| java.lang.Object
 sun.security.x509.Extension
sun.security.x509.CRLDistributionPointsExtension
All known Subclasses: sun.security.x509.FreshestCRLExtension,
| CRLDistributionPointsExtension | | public class CRLDistributionPointsExtension extends Extension implements CertAttrSet<String>(Code) | | Represent the CRL Distribution Points Extension (OID = 2.5.29.31).
The CRL distribution points extension identifies how CRL information
is obtained. The extension SHOULD be non-critical, but the PKIX profile
recommends support for this extension by CAs and applications.
For PKIX, if the cRLDistributionPoints extension contains a
DistributionPointName of type URI, the following semantics MUST be
assumed: the URI is a pointer to the current CRL for the associated
reasons and will be issued by the associated cRLIssuer. The
expected values for the URI conform to the following rules. The
name MUST be a non-relative URL, and MUST follow the URL syntax and
encoding rules specified in [RFC 1738]. The name must include both
a scheme (e.g., "http" or "ftp") and a scheme-specific-part. The
scheme- specific-part must include a fully qualified domain name or
IP address as the host. As specified in [RFC 1738], the scheme
name is not case-sensitive (e.g., "http" is equivalent to "HTTP").
The host part is also not case-sensitive, but other components of
the scheme-specific-part may be case-sensitive. When comparing
URIs, conforming implementations MUST compare the scheme and host
without regard to case, but assume the remainder of the
scheme-specific-part is case sensitive. Processing rules for other
values are not defined by this specification. If the
distributionPoint omits reasons, the CRL MUST include revocations
for all reasons. If the distributionPoint omits cRLIssuer, the CRL
MUST be issued by the CA that issued the certificate.
The ASN.1 definition for this is:
id-ce-cRLDistributionPoints OBJECT IDENTIFIER ::= { id-ce 31 }
cRLDistributionPoints ::= {
CRLDistPointsSyntax }
CRLDistPointsSyntax ::= SEQUENCE SIZE (1..MAX) OF DistributionPoint
author:
Anne Anderson
author:
Andreas Sterbenz
version:
1.13, 05/05/07
since:
1.4.2
See Also: DistributionPoint
See Also: Extension
See Also: CertAttrSet |
| Field Summary | |
| final public static String | IDENT
Identifier for this attribute, to be used with the
get, set, delete methods of Certificate, x509 type. | | final public static String | NAME
Attribute name. | | final public static String | POINTS
|
| IDENT | | final public static String IDENT(Code) | | Identifier for this attribute, to be used with the
get, set, delete methods of Certificate, x509 type.
|
| CRLDistributionPointsExtension | | public CRLDistributionPointsExtension(List<DistributionPoint> distributionPoints) throws IOException(Code) | | Create a CRLDistributionPointsExtension from a List of
DistributionPoint; the criticality is set to false.
Parameters:
distributionPoints - the list of distribution points
throws:
IOException - on error |
| CRLDistributionPointsExtension | | public CRLDistributionPointsExtension(boolean isCritical, List<DistributionPoint> distributionPoints) throws IOException(Code) | | Create a CRLDistributionPointsExtension from a List of
DistributionPoint.
Parameters:
isCritical - the criticality setting.
Parameters:
distributionPoints - the list of distribution points
throws:
IOException - on error |
| CRLDistributionPointsExtension | | public CRLDistributionPointsExtension(Boolean critical, Object value) throws IOException(Code) | | Create the extension from the passed DER encoded value of the same.
Parameters:
critical - true if the extension is to be treated as critical.
Parameters:
value - Array of DER encoded bytes of the actual value.
exception:
IOException - on error. |
| encode | | public void encode(OutputStream out) throws IOException(Code) | | Write the extension to the DerOutputStream.
Parameters:
out - the DerOutputStream to write the extension to.
exception:
IOException - on encoding errors. |
| getElements | | public Enumeration<String> getElements()(Code) | | Return an enumeration of names of attributes existing within this
attribute.
|
| getName | | public String getName()(Code) | | Return the name of this attribute.
|
| toString | | public String toString()(Code) | | Return the extension as user readable string.
|
|
|