com.netscape.certsrv.util

Class NSSCryptoProvider

java.lang.Object

com.netscape.certsrv.util.CryptoProvider

com.netscape.certsrv.util.NSSCryptoProvider

public class NSSCryptoProvider
extends CryptoProvider

Constructor Summary

Constructors

Constructor and Description
NSSCryptoProvider(ClientConfig config)

Method Summary

Modifier and Type	Method and Description
byte[]	createPKIArchiveOptions(java.lang.String transportCert, org.mozilla.jss.crypto.SymmetricKey secret, java.lang.String passphrase, java.lang.String keyAlgorithm, int symKeySize, byte[] nonceData)
org.mozilla.jss.crypto.SymmetricKey	generateSessionKey()
org.mozilla.jss.crypto.SymmetricKey	generateSymmetricKey(java.lang.String keyAlgorithm, int keySize)
org.mozilla.jss.crypto.EncryptionAlgorithm	getEncryptionAlgorithm(java.lang.String encryptionAlgorithm)
org.mozilla.jss.crypto.KeyGenAlgorithm	getKeyGenAlgorithm(java.lang.String keyAlgorithm)
org.mozilla.jss.CryptoManager	getManager()
org.mozilla.jss.crypto.CryptoToken	getToken()
void	initialize() Initializes the NSS DB.
void	setManager(org.mozilla.jss.CryptoManager manager)
void	setToken(org.mozilla.jss.crypto.CryptoToken token)
byte[]	unwrapWithPassphrase(byte[] wrappedRecoveredKey, java.lang.String recoveryPassphrase)
byte[]	unwrapWithSessionKey(byte[] wrappedRecoveredKey, org.mozilla.jss.crypto.SymmetricKey recoveryKey, java.lang.String encryptionAlgorithm, byte[] nonceData)
byte[]	wrapSessionKeyWithTransportCert(org.mozilla.jss.crypto.SymmetricKey sessionKey, java.lang.String transportCert)
byte[]	wrapWithSessionKey(java.lang.String passphrase, byte[] iv, org.mozilla.jss.crypto.SymmetricKey key, java.lang.String encryptionAlgorithm)
byte[]	wrapWithSessionKey(org.mozilla.jss.crypto.SymmetricKey secret, org.mozilla.jss.crypto.SymmetricKey sessionKey, byte[] iv)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

NSSCryptoProvider

public NSSCryptoProvider(ClientConfig config)
                  throws java.lang.Exception

Throws:

java.lang.Exception

Method Detail

getManager

public org.mozilla.jss.CryptoManager getManager()

setManager

public void setManager(org.mozilla.jss.CryptoManager manager)

getToken

public org.mozilla.jss.crypto.CryptoToken getToken()

setToken

public void setToken(org.mozilla.jss.crypto.CryptoToken token)

initialize

public void initialize()
                throws java.lang.Exception

Initializes the NSS DB.

Specified by:

initialize in class CryptoProvider

Throws:

java.lang.Exception

generateSymmetricKey

public org.mozilla.jss.crypto.SymmetricKey generateSymmetricKey(java.lang.String keyAlgorithm,
                                                                int keySize)
                                                         throws java.lang.Exception

Specified by:

generateSymmetricKey in class CryptoProvider

Throws:

java.lang.Exception

generateSessionKey

public org.mozilla.jss.crypto.SymmetricKey generateSessionKey()
                                                       throws java.lang.Exception

Specified by:

generateSessionKey in class CryptoProvider

Throws:

java.lang.Exception

wrapSessionKeyWithTransportCert

public byte[] wrapSessionKeyWithTransportCert(org.mozilla.jss.crypto.SymmetricKey sessionKey,
                                              java.lang.String transportCert)
                                       throws java.lang.Exception

Specified by:

wrapSessionKeyWithTransportCert in class CryptoProvider

Throws:

java.lang.Exception

wrapWithSessionKey

public byte[] wrapWithSessionKey(java.lang.String passphrase,
                                 byte[] iv,
                                 org.mozilla.jss.crypto.SymmetricKey key,
                                 java.lang.String encryptionAlgorithm)
                          throws java.lang.Exception

Specified by:

wrapWithSessionKey in class CryptoProvider

Throws:

java.lang.Exception

unwrapWithSessionKey

public byte[] unwrapWithSessionKey(byte[] wrappedRecoveredKey,
                                   org.mozilla.jss.crypto.SymmetricKey recoveryKey,
                                   java.lang.String encryptionAlgorithm,
                                   byte[] nonceData)
                            throws java.lang.Exception

Specified by:

unwrapWithSessionKey in class CryptoProvider

Throws:

java.lang.Exception

unwrapWithPassphrase

public byte[] unwrapWithPassphrase(byte[] wrappedRecoveredKey,
                                   java.lang.String recoveryPassphrase)
                            throws java.lang.Exception

Specified by:

unwrapWithPassphrase in class CryptoProvider

Throws:

java.lang.Exception

getKeyGenAlgorithm

public org.mozilla.jss.crypto.KeyGenAlgorithm getKeyGenAlgorithm(java.lang.String keyAlgorithm)
                                                          throws java.security.NoSuchAlgorithmException

Throws:

java.security.NoSuchAlgorithmException

getEncryptionAlgorithm

public org.mozilla.jss.crypto.EncryptionAlgorithm getEncryptionAlgorithm(java.lang.String encryptionAlgorithm)
                                                                  throws java.security.NoSuchAlgorithmException

Throws:

java.security.NoSuchAlgorithmException

createPKIArchiveOptions

public byte[] createPKIArchiveOptions(java.lang.String transportCert,
                                      org.mozilla.jss.crypto.SymmetricKey secret,
                                      java.lang.String passphrase,
                                      java.lang.String keyAlgorithm,
                                      int symKeySize,
                                      byte[] nonceData)
                               throws java.security.InvalidKeyException,
                                      java.security.cert.CertificateEncodingException,
                                      java.io.CharConversionException,
                                      java.security.NoSuchAlgorithmException,
                                      java.security.InvalidAlgorithmParameterException,
                                      java.lang.IllegalStateException,
                                      org.mozilla.jss.crypto.TokenException,
                                      java.io.IOException,
                                      org.mozilla.jss.crypto.IllegalBlockSizeException,
                                      org.mozilla.jss.crypto.BadPaddingException,
                                      org.mozilla.jss.asn1.InvalidBERException

Specified by:

createPKIArchiveOptions in class CryptoProvider

Throws:

java.security.InvalidKeyException

java.security.cert.CertificateEncodingException

java.io.CharConversionException

java.security.NoSuchAlgorithmException

java.security.InvalidAlgorithmParameterException

java.lang.IllegalStateException

org.mozilla.jss.crypto.TokenException

java.io.IOException

org.mozilla.jss.crypto.IllegalBlockSizeException

org.mozilla.jss.crypto.BadPaddingException

org.mozilla.jss.asn1.InvalidBERException

wrapWithSessionKey

public byte[] wrapWithSessionKey(org.mozilla.jss.crypto.SymmetricKey secret,
                                 org.mozilla.jss.crypto.SymmetricKey sessionKey,
                                 byte[] iv)
                          throws java.security.InvalidKeyException,
                                 java.security.NoSuchAlgorithmException,
                                 java.security.InvalidAlgorithmParameterException,
                                 org.mozilla.jss.crypto.TokenException

Specified by:

wrapWithSessionKey in class CryptoProvider

Throws:

java.security.InvalidKeyException

java.security.NoSuchAlgorithmException

java.security.InvalidAlgorithmParameterException

org.mozilla.jss.crypto.TokenException