Package org.graylog2.plugin.inputs.transports.util

Class KeyUtil

java.lang.Object

org.graylog2.plugin.inputs.transports.util.KeyUtil

public class KeyUtil
extends Object

Constructor Summary

Constructors

Constructor	Description
KeyUtil()

Method Summary

Modifier and Type	Method	Description
static File	generatePKCS8FromPrivateKey(Path tmpDir, char[] password, PrivateKey key)	Build a password-encrypted PKCS8 private key and write it to a PEM file in the temp directory.
static KeyManager[]	initKeyStore(File tlsKeyFile, File tlsCertFile, String tlsKeyPassword)
static Collection<? extends Certificate>	loadCertificates(Path certificatePath)
protected static PrivateKey	loadPrivateKey(File file, String password)
static X509Certificate[]	loadX509Certificates(Path certificatePath)
static PrivateKey	privateKeyFromFile(String password, File keyFile)	Obtain a private key from a PKS8 PEM file, which is optionally password-protected.
static X509Certificate	readCertificate(Path path)
static PrivateKey	readPrivateKey(Path path)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

KeyUtil

public KeyUtil()

Method Details

loadX509Certificates

public static X509Certificate[] loadX509Certificates(Path certificatePath)
                                              throws CertificateException,
IOException

Throws:

CertificateException

IOException

loadCertificates

public static Collection<? extends Certificate> loadCertificates(Path certificatePath)
                                                          throws CertificateException,
IOException

Throws:

CertificateException

IOException

initKeyStore

public static KeyManager[] initKeyStore(File tlsKeyFile,
 File tlsCertFile,
 String tlsKeyPassword)
                                 throws IOException,
GeneralSecurityException

Throws:

IOException

GeneralSecurityException

loadPrivateKey

protected static PrivateKey loadPrivateKey(File file,
 String password)
                                    throws IOException,
GeneralSecurityException

Throws:

IOException

GeneralSecurityException

readCertificate

public static X509Certificate readCertificate(Path path)
                                       throws IOException

Throws:

IOException

readPrivateKey

public static PrivateKey readPrivateKey(Path path)
                                 throws IOException

Throws:

IOException

generatePKCS8FromPrivateKey

public static File generatePKCS8FromPrivateKey(Path tmpDir,
 char[] password,
 PrivateKey key)
                                        throws GeneralSecurityException

Build a password-encrypted PKCS8 private key and write it to a PEM file in the temp directory. Caller is responsible for ensuring that the temp directory is writable. The file will be deleted when the VM exits.

Parameters:

tmpDir - path to directory in which to create the

password - to protect the key

key - encrypt this key

Returns:

PEM file

Throws:

GeneralSecurityException

privateKeyFromFile

public static PrivateKey privateKeyFromFile(String password,
 File keyFile)
                                     throws IOException,
org.bouncycastle.pkcs.PKCSException,
org.bouncycastle.operator.OperatorCreationException

Obtain a private key from a PKS8 PEM file, which is optionally password-protected.

Parameters:

password - password to decrypt the file - it may be null or empty in case of an unencrypted file

keyFile - the key file

Returns:

the corresponding private key

Throws:

IOException

org.bouncycastle.pkcs.PKCSException

org.bouncycastle.operator.OperatorCreationException