Class CertUtil


  • public class CertUtil
    extends java.lang.Object
    Deprecated.
    Use the various utils that are used here.
    Contains various security-related utility methods.
    • Constructor Summary

      Constructors 
      Constructor Description
      CertUtil()
      Deprecated.
       
    • Method Summary

      All Methods Static Methods Concrete Methods Deprecated Methods 
      Modifier and Type Method Description
      static java.lang.String getProxyTypeAsString​(int proxyType)
      Deprecated.
      Returns a string description of a specified proxy type.
      static void init()
      Deprecated.
      A no-op function that can be used to force the class to load and initialize.
      static void installSecureRandomProvider()
      Deprecated.
      Installs SecureRandom provider.
      static boolean isGsi2Enabled()
      Deprecated.
      Checks if GSI-2 mode is enabled.
      static boolean isGsi2Proxy​(int certType)
      Deprecated.
      Determines if a specified certificate type indicates a GSI-2 proxy certificate.
      static boolean isGsi3Enabled()
      Deprecated.
      Checks if GSI-3 mode is enabled.
      static boolean isGsi3Proxy​(int certType)
      Deprecated.
      Determines if a specified certificate type indicates a GSI-3 proxy certificate.
      static boolean isGsi4Proxy​(int certType)
      Deprecated.
      Determines if a specified certificate type indicates a GSI-4 proxy certificate.
      static boolean isImpersonationProxy​(int certType)
      Deprecated.
      Determines if a specified certificate type indicates a GSI-2 or GSI-3 or GSI-4 impersonation proxy certificate.
      static boolean isIndependentProxy​(int certType)
      Deprecated.
      Determines if a specified certificate type indicates a GSI-3 or GS-4 limited proxy certificate.
      static boolean isLimitedProxy​(int certType)
      Deprecated.
      Determines if a specified certificate type indicates a GSI-2 or GSI-3 or GSI=4 limited proxy certificate.
      static boolean isProxy​(int certType)
      Deprecated.
      Determines if a specified certificate type indicates a GSI-2, GSI-3 or GSI-4proxy certificate.
      static java.security.cert.X509Certificate loadCertificate​(java.io.InputStream in)
      Deprecated.
      Loads a X509 certificate from the specified input stream.
      static java.security.cert.X509Certificate loadCertificate​(java.lang.String file)
      Deprecated.
      Loads an X.509 certificate from the specified file.
      static java.security.cert.X509Certificate[] loadCertificates​(java.lang.String file)
      Deprecated.
      Loads multiple X.509 certificates from the specified file.
      static java.security.cert.X509CRL loadCrl​(java.io.InputStream in)
      Deprecated.
       
      static java.security.cert.X509CRL loadCrl​(java.lang.String file)
      Deprecated.
       
      static java.security.cert.X509Certificate readCertificate​(java.io.BufferedReader reader)
      Deprecated.
      Loads a X.509 certificate from the specified reader.
      static void setProvider​(java.lang.String providerName)
      Deprecated.
      Sets a provider name to use for loading certificates and for generating key pairs.
      static java.lang.String toGlobusID​(java.lang.String dn)
      Deprecated.
      Converts DN of the form "CN=A, OU=B, O=C" into Globus format "/CN=A/OU=B/O=C".
      This function might return incorrect Globus-formatted ID when one of the RDNs in the DN contains commas.
      static java.lang.String toGlobusID​(java.lang.String dn, boolean noreverse)
      Deprecated.
      Converts DN of the form "CN=A, OU=B, O=C" into Globus format "/CN=A/OU=B/O=C" or "/O=C/OU=B/CN=A" depending on the noreverse option.
      static java.lang.String toGlobusID​(java.security.Principal name)
      Deprecated.
      Converts the specified principal into Globus format.
      static void writeCertificate​(java.io.OutputStream out, java.security.cert.X509Certificate cert)
      Deprecated.
      Writes certificate to the specified output stream in PEM format.
      • Methods inherited from class java.lang.Object

        clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
    • Constructor Detail

      • CertUtil

        public CertUtil()
        Deprecated.
    • Method Detail

      • init

        public static void init()
        Deprecated.
        A no-op function that can be used to force the class to load and initialize.
      • installSecureRandomProvider

        public static void installSecureRandomProvider()
        Deprecated.
        Installs SecureRandom provider. This function is automatically called when this class is loaded.
      • setProvider

        public static void setProvider​(java.lang.String providerName)
        Deprecated.
        Sets a provider name to use for loading certificates and for generating key pairs.
        Parameters:
        providerName - provider name to use.
      • loadCertificate

        public static java.security.cert.X509Certificate loadCertificate​(java.io.InputStream in)
                                                                  throws java.security.GeneralSecurityException
        Deprecated.
        Loads a X509 certificate from the specified input stream. Input stream must contain DER-encoded certificate.
        Parameters:
        in - the input stream to read the certificate from.
        Returns:
        X509Certificate the loaded certificate.
        Throws:
        java.security.GeneralSecurityException - if certificate failed to load.
      • loadCertificate

        public static java.security.cert.X509Certificate loadCertificate​(java.lang.String file)
                                                                  throws java.io.IOException,
                                                                         java.security.GeneralSecurityException
        Deprecated.
        Loads an X.509 certificate from the specified file. The certificate file must be in PEM/Base64 format and start with "BEGIN CERTIFICATE" and end with "END CERTIFICATE" line.
        Parameters:
        file - the file to load the certificate from.
        Returns:
        java.security.cert.X509Certificate the loaded certificate.
        Throws:
        java.io.IOException - if I/O error occurs
        java.security.GeneralSecurityException - if security problems occurs.
      • loadCertificates

        public static java.security.cert.X509Certificate[] loadCertificates​(java.lang.String file)
                                                                     throws java.io.IOException,
                                                                            java.security.GeneralSecurityException
        Deprecated.
        Loads multiple X.509 certificates from the specified file. Each certificate must be in PEM/Base64 format and start with "BEGIN CERTIFICATE" and end with "END CERTIFICATE" line.
        Parameters:
        file - the certificate file to load the certificate from.
        Returns:
        an array of certificates loaded from the file.
        Throws:
        java.io.IOException - if I/O error occurs
        java.security.GeneralSecurityException - if security problems occurs.
      • readCertificate

        public static java.security.cert.X509Certificate readCertificate​(java.io.BufferedReader reader)
                                                                  throws java.io.IOException,
                                                                         java.security.GeneralSecurityException
        Deprecated.
        Loads a X.509 certificate from the specified reader. The certificate contents must start with "BEGIN CERTIFICATE" line and end with "END CERTIFICATE" line, and be in PEM/Base64 format. This function does not close the input stream.
        Parameters:
        reader - the stream from which load the certificate.
        Returns:
        the loaded certificate or null if there was no certificate in the stream or the stream is closed.
        Throws:
        java.io.IOException - if I/O error occurs
        java.security.GeneralSecurityException - if security problems occurs.
      • writeCertificate

        public static void writeCertificate​(java.io.OutputStream out,
                                            java.security.cert.X509Certificate cert)
                                     throws java.io.IOException,
                                            java.security.cert.CertificateEncodingException
        Deprecated.
        Writes certificate to the specified output stream in PEM format.
        Throws:
        java.io.IOException
        java.security.cert.CertificateEncodingException
      • toGlobusID

        public static java.lang.String toGlobusID​(java.lang.String dn)
        Deprecated.
        Converts DN of the form "CN=A, OU=B, O=C" into Globus format "/CN=A/OU=B/O=C".
        This function might return incorrect Globus-formatted ID when one of the RDNs in the DN contains commas.
        Parameters:
        dn - the DN to convert to Globus format.
        Returns:
        the converted DN in Globus format.
        See Also:
        toGlobusID(String, boolean)
      • toGlobusID

        public static java.lang.String toGlobusID​(java.lang.String dn,
                                                  boolean noreverse)
        Deprecated.
        Converts DN of the form "CN=A, OU=B, O=C" into Globus format "/CN=A/OU=B/O=C" or "/O=C/OU=B/CN=A" depending on the noreverse option. If noreverse is true the order of the DN components is not reveresed - "/CN=A/OU=B/O=C" is returned. If noreverse is false, the order of the DN components is reversed - "/O=C/OU=B/CN=A" is returned.
        This function might return incorrect Globus-formatted ID when one of the RDNs in the DN contains commas.
        Parameters:
        dn - the DN to convert to Globus format.
        noreverse - the direction of the conversion.
        Returns:
        the converted DN in Globus format.
      • toGlobusID

        public static java.lang.String toGlobusID​(java.security.Principal name)
        Deprecated.
        Converts the specified principal into Globus format. If the principal is of unrecognized type a simple string-based conversion is made using the toGlobusID() function.
        Parameters:
        name - the principal to convert to Globus format.
        Returns:
        the converted DN in Globus format.
        See Also:
        toGlobusID(String)
      • isProxy

        public static boolean isProxy​(int certType)
        Deprecated.
        Determines if a specified certificate type indicates a GSI-2, GSI-3 or GSI-4proxy certificate.
        Parameters:
        certType - the certificate type to check.
        Returns:
        true if certType is a GSI-2 or GSI-3 or GSI-4 proxy, false otherwise.
      • isGsi4Proxy

        public static boolean isGsi4Proxy​(int certType)
        Deprecated.
        Determines if a specified certificate type indicates a GSI-4 proxy certificate.
        Parameters:
        certType - the certificate type to check.
        Returns:
        true if certType is a GSI-4 proxy, false otherwise.
      • isGsi3Proxy

        public static boolean isGsi3Proxy​(int certType)
        Deprecated.
        Determines if a specified certificate type indicates a GSI-3 proxy certificate.
        Parameters:
        certType - the certificate type to check.
        Returns:
        true if certType is a GSI-3 proxy, false otherwise.
      • isGsi2Proxy

        public static boolean isGsi2Proxy​(int certType)
        Deprecated.
        Determines if a specified certificate type indicates a GSI-2 proxy certificate.
        Parameters:
        certType - the certificate type to check.
        Returns:
        true if certType is a GSI-2 proxy, false otherwise.
      • isLimitedProxy

        public static boolean isLimitedProxy​(int certType)
        Deprecated.
        Determines if a specified certificate type indicates a GSI-2 or GSI-3 or GSI=4 limited proxy certificate.
        Parameters:
        certType - the certificate type to check.
        Returns:
        true if certType is a GSI-2 or GSI-3 or GSI-4 limited proxy, false otherwise.
      • isIndependentProxy

        public static boolean isIndependentProxy​(int certType)
        Deprecated.
        Determines if a specified certificate type indicates a GSI-3 or GS-4 limited proxy certificate.
        Parameters:
        certType - the certificate type to check.
        Returns:
        true if certType is a GSI-3 or GSI-4 independent proxy, false otherwise.
      • isImpersonationProxy

        public static boolean isImpersonationProxy​(int certType)
        Deprecated.
        Determines if a specified certificate type indicates a GSI-2 or GSI-3 or GSI-4 impersonation proxy certificate.
        Parameters:
        certType - the certificate type to check.
        Returns:
        true if certType is a GSI-2 or GSI-3 or GSI-4 impersonation proxy, false otherwise.
      • getProxyTypeAsString

        public static java.lang.String getProxyTypeAsString​(int proxyType)
        Deprecated.
        Returns a string description of a specified proxy type.
        Parameters:
        proxyType - the proxy type to get the string description of.
        Returns:
        the string description of the proxy type.
      • isGsi3Enabled

        public static boolean isGsi3Enabled()
        Deprecated.
        Checks if GSI-3 mode is enabled.
        Returns:
        true if "org.globus.gsi.version" system property is set to "3". Otherwise, false.
      • isGsi2Enabled

        public static boolean isGsi2Enabled()
        Deprecated.
        Checks if GSI-2 mode is enabled.
        Returns:
        true if "org.globus.gsi.version" system property is set to "2". Otherwise, false.
      • loadCrl

        public static java.security.cert.X509CRL loadCrl​(java.lang.String file)
                                                  throws java.io.IOException,
                                                         java.security.GeneralSecurityException
        Deprecated.
        Throws:
        java.io.IOException
        java.security.GeneralSecurityException
      • loadCrl

        public static java.security.cert.X509CRL loadCrl​(java.io.InputStream in)
                                                  throws java.security.GeneralSecurityException
        Deprecated.
        Throws:
        java.security.GeneralSecurityException