eu.emi.security.authn.x509.helpers.pkipath.bc
Class RFC3280CertPathUtilitiesHelper

java.lang.Object
  extended by org.bouncycastle.jce.provider.RFC3280CertPathUtilities
      extended by eu.emi.security.authn.x509.helpers.pkipath.bc.RFC3280CertPathUtilitiesHelper

public class RFC3280CertPathUtilitiesHelper
extends RFC3280CertPathUtilities

This class exposes the BC's JCA implementation of the RFC3280CertPathUtilities. It was done to: fix its bugs (only one or two, should be OK in BC 1.47) and to have errors consumable by the rest of this library (most of the code).

Author:
K. Benedyczak (modifications)

Field Summary
 
Fields inherited from class org.bouncycastle.jce.provider.RFC3280CertPathUtilities
ANY_POLICY, AUTHORITY_KEY_IDENTIFIER, BASIC_CONSTRAINTS, CERTIFICATE_POLICIES, CRL_DISTRIBUTION_POINTS, CRL_NUMBER, CRL_SIGN, crlReasons, DELTA_CRL_INDICATOR, FRESHEST_CRL, INHIBIT_ANY_POLICY, ISSUING_DISTRIBUTION_POINT, KEY_CERT_SIGN, KEY_USAGE, NAME_CONSTRAINTS, POLICY_CONSTRAINTS, POLICY_MAPPINGS, SUBJECT_ALTERNATIVE_NAME
 
Constructor Summary
RFC3280CertPathUtilitiesHelper()
           
 
Method Summary
protected static void checkCRLs2(ExtPKIXParameters paramsPKIX, X509Certificate cert, Date validDate, X509Certificate sign, PublicKey workingPublicKey, List<?> certPathCerts)
          Checks a certificate if it is revoked.
protected static void getCertStatus(Date validDate, X509CRL crl, Object cert, CertStatus certStatus)
           
protected static void processCRLB1_2(DistributionPoint dp, Object cert, X509CRL crl)
           
protected static void processCRLB2_2(DistributionPoint dp, Object cert, X509CRL crl)
           
protected static void processCRLC2(X509CRL deltaCRL, X509CRL completeCRL, ExtendedPKIXParameters pkixParams)
           
protected static eu.emi.security.authn.x509.helpers.pkipath.bc.ReasonsMask processCRLD2(X509CRL crl, DistributionPoint dp)
           
protected static Set<?> processCRLF2(X509CRL crl, Object cert, X509Certificate defaultCRLSignCert, PublicKey defaultCRLSignKey, ExtendedPKIXParameters paramsPKIX, List<?> certPathCerts)
           
protected static PublicKey processCRLG2(X509CRL crl, Set<?> keys)
           
protected static X509CRL processCRLH2(Set<?> deltacrls, PublicKey key)
           
protected static void processCRLI(Date validDate, X509CRL deltacrl, Object cert, CertStatus certStatus, ExtendedPKIXParameters pkixParams)
           
protected static void processCRLJ(Date validDate, X509CRL completecrl, Object cert, CertStatus certStatus)
           
 
Methods inherited from class org.bouncycastle.jce.provider.RFC3280CertPathUtilities
checkCRLs, prepareCertB, prepareNextCertA, prepareNextCertG, prepareNextCertH1, prepareNextCertH2, prepareNextCertH3, prepareNextCertI1, prepareNextCertI2, prepareNextCertJ, prepareNextCertK, prepareNextCertL, prepareNextCertM, prepareNextCertN, prepareNextCertO, processCertA, processCertBC, processCertD, processCertE, processCertF, processCRLA1i, processCRLA1ii, processCRLB1, processCRLB2, processCRLC, processCRLD, processCRLF, processCRLG, processCRLH, wrapupCertA, wrapupCertB, wrapupCertF, wrapupCertG
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Constructor Detail

RFC3280CertPathUtilitiesHelper

public RFC3280CertPathUtilitiesHelper()
Method Detail

checkCRLs2

protected static void checkCRLs2(ExtPKIXParameters paramsPKIX,
                                 X509Certificate cert,
                                 Date validDate,
                                 X509Certificate sign,
                                 PublicKey workingPublicKey,
                                 List<?> certPathCerts)
                          throws SimpleValidationErrorException
Checks a certificate if it is revoked.

Parameters:
paramsPKIX - PKIX parameters.
cert - Certificate to check if it is revoked.
validDate - The date when the certificate revocation status should be checked.
sign - The issuer certificate of the certificate cert.
workingPublicKey - The public key of the issuer certificate sign.
certPathCerts - The certificates of the certification path.
Throws:
AnnotatedException - if the certificate is revoked or the status cannot be checked or some error occurs.
SimpleValidationErrorException

processCRLB1_2

protected static void processCRLB1_2(DistributionPoint dp,
                                     Object cert,
                                     X509CRL crl)
                              throws SimpleValidationErrorException
Throws:
SimpleValidationErrorException

processCRLB2_2

protected static void processCRLB2_2(DistributionPoint dp,
                                     Object cert,
                                     X509CRL crl)
                              throws SimpleValidationErrorException
Throws:
SimpleValidationErrorException

processCRLC2

protected static void processCRLC2(X509CRL deltaCRL,
                                   X509CRL completeCRL,
                                   ExtendedPKIXParameters pkixParams)
                            throws SimpleValidationErrorException
Throws:
SimpleValidationErrorException

processCRLF2

protected static Set<?> processCRLF2(X509CRL crl,
                                     Object cert,
                                     X509Certificate defaultCRLSignCert,
                                     PublicKey defaultCRLSignKey,
                                     ExtendedPKIXParameters paramsPKIX,
                                     List<?> certPathCerts)
                              throws SimpleValidationErrorException
Throws:
SimpleValidationErrorException

processCRLH2

protected static X509CRL processCRLH2(Set<?> deltacrls,
                                      PublicKey key)
                               throws SimpleValidationErrorException
Throws:
SimpleValidationErrorException

processCRLG2

protected static PublicKey processCRLG2(X509CRL crl,
                                        Set<?> keys)
                                 throws SimpleValidationErrorException
Throws:
SimpleValidationErrorException

processCRLI

protected static void processCRLI(Date validDate,
                                  X509CRL deltacrl,
                                  Object cert,
                                  CertStatus certStatus,
                                  ExtendedPKIXParameters pkixParams)
                           throws SimpleValidationErrorException
Throws:
SimpleValidationErrorException

processCRLJ

protected static void processCRLJ(Date validDate,
                                  X509CRL completecrl,
                                  Object cert,
                                  CertStatus certStatus)
                           throws SimpleValidationErrorException
Throws:
SimpleValidationErrorException

processCRLD2

protected static eu.emi.security.authn.x509.helpers.pkipath.bc.ReasonsMask processCRLD2(X509CRL crl,
                                                                                        DistributionPoint dp)
                                                                                 throws SimpleValidationErrorException
Throws:
SimpleValidationErrorException

getCertStatus

protected static void getCertStatus(Date validDate,
                                    X509CRL crl,
                                    Object cert,
                                    CertStatus certStatus)
                             throws SimpleValidationErrorException
Throws:
SimpleValidationErrorException


Copyright © 2012-2013 European Middleware Initiative. All Rights Reserved.