KeyUtil (Graylog 4.1.1 API)

java.lang.Object
- org.graylog2.plugin.inputs.transports.util.KeyUtil

```
public class KeyUtil
extends Object
```

Constructor Summary

Constructors
Constructor and Description

KeyUtil()

Constructors
Constructor and Description
`KeyUtil()`

Method Summary

All Methods Static Methods Concrete Methods
Modifier and Type	Method and Description
`static File`	`generatePKCS8FromPrivateKey(Path tmpDir, char[] password, PrivateKey key)` Build a password-encrypted PKCS8 private key and write it to a PEM file in the temp directory.
`static KeyManager[]`	`initKeyStore(File tlsKeyFile, File tlsCertFile, String tlsKeyPassword)`
`static Collection<? extends Certificate>`	`loadCertificates(Path certificatePath)`
`protected static PrivateKey`	`loadPrivateKey(File file, String password)`
`static X509Certificate[]`	`loadX509Certificates(Path certificatePath)`
`static PrivateKey`	`privateKeyFromFile(String password, File keyFile)` Obtain a private key from a PKS8 PEM file, which is optionally password-protected.
`static X509Certificate`	`readCertificate(Path path)`
`static PrivateKey`	`readPrivateKey(Path path)`

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail
- KeyUtil
```
public KeyUtil()
```

Method Detail

loadX509Certificates

public static X509Certificate[] loadX509Certificates(Path certificatePath)
                                              throws CertificateException,
                                                     IOException

Throws:: CertificateException; IOException

loadCertificates

public static Collection<? extends Certificate> loadCertificates(Path certificatePath)
                                                          throws CertificateException,
                                                                 IOException

Throws:: CertificateException; IOException

initKeyStore

public static KeyManager[] initKeyStore(File tlsKeyFile,
                                        File tlsCertFile,
                                        String tlsKeyPassword)
                                 throws IOException,
                                        GeneralSecurityException

Throws:: IOException; GeneralSecurityException

loadPrivateKey

protected static PrivateKey loadPrivateKey(File file,
                                           String password)
                                    throws IOException,
                                           GeneralSecurityException

Throws:: IOException; GeneralSecurityException

readCertificate

public static X509Certificate readCertificate(Path path)
                                       throws IOException

Throws:: IOException

readPrivateKey

public static PrivateKey readPrivateKey(Path path)
                                 throws IOException

Throws:: IOException

generatePKCS8FromPrivateKey
```
public static File generatePKCS8FromPrivateKey(Path tmpDir,
                                               char[] password,
                                               PrivateKey key)
                                        throws GeneralSecurityException
```
Build a password-encrypted PKCS8 private key and write it to a PEM file in the temp directory. Caller is responsible for ensuring that the temp directory is writable. The file will be deleted when the VM exits.

Parameters:

tmpDir - path to directory in which to create the

password - to protect the key

key - encrypt this key

Returns:

PEM file

Throws:

GeneralSecurityException

privateKeyFromFile

public static PrivateKey privateKeyFromFile(String password,
                                            File keyFile)
                                     throws IOException,
                                            org.bouncycastle.pkcs.PKCSException,
                                            org.bouncycastle.operator.OperatorCreationException

Obtain a private key from a PKS8 PEM file, which is optionally password-protected.

Parameters:: password - password to decrypt the file - it may be null or empty in case of an unencrypted file; keyFile - the key file
Returns:: the corresponding private key
Throws:: IOException; org.bouncycastle.pkcs.PKCSException; org.bouncycastle.operator.OperatorCreationException

Class KeyUtil

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Constructor Detail

KeyUtil

Method Detail

loadX509Certificates

loadCertificates

initKeyStore

loadPrivateKey

readCertificate

readPrivateKey

generatePKCS8FromPrivateKey

privateKeyFromFile