public class FamilyKeyCrypto extends Object
Modifier and Type | Field and Description |
---|---|
static String |
CERT_SUFFIX |
static String |
CN_SUFFIX |
static String |
CRL_SUFFIX |
static String |
KEYSTORE_PREFIX |
static String |
KEYSTORE_SUFFIX |
static String |
OPT_KEY |
static String |
OPT_NAME |
static String |
OPT_SIG |
static String |
PROP_FAMILY_NAME |
static String |
PROP_KEY_PASSWORD |
static String |
PROP_KEYSTORE_PASSWORD |
Constructor and Description |
---|
FamilyKeyCrypto(RouterContext context)
For signing and verification.
|
Modifier and Type | Method and Description |
---|---|
Set<Hash> |
getOurFamily()
Get verified members of our family.
|
String |
getOurFamilyName()
Get our family name.
|
boolean |
hasFamily()
Do we have a valid family?
|
void |
shutdown()
Clears the caches
|
Map<String,String> |
sign(String family,
Hash h)
Caller must add family to RI also.
|
boolean |
verify(RouterInfo ri)
Verify the family signature in a RouterInfo.
|
boolean |
verifyOurFamily(RouterInfo ri)
Verify the family in a RouterInfo matches ours and the signature is good.
|
public static final String PROP_KEYSTORE_PASSWORD
public static final String PROP_FAMILY_NAME
public static final String PROP_KEY_PASSWORD
public static final String CERT_SUFFIX
public static final String CRL_SUFFIX
public static final String KEYSTORE_PREFIX
public static final String KEYSTORE_SUFFIX
public static final String CN_SUFFIX
public static final String OPT_NAME
public static final String OPT_SIG
public static final String OPT_KEY
public FamilyKeyCrypto(RouterContext context) throws GeneralSecurityException
GeneralSecurityException
public void shutdown()
public Map<String,String> sign(String family, Hash h) throws GeneralSecurityException
family
- non-null, must match that we were initialized with or will throw GSEh
- non-nullGeneralSecurityException
- on null hash, null or changed family, or signing errorpublic boolean hasFamily()
public Set<Hash> getOurFamily()
public String getOurFamilyName()
public boolean verify(RouterInfo ri)
public boolean verifyOurFamily(RouterInfo ri)