harmony-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Geir Magnusson Jr <g...@pobox.com>
Subject Re: [tools] Re: Keytool is done, JarSigner is next.
Date Mon, 14 Aug 2006 10:59:59 GMT

Mikhail Loenko wrote:
> Ok, sure.
> 
> One thing that IMHO worth discussion is:
> 
> By default the server tries to go to Sun's ssl provider:
> com.sun.net.ssl.internal.ssl.Provider
> 
> Though it seems to be possibe to specify a custom provider by defining
> a property
> org.w3c.jigsaw.ssl.security.provider
> 
> But to figure that out I had to grep Jigsaw sources

Hm.  What does jetty and tomcat do?

> 
> The question is should we provide our own com.sun...Provider?

You probably can guess my answer to this...

> 
> It would look like this way:
> 
> package com.sun.net.ssl.internal.ssl;
> import org.apache.harmony.xnet.provider.jsse.JSSEProvider;
> public class Provider extends JSSEProvider {
> }
> 
> Thanks,
> Mikhail
> 
> P.S. I was able to easily start Jigsaw HTTP server and navigate a bit.
> I used IBM VM+Harmony classlib

What happens when you used DRLVM?

geir

> 
> 2006/8/14, Geir Magnusson Jr <geir@pobox.com>:
>> Side note :
>>
>> Can you keep notes so that when you get things working, we can post to
>> website as docs?
>>
>> geir
>>
>>
>> Mikhail Loenko wrote:
>> > Hi Anton,
>> >
>> > I'm trying to run Jigsaw https server. I used Harmony keytool to
>> generate
>> > keystore according to Jigsaw mans:
>> >
>> > keytool -genkey -alias troi.example.com -keypass example -keystore
>> > troi.keystore -keyalg RSA
>> >
>> > so far works OK
>> >
>> > keytool -selfcert -alias troi.example.com -keystore troi.keystore
>> > -keyalg RSA
>> >
>> > prints this error message:
>> >
>> > Enter keystore password: example
>> > java.security.NoSuchAlgorithmException: The algorithm
>> > MD5WithRSAEncryption is not found in the environment.
>> >        at
>> > org.apache.harmony.tools.keytool.KeyCertGenerator.genX509CertImpl(Key
>> > CertGenerator.java:40)
>> >        at
>> > org.apache.harmony.tools.keytool.KeyCertGenerator.selfCert(KeyCertGen
>> > erator.java:335)
>> >        at org.apache.harmony.tools.keytool.Main.doWork(Main.java:78)
>> >        at org.apache.harmony.tools.keytool.Main.run(Main.java:125)
>> >        at org.apache.harmony.tools.keytool.Main.main(Main.java:141)
>> >
>> >
>> > Any idea how to solve this? Do we miss some functionality in Harmony?
>> >
>> > Thanks,
>> > Mikhail
>> >
>> > 2006/8/11, Geir Magnusson Jr <geir@pobox.com>:
>> >> 1) YAY!
>> >>
>> >> 2) No objections for jarsigner, but rather thanks and encouragement!
>> >>
>> >> 3) You may have been doing the following and I simply missed it,
>> but I'd
>> >> suggest that you keep a stream of patches coming on things like
>> this so
>> >> that people can see and get involved and also discuss more of your
>> >> experience doing this on the list as it happens.
>> >>
>> >> 4) Can you add [tools] to your subject lines?  :)
>> >>
>> >> geir
>> >>
>> >>
>> >>
>> >> Anton Rusanov wrote:
>> >> > I'm happy to write this - Keytool is done and operative now. :)
>> >> > It has the same functionality as the one from RI with some
>> >> improvements.
>> >> > In addition to what RI can do the Harmony Keytool is able to
>> >> > * generate X.509 certificates v2, v3.
>> >> > * sign a certificate with another key from the keystore
>> >> > * generate and manage secret keys
>> >> > * convert a keystore to another format
>> >> > * check certificate revocation status
>> >> > * verify a certificate chain
>> >> > * use specific providers for various purposes.
>> >> >
>> >> > There is still a little problem with making an executable of the
>> tool
>> >> > in the build. So you can follow the steps to make it on your own:
>> >> > 1. copy deploy\jdk\jre\bin\java.exe to
>> deploy\jdk\jre\bin\keytool.exe
>> >> > 2. copy deploy\jdk\lib\tools.jar into deploy\jdk\jre\bin\
>> >> > 3. run keytool.exe
>> >> >
>> >> > I want to thank Mikhail for applying my patches.
>> >> > I'm going to start work on JarSigner tool. Does anyone have
>> objections
>> >> > to me doing this?
>> >> >
>> >>
>> >> ---------------------------------------------------------------------
>> >> Terms of use : http://incubator.apache.org/harmony/mailing.html
>> >> To unsubscribe, e-mail: harmony-dev-unsubscribe@incubator.apache.org
>> >> For additional commands, e-mail: harmony-dev-help@incubator.apache.org
>> >>
>> >>
>> >
>> > ---------------------------------------------------------------------
>> > Terms of use : http://incubator.apache.org/harmony/mailing.html
>> > To unsubscribe, e-mail: harmony-dev-unsubscribe@incubator.apache.org
>> > For additional commands, e-mail: harmony-dev-help@incubator.apache.org
>> >
>> >
>> >
>>
>> ---------------------------------------------------------------------
>> Terms of use : http://incubator.apache.org/harmony/mailing.html
>> To unsubscribe, e-mail: harmony-dev-unsubscribe@incubator.apache.org
>> For additional commands, e-mail: harmony-dev-help@incubator.apache.org
>>
>>
> 
> ---------------------------------------------------------------------
> Terms of use : http://incubator.apache.org/harmony/mailing.html
> To unsubscribe, e-mail: harmony-dev-unsubscribe@incubator.apache.org
> For additional commands, e-mail: harmony-dev-help@incubator.apache.org
> 
> 
> 

---------------------------------------------------------------------
Terms of use : http://incubator.apache.org/harmony/mailing.html
To unsubscribe, e-mail: harmony-dev-unsubscribe@incubator.apache.org
For additional commands, e-mail: harmony-dev-help@incubator.apache.org


Mime
View raw message