| /* KeyStoreSpi.java --- Key Store Service Provider Interface |
| Copyright (C) 1999 Free Software Foundation, Inc. |
| |
| This file is part of GNU Classpath. |
| |
| GNU Classpath is free software; you can redistribute it and/or modify |
| it under the terms of the GNU General Public License as published by |
| the Free Software Foundation; either version 2, or (at your option) |
| any later version. |
| |
| GNU Classpath is distributed in the hope that it will be useful, but |
| WITHOUT ANY WARRANTY; without even the implied warranty of |
| MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU |
| General Public License for more details. |
| |
| You should have received a copy of the GNU General Public License |
| along with GNU Classpath; see the file COPYING. If not, write to the |
| Free Software Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA |
| 02111-1307 USA. |
| |
| Linking this library statically or dynamically with other modules is |
| making a combined work based on this library. Thus, the terms and |
| conditions of the GNU General Public License cover the whole |
| combination. |
| |
| As a special exception, the copyright holders of this library give you |
| permission to link this library with independent modules to produce an |
| executable, regardless of the license terms of these independent |
| modules, and to copy and distribute the resulting executable under |
| terms of your choice, provided that you also meet, for each linked |
| independent module, the terms and conditions of the license of that |
| module. An independent module is a module which is not derived from |
| or based on this library. If you modify this library, you may extend |
| this exception to your version of the library, but you are not |
| obligated to do so. If you do not wish to do so, delete this |
| exception statement from your version. */ |
| |
| package java.security; |
| import java.io.InputStream; |
| import java.io.IOException; |
| import java.io.OutputStream; |
| import java.security.cert.CertificateException; |
| import java.util.Date; |
| import java.util.Enumeration; |
| |
| /** |
| KeyStoreSpi is the Service Provider Interface (SPI) for the |
| KeyStore class. This is the interface for providers to |
| supply to implement a keystore for a particular keystore |
| type. |
| |
| @since JDK 1.2 |
| @author Mark Benvenuto |
| */ |
| public abstract class KeyStoreSpi |
| { |
| /** |
| Constructs a new KeyStoreSpi |
| */ |
| public KeyStoreSpi() |
| { |
| } |
| |
| /** |
| Returns the key associated with given alias using the |
| supplied password. |
| |
| @param alias an alias for the key to get |
| @param password password to access key with |
| |
| @return the requested key, or null otherwise |
| |
| @throws NoSuchAlgorithmException if there is no algorithm |
| for recovering the key |
| @throws UnrecoverableKeyException key cannot be reocovered |
| (wrong password). |
| */ |
| public abstract Key engineGetKey(String alias, char[]password) |
| throws NoSuchAlgorithmException, UnrecoverableKeyException; |
| |
| /** |
| Gets a Certificate chain for the specified alias. |
| |
| @param alias the alias name |
| |
| @return a chain of Certificates ( ordered from the user's |
| certificate to the Certificate Authority's ) or |
| null if the alias does not exist or there is no |
| certificate chain for the alias ( the alias refers |
| to a trusted certificate entry or there is no entry). |
| */ |
| public abstract java.security.cert. |
| Certificate[] engineGetCertificateChain(String alias); |
| |
| |
| /** |
| Gets a Certificate for the specified alias. |
| |
| If there is a trusted certificate entry then that is returned. |
| it there is a key entry with a certificate chain then the |
| first certificate is return or else null. |
| |
| @param alias the alias name |
| |
| @return a Certificate or null if the alias does not exist |
| or there is no certificate for the alias |
| */ |
| public abstract java.security.cert. |
| Certificate engineGetCertificate(String alias); |
| |
| /** |
| Gets entry creation date for the specified alias. |
| |
| @param alias the alias name |
| |
| @returns the entry creation date or null |
| */ |
| public abstract Date engineGetCreationDate(String alias); |
| |
| /** |
| Assign the key to the alias in the keystore, protecting it |
| with the given password. It will overwrite an existing |
| entry and if the key is a PrivateKey, also add the |
| certificate chain representing the corresponding public key. |
| |
| @param alias the alias name |
| @param key the key to add |
| @password the password to protect with |
| @param chain the certificate chain for the corresponding |
| public key |
| |
| @throws KeyStoreException if it fails |
| */ |
| public abstract void engineSetKeyEntry(String alias, Key key, |
| char[]password, |
| java.security.cert. |
| Certificate[]chain) throws |
| KeyStoreException; |
| |
| /** |
| Assign the key to the alias in the keystore. It will overwrite |
| an existing entry and if the key is a PrivateKey, also |
| add the certificate chain representing the corresponding |
| public key. |
| |
| @param alias the alias name |
| @param key the key to add |
| @param chain the certificate chain for the corresponding |
| public key |
| |
| @throws KeyStoreException if it fails |
| */ |
| public abstract void engineSetKeyEntry(String alias, byte[]key, |
| java.security.cert. |
| Certificate[]chain) throws |
| KeyStoreException; |
| |
| |
| /** |
| Assign the certificate to the alias in the keystore. It |
| will overwrite an existing entry. |
| |
| @param alias the alias name |
| @param cert the certificate to add |
| |
| @throws KeyStoreException if it fails |
| */ |
| public abstract void engineSetCertificateEntry(String alias, |
| java.security.cert. |
| Certificate cert) throws |
| KeyStoreException; |
| |
| /** |
| Deletes the entry for the specified entry. |
| |
| @param alias the alias name |
| |
| @throws KeyStoreException if it fails |
| */ |
| public abstract void engineDeleteEntry(String alias) |
| throws KeyStoreException; |
| |
| /** |
| Generates a list of all the aliases in the keystore. |
| |
| @return an Enumeration of the aliases |
| */ |
| public abstract Enumeration engineAliases(); |
| |
| /** |
| Determines if the keystore contains the specified alias. |
| |
| @param alias the alias name |
| |
| @return true if it contains the alias, false otherwise |
| */ |
| public abstract boolean engineContainsAlias(String alias); |
| |
| /** |
| Returns the number of entries in the keystore. |
| |
| @returns the number of keystore entries. |
| */ |
| public abstract int engineSize(); |
| |
| /** |
| Determines if the keystore contains a key entry for |
| the specified alias. |
| |
| @param alias the alias name |
| |
| @return true if it is a key entry, false otherwise |
| */ |
| public abstract boolean engineIsKeyEntry(String alias); |
| |
| /** |
| Determines if the keystore contains a certificate entry for |
| the specified alias. |
| |
| @param alias the alias name |
| |
| @return true if it is a certificate entry, false otherwise |
| */ |
| public abstract boolean engineIsCertificateEntry(String alias); |
| |
| /** |
| Determines if the keystore contains the specified certificate |
| entry and returns the alias. |
| |
| It checks every entry and for a key entry checks only the |
| first certificate in the chain. |
| |
| @param cert Certificate to look for |
| |
| @return alias of first matching certificate, null if it |
| does not exist. |
| */ |
| public abstract String engineGetCertificateAlias(java.security.cert. |
| Certificate cert); |
| |
| /** |
| Stores the keystore in the specified output stream and it |
| uses the specified key it keep it secure. |
| |
| @param stream the output stream to save the keystore to |
| @param password the password to protect the keystore integrity with |
| |
| @throws IOException if an I/O error occurs. |
| @throws NoSuchAlgorithmException the data integrity algorithm |
| used cannot be found. |
| @throws CertificateException if any certificates could not be |
| stored in the output stream. |
| */ |
| public abstract void engineStore(OutputStream stream, char[]password) |
| throws IOException, NoSuchAlgorithmException, CertificateException; |
| |
| |
| /** |
| Loads the keystore from the specified input stream and it |
| uses the specified password to check for integrity if supplied. |
| |
| @param stream the input stream to load the keystore from |
| @param password the password to check the keystore integrity with |
| |
| @throws IOException if an I/O error occurs. |
| @throws NoSuchAlgorithmException the data integrity algorithm |
| used cannot be found. |
| @throws CertificateException if any certificates could not be |
| stored in the output stream. |
| */ |
| public abstract void engineLoad(InputStream stream, char[]password) |
| throws IOException, NoSuchAlgorithmException, CertificateException; |
| } |