Example 26 with Signature
use of com.github.zhenwei.core.asn1.ocsp.Signature in project LinLong-Java by zhenwei1108.
the class X509V3CertificateGenerator method generateJcaObject.
private X509Certificate generateJcaObject(TBSCertificate tbsCert, byte[] signature) throws Exception {
ASN1EncodableVector v = new ASN1EncodableVector();
v.add(tbsCert);
v.add(sigAlgId);
v.add(new DERBitString(signature));
return (X509Certificate) certificateFactory.engineGenerateCertificate(new ByteArrayInputStream(new DERSequence(v).getEncoded(ASN1Encoding.DER)));
}
Also used :
DERSequence(com.github.zhenwei.core.asn1.DERSequence)
ByteArrayInputStream(java.io.ByteArrayInputStream)
ASN1EncodableVector(com.github.zhenwei.core.asn1.ASN1EncodableVector)
DERBitString(com.github.zhenwei.core.asn1.DERBitString)
X509Certificate(java.security.cert.X509Certificate)
Example 27 with Signature
use of com.github.zhenwei.core.asn1.ocsp.Signature in project LinLong-Java by zhenwei1108.
the class X509CertificateObject method verify.
public final void verify(PublicKey key) throws CertificateException, NoSuchAlgorithmException, InvalidKeyException, NoSuchProviderException, SignatureException {
Signature signature;
String sigName = X509SignatureUtil.getSignatureName(c.getSignatureAlgorithm());
try {
signature = Signature.getInstance(sigName, WeGooProvider.PROVIDER_NAME);
} catch (Exception e) {
signature = Signature.getInstance(sigName);
}
checkSignature(key, signature);
}
Also used :
Signature(java.security.Signature)
ASN1BitString(com.github.zhenwei.core.asn1.ASN1BitString)
DEROctetString(com.github.zhenwei.core.asn1.DEROctetString)
DERBitString(com.github.zhenwei.core.asn1.DERBitString)
ASN1String(com.github.zhenwei.core.asn1.ASN1String)
ASN1IA5String(com.github.zhenwei.core.asn1.ASN1IA5String)
CertificateExpiredException(java.security.cert.CertificateExpiredException)
SignatureException(java.security.SignatureException)
NoSuchAlgorithmException(java.security.NoSuchAlgorithmException)
InvalidKeyException(java.security.InvalidKeyException)
CertificateEncodingException(java.security.cert.CertificateEncodingException)
CertificateNotYetValidException(java.security.cert.CertificateNotYetValidException)
CertificateParsingException(java.security.cert.CertificateParsingException)
IOException(java.io.IOException)
CertificateException(java.security.cert.CertificateException)
UnknownHostException(java.net.UnknownHostException)
NoSuchProviderException(java.security.NoSuchProviderException)
Example 28 with Signature
use of com.github.zhenwei.core.asn1.ocsp.Signature in project LinLong-Java by zhenwei1108.
the class X509CertificateObject method toString.
public String toString() {
StringBuffer buf = new StringBuffer();
String nl = Strings.lineSeparator();
buf.append(" [0] Version: ").append(this.getVersion()).append(nl);
buf.append(" SerialNumber: ").append(this.getSerialNumber()).append(nl);
buf.append(" IssuerDN: ").append(this.getIssuerDN()).append(nl);
buf.append(" Start Date: ").append(this.getNotBefore()).append(nl);
buf.append(" Final Date: ").append(this.getNotAfter()).append(nl);
buf.append(" SubjectDN: ").append(this.getSubjectDN()).append(nl);
buf.append(" Public Key: ").append(this.getPublicKey()).append(nl);
buf.append(" Signature Algorithm: ").append(this.getSigAlgName()).append(nl);
byte[] sig = this.getSignature();
buf.append(" Signature: ").append(new String(Hex.encode(sig, 0, 20))).append(nl);
for (int i = 20; i < sig.length; i += 20) {
if (i < sig.length - 20) {
buf.append(" ").append(new String(Hex.encode(sig, i, 20))).append(nl);
} else {
buf.append(" ").append(new String(Hex.encode(sig, i, sig.length - i))).append(nl);
}
}
Extensions extensions = c.getTBSCertificate().getExtensions();
if (extensions != null) {
Enumeration e = extensions.oids();
if (e.hasMoreElements()) {
buf.append(" Extensions: \n");
}
while (e.hasMoreElements()) {
ASN1ObjectIdentifier oid = (ASN1ObjectIdentifier) e.nextElement();
Extension ext = extensions.getExtension(oid);
if (ext.getExtnValue() != null) {
byte[] octs = ext.getExtnValue().getOctets();
ASN1InputStream dIn = new ASN1InputStream(octs);
buf.append(" critical(").append(ext.isCritical()).append(") ");
try {
if (oid.equals(Extension.basicConstraints)) {
buf.append(BasicConstraints.getInstance(dIn.readObject())).append(nl);
} else if (oid.equals(Extension.keyUsage)) {
buf.append(KeyUsage.getInstance(dIn.readObject())).append(nl);
} else if (oid.equals(MiscObjectIdentifiers.netscapeCertType)) {
buf.append(new NetscapeCertType((DERBitString) dIn.readObject())).append(nl);
} else if (oid.equals(MiscObjectIdentifiers.netscapeRevocationURL)) {
buf.append(new NetscapeRevocationURL((ASN1IA5String) dIn.readObject())).append(nl);
} else if (oid.equals(MiscObjectIdentifiers.verisignCzagExtension)) {
buf.append(new VerisignCzagExtension((ASN1IA5String) dIn.readObject())).append(nl);
} else {
buf.append(oid.getId());
buf.append(" value = ").append(ASN1Dump.dumpAsString(dIn.readObject())).append(nl);
// buf.append(" value = ").append("*****").append(nl);
}
} catch (Exception ex) {
buf.append(oid.getId());
// buf.append(" value = ").append(new String(Hex.encode(ext.getExtnValue().getOctets()))).append(nl);
buf.append(" value = ").append("*****").append(nl);
}
} else {
buf.append(nl);
}
}
}
return buf.toString();
}
Also used :
VerisignCzagExtension(com.github.zhenwei.core.asn1.misc.VerisignCzagExtension)
ASN1InputStream(com.github.zhenwei.core.asn1.ASN1InputStream)
Enumeration(java.util.Enumeration)
NetscapeRevocationURL(com.github.zhenwei.core.asn1.misc.NetscapeRevocationURL)
ASN1BitString(com.github.zhenwei.core.asn1.ASN1BitString)
DEROctetString(com.github.zhenwei.core.asn1.DEROctetString)
DERBitString(com.github.zhenwei.core.asn1.DERBitString)
ASN1String(com.github.zhenwei.core.asn1.ASN1String)
ASN1IA5String(com.github.zhenwei.core.asn1.ASN1IA5String)
Extensions(com.github.zhenwei.core.asn1.x509.Extensions)
CertificateExpiredException(java.security.cert.CertificateExpiredException)
SignatureException(java.security.SignatureException)
NoSuchAlgorithmException(java.security.NoSuchAlgorithmException)
InvalidKeyException(java.security.InvalidKeyException)
CertificateEncodingException(java.security.cert.CertificateEncodingException)
CertificateNotYetValidException(java.security.cert.CertificateNotYetValidException)
CertificateParsingException(java.security.cert.CertificateParsingException)
IOException(java.io.IOException)
CertificateException(java.security.cert.CertificateException)
UnknownHostException(java.net.UnknownHostException)
NoSuchProviderException(java.security.NoSuchProviderException)
Extension(com.github.zhenwei.core.asn1.x509.Extension)
VerisignCzagExtension(com.github.zhenwei.core.asn1.misc.VerisignCzagExtension)
NetscapeCertType(com.github.zhenwei.core.asn1.misc.NetscapeCertType)
ASN1IA5String(com.github.zhenwei.core.asn1.ASN1IA5String)
ASN1ObjectIdentifier(com.github.zhenwei.core.asn1.ASN1ObjectIdentifier)
Example 29 with Signature
use of com.github.zhenwei.core.asn1.ocsp.Signature in project LinLong-Java by zhenwei1108.
the class X509CertificateObject method verify.
public final void verify(PublicKey key, String sigProvider) throws CertificateException, NoSuchAlgorithmException, InvalidKeyException, NoSuchProviderException, SignatureException {
String sigName = X509SignatureUtil.getSignatureName(c.getSignatureAlgorithm());
Signature signature;
if (sigProvider != null) {
signature = Signature.getInstance(sigName, sigProvider);
} else {
signature = Signature.getInstance(sigName);
}
checkSignature(key, signature);
}
Also used :
Signature(java.security.Signature)
ASN1BitString(com.github.zhenwei.core.asn1.ASN1BitString)
DEROctetString(com.github.zhenwei.core.asn1.DEROctetString)
DERBitString(com.github.zhenwei.core.asn1.DERBitString)
ASN1String(com.github.zhenwei.core.asn1.ASN1String)
ASN1IA5String(com.github.zhenwei.core.asn1.ASN1IA5String)
Example 30 with Signature
use of com.github.zhenwei.core.asn1.ocsp.Signature in project LinLong-Java by zhenwei1108.
the class X509CertificateObject method getSigAlgName.
/**
* return a more "meaningful" representation for the signature algorithm used in the certficate.
*/
public String getSigAlgName() {
Provider prov = Security.getProvider(WeGooProvider.PROVIDER_NAME);
if (prov != null) {
String algName = prov.getProperty("Alg.Alias.Signature." + this.getSigAlgOID());
if (algName != null) {
return algName;
}
}
Provider[] provs = Security.getProviders();
//
for (int i = 0; i != provs.length; i++) {
String algName = provs[i].getProperty("Alg.Alias.Signature." + this.getSigAlgOID());
if (algName != null) {
return algName;
}
}
return this.getSigAlgOID();
}
Also used :
ASN1BitString(com.github.zhenwei.core.asn1.ASN1BitString)
DEROctetString(com.github.zhenwei.core.asn1.DEROctetString)
DERBitString(com.github.zhenwei.core.asn1.DERBitString)
ASN1String(com.github.zhenwei.core.asn1.ASN1String)
ASN1IA5String(com.github.zhenwei.core.asn1.ASN1IA5String)
Provider(java.security.Provider)
Aggregations
IOException (java.io.IOException)44
ASN1EncodableVector (com.github.zhenwei.core.asn1.ASN1EncodableVector)34
DERSequence (com.github.zhenwei.core.asn1.DERSequence)29
DERBitString (com.github.zhenwei.core.asn1.DERBitString)21
AlgorithmIdentifier (com.github.zhenwei.core.asn1.x509.AlgorithmIdentifier)20
OutputStream (java.io.OutputStream)20
SignatureException (java.security.SignatureException)20
GeneralSecurityException (java.security.GeneralSecurityException)15
Signature (java.security.Signature)15
ASN1ObjectIdentifier (com.github.zhenwei.core.asn1.ASN1ObjectIdentifier)14
DEROctetString (com.github.zhenwei.core.asn1.DEROctetString)14
InvalidKeyException (java.security.InvalidKeyException)13
NoSuchAlgorithmException (java.security.NoSuchAlgorithmException)13
Iterator (java.util.Iterator)13
OperatorCreationException (com.github.zhenwei.pkix.operator.OperatorCreationException)11
CertificateEncodingException (java.security.cert.CertificateEncodingException)11
NoSuchProviderException (java.security.NoSuchProviderException)10
ASN1OctetString (com.github.zhenwei.core.asn1.ASN1OctetString)9
ASN1Sequence (com.github.zhenwei.core.asn1.ASN1Sequence)9
List (java.util.List)9
