harmony-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Geir Magnusson Jr <g...@pobox.com>
Subject Re: [tools] Re: Keytool is done, JarSigner is next.
Date Tue, 15 Aug 2006 03:32:55 GMT
Chicken... :)

geir

Mikhail Loenko wrote:
> 2006/8/14, Geir Magnusson Jr <geir@pobox.com>:
>>
>> Mikhail Loenko wrote:
>> > Ok, sure.
>> >
>> > One thing that IMHO worth discussion is:
>> >
>> > By default the server tries to go to Sun's ssl provider:
>> > com.sun.net.ssl.internal.ssl.Provider
>> >
>> > Though it seems to be possibe to specify a custom provider by defining
>> > a property
>> > org.w3c.jigsaw.ssl.security.provider
>> >
>> > But to figure that out I had to grep Jigsaw sources
>>
>> Hm.  What does jetty and tomcat do?
>>
>> >
>> > The question is should we provide our own com.sun...Provider?
>>
>> You probably can guess my answer to this...
>>
>> >
>> > It would look like this way:
>> >
>> > package com.sun.net.ssl.internal.ssl;
>> > import org.apache.harmony.xnet.provider.jsse.JSSEProvider;
>> > public class Provider extends JSSEProvider {
>> > }
>> >
>> > Thanks,
>> > Mikhail
>> >
>> > P.S. I was able to easily start Jigsaw HTTP server and navigate a bit.
>> > I used IBM VM+Harmony classlib
>>
>> What happens when you used DRLVM?
> 
> I'm going to check. Acually I beleive it might be a bit too early to
> do app-driven
> bugfix in DRLVM. Though when running apps we find real-life bugs but
> it's easier to
> fix those bugs that are reproducoble on small code examples. Given that not
> all the classlib tests pass on DRLVM+classlib it might make sense to fix
> those
> failures and than switch to app-driven bugfix
> 
> Thanks,
> Mikhail
> 
>>
>> geir
>>
>> >
>> > 2006/8/14, Geir Magnusson Jr <geir@pobox.com>:
>> >> Side note :
>> >>
>> >> Can you keep notes so that when you get things working, we can post to
>> >> website as docs?
>> >>
>> >> geir
>> >>
>> >>
>> >> Mikhail Loenko wrote:
>> >> > Hi Anton,
>> >> >
>> >> > I'm trying to run Jigsaw https server. I used Harmony keytool to
>> >> generate
>> >> > keystore according to Jigsaw mans:
>> >> >
>> >> > keytool -genkey -alias troi.example.com -keypass example -keystore
>> >> > troi.keystore -keyalg RSA
>> >> >
>> >> > so far works OK
>> >> >
>> >> > keytool -selfcert -alias troi.example.com -keystore troi.keystore
>> >> > -keyalg RSA
>> >> >
>> >> > prints this error message:
>> >> >
>> >> > Enter keystore password: example
>> >> > java.security.NoSuchAlgorithmException: The algorithm
>> >> > MD5WithRSAEncryption is not found in the environment.
>> >> >        at
>> >> >
>> org.apache.harmony.tools.keytool.KeyCertGenerator.genX509CertImpl(Key
>> >> > CertGenerator.java:40)
>> >> >        at
>> >> >
>> org.apache.harmony.tools.keytool.KeyCertGenerator.selfCert(KeyCertGen
>> >> > erator.java:335)
>> >> >        at org.apache.harmony.tools.keytool.Main.doWork(Main.java:78)
>> >> >        at org.apache.harmony.tools.keytool.Main.run(Main.java:125)
>> >> >        at org.apache.harmony.tools.keytool.Main.main(Main.java:141)
>> >> >
>> >> >
>> >> > Any idea how to solve this? Do we miss some functionality in
>> Harmony?
>> >> >
>> >> > Thanks,
>> >> > Mikhail
>> >> >
>> >> > 2006/8/11, Geir Magnusson Jr <geir@pobox.com>:
>> >> >> 1) YAY!
>> >> >>
>> >> >> 2) No objections for jarsigner, but rather thanks and
>> encouragement!
>> >> >>
>> >> >> 3) You may have been doing the following and I simply missed it,
>> >> but I'd
>> >> >> suggest that you keep a stream of patches coming on things like
>> >> this so
>> >> >> that people can see and get involved and also discuss more of your
>> >> >> experience doing this on the list as it happens.
>> >> >>
>> >> >> 4) Can you add [tools] to your subject lines?  :)
>> >> >>
>> >> >> geir
>> >> >>
>> >> >>
>> >> >>
>> >> >> Anton Rusanov wrote:
>> >> >> > I'm happy to write this - Keytool is done and operative now.
:)
>> >> >> > It has the same functionality as the one from RI with some
>> >> >> improvements.
>> >> >> > In addition to what RI can do the Harmony Keytool is able
to
>> >> >> > * generate X.509 certificates v2, v3.
>> >> >> > * sign a certificate with another key from the keystore
>> >> >> > * generate and manage secret keys
>> >> >> > * convert a keystore to another format
>> >> >> > * check certificate revocation status
>> >> >> > * verify a certificate chain
>> >> >> > * use specific providers for various purposes.
>> >> >> >
>> >> >> > There is still a little problem with making an executable
of the
>> >> tool
>> >> >> > in the build. So you can follow the steps to make it on your
own:
>> >> >> > 1. copy deploy\jdk\jre\bin\java.exe to
>> >> deploy\jdk\jre\bin\keytool.exe
>> >> >> > 2. copy deploy\jdk\lib\tools.jar into deploy\jdk\jre\bin\
>> >> >> > 3. run keytool.exe
>> >> >> >
>> >> >> > I want to thank Mikhail for applying my patches.
>> >> >> > I'm going to start work on JarSigner tool. Does anyone have
>> >> objections
>> >> >> > to me doing this?
>> >> >> >
>> >> >>
>> >> >>
>> ---------------------------------------------------------------------
>> >> >> Terms of use : http://incubator.apache.org/harmony/mailing.html
>> >> >> To unsubscribe, e-mail:
>> harmony-dev-unsubscribe@incubator.apache.org
>> >> >> For additional commands, e-mail:
>> harmony-dev-help@incubator.apache.org
>> >> >>
>> >> >>
>> >> >
>> >> >
>> ---------------------------------------------------------------------
>> >> > Terms of use : http://incubator.apache.org/harmony/mailing.html
>> >> > To unsubscribe, e-mail: harmony-dev-unsubscribe@incubator.apache.org
>> >> > For additional commands, e-mail:
>> harmony-dev-help@incubator.apache.org
>> >> >
>> >> >
>> >> >
>> >>
>> >> ---------------------------------------------------------------------
>> >> Terms of use : http://incubator.apache.org/harmony/mailing.html
>> >> To unsubscribe, e-mail: harmony-dev-unsubscribe@incubator.apache.org
>> >> For additional commands, e-mail: harmony-dev-help@incubator.apache.org
>> >>
>> >>
>> >
>> > ---------------------------------------------------------------------
>> > Terms of use : http://incubator.apache.org/harmony/mailing.html
>> > To unsubscribe, e-mail: harmony-dev-unsubscribe@incubator.apache.org
>> > For additional commands, e-mail: harmony-dev-help@incubator.apache.org
>> >
>> >
>> >
>>
>> ---------------------------------------------------------------------
>> Terms of use : http://incubator.apache.org/harmony/mailing.html
>> To unsubscribe, e-mail: harmony-dev-unsubscribe@incubator.apache.org
>> For additional commands, e-mail: harmony-dev-help@incubator.apache.org
>>
>>
> 
> ---------------------------------------------------------------------
> Terms of use : http://incubator.apache.org/harmony/mailing.html
> To unsubscribe, e-mail: harmony-dev-unsubscribe@incubator.apache.org
> For additional commands, e-mail: harmony-dev-help@incubator.apache.org
> 
> 
> 

---------------------------------------------------------------------
Terms of use : http://incubator.apache.org/harmony/mailing.html
To unsubscribe, e-mail: harmony-dev-unsubscribe@incubator.apache.org
For additional commands, e-mail: harmony-dev-help@incubator.apache.org


Mime
View raw message