org.bouncycastle.cert.jcajce

Class JcaX509ExtensionUtils

java.lang.Object

org.bouncycastle.cert.X509ExtensionUtils

org.bouncycastle.cert.jcajce.JcaX509ExtensionUtils

public class JcaX509ExtensionUtils
extends X509ExtensionUtils

Constructor Summary

Constructors

Constructor and Description
JcaX509ExtensionUtils() Create a utility class pre-configured with a SHA-1 digest calculator based on the default implementation.
JcaX509ExtensionUtils(org.bouncycastle.operator.DigestCalculator calculator)

Method Summary

Modifier and Type	Method and Description
AuthorityKeyIdentifier	createAuthorityKeyIdentifier(java.security.PublicKey pubKey) Create an AuthorityKeyIdentifier from the passed in SubjectPublicKeyInfo.
AuthorityKeyIdentifier	createAuthorityKeyIdentifier(java.security.PublicKey pubKey, GeneralNames generalNames, java.math.BigInteger serial) Create an AuthorityKeyIdentifier from the passed in arguments.
AuthorityKeyIdentifier	createAuthorityKeyIdentifier(java.security.PublicKey pubKey, javax.security.auth.x500.X500Principal name, java.math.BigInteger serial) Create an AuthorityKeyIdentifier from the passed in arguments.
AuthorityKeyIdentifier	createAuthorityKeyIdentifier(java.security.cert.X509Certificate cert) Create an AuthorityKeyIdentifier from the passed in SubjectPublicKeyInfo.
SubjectKeyIdentifier	createSubjectKeyIdentifier(java.security.PublicKey publicKey) Return a RFC 3280 type 1 key identifier.
SubjectKeyIdentifier	createTruncatedSubjectKeyIdentifier(java.security.PublicKey publicKey) Return a RFC 3280 type 2 key identifier.
static java.util.Collection	getIssuerAlternativeNames(java.security.cert.X509Certificate cert)
static java.util.Collection	getSubjectAlternativeNames(java.security.cert.X509Certificate cert)
static ASN1Primitive	parseExtensionValue(byte[] encExtValue) Return the ASN.1 object contained in a byte[] returned by a getExtensionValue() call.

Methods inherited from class org.bouncycastle.cert.X509ExtensionUtils

createAuthorityKeyIdentifier

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

JcaX509ExtensionUtils

public JcaX509ExtensionUtils()
                      throws java.security.NoSuchAlgorithmException

Create a utility class pre-configured with a SHA-1 digest calculator based on the default implementation.

Throws:

java.security.NoSuchAlgorithmException

JcaX509ExtensionUtils

public JcaX509ExtensionUtils(org.bouncycastle.operator.DigestCalculator calculator)

Method Detail

createAuthorityKeyIdentifier

public AuthorityKeyIdentifier createAuthorityKeyIdentifier(java.security.cert.X509Certificate cert)
                                                    throws java.security.cert.CertificateEncodingException

Description copied from class: X509ExtensionUtils

Create an AuthorityKeyIdentifier from the passed in SubjectPublicKeyInfo.

Overrides:

createAuthorityKeyIdentifier in class X509ExtensionUtils

Parameters:

cert - the SubjectPublicKeyInfo to base the key identifier on.

Returns:

an AuthorityKeyIdentifier.

Throws:

java.security.cert.CertificateEncodingException

createAuthorityKeyIdentifier

public AuthorityKeyIdentifier createAuthorityKeyIdentifier(java.security.PublicKey pubKey)

Description copied from class: X509ExtensionUtils

Create an AuthorityKeyIdentifier from the passed in SubjectPublicKeyInfo.

Overrides:

createAuthorityKeyIdentifier in class X509ExtensionUtils

Parameters:

pubKey - the SubjectPublicKeyInfo to base the key identifier on.

Returns:

an AuthorityKeyIdentifier.

createAuthorityKeyIdentifier

public AuthorityKeyIdentifier createAuthorityKeyIdentifier(java.security.PublicKey pubKey,
                                                           javax.security.auth.x500.X500Principal name,
                                                           java.math.BigInteger serial)

Description copied from class: X509ExtensionUtils

Create an AuthorityKeyIdentifier from the passed in arguments.

Overrides:

createAuthorityKeyIdentifier in class X509ExtensionUtils

Parameters:

pubKey - the SubjectPublicKeyInfo to base the key identifier on.

name - the general names to associate with the issuer cert's issuer.

serial - the serial number of the issuer cert.

Returns:

an AuthorityKeyIdentifier.

createAuthorityKeyIdentifier

public AuthorityKeyIdentifier createAuthorityKeyIdentifier(java.security.PublicKey pubKey,
                                                           GeneralNames generalNames,
                                                           java.math.BigInteger serial)

Description copied from class: X509ExtensionUtils

Create an AuthorityKeyIdentifier from the passed in arguments.

Overrides:

createAuthorityKeyIdentifier in class X509ExtensionUtils

Parameters:

pubKey - the SubjectPublicKeyInfo to base the key identifier on.

generalNames - the general names to associate with the issuer cert's issuer.

serial - the serial number of the issuer cert.

Returns:

an AuthorityKeyIdentifier.

createSubjectKeyIdentifier

public SubjectKeyIdentifier createSubjectKeyIdentifier(java.security.PublicKey publicKey)

Return a RFC 3280 type 1 key identifier. As in:

 (1) The keyIdentifier is composed of the 160-bit SHA-1 hash of the
 value of the BIT STRING subjectPublicKey (excluding the tag,
 length, and number of unused bits).
 

Overrides:

createSubjectKeyIdentifier in class X509ExtensionUtils

Parameters:

publicKey - the key object containing the key identifier is to be based on.

Returns:

the key identifier.

createTruncatedSubjectKeyIdentifier

public SubjectKeyIdentifier createTruncatedSubjectKeyIdentifier(java.security.PublicKey publicKey)

Return a RFC 3280 type 2 key identifier. As in:

 (2) The keyIdentifier is composed of a four bit type field with
 the value 0100 followed by the least significant 60 bits of the
 SHA-1 hash of the value of the BIT STRING subjectPublicKey.
 

Overrides:

createTruncatedSubjectKeyIdentifier in class X509ExtensionUtils

Parameters:

publicKey - the key object of interest.

Returns:

the key identifier.

parseExtensionValue

public static ASN1Primitive parseExtensionValue(byte[] encExtValue)
                                         throws java.io.IOException

Return the ASN.1 object contained in a byte[] returned by a getExtensionValue() call.

Parameters:

encExtValue - DER encoded OCTET STRING containing the DER encoded extension object.

Returns:

an ASN.1 object

Throws:

java.io.IOException - on a parsing error.

getIssuerAlternativeNames

public static java.util.Collection getIssuerAlternativeNames(java.security.cert.X509Certificate cert)
                                                      throws java.security.cert.CertificateParsingException

Throws:

java.security.cert.CertificateParsingException

getSubjectAlternativeNames

public static java.util.Collection getSubjectAlternativeNames(java.security.cert.X509Certificate cert)
                                                       throws java.security.cert.CertificateParsingException

Throws:

java.security.cert.CertificateParsingException