Examples with ASN1Sequence org.apache.harmony.security.asn1.ASN1Sequence used on opensource projects
Example 31 with ASN1Sequence
use of org.apache.harmony.security.asn1.ASN1Sequence in project robovm by robovm.
the class X509CertificateObject method getExtendedKeyUsage.
public List getExtendedKeyUsage() throws CertificateParsingException {
byte[] bytes = this.getExtensionBytes("2.5.29.37");
if (bytes != null) {
try {
ASN1InputStream dIn = new ASN1InputStream(bytes);
ASN1Sequence seq = (ASN1Sequence) dIn.readObject();
List list = new ArrayList();
for (int i = 0; i != seq.size(); i++) {
list.add(((ASN1ObjectIdentifier) seq.getObjectAt(i)).getId());
}
return Collections.unmodifiableList(list);
} catch (Exception e) {
throw new CertificateParsingException("error processing extended key usage extension");
}
}
return null;
}
Also used :
ASN1InputStream(org.bouncycastle.asn1.ASN1InputStream)
ASN1Sequence(org.bouncycastle.asn1.ASN1Sequence)
CertificateParsingException(java.security.cert.CertificateParsingException)
ArrayList(java.util.ArrayList)
List(java.util.List)
ArrayList(java.util.ArrayList)
CertificateExpiredException(java.security.cert.CertificateExpiredException)
SignatureException(java.security.SignatureException)
NoSuchAlgorithmException(java.security.NoSuchAlgorithmException)
InvalidKeyException(java.security.InvalidKeyException)
CertificateEncodingException(java.security.cert.CertificateEncodingException)
CertificateNotYetValidException(java.security.cert.CertificateNotYetValidException)
CertificateParsingException(java.security.cert.CertificateParsingException)
IOException(java.io.IOException)
CertificateException(java.security.cert.CertificateException)
UnknownHostException(java.net.UnknownHostException)
NoSuchProviderException(java.security.NoSuchProviderException)
Example 32 with ASN1Sequence
use of org.apache.harmony.security.asn1.ASN1Sequence in project cas by apereo.
the class CRLDistributionPointRevocationChecker method getDistributionPoints.
/**
* Gets the distribution points.
*
* @param cert the cert
* @return the url distribution points
*/
private static URI[] getDistributionPoints(final X509Certificate cert) {
final List<DistributionPoint> points;
try {
points = new ExtensionReader(cert).readCRLDistributionPoints();
} catch (final Exception e) {
LOGGER.error("Error reading CRLDistributionPoints extension field on [{}]", CertUtils.toString(cert), e);
return new URI[0];
}
final List<URI> urls = new ArrayList<>();
if (points != null) {
points.stream().map(DistributionPoint::getDistributionPoint).filter(Objects::nonNull).forEach(pointName -> {
final ASN1Sequence nameSequence = ASN1Sequence.getInstance(pointName.getName());
IntStream.range(0, nameSequence.size()).mapToObj(i -> GeneralName.getInstance(nameSequence.getObjectAt(i))).forEach(name -> {
LOGGER.debug("Found CRL distribution point [{}].", name);
try {
addURL(urls, DERIA5String.getInstance(name.getName()).getString());
} catch (final Exception e) {
LOGGER.warn("[{}] not supported. String or GeneralNameList expected.", pointName);
}
});
});
}
return urls.toArray(new URI[urls.size()]);
}
Also used :
X509Certificate(java.security.cert.X509Certificate)
IntStream(java.util.stream.IntStream)
RevocationPolicy(org.apereo.cas.adaptors.x509.authentication.revocation.policy.RevocationPolicy)
ASN1Sequence(org.bouncycastle.asn1.ASN1Sequence)
URLDecoder(java.net.URLDecoder)
SneakyThrows(lombok.SneakyThrows)
URL(java.net.URL)
DistributionPoint(org.bouncycastle.asn1.x509.DistributionPoint)
X509CRL(java.security.cert.X509CRL)
ByteArrayResource(org.springframework.core.io.ByteArrayResource)
ArrayList(java.util.ArrayList)
CollectionUtils(org.apereo.cas.util.CollectionUtils)
URI(java.net.URI)
DERIA5String(org.bouncycastle.asn1.DERIA5String)
CRLFetcher(org.apereo.cas.adaptors.x509.authentication.CRLFetcher)
MalformedURLException(java.net.MalformedURLException)
Element(net.sf.ehcache.Element)
StandardCharsets(java.nio.charset.StandardCharsets)
CertUtils(org.apereo.cas.util.crypto.CertUtils)
ExtensionReader(org.cryptacular.x509.ExtensionReader)
Objects(java.util.Objects)
Slf4j(lombok.extern.slf4j.Slf4j)
GeneralName(org.bouncycastle.asn1.x509.GeneralName)
List(java.util.List)
ResourceCRLFetcher(org.apereo.cas.adaptors.x509.authentication.ResourceCRLFetcher)
Cache(net.sf.ehcache.Cache)
ASN1Sequence(org.bouncycastle.asn1.ASN1Sequence)
ArrayList(java.util.ArrayList)
DistributionPoint(org.bouncycastle.asn1.x509.DistributionPoint)
URI(java.net.URI)
MalformedURLException(java.net.MalformedURLException)
ExtensionReader(org.cryptacular.x509.ExtensionReader)
Example 33 with ASN1Sequence
use of org.apache.harmony.security.asn1.ASN1Sequence in project robovm by robovm.
the class X509AttributeCertificateHolder method getAttributes.
/**
* Return the attributes, if any associated with this request.
*
* @return an array of Attribute, zero length if none present.
*/
public Attribute[] getAttributes() {
ASN1Sequence seq = attrCert.getAcinfo().getAttributes();
Attribute[] attrs = new Attribute[seq.size()];
for (int i = 0; i != seq.size(); i++) {
attrs[i] = Attribute.getInstance(seq.getObjectAt(i));
}
return attrs;
}
Also used :
ASN1Sequence(org.bouncycastle.asn1.ASN1Sequence)
Attribute(org.bouncycastle.asn1.x509.Attribute)
Example 34 with ASN1Sequence
use of org.apache.harmony.security.asn1.ASN1Sequence in project robovm by robovm.
the class X509Name method equals.
/**
* @param inOrder if true the order of both X509 names must be the same,
* as well as the values associated with each element.
*/
public boolean equals(Object obj, boolean inOrder) {
if (!inOrder) {
return this.equals(obj);
}
if (obj == this) {
return true;
}
if (!(obj instanceof X509Name || obj instanceof ASN1Sequence)) {
return false;
}
ASN1Primitive derO = ((ASN1Encodable) obj).toASN1Primitive();
if (this.toASN1Primitive().equals(derO)) {
return true;
}
X509Name other;
try {
other = X509Name.getInstance(obj);
} catch (IllegalArgumentException e) {
return false;
}
int orderingSize = ordering.size();
if (orderingSize != other.ordering.size()) {
return false;
}
for (int i = 0; i < orderingSize; i++) {
ASN1ObjectIdentifier oid = (ASN1ObjectIdentifier) ordering.elementAt(i);
ASN1ObjectIdentifier oOid = (ASN1ObjectIdentifier) other.ordering.elementAt(i);
if (oid.equals(oOid)) {
String value = (String) values.elementAt(i);
String oValue = (String) other.values.elementAt(i);
if (!equivalentStrings(value, oValue)) {
return false;
}
} else {
return false;
}
}
return true;
}
Also used :
ASN1Sequence(org.bouncycastle.asn1.ASN1Sequence)
ASN1Encodable(org.bouncycastle.asn1.ASN1Encodable)
ASN1String(org.bouncycastle.asn1.ASN1String)
DERUniversalString(org.bouncycastle.asn1.DERUniversalString)
ASN1Primitive(org.bouncycastle.asn1.ASN1Primitive)
ASN1ObjectIdentifier(org.bouncycastle.asn1.ASN1ObjectIdentifier)
Example 35 with ASN1Sequence
use of org.apache.harmony.security.asn1.ASN1Sequence in project robovm by robovm.
the class AuthorityKeyIdentifierStructure method fromCertificate.
private static ASN1Sequence fromCertificate(X509Certificate certificate) throws CertificateParsingException {
try {
if (certificate.getVersion() != 3) {
GeneralName genName = new GeneralName(PrincipalUtil.getIssuerX509Principal(certificate));
SubjectPublicKeyInfo info = new SubjectPublicKeyInfo((ASN1Sequence) new ASN1InputStream(certificate.getPublicKey().getEncoded()).readObject());
return (ASN1Sequence) new AuthorityKeyIdentifier(info, new GeneralNames(genName), certificate.getSerialNumber()).toASN1Object();
} else {
GeneralName genName = new GeneralName(PrincipalUtil.getIssuerX509Principal(certificate));
byte[] ext = certificate.getExtensionValue(X509Extensions.SubjectKeyIdentifier.getId());
if (ext != null) {
ASN1OctetString str = (ASN1OctetString) X509ExtensionUtil.fromExtensionValue(ext);
return (ASN1Sequence) new AuthorityKeyIdentifier(str.getOctets(), new GeneralNames(genName), certificate.getSerialNumber()).toASN1Object();
} else {
SubjectPublicKeyInfo info = new SubjectPublicKeyInfo((ASN1Sequence) new ASN1InputStream(certificate.getPublicKey().getEncoded()).readObject());
return (ASN1Sequence) new AuthorityKeyIdentifier(info, new GeneralNames(genName), certificate.getSerialNumber()).toASN1Object();
}
}
} catch (Exception e) {
throw new CertificateParsingException("Exception extracting certificate details: " + e.toString());
}
}
Also used :
ASN1OctetString(org.bouncycastle.asn1.ASN1OctetString)
ASN1InputStream(org.bouncycastle.asn1.ASN1InputStream)
ASN1Sequence(org.bouncycastle.asn1.ASN1Sequence)
CertificateParsingException(java.security.cert.CertificateParsingException)
GeneralNames(org.bouncycastle.asn1.x509.GeneralNames)
AuthorityKeyIdentifier(org.bouncycastle.asn1.x509.AuthorityKeyIdentifier)
GeneralName(org.bouncycastle.asn1.x509.GeneralName)
SubjectPublicKeyInfo(org.bouncycastle.asn1.x509.SubjectPublicKeyInfo)
CertificateParsingException(java.security.cert.CertificateParsingException)
IOException(java.io.IOException)
InvalidKeyException(java.security.InvalidKeyException)
Aggregations
ASN1Sequence (org.bouncycastle.asn1.ASN1Sequence)57
IOException (java.io.IOException)31
ArrayList (java.util.ArrayList)29
List (java.util.List)26
Enumeration (java.util.Enumeration)23
X509Certificate (java.security.cert.X509Certificate)22
ExtCertPathValidatorException (org.bouncycastle.jce.exception.ExtCertPathValidatorException)20
CertPathValidatorException (java.security.cert.CertPathValidatorException)18
CertificateExpiredException (java.security.cert.CertificateExpiredException)17
CertificateNotYetValidException (java.security.cert.CertificateNotYetValidException)17
GeneralSecurityException (java.security.GeneralSecurityException)16
CRLDistPoint (org.bouncycastle.asn1.x509.CRLDistPoint)16
DistributionPoint (org.bouncycastle.asn1.x509.DistributionPoint)16
IssuingDistributionPoint (org.bouncycastle.asn1.x509.IssuingDistributionPoint)16
DERObjectIdentifier (org.bouncycastle.asn1.DERObjectIdentifier)15
CertPathBuilderException (java.security.cert.CertPathBuilderException)14
ASN1InputStream (org.bouncycastle.asn1.ASN1InputStream)13
Iterator (java.util.Iterator)10
HashSet (java.util.HashSet)9
Set (java.util.Set)9
