ant-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "William Fitzgerald" <wfitzger...@tssg.org>
Subject RE: QUERY:Exporting a digital signature generated from genkey
Date Tue, 16 Nov 2004 09:00:50 GMT
Yes I have tried this (task exec) but unfortunatly I still run into problems
:(
to create a certificate for Susan, i do the following:

PROBLEM 1:
<exec dir="." command ="keytool -export -keystore susanstore -alias
signFiles -file SusanJ.cer"></exec>

but this is deprecated and I can't seem to work it for the executable
command!!!

     [exec] The command attribute is deprecated. Please use the executable
attribute and nested arg elements.
     [exec] Enter keystore password:
     [exec] *****************  WARNING WARNING WARNING  *****************
     [exec] * The integrity of the information stored in your keystore  *
     [exec] * has NOT been verified!  In order to verify its integrity, *
     [exec] * you must provide your keystore password.                  *
     [exec] *****************  WARNING WARNING WARNING  *****************
     [exec] Certificate stored in file <SusanJ.cer>

Also note that it asks for a password but the build never stops to allow me
to enter one. It still creates a certificate though so I guess its not a
huge problem.

PROBLEM 2:
now I want a build file to take susans certificate, add it to mystore and
then compare it to the signed jar etc.

<?xml version="1.0"?>
<project name ="digiver" default ="mystore">
<target name="mystore">
	<exec dir="./keys" command="keytool -import -alias susan -file
SusanJ.cer -keypass hello123 -keystore mystore -storepass hello123">
	</exec>
</target>
</project>

I again cannot say wheather I trust the certiciate I am adding to the
store!!!!!!!!!!!! This is because the build keeps running and does not stop
to allow me to say trust this cert. I also had a password (storepass)
problem but got around it by adding it to the build command, again a bad
idea!

mystore:
     [exec] The command attribute is deprecated. Please use the executable
attribute and nested arg elements.
     [exec] Owner: CN=tssg, OU=wit, O=research, C=ire
     [exec] Issuer: CN=tssg, OU=wit, O=research, C=ire
     [exec] Serial number: 4198bd59
     [exec] Valid from: Mon Nov 15 14:29:45 GMT 2004 until: Sun Feb 13
14:29:45 GMT 2005
     [exec] Certificate fingerprints:
     [exec] MD5:  96:E1:3E:09:07:D4:5C:EE:D6:02:B9:E0:AA:25:0A:9E
     [exec] SHA1:
68:D3:7D:D5:7D:81:07:5C:CD:A9:90:24:EF:E4:B9:4B:C9:21:E9:BE
     [exec] keytool error: java.lang.NullPointerException
     [exec] Trust this certificate? [no]:
     [exec] Result: 1
BUILD SUCCESSFUL


any ideas and points of direction are hugely welcomed,
regards,
Will.


-----Original Message-----
From: Igor A. Deruga [mailto:ingvarrr@hotbox.ru]
Sent: 16 November 2004 12:30
To: Ant Users List
Subject: Re: QUERY:Exporting a digital signature generated from genkey


Hello, Will!

Unfortunately I don't know the task to do the creation of certificate but if
you can do it from the command line, then why can't you use the <exec> task?

Sincerely
	Igor

> (4)keytool -export -keystore susanstore -alias signFiles -file
> SusanJones.cer
>
> I can do the first 3 steps in an ant build.xml but I cannot do the
creation
> of a certificate
> 	<target name="exportcert" depends ="genkey">
> 		WHAT GOES HERE?????????????????????????
> 		</target>
> </project>

---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@ant.apache.org
For additional commands, e-mail: user-help@ant.apache.org


---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@ant.apache.org
For additional commands, e-mail: user-help@ant.apache.org


Mime
View raw message