|
Oracle Security Developer Tools Security Engine Java API Reference 10g (10.1.4.0.1) B28175-01 |
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Object
oracle.security.crypto.cert.PKCS7
This class implements a subset of PKCS #7. Two modes are implemented: wrapping X.509 certificates and CRLs (SignedData with empty signerInfos), and making a detached RSA/MD5 or RSA/SHA signature with one signer.
Warning: The serialization capability of this class should only be used for short-term storage and RMI between applications running the same version of this product. It should not be relied on for long-term perisistence, as future versions of this class may use an incompatible serialization format. For now, applications requiring long-term persistence should use the ASN.1 encodings provided by the input(InputStream)
and output(OutputStream)
methods directly, instead of serialization.
Field Summary | |
protected static int[] |
pkcs7 The pkcs-7 OBJECT-IDENTIFIER, as defined in PKCS #7. |
Constructor Summary | |
PKCS7() |
|
PKCS7(oracle.security.crypto.asn1.ASN1Sequence s) |
|
PKCS7(CRL crl) Make a wrapper for a CRL. |
|
PKCS7(java.io.InputStream is) |
|
PKCS7(java.util.Vector certificates, java.util.Vector crls) Make a wrapper for a list of certificates and CRL's. |
|
PKCS7(X509 cert) Make a wrapper for a certificate. |
|
PKCS7(X509 signer, oracle.security.crypto.core.RSAPrivateKey k, byte[] doc) Make a detached signature. |
Method Summary | |
void |
addCertificate(X509 cert) Add certificate to the vector of certificates. |
void |
addCRL(CRL crl) Add CRL to the vector of CRLs. |
java.util.Vector |
getCertificates() Returns vector of certificates to be wrapped. |
java.util.Vector |
getCRLs() Returns vector of CRLs to be wrapped. |
byte[] |
getEncoded() Returns the ASN.1 encoding. |
X500Name |
getIssuer() If this object is a detached signature, returns the issuer of the signer's certificate. |
java.math.BigInteger |
getSerialNo() If this object is a detached signature, returns the serial number of the signer's certificate. |
void |
input(oracle.security.crypto.asn1.ASN1Sequence s) Read in ASN.1 form. |
void |
input(java.io.InputStream is) Read from the specified input stream. |
int |
length() Returns length of ASN.1 encoding. |
void |
output(java.io.OutputStream os) Output contents to the specified output stream. |
void |
setDocument(byte[] doc) Specify the document for verification. |
void |
setPublicKey(oracle.security.crypto.core.RSAPublicKey pk) Sets the public key which will be used to verify the signature. |
void |
setSigner(X509 signer) Set the signer certificate. |
void |
sign(X509 signer, oracle.security.crypto.core.RSAPrivateKey privKey, oracle.security.crypto.core.AlgorithmIdentifier sigAlg, byte[] doc) Make a detached signature using the given signature algorithm. |
void |
sign(X509 signer, oracle.security.crypto.core.RSAPrivateKey privKey, byte[] doc) Make a detached signature, using the default signature algorithm AlgID.md5WithRSAEncryption . |
boolean |
verify() If this object is a detached signature, verify the signature. |
Methods inherited from class java.lang.Object |
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Field Detail |
protected static final int[] pkcs7
Constructor Detail |
public PKCS7()
public PKCS7(java.util.Vector certificates, java.util.Vector crls)
public PKCS7(X509 cert)
public PKCS7(CRL crl)
public PKCS7(X509 signer, oracle.security.crypto.core.RSAPrivateKey k, byte[] doc) throws oracle.security.crypto.core.SignatureException
public PKCS7(java.io.InputStream is) throws java.io.IOException
public PKCS7(oracle.security.crypto.asn1.ASN1Sequence s) throws java.io.IOException
Method Detail |
public java.util.Vector getCertificates()
public java.util.Vector getCRLs()
public void addCertificate(X509 cert)
public void addCRL(CRL crl)
public X500Name getIssuer()
public java.math.BigInteger getSerialNo()
public void setPublicKey(oracle.security.crypto.core.RSAPublicKey pk)
public void setSigner(X509 signer)
public void setDocument(byte[] doc)
java.lang.IllegalStateException
- if Message Digest algorithm is bad.public void sign(X509 signer, oracle.security.crypto.core.RSAPrivateKey privKey, byte[] doc) throws oracle.security.crypto.core.SignatureException
AlgID.md5WithRSAEncryption
.oracle.security.crypto.core.SignatureException
public void sign(X509 signer, oracle.security.crypto.core.RSAPrivateKey privKey, oracle.security.crypto.core.AlgorithmIdentifier sigAlg, byte[] doc) throws oracle.security.crypto.core.SignatureException
oracle.security.crypto.core.SignatureException
public boolean verify() throws oracle.security.crypto.core.AuthenticationException
oracle.security.crypto.core.AuthenticationException
- if there is an error during verificationpublic void output(java.io.OutputStream os) throws java.io.IOException
output
in interface oracle.security.crypto.util.Streamable
java.io.IOException
public void input(java.io.InputStream is) throws java.io.IOException
input
in interface oracle.security.crypto.util.Streamable
java.io.IOException
public void input(oracle.security.crypto.asn1.ASN1Sequence s) throws java.io.IOException
java.io.IOException
public int length()
length
in interface oracle.security.crypto.util.Streamable
public byte[] getEncoded()
|
Oracle Security Developer Tools Security Engine Java API Reference 10g (10.1.4.0.1) B28175-01 |
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |