CaHelper (stdlib 7.0.1 API)

java.lang.Object
- com.peterphi.std.crypto.keygen.CaHelper

public class CaHelper
extends java.lang.Object

Field Summary

Fields
Modifier and Type	Field and Description
`static boolean`	`GLOBUS_ALGORITHM_HACK` If true, changes the default algorithm to MD5WITHRSA
`static boolean`	`GLOBUS_COG_HACK` If true, enables a hack which works around GT 4.2.1 "Bug 3299:12 Extended Key Usage certificate extension not supported" (a problem in CoG)
`static org.bouncycastle.asn1.DERObjectIdentifier`	`netscapeCertType`

Constructor Summary

Constructors
Constructor and Description

CaHelper()

Constructors
Constructor and Description
`CaHelper()`

Method Summary

Methods
Modifier and Type	Method and Description
`static java.security.cert.X509Certificate`	`generateCaCertificate(java.lang.String friendlyName, java.security.KeyPair kp, java.math.BigInteger serial, org.bouncycastle.asn1.x509.X509Name issuer)`
`static java.security.cert.X509Certificate`	`generateCaCertificate(java.lang.String friendlyName, java.security.KeyPair kp, java.math.BigInteger serial, org.bouncycastle.asn1.x509.X509Name issuer, org.bouncycastle.asn1.x509.X509Name subject)`
`static org.bouncycastle.jce.PKCS10CertificationRequest`	`generateCertificateRequest(java.security.cert.X509Certificate cert, java.security.PrivateKey signingKey)`
`static java.security.cert.X509Certificate`	`generateClientCertificate(java.security.PublicKey certificatePublicKey, java.security.PrivateKey caPrivateKey, org.bouncycastle.asn1.x509.X509Name issuer, org.bouncycastle.asn1.x509.X509Name subject)`
`static java.security.KeyPair`	`generateKeyPair(int bits)`
`static java.security.cert.X509Certificate`	`generateServerCertificate(java.security.PublicKey certificatePublicKey, java.security.PrivateKey caPrivateKey, org.bouncycastle.asn1.x509.X509Name issuer, org.bouncycastle.asn1.x509.X509Name subject)`
`static void`	`main(java.lang.String[] args)`
`static java.lang.String`	`openssl_X509_NAME_hash(javax.security.auth.x500.X500Principal p)` Generates a hexidecimal OpenSSL X509_NAME hash (as used in openssl x509 -hash -in cert.pem) Based on openssl's crypto/x509/x509_cmp.c line 321
`static java.lang.String`	`opensslHash(java.security.cert.X509Certificate cert)`

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail
- GLOBUS_COG_HACK
```
public static final boolean GLOBUS_COG_HACK
```
  If true, enables a hack which works around GT 4.2.1 "Bug 3299:12 Extended Key Usage certificate extension not supported" (a problem in CoG)
  
  See Also:
  Constant Field Values
- GLOBUS_ALGORITHM_HACK
```
public static final boolean GLOBUS_ALGORITHM_HACK
```
  If true, changes the default algorithm to MD5WITHRSA
  
  See Also:
  Constant Field Values
- netscapeCertType
```
public static final org.bouncycastle.asn1.DERObjectIdentifier netscapeCertType
```

Constructor Detail
- CaHelper
```
public CaHelper()
```

Method Detail

opensslHash

public static java.lang.String opensslHash(java.security.cert.X509Certificate cert)

openssl_X509_NAME_hash
```
public static java.lang.String openssl_X509_NAME_hash(javax.security.auth.x500.X500Principal p)
                                               throws java.security.NoSuchAlgorithmException
```
Generates a hexidecimal OpenSSL X509_NAME hash (as used in openssl x509 -hash -in cert.pem)
Based on openssl's crypto/x509/x509_cmp.c line 321

Parameters:
p -

Returns:

Throws:

java.security.NoSuchAlgorithmException

generateKeyPair

public static java.security.KeyPair generateKeyPair(int bits)
                                             throws java.lang.Exception

Throws:: java.lang.Exception

generateClientCertificate

public static java.security.cert.X509Certificate generateClientCertificate(java.security.PublicKey certificatePublicKey,
                                                           java.security.PrivateKey caPrivateKey,
                                                           org.bouncycastle.asn1.x509.X509Name issuer,
                                                           org.bouncycastle.asn1.x509.X509Name subject)
                                                                    throws java.lang.Exception

Parameters:: certificatePublicKey -; caPrivateKey -; issuer -; subject -
Returns:
Throws:: java.lang.Exception

generateServerCertificate

public static java.security.cert.X509Certificate generateServerCertificate(java.security.PublicKey certificatePublicKey,
                                                           java.security.PrivateKey caPrivateKey,
                                                           org.bouncycastle.asn1.x509.X509Name issuer,
                                                           org.bouncycastle.asn1.x509.X509Name subject)
                                                                    throws java.lang.Exception

Parameters:: certificatePublicKey -; caPrivateKey -; issuer -; subject -
Returns:
Throws:: java.lang.Exception

generateCaCertificate

public static java.security.cert.X509Certificate generateCaCertificate(java.lang.String friendlyName,
                                                       java.security.KeyPair kp,
                                                       java.math.BigInteger serial,
                                                       org.bouncycastle.asn1.x509.X509Name issuer)
                                                                throws java.lang.Exception

Throws:: java.lang.Exception

generateCaCertificate

public static java.security.cert.X509Certificate generateCaCertificate(java.lang.String friendlyName,
                                                       java.security.KeyPair kp,
                                                       java.math.BigInteger serial,
                                                       org.bouncycastle.asn1.x509.X509Name issuer,
                                                       org.bouncycastle.asn1.x509.X509Name subject)
                                                                throws java.lang.Exception

Parameters:: kp -; issuer -; subject -
Returns:
Throws:: java.lang.Exception

generateCertificateRequest

public static org.bouncycastle.jce.PKCS10CertificationRequest generateCertificateRequest(java.security.cert.X509Certificate cert,
                                                                         java.security.PrivateKey signingKey)
                                                                                  throws java.lang.Exception

Throws:: java.lang.Exception

main

public static void main(java.lang.String[] args)
                 throws java.lang.Exception

Throws:: java.lang.Exception

Class CaHelper

Field Summary

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Field Detail

GLOBUS_COG_HACK

GLOBUS_ALGORITHM_HACK

netscapeCertType

Constructor Detail

CaHelper

Method Detail

opensslHash

openssl_X509_NAME_hash

generateKeyPair

generateClientCertificate

generateServerCertificate

generateCaCertificate

generateCaCertificate

generateCertificateRequest

main