Example 26 with ContentInfo
use of org.bouncycastle.asn1.cms.ContentInfo in project certmgr by hdecarne.
the class PKCS12CertReaderWriter method readBinary.
@Override
@Nullable
public CertObjectStore readBinary(IOResource<InputStream> in, PasswordCallback password) throws IOException {
LOG.debug("Trying to read PKCS#12 objects from: ''{0}''...", in);
CertObjectStore certObjects = null;
PKCS12PfxPdu pkcs12 = readPKCS12(in);
if (pkcs12 != null) {
certObjects = new CertObjectStore();
for (ContentInfo contentInfo : pkcs12.getContentInfos()) {
ASN1ObjectIdentifier contentType = contentInfo.getContentType();
PKCS12SafeBagFactory safeBagFactory;
if (contentType.equals(PKCSObjectIdentifiers.encryptedData)) {
safeBagFactory = getSafeBagFactory(contentInfo, in.resource(), password);
} else {
safeBagFactory = getSafeBagFactory(contentInfo);
}
for (PKCS12SafeBag safeBag : safeBagFactory.getSafeBags()) {
Object safeBagValue = safeBag.getBagValue();
if (safeBagValue instanceof X509CertificateHolder) {
certObjects.addCRT(convertCRT((X509CertificateHolder) safeBagValue));
} else if (safeBagValue instanceof PKCS8EncryptedPrivateKeyInfo) {
PrivateKey privateKey = convertPrivateKey((PKCS8EncryptedPrivateKeyInfo) safeBagValue, in.resource(), password);
try {
certObjects.addKey(KeyHelper.rebuildKeyPair(privateKey));
} catch (IOException e) {
LOG.warning(e, "Unable to rebuild key pair for private key of type ''{1}''", privateKey.getClass().getName());
}
} else if (safeBagValue instanceof PrivateKeyInfo) {
PrivateKey privateKey = convertPrivateKey((PrivateKeyInfo) safeBagValue);
try {
certObjects.addKey(KeyHelper.rebuildKeyPair(privateKey));
} catch (IOException e) {
LOG.warning(e, "Unable to rebuild key pair for private key of type ''{1}''", privateKey.getClass().getName());
}
} else {
LOG.warning(CertIOI18N.STR_PKCS12_UNKNOWN_OBJECT, safeBagValue.getClass().getName());
}
}
}
}
return certObjects;
}
Also used :
PrivateKey(java.security.PrivateKey)
PKCS12SafeBagFactory(org.bouncycastle.pkcs.PKCS12SafeBagFactory)
ContentInfo(org.bouncycastle.asn1.pkcs.ContentInfo)
X509CertificateHolder(org.bouncycastle.cert.X509CertificateHolder)
CertObjectStore(de.carne.certmgr.certs.CertObjectStore)
PKCS8EncryptedPrivateKeyInfo(org.bouncycastle.pkcs.PKCS8EncryptedPrivateKeyInfo)
IOException(java.io.IOException)
PKCS12SafeBag(org.bouncycastle.pkcs.PKCS12SafeBag)
PKCS12PfxPdu(org.bouncycastle.pkcs.PKCS12PfxPdu)
ASN1ObjectIdentifier(org.bouncycastle.asn1.ASN1ObjectIdentifier)
PrivateKeyInfo(org.bouncycastle.asn1.pkcs.PrivateKeyInfo)
PKCS8EncryptedPrivateKeyInfo(org.bouncycastle.pkcs.PKCS8EncryptedPrivateKeyInfo)
Nullable(de.carne.check.Nullable)
Example 27 with ContentInfo
use of org.bouncycastle.asn1.cms.ContentInfo in project xipki by xipki.
the class ScepImpl method encodeResponse.
// method getCrl
private ContentInfo encodeResponse(PkiMessage response, DecodedPkiMessage request) throws OperationException {
ParamUtil.requireNonNull("response", response);
ParamUtil.requireNonNull("request", request);
String signatureAlgorithm = getSignatureAlgorithm(responderKey, request.getDigestAlgorithm());
ContentInfo ci;
try {
X509Certificate[] cmsCertSet = control.isIncludeSignerCert() ? new X509Certificate[] { responderCert } : null;
ci = response.encode(responderKey, signatureAlgorithm, responderCert, cmsCertSet, request.getSignatureCert(), request.getContentEncryptionAlgorithm());
} catch (MessageEncodingException ex) {
LogUtil.error(LOG, ex, "could not encode response");
throw new OperationException(ErrorCode.SYSTEM_FAILURE, ex);
}
return ci;
}
Also used :
ContentInfo(org.bouncycastle.asn1.cms.ContentInfo)
MessageEncodingException(org.xipki.scep.exception.MessageEncodingException)
X509Certificate(java.security.cert.X509Certificate)
OperationException(org.xipki.ca.api.OperationException)
Example 28 with ContentInfo
use of org.bouncycastle.asn1.cms.ContentInfo in project XobotOS by xamarin.
the class SignedData method toASN1Object.
/**
* Produce an object suitable for an ASN1OutputStream.
* <pre>
* SignedData ::= SEQUENCE {
* version Version,
* digestAlgorithms DigestAlgorithmIdentifiers,
* contentInfo ContentInfo,
* certificates
* [0] IMPLICIT ExtendedCertificatesAndCertificates
* OPTIONAL,
* crls
* [1] IMPLICIT CertificateRevocationLists OPTIONAL,
* signerInfos SignerInfos }
* </pre>
*/
public DERObject toASN1Object() {
ASN1EncodableVector v = new ASN1EncodableVector();
v.add(version);
v.add(digestAlgorithms);
v.add(contentInfo);
if (certificates != null) {
v.add(new DERTaggedObject(false, 0, certificates));
}
if (crls != null) {
v.add(new DERTaggedObject(false, 1, crls));
}
v.add(signerInfos);
return new BERSequence(v);
}
Also used :
DERTaggedObject(org.bouncycastle.asn1.DERTaggedObject)
BERSequence(org.bouncycastle.asn1.BERSequence)
ASN1EncodableVector(org.bouncycastle.asn1.ASN1EncodableVector)
Example 29 with ContentInfo
use of org.bouncycastle.asn1.cms.ContentInfo in project XobotOS by xamarin.
the class Pfx method toASN1Object.
public DERObject toASN1Object() {
ASN1EncodableVector v = new ASN1EncodableVector();
v.add(new DERInteger(3));
v.add(contentInfo);
if (macData != null) {
v.add(macData);
}
return new BERSequence(v);
}
Also used :
BERSequence(org.bouncycastle.asn1.BERSequence)
ASN1EncodableVector(org.bouncycastle.asn1.ASN1EncodableVector)
DERInteger(org.bouncycastle.asn1.DERInteger)
Example 30 with ContentInfo
use of org.bouncycastle.asn1.cms.ContentInfo in project XobotOS by xamarin.
the class ContentInfo method toASN1Object.
/**
* Produce an object suitable for an ASN1OutputStream.
* <pre>
* ContentInfo ::= SEQUENCE {
* contentType ContentType,
* content
* [0] EXPLICIT ANY DEFINED BY contentType OPTIONAL }
* </pre>
*/
public DERObject toASN1Object() {
ASN1EncodableVector v = new ASN1EncodableVector();
v.add(contentType);
if (content != null) {
v.add(new BERTaggedObject(0, content));
}
return new BERSequence(v);
}
Also used :
BERSequence(org.bouncycastle.asn1.BERSequence)
ASN1EncodableVector(org.bouncycastle.asn1.ASN1EncodableVector)
BERTaggedObject(org.bouncycastle.asn1.BERTaggedObject)
Aggregations
ContentInfo (org.bouncycastle.asn1.cms.ContentInfo)24
ASN1EncodableVector (org.bouncycastle.asn1.ASN1EncodableVector)22
IOException (java.io.IOException)21
X509Certificate (java.security.cert.X509Certificate)19
CMSSignedData (org.bouncycastle.cms.CMSSignedData)14
CertificateEncodingException (java.security.cert.CertificateEncodingException)12
CertificateException (java.security.cert.CertificateException)12
ASN1ObjectIdentifier (org.bouncycastle.asn1.ASN1ObjectIdentifier)12
BERSequence (org.bouncycastle.asn1.BERSequence)12
ASN1OctetString (org.bouncycastle.asn1.ASN1OctetString)9
ASN1Set (org.bouncycastle.asn1.ASN1Set)9
SignedData (org.bouncycastle.asn1.cms.SignedData)9
CMSException (org.bouncycastle.cms.CMSException)9
PrivateKey (java.security.PrivateKey)8
ASN1InputStream (org.bouncycastle.asn1.ASN1InputStream)8
DERSet (org.bouncycastle.asn1.DERSet)8
ContentInfo (org.bouncycastle.asn1.pkcs.ContentInfo)8
X509CertificateHolder (org.bouncycastle.cert.X509CertificateHolder)7
ByteArrayInputStream (java.io.ByteArrayInputStream)6
NoSuchAlgorithmException (java.security.NoSuchAlgorithmException)6
