eu.emi.security.authn.x509.helpers.pkipath.bc
Class RFC3280CertPathUtilitiesHelper
java.lang.Object
org.bouncycastle.jce.provider.RFC3280CertPathUtilities
eu.emi.security.authn.x509.helpers.pkipath.bc.RFC3280CertPathUtilitiesHelper
public class RFC3280CertPathUtilitiesHelper
- extends RFC3280CertPathUtilities
This class exposes the BC's JCA implementation of the RFC3280CertPathUtilities
.
It was done to: fix its bugs (only one or two, should be OK in BC 1.47) and
to have errors consumable by the rest of this library (most of the code).
- Author:
- K. Benedyczak (modifications)
Fields inherited from class org.bouncycastle.jce.provider.RFC3280CertPathUtilities |
ANY_POLICY, AUTHORITY_KEY_IDENTIFIER, BASIC_CONSTRAINTS, CERTIFICATE_POLICIES, CRL_DISTRIBUTION_POINTS, CRL_NUMBER, CRL_SIGN, crlReasons, DELTA_CRL_INDICATOR, FRESHEST_CRL, INHIBIT_ANY_POLICY, ISSUING_DISTRIBUTION_POINT, KEY_CERT_SIGN, KEY_USAGE, NAME_CONSTRAINTS, POLICY_CONSTRAINTS, POLICY_MAPPINGS, SUBJECT_ALTERNATIVE_NAME |
Method Summary |
protected static void |
checkCRLs2(ExtPKIXParameters paramsPKIX,
X509Certificate cert,
Date validDate,
X509Certificate sign,
PublicKey workingPublicKey,
List<?> certPathCerts)
Checks a certificate if it is revoked. |
protected static void |
getCertStatus(Date validDate,
X509CRL crl,
Object cert,
CertStatus certStatus)
|
protected static void |
processCRLB1_2(DistributionPoint dp,
Object cert,
X509CRL crl)
|
protected static void |
processCRLB2_2(DistributionPoint dp,
Object cert,
X509CRL crl)
|
protected static void |
processCRLC2(X509CRL deltaCRL,
X509CRL completeCRL,
ExtendedPKIXParameters pkixParams)
|
protected static eu.emi.security.authn.x509.helpers.pkipath.bc.ReasonsMask |
processCRLD2(X509CRL crl,
DistributionPoint dp)
|
protected static Set<?> |
processCRLF2(X509CRL crl,
Object cert,
X509Certificate defaultCRLSignCert,
PublicKey defaultCRLSignKey,
ExtendedPKIXParameters paramsPKIX,
List<?> certPathCerts)
|
protected static PublicKey |
processCRLG2(X509CRL crl,
Set<?> keys)
|
protected static X509CRL |
processCRLH2(Set<?> deltacrls,
PublicKey key)
|
protected static void |
processCRLI(Date validDate,
X509CRL deltacrl,
Object cert,
CertStatus certStatus,
ExtendedPKIXParameters pkixParams)
|
protected static void |
processCRLJ(Date validDate,
X509CRL completecrl,
Object cert,
CertStatus certStatus)
|
Methods inherited from class org.bouncycastle.jce.provider.RFC3280CertPathUtilities |
checkCRLs, prepareCertB, prepareNextCertA, prepareNextCertG, prepareNextCertH1, prepareNextCertH2, prepareNextCertH3, prepareNextCertI1, prepareNextCertI2, prepareNextCertJ, prepareNextCertK, prepareNextCertL, prepareNextCertM, prepareNextCertN, prepareNextCertO, processCertA, processCertBC, processCertD, processCertE, processCertF, processCRLA1i, processCRLA1ii, processCRLB1, processCRLB2, processCRLC, processCRLD, processCRLF, processCRLG, processCRLH, wrapupCertA, wrapupCertB, wrapupCertF, wrapupCertG |
Methods inherited from class java.lang.Object |
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
RFC3280CertPathUtilitiesHelper
public RFC3280CertPathUtilitiesHelper()
checkCRLs2
protected static void checkCRLs2(ExtPKIXParameters paramsPKIX,
X509Certificate cert,
Date validDate,
X509Certificate sign,
PublicKey workingPublicKey,
List<?> certPathCerts)
throws SimpleValidationErrorException
- Checks a certificate if it is revoked.
- Parameters:
paramsPKIX
- PKIX parameters.cert
- Certificate to check if it is revoked.validDate
- The date when the certificate revocation status
should be checked.sign
- The issuer certificate of the certificate
cert
.workingPublicKey
- The public key of the issuer certificate
sign
.certPathCerts
- The certificates of the certification path.
- Throws:
AnnotatedException
- if the certificate is revoked or the
status cannot be checked or some error occurs.
SimpleValidationErrorException
processCRLB1_2
protected static void processCRLB1_2(DistributionPoint dp,
Object cert,
X509CRL crl)
throws SimpleValidationErrorException
- Throws:
SimpleValidationErrorException
processCRLB2_2
protected static void processCRLB2_2(DistributionPoint dp,
Object cert,
X509CRL crl)
throws SimpleValidationErrorException
- Throws:
SimpleValidationErrorException
processCRLC2
protected static void processCRLC2(X509CRL deltaCRL,
X509CRL completeCRL,
ExtendedPKIXParameters pkixParams)
throws SimpleValidationErrorException
- Throws:
SimpleValidationErrorException
processCRLF2
protected static Set<?> processCRLF2(X509CRL crl,
Object cert,
X509Certificate defaultCRLSignCert,
PublicKey defaultCRLSignKey,
ExtendedPKIXParameters paramsPKIX,
List<?> certPathCerts)
throws SimpleValidationErrorException
- Throws:
SimpleValidationErrorException
processCRLH2
protected static X509CRL processCRLH2(Set<?> deltacrls,
PublicKey key)
throws SimpleValidationErrorException
- Throws:
SimpleValidationErrorException
processCRLG2
protected static PublicKey processCRLG2(X509CRL crl,
Set<?> keys)
throws SimpleValidationErrorException
- Throws:
SimpleValidationErrorException
processCRLI
protected static void processCRLI(Date validDate,
X509CRL deltacrl,
Object cert,
CertStatus certStatus,
ExtendedPKIXParameters pkixParams)
throws SimpleValidationErrorException
- Throws:
SimpleValidationErrorException
processCRLJ
protected static void processCRLJ(Date validDate,
X509CRL completecrl,
Object cert,
CertStatus certStatus)
throws SimpleValidationErrorException
- Throws:
SimpleValidationErrorException
processCRLD2
protected static eu.emi.security.authn.x509.helpers.pkipath.bc.ReasonsMask processCRLD2(X509CRL crl,
DistributionPoint dp)
throws SimpleValidationErrorException
- Throws:
SimpleValidationErrorException
getCertStatus
protected static void getCertStatus(Date validDate,
X509CRL crl,
Object cert,
CertStatus certStatus)
throws SimpleValidationErrorException
- Throws:
SimpleValidationErrorException
Copyright © 2012-2013 European Middleware Initiative. All Rights Reserved.