Package org.eclipse.osgi.signedcontent
Interface SignedContent
public interface SignedContent
A
SignedContent
object represents content which may be signed. A
SignedContentFactory
is used to create signed content objects.
A SignedContent
object is intended to provide information about
the signers of the content, and cannot be used to access the actual data of
the content.
This interface is not intended to be implemented by clients.
- Since:
- 3.4
- Restriction:
- This interface is not intended to be implemented by clients.
-
Method Summary
Modifier and TypeMethodDescriptionvoid
checkValidity
(SignerInfo signerInfo) Checks if the certificates are valid for the specified signer.Returns all entries of the content.getSignedEntry
(String name) Returns the signed entry for the specified name.Returns all the signer infos for thisSignedContent
.getSigningTime
(SignerInfo signerInfo) Returns the signing time for the signer info.getTSASignerInfo
(SignerInfo signerInfo) Returns the TSA signer info used to authenticate the signer time of a signer info.boolean
isSigned()
Returns true if the content is signed; false otherwise.
-
Method Details
-
getSignedEntries
SignedContentEntry[] getSignedEntries()Returns all entries of the content. The returned entries can be used to verify the entry content usingSignedContentEntry.verify()
and get signer info for each entry in this content usingSignedContentEntry.getSignerInfos()
. Note that this operation may be expensive because it requires an exhaustive search for entries over the entire content.Unsigned entries are included in the result. Entries for which signer info exists but no content is found are also returned. For example, when an entry is removed from a signed jar but the jar is not resigned, the signer thinks the entry should exist but the content got removed. This would be considered an invalid entry which would fail verification.
- Returns:
- all entries of the content
-
getSignedEntry
Returns the signed entry for the specified name.- Parameters:
name
- the name of the entry- Returns:
- the entry or null if the entry could not be found
-
getSignerInfos
SignerInfo[] getSignerInfos()Returns all the signer infos for thisSignedContent
. If the content is not signed then an empty array is returned.- Returns:
- all the signer infos for this
SignedContent
-
isSigned
boolean isSigned()Returns true if the content is signed; false otherwise. This is a convenience method equivalent to callinggetSignerInfos()
.length > 0- Returns:
- true if the content is signed
-
getSigningTime
Returns the signing time for the signer info. If no TSA signers exist then null is returned- Parameters:
signerInfo
- the signer info to get the signing time for- Returns:
- the signing time
-
getTSASignerInfo
Returns the TSA signer info used to authenticate the signer time of a signer info.- Parameters:
signerInfo
- the signer info to get the TSA signer for- Returns:
- the TSA signer info
-
checkValidity
void checkValidity(SignerInfo signerInfo) throws CertificateExpiredException, CertificateNotYetValidException Checks if the certificates are valid for the specified signer. If the signer has a singing time returned bygetSigningTime(SignerInfo)
then that time is used to check the validity of the certificates; otherwise the current time is used.- Parameters:
signerInfo
- the signer info to check validity for.- Throws:
CertificateExpiredException
- if one of the certificates of this signer is expiredCertificateNotYetValidException
- if one of the certificates of this signer is not yet valid
-