Re: [tools] Re: Keytool is done, JarSigner is next.
:) Jigsaw works on DRLVM+classlib also Jetty does not work yet, looking... Thanks, Mikhail 2006/8/15, Geir Magnusson Jr <[EMAIL PROTECTED]>: Hey! All I asked is "what happened when we used our own software?" It's not that an unreasonable question... geir Vladimir Ivanov wrote: > On 8/15/06, Mikhail Loenko <[EMAIL PROTECTED]> wrote: >> >> 2006/8/14, Geir Magnusson Jr <[EMAIL PROTECTED]>: >> > >> > Mikhail Loenko wrote: >> > >> > What happens when you used DRLVM? >> >> I'm going to check. Acually I beleive it might be a bit too early to >> do app-driven >> bugfix in DRLVM. Though when running apps we find real-life bugs but >> it's easier to >> fix those bugs that are reproducoble on small code examples. Given that >> not >> all the classlib tests pass on DRLVM+classlib it might make sense to fix >> those >> failures and than switch to app-driven bugfix > > > We have also 233 open issues in jira and 161 marked as bug. Seems, it > should > be resolved before > the 'app-driven bugfix'. > > Thanks, Vladimir > > > Thanks, >> Mikhail >> >> > >> > geir >> > >> > > >> > > 2006/8/14, Geir Magnusson Jr <[EMAIL PROTECTED]>: >> > >> Side note : >> > >> >> > >> Can you keep notes so that when you get things working, we can post >> to >> > >> website as docs? >> > >> >> > >> geir >> > >> >> > >> >> > >> Mikhail Loenko wrote: >> > >> > Hi Anton, >> > >> > >> > >> > I'm trying to run Jigsaw https server. I used Harmony keytool to >> > >> generate >> > >> > keystore according to Jigsaw mans: >> > >> > >> > >> > keytool -genkey -alias troi.example.com -keypass example -keystore >> > >> > troi.keystore -keyalg RSA >> > >> > >> > >> > so far works OK >> > >> > >> > >> > keytool -selfcert -alias troi.example.com -keystore troi.keystore >> > >> > -keyalg RSA >> > >> > >> > >> > prints this error message: >> > >> > >> > >> > Enter keystore password: example >> > >> > java.security.NoSuchAlgorithmException: The algorithm >> > >> > MD5WithRSAEncryption is not found in the environment. >> > >> >at >> > >> > org.apache.harmony.tools.keytool.KeyCertGenerator.genX509CertImpl >> (Key >> > >> > CertGenerator.java:40) >> > >> >at >> > >> > org.apache.harmony.tools.keytool.KeyCertGenerator.selfCert >> (KeyCertGen >> > >> > erator.java:335) >> > >> >at org.apache.harmony.tools.keytool.Main.doWork(Main.java >> :78) >> > >> >at org.apache.harmony.tools.keytool.Main.run(Main.java:125) >> > >> >at >> org.apache.harmony.tools.keytool.Main.main(Main.java:141) >> > >> > >> > >> > >> > >> > Any idea how to solve this? Do we miss some functionality in >> Harmony? >> > >> > >> > >> > Thanks, >> > >> > Mikhail >> > >> > >> > >> > 2006/8/11, Geir Magnusson Jr <[EMAIL PROTECTED]>: >> > >> >> 1) YAY! >> > >> >> >> > >> >> 2) No objections for jarsigner, but rather thanks and >> encouragement! >> > >> >> >> > >> >> 3) You may have been doing the following and I simply missed it, >> > >> but I'd >> > >> >> suggest that you keep a stream of patches coming on things like >> > >> this so >> > >> >> that people can see and get involved and also discuss more of >> your >> > >> >> experience doing this on the list as it happens. >> > >> >> >> > >> >> 4) Can you add [tools] to your subject lines? :) >> > >> >> >> > >> >> geir >> > >> >> >> > >> >> >> > >> >> >> > >> >> Anton Rusanov wrote: >> > >> >> > I'm happy to write this - Keytool is done and operative now. :) >> > >> >> > It has the same functionality as the one from RI with some >> > >> >> improvements. >> > >> >> > In addition to what RI can do the Harmony Keytool is able to >> > >> >> > * generate X.509 certificates v2, v3. >> > >> >> > * sign a certificate with another key from the keystore >> > >> >> > * generate and manage secret keys >> > >> >> > * convert a keystore to another format >> > >> >> > * check certificate revocation status >> > >> >> > * verify a certificate chain >> > >> >> > * use specific providers for various purposes. >> > >> >> > >> > >> >> > There is still a little problem with making an executable of >> the >> > >> tool >> > >> >> > in the build. So you can follow the steps to make it on your >> own: >> > >> >> > 1. copy deploy\jdk\jre\bin\java.exe to >> > >> deploy\jdk\jre\bin\keytool.exe >> > >> >> > 2. copy deploy\jdk\lib\tools.jar into deploy\jdk\jre\bin\ >> > >> >> > 3. run keytool.exe >> > >> >> > >> > >> >> > I want to thank Mikhail for applying my patches. >> > >> >> > I'm going to start work on JarSigner tool. Does anyone have >> > >> objections >> > >> >> > to me doing this? >> > >> >> > >> > >> >> >> > >> >> >> - >> > >> >> Terms of use : http://incubator.apache.org/harmony/mailing.html >> > >> >> To unsubscribe, e-mail: >> [EMAIL PROTECTED] >> > >> >> For additional commands, e-mail: >> [EMAIL PROTECTED] >> > >> >> >> > >> >> >> > >> > >> > >> > >> - >> > >> > Terms of use : http://in
Re: [tools] Re: Keytool is done, JarSigner is next.
The problem is in org.apache.harmony.crypto.utils.AlgNameMapper which fails to set the mapping of the mentioned algorithm name to its OID. I have filed a JIRA issue that fixes the problem. -- Thanks, Anton 2006/8/14, Mikhail Loenko <[EMAIL PROTECTED]>: Hi Anton, I'm trying to run Jigsaw https server. I used Harmony keytool to generate keystore according to Jigsaw mans: keytool -genkey -alias troi.example.com -keypass example -keystore troi.keystore -keyalg RSA so far works OK keytool -selfcert -alias troi.example.com -keystore troi.keystore -keyalg RSA prints this error message: Enter keystore password: example java.security.NoSuchAlgorithmException: The algorithm MD5WithRSAEncryption is not found in the environment. at org.apache.harmony.tools.keytool.KeyCertGenerator.genX509CertImpl(Key CertGenerator.java:40) at org.apache.harmony.tools.keytool.KeyCertGenerator.selfCert(KeyCertGen erator.java:335) at org.apache.harmony.tools.keytool.Main.doWork(Main.java:78) at org.apache.harmony.tools.keytool.Main.run(Main.java:125) at org.apache.harmony.tools.keytool.Main.main(Main.java:141) Any idea how to solve this? Do we miss some functionality in Harmony? Thanks, Mikhail 2006/8/11, Geir Magnusson Jr <[EMAIL PROTECTED]>: > 1) YAY! > > 2) No objections for jarsigner, but rather thanks and encouragement! > > 3) You may have been doing the following and I simply missed it, but I'd > suggest that you keep a stream of patches coming on things like this so > that people can see and get involved and also discuss more of your > experience doing this on the list as it happens. > > 4) Can you add [tools] to your subject lines? :) > > geir > > > > Anton Rusanov wrote: > > I'm happy to write this - Keytool is done and operative now. :) > > It has the same functionality as the one from RI with some improvements. > > In addition to what RI can do the Harmony Keytool is able to > > * generate X.509 certificates v2, v3. > > * sign a certificate with another key from the keystore > > * generate and manage secret keys > > * convert a keystore to another format > > * check certificate revocation status > > * verify a certificate chain > > * use specific providers for various purposes. > > > > There is still a little problem with making an executable of the tool > > in the build. So you can follow the steps to make it on your own: > > 1. copy deploy\jdk\jre\bin\java.exe to deploy\jdk\jre\bin\keytool.exe > > 2. copy deploy\jdk\lib\tools.jar into deploy\jdk\jre\bin\ > > 3. run keytool.exe > > > > I want to thank Mikhail for applying my patches. > > I'm going to start work on JarSigner tool. Does anyone have objections > > to me doing this? > > > > - > Terms of use : http://incubator.apache.org/harmony/mailing.html > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > - Terms of use : http://incubator.apache.org/harmony/mailing.html To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - Terms of use : http://incubator.apache.org/harmony/mailing.html To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [tools] Re: Keytool is done, JarSigner is next.
Hey! All I asked is "what happened when we used our own software?" It's not that an unreasonable question... geir Vladimir Ivanov wrote: > On 8/15/06, Mikhail Loenko <[EMAIL PROTECTED]> wrote: >> >> 2006/8/14, Geir Magnusson Jr <[EMAIL PROTECTED]>: >> > >> > Mikhail Loenko wrote: >> > >> > What happens when you used DRLVM? >> >> I'm going to check. Acually I beleive it might be a bit too early to >> do app-driven >> bugfix in DRLVM. Though when running apps we find real-life bugs but >> it's easier to >> fix those bugs that are reproducoble on small code examples. Given that >> not >> all the classlib tests pass on DRLVM+classlib it might make sense to fix >> those >> failures and than switch to app-driven bugfix > > > We have also 233 open issues in jira and 161 marked as bug. Seems, it > should > be resolved before > the 'app-driven bugfix'. > > Thanks, Vladimir > > > Thanks, >> Mikhail >> >> > >> > geir >> > >> > > >> > > 2006/8/14, Geir Magnusson Jr <[EMAIL PROTECTED]>: >> > >> Side note : >> > >> >> > >> Can you keep notes so that when you get things working, we can post >> to >> > >> website as docs? >> > >> >> > >> geir >> > >> >> > >> >> > >> Mikhail Loenko wrote: >> > >> > Hi Anton, >> > >> > >> > >> > I'm trying to run Jigsaw https server. I used Harmony keytool to >> > >> generate >> > >> > keystore according to Jigsaw mans: >> > >> > >> > >> > keytool -genkey -alias troi.example.com -keypass example -keystore >> > >> > troi.keystore -keyalg RSA >> > >> > >> > >> > so far works OK >> > >> > >> > >> > keytool -selfcert -alias troi.example.com -keystore troi.keystore >> > >> > -keyalg RSA >> > >> > >> > >> > prints this error message: >> > >> > >> > >> > Enter keystore password: example >> > >> > java.security.NoSuchAlgorithmException: The algorithm >> > >> > MD5WithRSAEncryption is not found in the environment. >> > >> >at >> > >> > org.apache.harmony.tools.keytool.KeyCertGenerator.genX509CertImpl >> (Key >> > >> > CertGenerator.java:40) >> > >> >at >> > >> > org.apache.harmony.tools.keytool.KeyCertGenerator.selfCert >> (KeyCertGen >> > >> > erator.java:335) >> > >> >at org.apache.harmony.tools.keytool.Main.doWork(Main.java >> :78) >> > >> >at org.apache.harmony.tools.keytool.Main.run(Main.java:125) >> > >> >at >> org.apache.harmony.tools.keytool.Main.main(Main.java:141) >> > >> > >> > >> > >> > >> > Any idea how to solve this? Do we miss some functionality in >> Harmony? >> > >> > >> > >> > Thanks, >> > >> > Mikhail >> > >> > >> > >> > 2006/8/11, Geir Magnusson Jr <[EMAIL PROTECTED]>: >> > >> >> 1) YAY! >> > >> >> >> > >> >> 2) No objections for jarsigner, but rather thanks and >> encouragement! >> > >> >> >> > >> >> 3) You may have been doing the following and I simply missed it, >> > >> but I'd >> > >> >> suggest that you keep a stream of patches coming on things like >> > >> this so >> > >> >> that people can see and get involved and also discuss more of >> your >> > >> >> experience doing this on the list as it happens. >> > >> >> >> > >> >> 4) Can you add [tools] to your subject lines? :) >> > >> >> >> > >> >> geir >> > >> >> >> > >> >> >> > >> >> >> > >> >> Anton Rusanov wrote: >> > >> >> > I'm happy to write this - Keytool is done and operative now. :) >> > >> >> > It has the same functionality as the one from RI with some >> > >> >> improvements. >> > >> >> > In addition to what RI can do the Harmony Keytool is able to >> > >> >> > * generate X.509 certificates v2, v3. >> > >> >> > * sign a certificate with another key from the keystore >> > >> >> > * generate and manage secret keys >> > >> >> > * convert a keystore to another format >> > >> >> > * check certificate revocation status >> > >> >> > * verify a certificate chain >> > >> >> > * use specific providers for various purposes. >> > >> >> > >> > >> >> > There is still a little problem with making an executable of >> the >> > >> tool >> > >> >> > in the build. So you can follow the steps to make it on your >> own: >> > >> >> > 1. copy deploy\jdk\jre\bin\java.exe to >> > >> deploy\jdk\jre\bin\keytool.exe >> > >> >> > 2. copy deploy\jdk\lib\tools.jar into deploy\jdk\jre\bin\ >> > >> >> > 3. run keytool.exe >> > >> >> > >> > >> >> > I want to thank Mikhail for applying my patches. >> > >> >> > I'm going to start work on JarSigner tool. Does anyone have >> > >> objections >> > >> >> > to me doing this? >> > >> >> > >> > >> >> >> > >> >> >> - >> > >> >> Terms of use : http://incubator.apache.org/harmony/mailing.html >> > >> >> To unsubscribe, e-mail: >> [EMAIL PROTECTED] >> > >> >> For additional commands, e-mail: >> [EMAIL PROTECTED] >> > >> >> >> > >> >> >> > >> > >> > >> > >> - >> > >> > Terms of use : http://incubator.apache.org/harmony/mailing.html >> > >> > To unsubscribe, e-mail: >> [EMAIL PROTECTED] >> > >> > For additional commands, e-mail: >> [
Re: [tools] Re: Keytool is done, JarSigner is next.
Chicken... :) geir Mikhail Loenko wrote: > 2006/8/14, Geir Magnusson Jr <[EMAIL PROTECTED]>: >> >> Mikhail Loenko wrote: >> > Ok, sure. >> > >> > One thing that IMHO worth discussion is: >> > >> > By default the server tries to go to Sun's ssl provider: >> > com.sun.net.ssl.internal.ssl.Provider >> > >> > Though it seems to be possibe to specify a custom provider by defining >> > a property >> > org.w3c.jigsaw.ssl.security.provider >> > >> > But to figure that out I had to grep Jigsaw sources >> >> Hm. What does jetty and tomcat do? >> >> > >> > The question is should we provide our own com.sun...Provider? >> >> You probably can guess my answer to this... >> >> > >> > It would look like this way: >> > >> > package com.sun.net.ssl.internal.ssl; >> > import org.apache.harmony.xnet.provider.jsse.JSSEProvider; >> > public class Provider extends JSSEProvider { >> > } >> > >> > Thanks, >> > Mikhail >> > >> > P.S. I was able to easily start Jigsaw HTTP server and navigate a bit. >> > I used IBM VM+Harmony classlib >> >> What happens when you used DRLVM? > > I'm going to check. Acually I beleive it might be a bit too early to > do app-driven > bugfix in DRLVM. Though when running apps we find real-life bugs but > it's easier to > fix those bugs that are reproducoble on small code examples. Given that not > all the classlib tests pass on DRLVM+classlib it might make sense to fix > those > failures and than switch to app-driven bugfix > > Thanks, > Mikhail > >> >> geir >> >> > >> > 2006/8/14, Geir Magnusson Jr <[EMAIL PROTECTED]>: >> >> Side note : >> >> >> >> Can you keep notes so that when you get things working, we can post to >> >> website as docs? >> >> >> >> geir >> >> >> >> >> >> Mikhail Loenko wrote: >> >> > Hi Anton, >> >> > >> >> > I'm trying to run Jigsaw https server. I used Harmony keytool to >> >> generate >> >> > keystore according to Jigsaw mans: >> >> > >> >> > keytool -genkey -alias troi.example.com -keypass example -keystore >> >> > troi.keystore -keyalg RSA >> >> > >> >> > so far works OK >> >> > >> >> > keytool -selfcert -alias troi.example.com -keystore troi.keystore >> >> > -keyalg RSA >> >> > >> >> > prints this error message: >> >> > >> >> > Enter keystore password: example >> >> > java.security.NoSuchAlgorithmException: The algorithm >> >> > MD5WithRSAEncryption is not found in the environment. >> >> >at >> >> > >> org.apache.harmony.tools.keytool.KeyCertGenerator.genX509CertImpl(Key >> >> > CertGenerator.java:40) >> >> >at >> >> > >> org.apache.harmony.tools.keytool.KeyCertGenerator.selfCert(KeyCertGen >> >> > erator.java:335) >> >> >at org.apache.harmony.tools.keytool.Main.doWork(Main.java:78) >> >> >at org.apache.harmony.tools.keytool.Main.run(Main.java:125) >> >> >at org.apache.harmony.tools.keytool.Main.main(Main.java:141) >> >> > >> >> > >> >> > Any idea how to solve this? Do we miss some functionality in >> Harmony? >> >> > >> >> > Thanks, >> >> > Mikhail >> >> > >> >> > 2006/8/11, Geir Magnusson Jr <[EMAIL PROTECTED]>: >> >> >> 1) YAY! >> >> >> >> >> >> 2) No objections for jarsigner, but rather thanks and >> encouragement! >> >> >> >> >> >> 3) You may have been doing the following and I simply missed it, >> >> but I'd >> >> >> suggest that you keep a stream of patches coming on things like >> >> this so >> >> >> that people can see and get involved and also discuss more of your >> >> >> experience doing this on the list as it happens. >> >> >> >> >> >> 4) Can you add [tools] to your subject lines? :) >> >> >> >> >> >> geir >> >> >> >> >> >> >> >> >> >> >> >> Anton Rusanov wrote: >> >> >> > I'm happy to write this - Keytool is done and operative now. :) >> >> >> > It has the same functionality as the one from RI with some >> >> >> improvements. >> >> >> > In addition to what RI can do the Harmony Keytool is able to >> >> >> > * generate X.509 certificates v2, v3. >> >> >> > * sign a certificate with another key from the keystore >> >> >> > * generate and manage secret keys >> >> >> > * convert a keystore to another format >> >> >> > * check certificate revocation status >> >> >> > * verify a certificate chain >> >> >> > * use specific providers for various purposes. >> >> >> > >> >> >> > There is still a little problem with making an executable of the >> >> tool >> >> >> > in the build. So you can follow the steps to make it on your own: >> >> >> > 1. copy deploy\jdk\jre\bin\java.exe to >> >> deploy\jdk\jre\bin\keytool.exe >> >> >> > 2. copy deploy\jdk\lib\tools.jar into deploy\jdk\jre\bin\ >> >> >> > 3. run keytool.exe >> >> >> > >> >> >> > I want to thank Mikhail for applying my patches. >> >> >> > I'm going to start work on JarSigner tool. Does anyone have >> >> objections >> >> >> > to me doing this? >> >> >> > >> >> >> >> >> >> >> - >> >> >> Terms of use : http://incubator.apache.org/harmony/mailing.html >> >> >> To unsubscribe, e-mail: >> [EMAIL PROTECTED] >> >> >
Re: [tools] Re: Keytool is done, JarSigner is next.
On 8/15/06, Mikhail Loenko <[EMAIL PROTECTED]> wrote: 2006/8/14, Geir Magnusson Jr <[EMAIL PROTECTED]>: > > Mikhail Loenko wrote: > > What happens when you used DRLVM? I'm going to check. Acually I beleive it might be a bit too early to do app-driven bugfix in DRLVM. Though when running apps we find real-life bugs but it's easier to fix those bugs that are reproducoble on small code examples. Given that not all the classlib tests pass on DRLVM+classlib it might make sense to fix those failures and than switch to app-driven bugfix We have also 233 open issues in jira and 161 marked as bug. Seems, it should be resolved before the 'app-driven bugfix'. Thanks, Vladimir Thanks, Mikhail > > geir > > > > > 2006/8/14, Geir Magnusson Jr <[EMAIL PROTECTED]>: > >> Side note : > >> > >> Can you keep notes so that when you get things working, we can post to > >> website as docs? > >> > >> geir > >> > >> > >> Mikhail Loenko wrote: > >> > Hi Anton, > >> > > >> > I'm trying to run Jigsaw https server. I used Harmony keytool to > >> generate > >> > keystore according to Jigsaw mans: > >> > > >> > keytool -genkey -alias troi.example.com -keypass example -keystore > >> > troi.keystore -keyalg RSA > >> > > >> > so far works OK > >> > > >> > keytool -selfcert -alias troi.example.com -keystore troi.keystore > >> > -keyalg RSA > >> > > >> > prints this error message: > >> > > >> > Enter keystore password: example > >> > java.security.NoSuchAlgorithmException: The algorithm > >> > MD5WithRSAEncryption is not found in the environment. > >> >at > >> > org.apache.harmony.tools.keytool.KeyCertGenerator.genX509CertImpl (Key > >> > CertGenerator.java:40) > >> >at > >> > org.apache.harmony.tools.keytool.KeyCertGenerator.selfCert (KeyCertGen > >> > erator.java:335) > >> >at org.apache.harmony.tools.keytool.Main.doWork(Main.java :78) > >> >at org.apache.harmony.tools.keytool.Main.run(Main.java:125) > >> >at org.apache.harmony.tools.keytool.Main.main(Main.java:141) > >> > > >> > > >> > Any idea how to solve this? Do we miss some functionality in Harmony? > >> > > >> > Thanks, > >> > Mikhail > >> > > >> > 2006/8/11, Geir Magnusson Jr <[EMAIL PROTECTED]>: > >> >> 1) YAY! > >> >> > >> >> 2) No objections for jarsigner, but rather thanks and encouragement! > >> >> > >> >> 3) You may have been doing the following and I simply missed it, > >> but I'd > >> >> suggest that you keep a stream of patches coming on things like > >> this so > >> >> that people can see and get involved and also discuss more of your > >> >> experience doing this on the list as it happens. > >> >> > >> >> 4) Can you add [tools] to your subject lines? :) > >> >> > >> >> geir > >> >> > >> >> > >> >> > >> >> Anton Rusanov wrote: > >> >> > I'm happy to write this - Keytool is done and operative now. :) > >> >> > It has the same functionality as the one from RI with some > >> >> improvements. > >> >> > In addition to what RI can do the Harmony Keytool is able to > >> >> > * generate X.509 certificates v2, v3. > >> >> > * sign a certificate with another key from the keystore > >> >> > * generate and manage secret keys > >> >> > * convert a keystore to another format > >> >> > * check certificate revocation status > >> >> > * verify a certificate chain > >> >> > * use specific providers for various purposes. > >> >> > > >> >> > There is still a little problem with making an executable of the > >> tool > >> >> > in the build. So you can follow the steps to make it on your own: > >> >> > 1. copy deploy\jdk\jre\bin\java.exe to > >> deploy\jdk\jre\bin\keytool.exe > >> >> > 2. copy deploy\jdk\lib\tools.jar into deploy\jdk\jre\bin\ > >> >> > 3. run keytool.exe > >> >> > > >> >> > I want to thank Mikhail for applying my patches. > >> >> > I'm going to start work on JarSigner tool. Does anyone have > >> objections > >> >> > to me doing this? > >> >> > > >> >> > >> >> - > >> >> Terms of use : http://incubator.apache.org/harmony/mailing.html > >> >> To unsubscribe, e-mail: [EMAIL PROTECTED] > >> >> For additional commands, e-mail: [EMAIL PROTECTED] > >> >> > >> >> > >> > > >> > - > >> > Terms of use : http://incubator.apache.org/harmony/mailing.html > >> > To unsubscribe, e-mail: [EMAIL PROTECTED] > >> > For additional commands, e-mail: [EMAIL PROTECTED] > >> > > >> > > >> > > >> > >> - > >> Terms of use : http://incubator.apache.org/harmony/mailing.html > >> To unsubscribe, e-mail: [EMAIL PROTECTED] > >> For additional commands, e-mail: [EMAIL PROTECTED] > >> > >> > > > > - > > Terms of use : http://incubator.apache.org/harmony/mailing.html > > To unsubscribe, e-mail: [EMAIL PROTECTED] > > For additional commands, e-mail: [EMAIL PROTECTED] > > > > > > > > -
Re: [tools] Re: Keytool is done, JarSigner is next.
2006/8/14, Geir Magnusson Jr <[EMAIL PROTECTED]>: Mikhail Loenko wrote: > Ok, sure. > > One thing that IMHO worth discussion is: > > By default the server tries to go to Sun's ssl provider: > com.sun.net.ssl.internal.ssl.Provider > > Though it seems to be possibe to specify a custom provider by defining > a property > org.w3c.jigsaw.ssl.security.provider > > But to figure that out I had to grep Jigsaw sources Hm. What does jetty and tomcat do? > > The question is should we provide our own com.sun...Provider? You probably can guess my answer to this... > > It would look like this way: > > package com.sun.net.ssl.internal.ssl; > import org.apache.harmony.xnet.provider.jsse.JSSEProvider; > public class Provider extends JSSEProvider { > } > > Thanks, > Mikhail > > P.S. I was able to easily start Jigsaw HTTP server and navigate a bit. > I used IBM VM+Harmony classlib What happens when you used DRLVM? I'm going to check. Acually I beleive it might be a bit too early to do app-driven bugfix in DRLVM. Though when running apps we find real-life bugs but it's easier to fix those bugs that are reproducoble on small code examples. Given that not all the classlib tests pass on DRLVM+classlib it might make sense to fix those failures and than switch to app-driven bugfix Thanks, Mikhail geir > > 2006/8/14, Geir Magnusson Jr <[EMAIL PROTECTED]>: >> Side note : >> >> Can you keep notes so that when you get things working, we can post to >> website as docs? >> >> geir >> >> >> Mikhail Loenko wrote: >> > Hi Anton, >> > >> > I'm trying to run Jigsaw https server. I used Harmony keytool to >> generate >> > keystore according to Jigsaw mans: >> > >> > keytool -genkey -alias troi.example.com -keypass example -keystore >> > troi.keystore -keyalg RSA >> > >> > so far works OK >> > >> > keytool -selfcert -alias troi.example.com -keystore troi.keystore >> > -keyalg RSA >> > >> > prints this error message: >> > >> > Enter keystore password: example >> > java.security.NoSuchAlgorithmException: The algorithm >> > MD5WithRSAEncryption is not found in the environment. >> >at >> > org.apache.harmony.tools.keytool.KeyCertGenerator.genX509CertImpl(Key >> > CertGenerator.java:40) >> >at >> > org.apache.harmony.tools.keytool.KeyCertGenerator.selfCert(KeyCertGen >> > erator.java:335) >> >at org.apache.harmony.tools.keytool.Main.doWork(Main.java:78) >> >at org.apache.harmony.tools.keytool.Main.run(Main.java:125) >> >at org.apache.harmony.tools.keytool.Main.main(Main.java:141) >> > >> > >> > Any idea how to solve this? Do we miss some functionality in Harmony? >> > >> > Thanks, >> > Mikhail >> > >> > 2006/8/11, Geir Magnusson Jr <[EMAIL PROTECTED]>: >> >> 1) YAY! >> >> >> >> 2) No objections for jarsigner, but rather thanks and encouragement! >> >> >> >> 3) You may have been doing the following and I simply missed it, >> but I'd >> >> suggest that you keep a stream of patches coming on things like >> this so >> >> that people can see and get involved and also discuss more of your >> >> experience doing this on the list as it happens. >> >> >> >> 4) Can you add [tools] to your subject lines? :) >> >> >> >> geir >> >> >> >> >> >> >> >> Anton Rusanov wrote: >> >> > I'm happy to write this - Keytool is done and operative now. :) >> >> > It has the same functionality as the one from RI with some >> >> improvements. >> >> > In addition to what RI can do the Harmony Keytool is able to >> >> > * generate X.509 certificates v2, v3. >> >> > * sign a certificate with another key from the keystore >> >> > * generate and manage secret keys >> >> > * convert a keystore to another format >> >> > * check certificate revocation status >> >> > * verify a certificate chain >> >> > * use specific providers for various purposes. >> >> > >> >> > There is still a little problem with making an executable of the >> tool >> >> > in the build. So you can follow the steps to make it on your own: >> >> > 1. copy deploy\jdk\jre\bin\java.exe to >> deploy\jdk\jre\bin\keytool.exe >> >> > 2. copy deploy\jdk\lib\tools.jar into deploy\jdk\jre\bin\ >> >> > 3. run keytool.exe >> >> > >> >> > I want to thank Mikhail for applying my patches. >> >> > I'm going to start work on JarSigner tool. Does anyone have >> objections >> >> > to me doing this? >> >> > >> >> >> >> - >> >> Terms of use : http://incubator.apache.org/harmony/mailing.html >> >> To unsubscribe, e-mail: [EMAIL PROTECTED] >> >> For additional commands, e-mail: [EMAIL PROTECTED] >> >> >> >> >> > >> > - >> > Terms of use : http://incubator.apache.org/harmony/mailing.html >> > To unsubscribe, e-mail: [EMAIL PROTECTED] >> > For additional commands, e-mail: [EMAIL PROTECTED] >> > >> > >> > >> >> - >> Terms of use : http://incubator.apache.org/harmony/mailing.html >> To u
Re: [tools] Re: Keytool is done, JarSigner is next.
Mikhail Loenko wrote: > Ok, sure. > > One thing that IMHO worth discussion is: > > By default the server tries to go to Sun's ssl provider: > com.sun.net.ssl.internal.ssl.Provider > > Though it seems to be possibe to specify a custom provider by defining > a property > org.w3c.jigsaw.ssl.security.provider > > But to figure that out I had to grep Jigsaw sources Hm. What does jetty and tomcat do? > > The question is should we provide our own com.sun...Provider? You probably can guess my answer to this... > > It would look like this way: > > package com.sun.net.ssl.internal.ssl; > import org.apache.harmony.xnet.provider.jsse.JSSEProvider; > public class Provider extends JSSEProvider { > } > > Thanks, > Mikhail > > P.S. I was able to easily start Jigsaw HTTP server and navigate a bit. > I used IBM VM+Harmony classlib What happens when you used DRLVM? geir > > 2006/8/14, Geir Magnusson Jr <[EMAIL PROTECTED]>: >> Side note : >> >> Can you keep notes so that when you get things working, we can post to >> website as docs? >> >> geir >> >> >> Mikhail Loenko wrote: >> > Hi Anton, >> > >> > I'm trying to run Jigsaw https server. I used Harmony keytool to >> generate >> > keystore according to Jigsaw mans: >> > >> > keytool -genkey -alias troi.example.com -keypass example -keystore >> > troi.keystore -keyalg RSA >> > >> > so far works OK >> > >> > keytool -selfcert -alias troi.example.com -keystore troi.keystore >> > -keyalg RSA >> > >> > prints this error message: >> > >> > Enter keystore password: example >> > java.security.NoSuchAlgorithmException: The algorithm >> > MD5WithRSAEncryption is not found in the environment. >> >at >> > org.apache.harmony.tools.keytool.KeyCertGenerator.genX509CertImpl(Key >> > CertGenerator.java:40) >> >at >> > org.apache.harmony.tools.keytool.KeyCertGenerator.selfCert(KeyCertGen >> > erator.java:335) >> >at org.apache.harmony.tools.keytool.Main.doWork(Main.java:78) >> >at org.apache.harmony.tools.keytool.Main.run(Main.java:125) >> >at org.apache.harmony.tools.keytool.Main.main(Main.java:141) >> > >> > >> > Any idea how to solve this? Do we miss some functionality in Harmony? >> > >> > Thanks, >> > Mikhail >> > >> > 2006/8/11, Geir Magnusson Jr <[EMAIL PROTECTED]>: >> >> 1) YAY! >> >> >> >> 2) No objections for jarsigner, but rather thanks and encouragement! >> >> >> >> 3) You may have been doing the following and I simply missed it, >> but I'd >> >> suggest that you keep a stream of patches coming on things like >> this so >> >> that people can see and get involved and also discuss more of your >> >> experience doing this on the list as it happens. >> >> >> >> 4) Can you add [tools] to your subject lines? :) >> >> >> >> geir >> >> >> >> >> >> >> >> Anton Rusanov wrote: >> >> > I'm happy to write this - Keytool is done and operative now. :) >> >> > It has the same functionality as the one from RI with some >> >> improvements. >> >> > In addition to what RI can do the Harmony Keytool is able to >> >> > * generate X.509 certificates v2, v3. >> >> > * sign a certificate with another key from the keystore >> >> > * generate and manage secret keys >> >> > * convert a keystore to another format >> >> > * check certificate revocation status >> >> > * verify a certificate chain >> >> > * use specific providers for various purposes. >> >> > >> >> > There is still a little problem with making an executable of the >> tool >> >> > in the build. So you can follow the steps to make it on your own: >> >> > 1. copy deploy\jdk\jre\bin\java.exe to >> deploy\jdk\jre\bin\keytool.exe >> >> > 2. copy deploy\jdk\lib\tools.jar into deploy\jdk\jre\bin\ >> >> > 3. run keytool.exe >> >> > >> >> > I want to thank Mikhail for applying my patches. >> >> > I'm going to start work on JarSigner tool. Does anyone have >> objections >> >> > to me doing this? >> >> > >> >> >> >> - >> >> Terms of use : http://incubator.apache.org/harmony/mailing.html >> >> To unsubscribe, e-mail: [EMAIL PROTECTED] >> >> For additional commands, e-mail: [EMAIL PROTECTED] >> >> >> >> >> > >> > - >> > Terms of use : http://incubator.apache.org/harmony/mailing.html >> > To unsubscribe, e-mail: [EMAIL PROTECTED] >> > For additional commands, e-mail: [EMAIL PROTECTED] >> > >> > >> > >> >> - >> Terms of use : http://incubator.apache.org/harmony/mailing.html >> To unsubscribe, e-mail: [EMAIL PROTECTED] >> For additional commands, e-mail: [EMAIL PROTECTED] >> >> > > - > Terms of use : http://incubator.apache.org/harmony/mailing.html > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > > - Terms of use :
Re: [tools] Re: Keytool is done, JarSigner is next.
Ok, sure. One thing that IMHO worth discussion is: By default the server tries to go to Sun's ssl provider: com.sun.net.ssl.internal.ssl.Provider Though it seems to be possibe to specify a custom provider by defining a property org.w3c.jigsaw.ssl.security.provider But to figure that out I had to grep Jigsaw sources The question is should we provide our own com.sun...Provider? It would look like this way: package com.sun.net.ssl.internal.ssl; import org.apache.harmony.xnet.provider.jsse.JSSEProvider; public class Provider extends JSSEProvider { } Thanks, Mikhail P.S. I was able to easily start Jigsaw HTTP server and navigate a bit. I used IBM VM+Harmony classlib 2006/8/14, Geir Magnusson Jr <[EMAIL PROTECTED]>: Side note : Can you keep notes so that when you get things working, we can post to website as docs? geir Mikhail Loenko wrote: > Hi Anton, > > I'm trying to run Jigsaw https server. I used Harmony keytool to generate > keystore according to Jigsaw mans: > > keytool -genkey -alias troi.example.com -keypass example -keystore > troi.keystore -keyalg RSA > > so far works OK > > keytool -selfcert -alias troi.example.com -keystore troi.keystore > -keyalg RSA > > prints this error message: > > Enter keystore password: example > java.security.NoSuchAlgorithmException: The algorithm > MD5WithRSAEncryption is not found in the environment. >at > org.apache.harmony.tools.keytool.KeyCertGenerator.genX509CertImpl(Key > CertGenerator.java:40) >at > org.apache.harmony.tools.keytool.KeyCertGenerator.selfCert(KeyCertGen > erator.java:335) >at org.apache.harmony.tools.keytool.Main.doWork(Main.java:78) >at org.apache.harmony.tools.keytool.Main.run(Main.java:125) >at org.apache.harmony.tools.keytool.Main.main(Main.java:141) > > > Any idea how to solve this? Do we miss some functionality in Harmony? > > Thanks, > Mikhail > > 2006/8/11, Geir Magnusson Jr <[EMAIL PROTECTED]>: >> 1) YAY! >> >> 2) No objections for jarsigner, but rather thanks and encouragement! >> >> 3) You may have been doing the following and I simply missed it, but I'd >> suggest that you keep a stream of patches coming on things like this so >> that people can see and get involved and also discuss more of your >> experience doing this on the list as it happens. >> >> 4) Can you add [tools] to your subject lines? :) >> >> geir >> >> >> >> Anton Rusanov wrote: >> > I'm happy to write this - Keytool is done and operative now. :) >> > It has the same functionality as the one from RI with some >> improvements. >> > In addition to what RI can do the Harmony Keytool is able to >> > * generate X.509 certificates v2, v3. >> > * sign a certificate with another key from the keystore >> > * generate and manage secret keys >> > * convert a keystore to another format >> > * check certificate revocation status >> > * verify a certificate chain >> > * use specific providers for various purposes. >> > >> > There is still a little problem with making an executable of the tool >> > in the build. So you can follow the steps to make it on your own: >> > 1. copy deploy\jdk\jre\bin\java.exe to deploy\jdk\jre\bin\keytool.exe >> > 2. copy deploy\jdk\lib\tools.jar into deploy\jdk\jre\bin\ >> > 3. run keytool.exe >> > >> > I want to thank Mikhail for applying my patches. >> > I'm going to start work on JarSigner tool. Does anyone have objections >> > to me doing this? >> > >> >> - >> Terms of use : http://incubator.apache.org/harmony/mailing.html >> To unsubscribe, e-mail: [EMAIL PROTECTED] >> For additional commands, e-mail: [EMAIL PROTECTED] >> >> > > - > Terms of use : http://incubator.apache.org/harmony/mailing.html > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > > - Terms of use : http://incubator.apache.org/harmony/mailing.html To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - Terms of use : http://incubator.apache.org/harmony/mailing.html To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [tools] Re: Keytool is done, JarSigner is next.
Side note : Can you keep notes so that when you get things working, we can post to website as docs? geir Mikhail Loenko wrote: > Hi Anton, > > I'm trying to run Jigsaw https server. I used Harmony keytool to generate > keystore according to Jigsaw mans: > > keytool -genkey -alias troi.example.com -keypass example -keystore > troi.keystore -keyalg RSA > > so far works OK > > keytool -selfcert -alias troi.example.com -keystore troi.keystore > -keyalg RSA > > prints this error message: > > Enter keystore password: example > java.security.NoSuchAlgorithmException: The algorithm > MD5WithRSAEncryption is not found in the environment. >at > org.apache.harmony.tools.keytool.KeyCertGenerator.genX509CertImpl(Key > CertGenerator.java:40) >at > org.apache.harmony.tools.keytool.KeyCertGenerator.selfCert(KeyCertGen > erator.java:335) >at org.apache.harmony.tools.keytool.Main.doWork(Main.java:78) >at org.apache.harmony.tools.keytool.Main.run(Main.java:125) >at org.apache.harmony.tools.keytool.Main.main(Main.java:141) > > > Any idea how to solve this? Do we miss some functionality in Harmony? > > Thanks, > Mikhail > > 2006/8/11, Geir Magnusson Jr <[EMAIL PROTECTED]>: >> 1) YAY! >> >> 2) No objections for jarsigner, but rather thanks and encouragement! >> >> 3) You may have been doing the following and I simply missed it, but I'd >> suggest that you keep a stream of patches coming on things like this so >> that people can see and get involved and also discuss more of your >> experience doing this on the list as it happens. >> >> 4) Can you add [tools] to your subject lines? :) >> >> geir >> >> >> >> Anton Rusanov wrote: >> > I'm happy to write this - Keytool is done and operative now. :) >> > It has the same functionality as the one from RI with some >> improvements. >> > In addition to what RI can do the Harmony Keytool is able to >> > * generate X.509 certificates v2, v3. >> > * sign a certificate with another key from the keystore >> > * generate and manage secret keys >> > * convert a keystore to another format >> > * check certificate revocation status >> > * verify a certificate chain >> > * use specific providers for various purposes. >> > >> > There is still a little problem with making an executable of the tool >> > in the build. So you can follow the steps to make it on your own: >> > 1. copy deploy\jdk\jre\bin\java.exe to deploy\jdk\jre\bin\keytool.exe >> > 2. copy deploy\jdk\lib\tools.jar into deploy\jdk\jre\bin\ >> > 3. run keytool.exe >> > >> > I want to thank Mikhail for applying my patches. >> > I'm going to start work on JarSigner tool. Does anyone have objections >> > to me doing this? >> > >> >> - >> Terms of use : http://incubator.apache.org/harmony/mailing.html >> To unsubscribe, e-mail: [EMAIL PROTECTED] >> For additional commands, e-mail: [EMAIL PROTECTED] >> >> > > - > Terms of use : http://incubator.apache.org/harmony/mailing.html > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > > - Terms of use : http://incubator.apache.org/harmony/mailing.html To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [tools] Re: Keytool is done, JarSigner is next.
Hi Anton, I'm trying to run Jigsaw https server. I used Harmony keytool to generate keystore according to Jigsaw mans: keytool -genkey -alias troi.example.com -keypass example -keystore troi.keystore -keyalg RSA so far works OK keytool -selfcert -alias troi.example.com -keystore troi.keystore -keyalg RSA prints this error message: Enter keystore password: example java.security.NoSuchAlgorithmException: The algorithm MD5WithRSAEncryption is not found in the environment. at org.apache.harmony.tools.keytool.KeyCertGenerator.genX509CertImpl(Key CertGenerator.java:40) at org.apache.harmony.tools.keytool.KeyCertGenerator.selfCert(KeyCertGen erator.java:335) at org.apache.harmony.tools.keytool.Main.doWork(Main.java:78) at org.apache.harmony.tools.keytool.Main.run(Main.java:125) at org.apache.harmony.tools.keytool.Main.main(Main.java:141) Any idea how to solve this? Do we miss some functionality in Harmony? Thanks, Mikhail 2006/8/11, Geir Magnusson Jr <[EMAIL PROTECTED]>: 1) YAY! 2) No objections for jarsigner, but rather thanks and encouragement! 3) You may have been doing the following and I simply missed it, but I'd suggest that you keep a stream of patches coming on things like this so that people can see and get involved and also discuss more of your experience doing this on the list as it happens. 4) Can you add [tools] to your subject lines? :) geir Anton Rusanov wrote: > I'm happy to write this - Keytool is done and operative now. :) > It has the same functionality as the one from RI with some improvements. > In addition to what RI can do the Harmony Keytool is able to > * generate X.509 certificates v2, v3. > * sign a certificate with another key from the keystore > * generate and manage secret keys > * convert a keystore to another format > * check certificate revocation status > * verify a certificate chain > * use specific providers for various purposes. > > There is still a little problem with making an executable of the tool > in the build. So you can follow the steps to make it on your own: > 1. copy deploy\jdk\jre\bin\java.exe to deploy\jdk\jre\bin\keytool.exe > 2. copy deploy\jdk\lib\tools.jar into deploy\jdk\jre\bin\ > 3. run keytool.exe > > I want to thank Mikhail for applying my patches. > I'm going to start work on JarSigner tool. Does anyone have objections > to me doing this? > - Terms of use : http://incubator.apache.org/harmony/mailing.html To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - Terms of use : http://incubator.apache.org/harmony/mailing.html To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[tools] Re: Keytool is done, JarSigner is next.
1) YAY! 2) No objections for jarsigner, but rather thanks and encouragement! 3) You may have been doing the following and I simply missed it, but I'd suggest that you keep a stream of patches coming on things like this so that people can see and get involved and also discuss more of your experience doing this on the list as it happens. 4) Can you add [tools] to your subject lines? :) geir Anton Rusanov wrote: > I'm happy to write this - Keytool is done and operative now. :) > It has the same functionality as the one from RI with some improvements. > In addition to what RI can do the Harmony Keytool is able to > * generate X.509 certificates v2, v3. > * sign a certificate with another key from the keystore > * generate and manage secret keys > * convert a keystore to another format > * check certificate revocation status > * verify a certificate chain > * use specific providers for various purposes. > > There is still a little problem with making an executable of the tool > in the build. So you can follow the steps to make it on your own: > 1. copy deploy\jdk\jre\bin\java.exe to deploy\jdk\jre\bin\keytool.exe > 2. copy deploy\jdk\lib\tools.jar into deploy\jdk\jre\bin\ > 3. run keytool.exe > > I want to thank Mikhail for applying my patches. > I'm going to start work on JarSigner tool. Does anyone have objections > to me doing this? > - Terms of use : http://incubator.apache.org/harmony/mailing.html To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]