] wrapSymmetricKey(org.mozilla.jss.CryptoManager manager,
                                      org.mozilla.jss.crypto.CryptoToken token,
                                      java.lang.String transportCert,
                                      org.mozilla.jss.crypto.SymmetricKey sk)
                               throws java.security.cert.CertificateEncodingException,
                                      org.mozilla.jss.crypto.TokenException,
                                      java.security.NoSuchAlgorithmException,
                                      java.security.InvalidKeyException,
                                      java.security.InvalidAlgorithmParameterException

Throws:: java.security.cert.CertificateEncodingException; org.mozilla.jss.crypto.TokenException; java.security.NoSuchAlgorithmException; java.security.InvalidKeyException; java.security.InvalidAlgorithmParameterException

wrapSymmetricKey

public static byte[] wrapSymmetricKey(org.mozilla.jss.crypto.CryptoToken token,
                                      org.mozilla.jss.crypto.SymmetricKey secret,
                                      org.mozilla.jss.crypto.SymmetricKey wrapper,
                                      org.mozilla.jss.crypto.IVParameterSpec IV)
                               throws java.security.NoSuchAlgorithmException,
                                      org.mozilla.jss.crypto.TokenException,
                                      java.security.InvalidKeyException,
                                      java.security.InvalidAlgorithmParameterException

Wrap a symmetric Key with a SymmetricKey

Parameters:: token -; secret -; wrapper -
Returns:
Throws:: org.mozilla.jss.crypto.TokenException; java.security.NoSuchAlgorithmException; java.security.InvalidAlgorithmParameterException; java.security.InvalidKeyException

createPKIArchiveOptions

public static byte[] createPKIArchiveOptions(org.mozilla.jss.CryptoManager manager,
                                             org.mozilla.jss.crypto.CryptoToken token,
                                             java.lang.String transportCert,
                                             org.mozilla.jss.crypto.SymmetricKey vek,
                                             java.lang.String passphrase,
                                             org.mozilla.jss.crypto.KeyGenAlgorithm keyGenAlg,
                                             int symKeySize,
                                             org.mozilla.jss.crypto.IVParameterSpec IV)
                                      throws org.mozilla.jss.crypto.TokenException,
                                             java.io.CharConversionException,
                                             java.security.NoSuchAlgorithmException,
                                             java.security.InvalidKeyException,
                                             java.security.InvalidAlgorithmParameterException,
                                             java.security.cert.CertificateEncodingException,
                                             java.io.IOException,
                                             java.lang.IllegalStateException,
                                             org.mozilla.jss.crypto.IllegalBlockSizeException,
                                             org.mozilla.jss.crypto.BadPaddingException,
                                             org.mozilla.jss.asn1.InvalidBERException

Throws:: org.mozilla.jss.crypto.TokenException; java.io.CharConversionException; java.security.NoSuchAlgorithmException; java.security.InvalidKeyException; java.security.InvalidAlgorithmParameterException; java.security.cert.CertificateEncodingException; java.io.IOException; java.lang.IllegalStateException; org.mozilla.jss.crypto.IllegalBlockSizeException; org.mozilla.jss.crypto.BadPaddingException; org.mozilla.jss.asn1.InvalidBERException

createPKIArchiveOptions

public static byte[] createPKIArchiveOptions(org.mozilla.jss.crypto.CryptoToken token,
                                             java.security.PublicKey wrappingKey,
                                             org.mozilla.jss.crypto.PrivateKey toBeWrapped,
                                             org.mozilla.jss.crypto.KeyGenAlgorithm keyGenAlg,
                                             int symKeySize,
                                             org.mozilla.jss.crypto.IVParameterSpec IV)
                                      throws org.mozilla.jss.crypto.TokenException,
                                             java.security.NoSuchAlgorithmException,
                                             java.security.InvalidAlgorithmParameterException,
                                             java.security.InvalidKeyException,
                                             java.io.IOException,
                                             org.mozilla.jss.asn1.InvalidBERException

Throws:: org.mozilla.jss.crypto.TokenException; java.security.NoSuchAlgorithmException; java.security.InvalidAlgorithmParameterException; java.security.InvalidKeyException; java.io.IOException; org.mozilla.jss.asn1.InvalidBERException

importPKIArchiveOptions

public static org.mozilla.jss.crypto.PrivateKey importPKIArchiveOptions(org.mozilla.jss.crypto.CryptoToken token,
                                                                        org.mozilla.jss.crypto.PrivateKey unwrappingKey,
                                                                        java.security.PublicKey pubkey,
                                                                        byte[] data)
                                                                 throws org.mozilla.jss.asn1.InvalidBERException,
                                                                        java.lang.Exception

Throws:: org.mozilla.jss.asn1.InvalidBERException; java.lang.Exception

sharedSecretExists

public static boolean sharedSecretExists(java.lang.String nickname)
                                  throws org.mozilla.jss.CryptoManager.NotInitializedException,
                                         org.mozilla.jss.crypto.TokenException

Throws:: org.mozilla.jss.CryptoManager.NotInitializedException; org.mozilla.jss.crypto.TokenException

createSharedSecret

public static void createSharedSecret(java.lang.String nickname)
                               throws org.mozilla.jss.CryptoManager.NotInitializedException,
                                      org.mozilla.jss.crypto.TokenException

Throws:: org.mozilla.jss.CryptoManager.NotInitializedException; org.mozilla.jss.crypto.TokenException

deleteSharedSecret

public static void deleteSharedSecret(java.lang.String nickname)
                               throws org.mozilla.jss.CryptoManager.NotInitializedException,
                                      org.mozilla.jss.crypto.TokenException,
                                      java.security.InvalidKeyException

Throws:: org.mozilla.jss.CryptoManager.NotInitializedException; org.mozilla.jss.crypto.TokenException; java.security.InvalidKeyException

exportSharedSecret

public static java.util.List<byte[]> exportSharedSecret(java.lang.String nickname,
                                                        java.security.cert.X509Certificate wrappingCert,
                                                        org.mozilla.jss.crypto.SymmetricKey wrappingKey)
                                                 throws org.mozilla.jss.CryptoManager.NotInitializedException,
                                                        org.mozilla.jss.crypto.TokenException,
                                                        java.io.IOException,
                                                        java.security.NoSuchAlgorithmException,
                                                        java.security.InvalidKeyException,
                                                        java.security.InvalidAlgorithmParameterException,
                                                        org.mozilla.jss.crypto.InvalidKeyFormatException

Throws:: org.mozilla.jss.CryptoManager.NotInitializedException; org.mozilla.jss.crypto.TokenException; java.io.IOException; java.security.NoSuchAlgorithmException; java.security.InvalidKeyException; java.security.InvalidAlgorithmParameterException; org.mozilla.jss.crypto.InvalidKeyFormatException

importSharedSecret

public static void importSharedSecret(byte[] wrappedSessionKey,
                                      byte[] wrappedSharedSecret,
                                      java.lang.String subsystemCertNickname,
                                      java.lang.String sharedSecretNickname)
                               throws java.lang.Exception,
                                      org.mozilla.jss.CryptoManager.NotInitializedException,
                                      org.mozilla.jss.crypto.TokenException,
                                      java.security.NoSuchAlgorithmException,
                                      org.mozilla.jss.crypto.ObjectNotFoundException,
                                      java.security.InvalidKeyException,
                                      java.security.InvalidAlgorithmParameterException,
                                      java.io.IOException

Throws:: java.lang.Exception; org.mozilla.jss.CryptoManager.NotInitializedException; org.mozilla.jss.crypto.TokenException; java.security.NoSuchAlgorithmException; org.mozilla.jss.crypto.ObjectNotFoundException; java.security.InvalidKeyException; java.security.InvalidAlgorithmParameterException; java.io.IOException

getSymKeyByName

public static org.mozilla.jss.crypto.SymmetricKey getSymKeyByName(org.mozilla.jss.crypto.CryptoToken token,
                                                                  java.lang.String name)
                                                           throws java.lang.Exception

Throws:: java.lang.Exception

getECcurves

public static java.lang.String[] getECcurves()

getECKeyCurve

public static java.util.Vector<java.lang.String> getECKeyCurve(netscape.security.x509.X509Key key)
                                                        throws java.lang.Exception

Throws:: java.lang.Exception

Class CryptoUtil

Field Summary

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Field Detail

CERTREQ_BEGIN_HEADING

CERTREQ_END_HEADING

LINE_COUNT

CERT_BEGIN_HEADING

CERT_END_HEADING

clientECCiphers

clientECCipherList

Constructor Detail

CryptoUtil

Method Detail

arraysEqual

getTokenByName

generateRSAKeyPair

isECCKey

generateECCKeyPair

generateECCKeyPair

generateECCKeyPair

generateECCKeyPair

generateECCKeyPair

generateECCKeyPair

generateECCKeyPair

generateECCKeyPair

generateECCKeyPair

setClientCiphers

setClientCiphers

getModulus

getPublicExponent

base64Encode

base64Decode

reqFormat

getPKCS10FromKey

getPKCS10FromKey

certFormat

stripCertBrackets

normalizeCertAndReq

normalizeCertStr

importCertificateChain

parseCRMFMsgs

getX509KeyFromCRMFMsgs

getPublicX509Key

getPublicX509ECCKey

convertPublicKeyToX509Key

getSubjectName

createX509CertInfo

createX509CertInfo

createX509CertInfo

createX509CertInfo

createX509CertInfo

signECCCert

signECCCert

signCert

signCert

createCertificationRequest

createCertificationRequest

createCertificationRequest

createCertificationRequest

createCertificationRequest

unTrustCert

trustCertByNickname

trustCert

isCertTrusted

isTrust

generateKey

compare

byte2string

string2byte

hexString2Bytes

findPrivateKeyFromID

getAllUserCerts

deletePrivateKey

getPrivateKey

deleteAllCertificates

importUserCertificateChain

importUserCertificate