Java Doc for CertPathValidatorUtilities.java in  » Security » Bouncy-Castle » org » bouncycastle » jce » provider » Java Source Code / Java DocumentationJava Source Code and Java Documentation

Java Source Code / Java Documentation
1. 6.0 JDK Core
2. 6.0 JDK Modules
3. 6.0 JDK Modules com.sun
4. 6.0 JDK Modules com.sun.java
5. 6.0 JDK Modules sun
6. 6.0 JDK Platform
7. Ajax
8. Apache Harmony Java SE
9. Aspect oriented
10. Authentication Authorization
11. Blogger System
12. Build
13. Byte Code
14. Cache
15. Chart
16. Chat
17. Code Analyzer
18. Collaboration
19. Content Management System
20. Database Client
21. Database DBMS
22. Database JDBC Connection Pool
23. Database ORM
24. Development
25. EJB Server geronimo
26. EJB Server GlassFish
27. EJB Server JBoss 4.2.1
28. EJB Server resin 3.1.5
29. ERP CRM Financial
30. ESB
31. Forum
32. GIS
33. Graphic Library
34. Groupware
35. HTML Parser
36. IDE
37. IDE Eclipse
38. IDE Netbeans
39. Installer
40. Internationalization Localization
41. Inversion of Control
42. Issue Tracking
43. J2EE
44. JBoss
45. JMS
46. JMX
47. Library
48. Mail Clients
49. Net
50. Parser
51. PDF
52. Portal
53. Profiler
54. Project Management
55. Report
56. RSS RDF
57. Rule Engine
58. Science
59. Scripting
60. Search Engine
61. Security
62. Sevlet Container
63. Source Control
64. Swing Library
65. Template Engine
66. Test Coverage
67. Testing
68. UML
69. Web Crawler
70. Web Framework
71. Web Mail
72. Web Server
73. Web Services
74. Web Services apache cxf 2.0.1
75. Web Services AXIS2
76. Wiki Engine
77. Workflow Engines
78. XML
79. XML UI
Java
Java Tutorial
Java Open Source
Jar File Download
Java Articles
Java Products
Java by API
Photoshop Tutorials
Maya Tutorials
Flash Tutorials
3ds-Max Tutorials
Illustrator Tutorials
GIMP Tutorials
C# / C Sharp
C# / CSharp Tutorial
C# / CSharp Open Source
ASP.Net
ASP.NET Tutorial
JavaScript DHTML
JavaScript Tutorial
JavaScript Reference
HTML / CSS
HTML CSS Reference
C / ANSI-C
C Tutorial
C++
C++ Tutorial
Ruby
PHP
Python
Python Tutorial
Python Open Source
SQL Server / T-SQL
SQL Server / T-SQL Tutorial
Oracle PL / SQL
Oracle PL/SQL Tutorial
PostgreSQL
SQL / MySQL
MySQL Tutorial
VB.Net
VB.Net Tutorial
Flash / Flex / ActionScript
VBA / Excel / Access / Word
XML
XML Tutorial
Microsoft Office PowerPoint 2007 Tutorial
Microsoft Office Excel 2007 Tutorial
Microsoft Office Word 2007 Tutorial
Java Source Code / Java Documentation » Security » Bouncy Castle » org.bouncycastle.jce.provider 
Source Cross Reference  Class Diagram Java Document (Java Doc) 


java.lang.Object
   org.bouncycastle.jce.provider.CertPathValidatorUtilities

All known Subclasses:   org.bouncycastle.x509.PKIXCertPathReviewer,  org.bouncycastle.jce.provider.RFC3281CertPathUtilities,
CertPathValidatorUtilities
public class CertPathValidatorUtilities (Code)


Field Summary
final protected static  StringANY_POLICY
    
final protected static  StringAUTHORITY_KEY_IDENTIFIER
    
final protected static  StringBASIC_CONSTRAINTS
    
final protected static  StringCERTIFICATE_POLICIES
    
final protected static  StringCRL_DISTRIBUTION_POINTS
    
final protected static  StringCRL_NUMBER
    
final protected static  intCRL_SIGN
    
final protected static  StringDELTA_CRL_INDICATOR
    
final protected static  StringFRESHEST_CRL
    
final protected static  StringINHIBIT_ANY_POLICY
    
final protected static  StringISSUING_DISTRIBUTION_POINT
    
final protected static  intKEY_CERT_SIGN
    
final protected static  StringKEY_USAGE
    
final protected static  StringNAME_CONSTRAINTS
    
final protected static  StringPOLICY_CONSTRAINTS
    
final protected static  StringPOLICY_MAPPINGS
    
final protected static  StringSUBJECT_ALTERNATIVE_NAME
    
final protected static  String[]crlReasons
    


Method Summary
protected static  voidaddAdditionalStoreFromLocation(String location, ExtendedPKIXParameters pkixParams)
    
protected static  voidaddAdditionalStoresFromCRLDistributionPoint(CRLDistPoint crldp, ExtendedPKIXParameters pkixParams)
    
final protected static  CollectionfindCRLs(X509CRLSelector crlSelect, List crlStores)
     Return a Collection of all CRLs found in the CertStore's that are matching the crlSelect criteriums.
Parameters:
  crlSelect - a CertSelector CertSelectorobject that will be used to select the CRLs
Parameters:
  crlStores - a List containing only CertStoreCertStore objects.
final protected static  CollectionfindCRLs(X509CRLStoreSelector crlSelect, List crlStores)
     Return a Collection of all CRLs found in the X509Store's that are matching the crlSelect criteriums.
Parameters:
  crlSelect - a X509CRLStoreSelector object that will be usedto select the CRLs
Parameters:
  crlStores - a List containing onlyorg.bouncycastle.x509.X509Store X509Store objects.These are used to search for CRLs a Collection of all found X509CRL X509CRL objects.
protected static  CollectionfindCertificates(CertSelector certSelect, List certStores)
     Return a Collection of all certificates found in the CertStore's that are matching the certSelect criteriums.
Parameters:
  certSelect - a CertSelector CertSelector object that willbe used to select the certificates
Parameters:
  certStores - a List containing only CertStore CertStoreobjects.
protected static  CollectionfindCertificates(Selector certSelect, List certStores)
     Return a Collection of all certificates or attribute certificates found in the X509Store's that are matching the certSelect criteriums.
Parameters:
  certSelect - a Selector object that will be used to selectthe certificates
Parameters:
  certStores - a List containing only X509Store objects.
final protected static  TrustAnchorfindTrustAnchor(X509Certificate cert, CertPath certPath, int index, Set trustAnchors)
     Search the given Set of TrustAnchor's for one that is the issuer of the given X509 certificate.
Parameters:
  cert - the X509 certificate
Parameters:
  trustAnchors - a Set of TrustAnchor's the TrustAnchor object if found ornull if not.
exception:
  CertPathValidatorException - if a TrustAnchor wasfound but the signature verification on the given certificatehas thrown an exception.
protected static  AlgorithmIdentifiergetAlgorithmIdentifier(PublicKey key)
    
protected static  voidgetCRLIssuersFromDistributionPoint(DistributionPoint dp, Collection issuerPrincipals, X509CRLStoreSelector selector, ExtendedPKIXParameters pkixParams)
     Add the CRL issuers from the cRLIssuer field of the distribution point or from the certificate if not given to the issuer criterion of the selector.

The issuerPrincipals are a collection with a single X500Principal for X509Certificates.

protected static  voidgetCertStatus(Date validDate, X509CRL crl, BigInteger serialNumber, CertStatus certStatus)
    
protected static  SetgetCompleteCRLs(DistributionPoint dp, Object cert, Date currentDate, ExtendedPKIXParameters paramsPKIX)
     Fetches complete CRLs according to RFC 3280.
Parameters:
  dp - The distribution point for which the complete CRL
Parameters:
  cert - The X509Certificate ororg.bouncycastle.x509.X509AttributeCertificate forwhich the CRL should be searched.
Parameters:
  currentDate - The date for which the delta CRLs must be valid.
Parameters:
  paramsPKIX - The extended PKIX parameters.
protected static  SetgetDeltaCRLs(Date currentDate, ExtendedPKIXParameters paramsPKIX, X509CRL completeCRL)
     Fetches delta CRLs according to RFC 3280 section 5.2.4.
Parameters:
  currentDate - The date for which the delta CRLs must be valid.
Parameters:
  paramsPKIX - The extended PKIX parameters.
Parameters:
  completeCRL - The complete CRL the delta CRL is for.
protected static  X500PrincipalgetEncodedIssuerPrincipal(Object cert)
     Returns the issuer of an attribute certificate or certificate.
Parameters:
  cert - The attribute certificate or certificate.
protected static  DERObjectgetExtensionValue(java.security.cert.X509Extension ext, String oid)
     extract the value of the given extension, if it exists.
protected static  X500PrincipalgetIssuerPrincipal(X509CRL crl)
    
protected static  PublicKeygetNextWorkingKey(X509Certificate cert, List certs, int index)
     Return the next working key inheriting DSA parameters if necessary.

This methods inherits DSA parameters from the indexed certificate or previous certificates in the certificate chain to the returned PublicKey.

final protected static  SetgetQualifierSet(ASN1Sequence qualifiers)
    
protected static  X500PrincipalgetSubjectPrincipal(X509Certificate cert)
    
protected static  DategetValidCertDateFromValidityModel(ExtendedPKIXParameters paramsPKIX, CertPath certPath, int index)
    
protected static  DategetValidDate(PKIXParameters paramsPKIX)
    
protected static  booleanisAnyPolicy(Set policySet)
    
protected static  booleanisSelfIssued(X509Certificate cert)
    
protected static  voidprepareNextCertB1(int i, List[] policyNodes, String id_p, Map m_idp, X509Certificate cert)
    
protected static  PKIXPolicyNodeprepareNextCertB2(int i, List[] policyNodes, String id_p, PKIXPolicyNode validPolicyTree)
    
protected static  booleanprocessCertD1i(int index, List[] policyNodes, DERObjectIdentifier pOid, Set pq)
    
protected static  voidprocessCertD1ii(int index, List[] policyNodes, DERObjectIdentifier _poid, Set _pq)
    
protected static  PKIXPolicyNoderemovePolicyNode(PKIXPolicyNode validPolicyTree, List[] policyNodes, PKIXPolicyNode _node)
    

Field Detail
ANY_POLICY
final protected static String ANY_POLICY(Code)


AUTHORITY_KEY_IDENTIFIER
final protected static String AUTHORITY_KEY_IDENTIFIER(Code)


BASIC_CONSTRAINTS
final protected static String BASIC_CONSTRAINTS(Code)


CERTIFICATE_POLICIES
final protected static String CERTIFICATE_POLICIES(Code)


CRL_DISTRIBUTION_POINTS
final protected static String CRL_DISTRIBUTION_POINTS(Code)


CRL_NUMBER
final protected static String CRL_NUMBER(Code)


CRL_SIGN
final protected static int CRL_SIGN(Code)


DELTA_CRL_INDICATOR
final protected static String DELTA_CRL_INDICATOR(Code)


FRESHEST_CRL
final protected static String FRESHEST_CRL(Code)


INHIBIT_ANY_POLICY
final protected static String INHIBIT_ANY_POLICY(Code)


ISSUING_DISTRIBUTION_POINT
final protected static String ISSUING_DISTRIBUTION_POINT(Code)


KEY_CERT_SIGN
final protected static int KEY_CERT_SIGN(Code)


KEY_USAGE
final protected static String KEY_USAGE(Code)


NAME_CONSTRAINTS
final protected static String NAME_CONSTRAINTS(Code)


POLICY_CONSTRAINTS
final protected static String POLICY_CONSTRAINTS(Code)


POLICY_MAPPINGS
final protected static String POLICY_MAPPINGS(Code)


SUBJECT_ALTERNATIVE_NAME
final protected static String SUBJECT_ALTERNATIVE_NAME(Code)


crlReasons
final protected static String[] crlReasons(Code)




Method Detail
addAdditionalStoreFromLocation
protected static void addAdditionalStoreFromLocation(String location, ExtendedPKIXParameters pkixParams)(Code)


addAdditionalStoresFromCRLDistributionPoint
protected static void addAdditionalStoresFromCRLDistributionPoint(CRLDistPoint crldp, ExtendedPKIXParameters pkixParams) throws AnnotatedException(Code)


findCRLs
final protected static Collection findCRLs(X509CRLSelector crlSelect, List crlStores) throws AnnotatedException(Code)
Return a Collection of all CRLs found in the CertStore's that are matching the crlSelect criteriums.
Parameters:
  crlSelect - a CertSelector CertSelectorobject that will be used to select the CRLs
Parameters:
  crlStores - a List containing only CertStoreCertStore objects. These are used to search forCRLs a Collection of all found CRL CRLobjects. May be empty but never null.


findCRLs
final protected static Collection findCRLs(X509CRLStoreSelector crlSelect, List crlStores) throws AnnotatedException(Code)
Return a Collection of all CRLs found in the X509Store's that are matching the crlSelect criteriums.
Parameters:
  crlSelect - a X509CRLStoreSelector object that will be usedto select the CRLs
Parameters:
  crlStores - a List containing onlyorg.bouncycastle.x509.X509Store X509Store objects.These are used to search for CRLs a Collection of all found X509CRL X509CRL objects. May beempty but never null.


findCertificates
protected static Collection findCertificates(CertSelector certSelect, List certStores) throws AnnotatedException(Code)
Return a Collection of all certificates found in the CertStore's that are matching the certSelect criteriums.
Parameters:
  certSelect - a CertSelector CertSelector object that willbe used to select the certificates
Parameters:
  certStores - a List containing only CertStore CertStoreobjects. These are used to search for certificates a Collection of all found java.security.cert.Certificate Certificateobjects. May be empty but never null.


findCertificates
protected static Collection findCertificates(Selector certSelect, List certStores) throws AnnotatedException(Code)
Return a Collection of all certificates or attribute certificates found in the X509Store's that are matching the certSelect criteriums.
Parameters:
  certSelect - a Selector object that will be used to selectthe certificates
Parameters:
  certStores - a List containing only X509Store objects. Theseare used to search for certificates. a Collection of all found X509Certificate ororg.bouncycastle.x509.X509AttributeCertificate objects.May be empty but never null.


findTrustAnchor
final protected static TrustAnchor findTrustAnchor(X509Certificate cert, CertPath certPath, int index, Set trustAnchors) throws CertPathValidatorException(Code)
Search the given Set of TrustAnchor's for one that is the issuer of the given X509 certificate.
Parameters:
  cert - the X509 certificate
Parameters:
  trustAnchors - a Set of TrustAnchor's the TrustAnchor object if found ornull if not.
exception:
  CertPathValidatorException - if a TrustAnchor wasfound but the signature verification on the given certificatehas thrown an exception. This Exception can be obtainted withgetCause() method.


getAlgorithmIdentifier
protected static AlgorithmIdentifier getAlgorithmIdentifier(PublicKey key) throws CertPathValidatorException(Code)


getCRLIssuersFromDistributionPoint
protected static void getCRLIssuersFromDistributionPoint(DistributionPoint dp, Collection issuerPrincipals, X509CRLStoreSelector selector, ExtendedPKIXParameters pkixParams) throws AnnotatedException(Code)
Add the CRL issuers from the cRLIssuer field of the distribution point or from the certificate if not given to the issuer criterion of the selector.

The issuerPrincipals are a collection with a single X500Principal for X509Certificates. For X509AttributeCertificate s the issuer may contain more than one X500Principal.
Parameters:
  dp - The distribution point.
Parameters:
  issuerPrincipals - The issuers of the certificate or atributecertificate which contains the distribution point.
Parameters:
  selector - The CRL selector.
Parameters:
  pkixParams - The PKIX parameters containing the cert stores.
throws:
  AnnotatedException - if an exception occurs while processing.
throws:
  ClassCastException - if issuerPrincipals does notcontain only X500Principals.



getCertStatus
protected static void getCertStatus(Date validDate, X509CRL crl, BigInteger serialNumber, CertStatus certStatus) throws AnnotatedException(Code)


getCompleteCRLs
protected static Set getCompleteCRLs(DistributionPoint dp, Object cert, Date currentDate, ExtendedPKIXParameters paramsPKIX) throws AnnotatedException(Code)
Fetches complete CRLs according to RFC 3280.
Parameters:
  dp - The distribution point for which the complete CRL
Parameters:
  cert - The X509Certificate ororg.bouncycastle.x509.X509AttributeCertificate forwhich the CRL should be searched.
Parameters:
  currentDate - The date for which the delta CRLs must be valid.
Parameters:
  paramsPKIX - The extended PKIX parameters. A Set of X509CRLs with completeCRLs.
throws:
  AnnotatedException - if an exception occurs while picking the CRLsor no CRLs are found.


getDeltaCRLs
protected static Set getDeltaCRLs(Date currentDate, ExtendedPKIXParameters paramsPKIX, X509CRL completeCRL) throws AnnotatedException(Code)
Fetches delta CRLs according to RFC 3280 section 5.2.4.
Parameters:
  currentDate - The date for which the delta CRLs must be valid.
Parameters:
  paramsPKIX - The extended PKIX parameters.
Parameters:
  completeCRL - The complete CRL the delta CRL is for. A Set of X509CRLs with delta CRLs.
throws:
  AnnotatedException - if an exception occurs while picking the deltaCRLs or no delta CRLs are found.


getEncodedIssuerPrincipal
protected static X500Principal getEncodedIssuerPrincipal(Object cert)(Code)
Returns the issuer of an attribute certificate or certificate.
Parameters:
  cert - The attribute certificate or certificate. The issuer as X500Principal.


getExtensionValue
protected static DERObject getExtensionValue(java.security.cert.X509Extension ext, String oid) throws AnnotatedException(Code)
extract the value of the given extension, if it exists.


getIssuerPrincipal
protected static X500Principal getIssuerPrincipal(X509CRL crl)(Code)


getNextWorkingKey
protected static PublicKey getNextWorkingKey(X509Certificate cert, List certs, int index) throws CertPathValidatorException(Code)
Return the next working key inheriting DSA parameters if necessary.

This methods inherits DSA parameters from the indexed certificate or previous certificates in the certificate chain to the returned PublicKey. The list is searched upwards, meaning the end certificate is at position 0 and previous certificates are following.

If the indexed certificate does not contain a DSA key this method simply returns the public key. If the DSA key already contains DSA parameters the key is also only returned.


Parameters:
  certs - The certification path.
Parameters:
  index - The index of the certificate which contains the public keywhich should be extended with DSA parameters. The public key of the certificate in list positionindex extended with DSA parameters if applicable.
throws:
  AnnotatedException - if DSA parameters cannot be inherited.


getQualifierSet
final protected static Set getQualifierSet(ASN1Sequence qualifiers) throws CertPathValidatorException(Code)


getSubjectPrincipal
protected static X500Principal getSubjectPrincipal(X509Certificate cert)(Code)


getValidCertDateFromValidityModel
protected static Date getValidCertDateFromValidityModel(ExtendedPKIXParameters paramsPKIX, CertPath certPath, int index) throws AnnotatedException(Code)


getValidDate
protected static Date getValidDate(PKIXParameters paramsPKIX)(Code)


isAnyPolicy
protected static boolean isAnyPolicy(Set policySet)(Code)


isSelfIssued
protected static boolean isSelfIssued(X509Certificate cert)(Code)


prepareNextCertB1
protected static void prepareNextCertB1(int i, List[] policyNodes, String id_p, Map m_idp, X509Certificate cert) throws AnnotatedException, CertPathValidatorException(Code)


prepareNextCertB2
protected static PKIXPolicyNode prepareNextCertB2(int i, List[] policyNodes, String id_p, PKIXPolicyNode validPolicyTree)(Code)


processCertD1i
protected static boolean processCertD1i(int index, List[] policyNodes, DERObjectIdentifier pOid, Set pq)(Code)


processCertD1ii
protected static void processCertD1ii(int index, List[] policyNodes, DERObjectIdentifier _poid, Set _pq)(Code)


removePolicyNode
protected static PKIXPolicyNode removePolicyNode(PKIXPolicyNode validPolicyTree, List[] policyNodes, PKIXPolicyNode _node)(Code)


Methods inherited from java.lang.Object
native protected Object clone() throws CloneNotSupportedException(Code)(Java Doc)
public boolean equals(Object obj)(Code)(Java Doc)
protected void finalize() throws Throwable(Code)(Java Doc)
final native public Class getClass()(Code)(Java Doc)
native public int hashCode()(Code)(Java Doc)
final native public void notify()(Code)(Java Doc)
final native public void notifyAll()(Code)(Java Doc)
public String toString()(Code)(Java Doc)
final native public void wait(long timeout) throws InterruptedException(Code)(Java Doc)
final public void wait(long timeout, int nanos) throws InterruptedException(Code)(Java Doc)
final public void wait() throws InterruptedException(Code)(Java Doc)

www.java2java.com | Contact Us
Copyright 2009 - 12 Demo Source and Support. All rights reserved.
All other trademarks are property of their respective owners.