mirror of
git://gcc.gnu.org/git/gcc.git
synced 2024-12-26 22:29:57 +08:00
43905ff30b
2003-04-30 Michael Koch <konqueror@gmx.de> * gnu/java/security/Engine.java, gnu/java/security/OID.java, gnu/java/security/der/BitString.java, gnu/java/security/der/DER.java, gnu/java/security/der/DERReader.java, gnu/java/security/der/DERValue.java, gnu/java/security/der/DERWriter.java, gnu/java/security/provider/DSAKeyFactory.java, gnu/java/security/provider/X509CertificateFactory.java, gnu/java/security/x509/X500DistinguishedName.java, gnu/java/security/x509/X509CRL.java, gnu/java/security/x509/X509CRLEntry.java, gnu/java/security/x509/X509Certificate.java, java/security/cert/CRLSelector.java, java/security/cert/CertPathBuilder.java, java/security/cert/CertPathBuilderResult.java, java/security/cert/CertPathBuilderSpi.java, java/security/cert/CertPathParameters.java, java/security/cert/CertPathValidator.java, java/security/cert/CertPathValidatorResult.java, java/security/cert/CertPathValidatorSpi.java, java/security/cert/CertSelector.java, java/security/cert/CertStore.java, java/security/cert/CertStoreParameters.java, java/security/cert/CertStoreSpi.java, java/security/cert/CollectionCertStoreParameters.java, java/security/cert/LDAPCertStoreParameters.java, java/security/cert/PKIXBuilderParameters.java, java/security/cert/PKIXCertPathBuilderResult.java, java/security/cert/PKIXCertPathChecker.java, java/security/cert/PKIXCertPathValidatorResult.java, java/security/cert/PKIXParameters.java, java/security/cert/PolicyNode.java, java/security/cert/PolicyQualifierInfo.java, java/security/cert/TrustAnchor.java, javax/security/auth/x500/X500Principal.java: New files from classpath. * gnu/java/io/ASN1ParsingException.java, gnu/java/io/Base64InputStream.java, gnu/java/security/der/DEREncodingException.java, gnu/java/security/provider/DSAParameters.java, gnu/java/security/provider/DSASignature.java, gnu/java/security/provider/Gnu.java, gnu/java/security/provider/GnuDSAPrivateKey.java, gnu/java/security/provider/GnuDSAPublicKey.java, java/security/AlgorithmParameterGenerator.java, java/security/AlgorithmParameters.java, java/security/KeyFactory.java, java/security/KeyPairGenerator.java, java/security/KeyStore.java, java/security/MessageDigest.java, java/security/SecureClassLoader.java, java/security/SecureRandom.java, java/security/Security.java, java/security/Signature.java, java/security/cert/Certificate.java, java/security/cert/CertificateFactory.java, java/security/cert/CertificateFactorySpi.java, java/security/cert/X509CRL.java, java/security/cert/X509Certificate.java, java/security/spec/DSAPublicKeySpec.java: New versions from classpath. * gnu/java/security/provider/DERReader.java, gnu/java/security/provider/DERWriter.java, java/security/Engine.java: Removed. * Makefile.am (java_source_files, javax_source_files): Added new files. * Makefile.in: Regenerated. From-SVN: r66283
296 lines
9.6 KiB
Java
296 lines
9.6 KiB
Java
/* CertStore -- stores and retrieves certificates.
|
||
Copyright (C) 2003 Free Software Foundation, Inc.
|
||
|
||
This file is part of GNU Classpath.
|
||
|
||
GNU Classpath is free software; you can redistribute it and/or modify
|
||
it under the terms of the GNU General Public License as published by
|
||
the Free Software Foundation; either version 2, or (at your option)
|
||
any later version.
|
||
|
||
GNU Classpath is distributed in the hope that it will be useful, but
|
||
WITHOUT ANY WARRANTY; without even the implied warranty of
|
||
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
||
General Public License for more details.
|
||
|
||
You should have received a copy of the GNU General Public License
|
||
along with GNU Classpath; see the file COPYING. If not, write to the
|
||
Free Software Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA
|
||
02111-1307 USA.
|
||
|
||
Linking this library statically or dynamically with other modules is
|
||
making a combined work based on this library. Thus, the terms and
|
||
conditions of the GNU General Public License cover the whole
|
||
combination.
|
||
|
||
As a special exception, the copyright holders of this library give you
|
||
permission to link this library with independent modules to produce an
|
||
executable, regardless of the license terms of these independent
|
||
modules, and to copy and distribute the resulting executable under
|
||
terms of your choice, provided that you also meet, for each linked
|
||
independent module, the terms and conditions of the license of that
|
||
module. An independent module is a module which is not derived from
|
||
or based on this library. If you modify this library, you may extend
|
||
this exception to your version of the library, but you are not
|
||
obligated to do so. If you do not wish to do so, delete this
|
||
exception statement from your version. */
|
||
|
||
|
||
package java.security.cert;
|
||
|
||
import java.security.InvalidAlgorithmParameterException;
|
||
import java.security.NoSuchAlgorithmException;
|
||
import java.security.NoSuchProviderException;
|
||
import java.security.PrivilegedAction;
|
||
import java.security.Provider;
|
||
import java.security.Security;
|
||
|
||
import java.util.Collection;
|
||
|
||
import gnu.java.security.Engine;
|
||
|
||
/**
|
||
* A CertStore is a read-only repository for certificates and
|
||
* certificate revocation lists.
|
||
*
|
||
* @since JDK 1.4
|
||
*/
|
||
public class CertStore
|
||
{
|
||
|
||
// Constants and fields.
|
||
// ------------------------------------------------------------------------
|
||
|
||
/** Service name for CertStore. */
|
||
private static final String CERT_STORE = "CertStore";
|
||
|
||
/** The underlying implementation. */
|
||
private CertStoreSpi storeSpi;
|
||
|
||
/** This implementation's provider. */
|
||
private Provider provider;
|
||
|
||
/** The name of this key store type. */
|
||
private String type;
|
||
|
||
/** The parameters used to initialize this instance, if any. */
|
||
private CertStoreParameters params;
|
||
|
||
// Constructor.
|
||
// ------------------------------------------------------------------------
|
||
|
||
/**
|
||
* Create a new CertStore.
|
||
*
|
||
* @param storeSpi The underlying implementation.
|
||
* @param provider The provider of this implementation.
|
||
* @param type The type of CertStore this class represents.
|
||
* @param params The parameters used to initialize this instance, if any.
|
||
*/
|
||
protected CertStore(CertStoreSpi storeSpi, Provider provider, String type,
|
||
CertStoreParameters params)
|
||
{
|
||
this.storeSpi = storeSpi;
|
||
this.provider = provider;
|
||
this.type = type;
|
||
this.params = params;
|
||
}
|
||
|
||
// Class methods.
|
||
// ------------------------------------------------------------------------
|
||
|
||
/**
|
||
* Returns the default certificate store type.
|
||
*
|
||
* <p>This value can be set at run-time via the security property
|
||
* "certstore.type"; if not specified than the default type will be
|
||
* "LDAP".
|
||
*
|
||
* @return The default CertStore type.
|
||
*/
|
||
public static final synchronized String getDefaultType()
|
||
{
|
||
String type = null;
|
||
type = (String) java.security.AccessController.doPrivileged(
|
||
new PrivilegedAction() {
|
||
public Object run() {
|
||
return Security.getProperty("certstore.type");
|
||
}
|
||
}
|
||
);
|
||
if (type == null)
|
||
type = "LDAP";
|
||
return type;
|
||
}
|
||
|
||
/**
|
||
* Get an instance of the given certificate store from the first
|
||
* installed provider.
|
||
*
|
||
* @param type The type of CertStore to create.
|
||
* @param params The parameters to initialize this cert store with.
|
||
* @return The new instance.
|
||
* @throws InvalidAlgorithmParameterException If the instance rejects
|
||
* the specified parameters.
|
||
* @throws NoSuchAlgorithmException If no installed provider
|
||
* implements the specified CertStore.
|
||
* @throws IllegalArgumentException If <i>provider</i> is null.
|
||
*/
|
||
public static CertStore getInstance(String type, CertStoreParameters params)
|
||
throws InvalidAlgorithmParameterException, NoSuchAlgorithmException
|
||
{
|
||
Provider[] p = Security.getProviders();
|
||
for (int i = 0; i < p.length; i++)
|
||
{
|
||
try
|
||
{
|
||
return getInstance(type, params, p[i]);
|
||
}
|
||
catch (NoSuchAlgorithmException ignored)
|
||
{
|
||
}
|
||
}
|
||
|
||
throw new NoSuchAlgorithmException(type);
|
||
}
|
||
|
||
/**
|
||
* Get an instance of the given certificate store from the named
|
||
* provider.
|
||
*
|
||
* @param type The type of CertStore to create.
|
||
* @param params The parameters to initialize this cert store with.
|
||
* @param provider The name of the provider from which to get the
|
||
* implementation.
|
||
* @return The new instance.
|
||
* @throws InvalidAlgorithmParameterException If the instance rejects
|
||
* the specified parameters.
|
||
* @throws NoSuchAlgorithmException If the specified provider does not
|
||
* implement the specified CertStore.
|
||
* @throws NoSuchProviderException If no provider named
|
||
* <i>provider</i> is installed.
|
||
* @throws IllegalArgumentException If <i>provider</i> is null.
|
||
*/
|
||
public static CertStore getInstance(String type, CertStoreParameters params,
|
||
String provider)
|
||
throws InvalidAlgorithmParameterException, NoSuchAlgorithmException,
|
||
NoSuchProviderException
|
||
{
|
||
Provider p = Security.getProvider(provider);
|
||
if (p == null)
|
||
throw new NoSuchProviderException(provider);
|
||
return getInstance(type, params, p);
|
||
}
|
||
|
||
/**
|
||
* Get an instance of the given certificate store from the given
|
||
* provider.
|
||
*
|
||
* @param type The type of CertStore to create.
|
||
* @param params The parameters to initialize this cert store with.
|
||
* @param provider The provider from which to get the implementation.
|
||
* @return The new instance.
|
||
* @throws InvalidAlgorithmParameterException If the instance rejects
|
||
* the specified parameters.
|
||
* @throws NoSuchAlgorithmException If the specified provider does not
|
||
* implement the specified CertStore.
|
||
* @throws IllegalArgumentException If <i>provider</i> is null.
|
||
*/
|
||
public static CertStore getInstance(String type, CertStoreParameters params,
|
||
Provider provider)
|
||
throws InvalidAlgorithmParameterException, NoSuchAlgorithmException
|
||
{
|
||
if (provider == null)
|
||
throw new IllegalArgumentException("null provider");
|
||
|
||
try
|
||
{
|
||
return new CertStore((CertStoreSpi) Engine.getInstance(CERT_STORE,
|
||
type, provider, new Object[] { params }), provider, type, params);
|
||
}
|
||
catch (ClassCastException cce)
|
||
{
|
||
throw new NoSuchAlgorithmException(type);
|
||
}
|
||
catch (java.lang.reflect.InvocationTargetException ite)
|
||
{
|
||
Throwable cause = ite.getCause();
|
||
if (cause != null &&
|
||
(cause instanceof InvalidAlgorithmParameterException))
|
||
throw (InvalidAlgorithmParameterException) cause;
|
||
else
|
||
throw new NoSuchAlgorithmException(type);
|
||
}
|
||
}
|
||
|
||
// Instance methods.
|
||
// ------------------------------------------------------------------------
|
||
|
||
/**
|
||
* Return the type of certificate store this instance represents.
|
||
*
|
||
* @return The CertStore type.
|
||
*/
|
||
public final String getType()
|
||
{
|
||
return type;
|
||
}
|
||
|
||
/**
|
||
* Return the provider of this implementation.
|
||
*
|
||
* @return The provider.
|
||
*/
|
||
public final Provider getProvider()
|
||
{
|
||
return provider;
|
||
}
|
||
|
||
/**
|
||
* Get the parameters this instance was created with, if any. The
|
||
* parameters will be cloned before they are returned.
|
||
*
|
||
* @return The parameters, or null.
|
||
*/
|
||
public final CertStoreParameters getCertStoreParameters()
|
||
{
|
||
return params != null ? (CertStoreParameters) params.clone() : null;
|
||
}
|
||
|
||
/**
|
||
* Get a collection of certificates from this CertStore, optionally
|
||
* filtered by the specified CertSelector. The Collection returned may
|
||
* be empty, but will never be null.
|
||
*
|
||
* <p>Implementations may not allow a null argument, even if no
|
||
* filtering is desired.
|
||
*
|
||
* @param selector The certificate selector.
|
||
* @return The collection of certificates.
|
||
* @throws CertStoreException If the certificates cannot be retrieved.
|
||
*/
|
||
public final Collection getCertificates(CertSelector selector)
|
||
throws CertStoreException
|
||
{
|
||
return storeSpi.engineGetCertificates(selector);
|
||
}
|
||
|
||
/**
|
||
* Get a collection of certificate revocation lists from this CertStore,
|
||
* optionally filtered by the specified CRLSelector. The Collection
|
||
* returned may be empty, but will never be null.
|
||
*
|
||
* <p>Implementations may not allow a null argument, even if no
|
||
* filtering is desired.
|
||
*
|
||
* @param selector The certificate selector.
|
||
* @return The collection of certificate revocation lists.
|
||
* @throws CertStoreException If the CRLs cannot be retrieved.
|
||
*/
|
||
public final Collection getCRLs(CRLSelector selector)
|
||
throws CertStoreException
|
||
{
|
||
return storeSpi.engineGetCRLs(selector);
|
||
}
|
||
}
|