Example 41 with CryptoException
use of org.kse.crypto.CryptoException in project keystore-explorer by kaikramer.
the class X509CertUtil method convertCertificate.
/**
* Convert the supplied certificate object into an X509Certificate object.
*
* @param certIn
* The Certificate object
* @return The converted X509Certificate object
* @throws CryptoException
* A problem occurred during the conversion
*/
public static X509Certificate convertCertificate(Certificate certIn) throws CryptoException {
try {
CertificateFactory cf = CertificateFactory.getInstance(X509_CERT_TYPE, BOUNCY_CASTLE.jce());
ByteArrayInputStream bais = new ByteArrayInputStream(certIn.getEncoded());
return (X509Certificate) cf.generateCertificate(bais);
} catch (CertificateException | NoSuchProviderException e) {
throw new CryptoException(res.getString("NoConvertCertificate.exception.message"), e);
}
}
Also used :
ByteArrayInputStream(java.io.ByteArrayInputStream)
CertificateException(java.security.cert.CertificateException)
NoSuchProviderException(java.security.NoSuchProviderException)
CryptoException(org.kse.crypto.CryptoException)
CertificateFactory(java.security.cert.CertificateFactory)
X509Certificate(java.security.cert.X509Certificate)
Example 42 with CryptoException
use of org.kse.crypto.CryptoException in project keystore-explorer by kaikramer.
the class X509CertificateGenerator method generateVersion1.
private X509Certificate generateVersion1(X500Name subject, X500Name issuer, Date validityStart, Date validityEnd, PublicKey publicKey, PrivateKey privateKey, SignatureType signatureType, BigInteger serialNumber) throws CryptoException {
Date notBefore = validityStart == null ? new Date() : validityStart;
Date notAfter = validityEnd == null ? new Date(notBefore.getTime() + TimeUnit.DAYS.toMillis(365)) : validityEnd;
JcaX509v1CertificateBuilder certBuilder = new JcaX509v1CertificateBuilder(issuer, serialNumber, notBefore, notAfter, subject, publicKey);
try {
ContentSigner certSigner = new JcaContentSignerBuilder(signatureType.jce()).setProvider("BC").build(privateKey);
return new JcaX509CertificateConverter().setProvider("BC").getCertificate(certBuilder.build(certSigner));
} catch (CertificateException | IllegalStateException | OperatorCreationException ex) {
throw new CryptoException(res.getString("CertificateGenFailed.exception.message"), ex);
}
}
Also used :
JcaContentSignerBuilder(org.bouncycastle.operator.jcajce.JcaContentSignerBuilder)
JcaX509CertificateConverter(org.bouncycastle.cert.jcajce.JcaX509CertificateConverter)
ContentSigner(org.bouncycastle.operator.ContentSigner)
CertificateException(java.security.cert.CertificateException)
OperatorCreationException(org.bouncycastle.operator.OperatorCreationException)
CryptoException(org.kse.crypto.CryptoException)
Date(java.util.Date)
JcaX509v1CertificateBuilder(org.bouncycastle.cert.jcajce.JcaX509v1CertificateBuilder)
Example 43 with CryptoException
use of org.kse.crypto.CryptoException in project keystore-explorer by kaikramer.
the class JKeyIdentifier method editKeyIdentifier.
private void editKeyIdentifier() {
Container container = getTopLevelAncestor();
try {
DKeyIdentifierChooser dKeyIdentifierChooser = null;
if (container instanceof JDialog) {
dKeyIdentifierChooser = new DKeyIdentifierChooser((JDialog) container, title, publicKey, keyIdentifier);
dKeyIdentifierChooser.setLocationRelativeTo(container);
dKeyIdentifierChooser.setVisible(true);
} else if (container instanceof JFrame) {
dKeyIdentifierChooser = new DKeyIdentifierChooser((JFrame) container, title, publicKey, keyIdentifier);
dKeyIdentifierChooser.setLocationRelativeTo(container);
dKeyIdentifierChooser.setVisible(true);
}
byte[] newKeyIdentifier = dKeyIdentifierChooser.getKeyIdentifier();
if (newKeyIdentifier == null) {
return;
}
setKeyIdentifier(newKeyIdentifier);
} catch (CryptoException ex) {
DError dError = null;
if (container instanceof JDialog) {
dError = new DError((JDialog) container, ex);
} else {
dError = new DError((JFrame) container, ex);
}
dError.setLocationRelativeTo(container);
dError.setVisible(true);
}
}
Also used :
Container(java.awt.Container)
JFrame(javax.swing.JFrame)
CryptoException(org.kse.crypto.CryptoException)
JDialog(javax.swing.JDialog)
DError(org.kse.gui.error.DError)
Example 44 with CryptoException
use of org.kse.crypto.CryptoException in project keystore-explorer by kaikramer.
the class GenerateCsrAction method doAction.
/**
* Do action.
*/
@Override
protected void doAction() {
File csrFile = null;
FileOutputStream fos = null;
try {
KeyStoreHistory history = kseFrame.getActiveKeyStoreHistory();
KeyStoreState currentState = history.getCurrentState();
Provider provider = history.getExplicitProvider();
String alias = kseFrame.getSelectedEntryAlias();
Password password = getEntryPassword(alias, currentState);
if (password == null) {
return;
}
KeyStore keyStore = currentState.getKeyStore();
PrivateKey privateKey = (PrivateKey) keyStore.getKey(alias, password.toCharArray());
String keyPairAlg = privateKey.getAlgorithm();
KeyPairType keyPairType = KeyPairUtil.getKeyPairType(privateKey);
if (keyPairType == null) {
throw new CryptoException(MessageFormat.format(res.getString("GenerateCsrAction.NoCsrForKeyPairAlg.message"), keyPairAlg));
}
// determine dir of current keystore as proposal for CSR file location
String path = CurrentDirectory.get().getAbsolutePath();
File keyStoreFile = history.getFile();
if (keyStoreFile != null) {
path = keyStoreFile.getAbsoluteFile().getParent();
}
DGenerateCsr dGenerateCsr = new DGenerateCsr(frame, alias, privateKey, keyPairType, path, provider);
dGenerateCsr.setLocationRelativeTo(frame);
dGenerateCsr.setVisible(true);
if (!dGenerateCsr.generateSelected()) {
return;
}
CsrType format = dGenerateCsr.getFormat();
SignatureType signatureType = dGenerateCsr.getSignatureType();
String challenge = dGenerateCsr.getChallenge();
String unstructuredName = dGenerateCsr.getUnstructuredName();
boolean useCertificateExtensions = dGenerateCsr.isAddExtensionsWanted();
csrFile = dGenerateCsr.getCsrFile();
X509Certificate firstCertInChain = X509CertUtil.orderX509CertChain(X509CertUtil.convertCertificates(keyStore.getCertificateChain(alias)))[0];
fos = new FileOutputStream(csrFile);
if (format == CsrType.PKCS10) {
String csr = Pkcs10Util.getCsrEncodedDerPem(Pkcs10Util.generateCsr(firstCertInChain, privateKey, signatureType, challenge, unstructuredName, useCertificateExtensions, provider));
fos.write(csr.getBytes());
} else {
SpkacSubject subject = new SpkacSubject(X500NameUtils.x500PrincipalToX500Name(firstCertInChain.getSubjectX500Principal()));
PublicKey publicKey = firstCertInChain.getPublicKey();
// TODO handle other providers (PKCS11 etc)
Spkac spkac = new Spkac(challenge, signatureType, subject, publicKey, privateKey);
spkac.output(fos);
}
} catch (FileNotFoundException ex) {
JOptionPane.showMessageDialog(frame, MessageFormat.format(res.getString("GenerateCsrAction.NoWriteFile.message"), csrFile), res.getString("GenerateCsrAction.GenerateCsr.Title"), JOptionPane.WARNING_MESSAGE);
return;
} catch (Exception ex) {
DError.displayError(frame, ex);
return;
} finally {
IOUtils.closeQuietly(fos);
}
JOptionPane.showMessageDialog(frame, res.getString("GenerateCsrAction.CsrGenerationSuccessful.message"), res.getString("GenerateCsrAction.GenerateCsr.Title"), JOptionPane.INFORMATION_MESSAGE);
}
Also used :
KeyStoreState(org.kse.utilities.history.KeyStoreState)
SpkacSubject(org.kse.crypto.csr.spkac.SpkacSubject)
KeyStoreHistory(org.kse.utilities.history.KeyStoreHistory)
PrivateKey(java.security.PrivateKey)
PublicKey(java.security.PublicKey)
FileNotFoundException(java.io.FileNotFoundException)
SignatureType(org.kse.crypto.signing.SignatureType)
KeyStore(java.security.KeyStore)
X509Certificate(java.security.cert.X509Certificate)
CryptoException(org.kse.crypto.CryptoException)
FileNotFoundException(java.io.FileNotFoundException)
Provider(java.security.Provider)
CsrType(org.kse.crypto.csr.CsrType)
Spkac(org.kse.crypto.csr.spkac.Spkac)
FileOutputStream(java.io.FileOutputStream)
DGenerateCsr(org.kse.gui.dialogs.DGenerateCsr)
KeyPairType(org.kse.crypto.keypair.KeyPairType)
CryptoException(org.kse.crypto.CryptoException)
File(java.io.File)
Password(org.kse.crypto.Password)
Example 45 with CryptoException
use of org.kse.crypto.CryptoException in project keystore-explorer by kaikramer.
the class ExamineFileAction method openCsr.
private void openCsr(File file, CryptoFileType fileType) throws CryptoException {
if (file == null) {
return;
}
PKCS10CertificationRequest pkcs10Csr = null;
Spkac spkacCsr = null;
try {
if (fileType == CryptoFileType.PKCS10_CSR) {
pkcs10Csr = Pkcs10Util.loadCsr(new FileInputStream(file));
} else if (fileType == CryptoFileType.SPKAC_CSR) {
spkacCsr = new Spkac(new FileInputStream(file));
}
} catch (Exception ex) {
String problemStr = MessageFormat.format(res.getString("ExamineFileAction.NoOpenCsr.Problem"), file.getName());
String[] causes = new String[] { res.getString("ExamineFileAction.NotCsr.Cause"), res.getString("ExamineFileAction.CorruptedCsr.Cause") };
Problem problem = new Problem(problemStr, causes, ex);
DProblem dProblem = new DProblem(frame, res.getString("ExamineFileAction.ProblemOpeningCsr.Title"), problem);
dProblem.setLocationRelativeTo(frame);
dProblem.setVisible(true);
return;
}
if (pkcs10Csr != null) {
DViewCsr dViewCsr = new DViewCsr(frame, MessageFormat.format(res.getString("ExamineFileAction.CsrDetailsFile.Title"), file.getName()), pkcs10Csr);
dViewCsr.setLocationRelativeTo(frame);
dViewCsr.setVisible(true);
} else {
DViewCsr dViewCsr = new DViewCsr(frame, MessageFormat.format(res.getString("ExamineFileAction.CsrDetailsFile.Title"), file.getName()), spkacCsr);
dViewCsr.setLocationRelativeTo(frame);
dViewCsr.setVisible(true);
}
}
Also used :
PKCS10CertificationRequest(org.bouncycastle.pkcs.PKCS10CertificationRequest)
DViewCsr(org.kse.gui.dialogs.DViewCsr)
Spkac(org.kse.crypto.csr.spkac.Spkac)
Problem(org.kse.gui.error.Problem)
DProblem(org.kse.gui.error.DProblem)
FileInputStream(java.io.FileInputStream)
CryptoException(org.kse.crypto.CryptoException)
IOException(java.io.IOException)
FileNotFoundException(java.io.FileNotFoundException)
DProblem(org.kse.gui.error.DProblem)
Aggregations
CryptoException (org.kse.crypto.CryptoException)80
GeneralSecurityException (java.security.GeneralSecurityException)22
IOException (java.io.IOException)21
X509Certificate (java.security.cert.X509Certificate)21
KeyStore (java.security.KeyStore)16
KeyStoreException (java.security.KeyStoreException)13
BigInteger (java.math.BigInteger)11
DError (org.kse.gui.error.DError)10
ByteArrayInputStream (java.io.ByteArrayInputStream)9
File (java.io.File)9
DefaultMutableTreeNode (javax.swing.tree.DefaultMutableTreeNode)9
ByteBuffer (java.nio.ByteBuffer)8
CertificateException (java.security.cert.CertificateException)8
PrivateKey (java.security.PrivateKey)7
KeyFactory (java.security.KeyFactory)6
NoSuchAlgorithmException (java.security.NoSuchAlgorithmException)6
CertificateFactory (java.security.cert.CertificateFactory)6
DSAPrivateKey (java.security.interfaces.DSAPrivateKey)6
RSAPrivateCrtKey (java.security.interfaces.RSAPrivateCrtKey)6
Cipher (javax.crypto.Cipher)6
