Example 96 with GeneralNames
use of sun.security.x509.GeneralNames in project keystore-explorer by kaikramer.
the class X509Ext method getDistributionPointString.
private String getDistributionPointString(DistributionPoint distributionPoint, String baseIndent) throws IOException {
// @formatter:off
/*
* DistributionPoint ::= ASN1Sequence {
* distributionPoint [0] DistributionPointName OPTIONAL,
* reasons [1] ReasonFlags OPTIONAL,
* cRLIssuer [2] GeneralNames OPTIONAL
* }
*
* GeneralNames ::= ASN1Sequence SIZE (1..MAX) OF GeneralName
*/
// @formatter:on
StringBuilder sb = new StringBuilder();
DistributionPointName distributionPointName = distributionPoint.getDistributionPoint();
ReasonFlags reasons = distributionPoint.getReasons();
GeneralNames crlIssuer = distributionPoint.getCRLIssuer();
if (distributionPointName != null) {
// Optional
sb.append(getDistributionPointNameString(distributionPointName, baseIndent));
}
if (reasons != null) {
// Optional
sb.append(baseIndent);
sb.append(res.getString("DistributionPointReasons"));
sb.append(NEWLINE);
String[] reasonFlags = getReasonFlagsStrings(reasons);
for (String reasonFlag : reasonFlags) {
sb.append(baseIndent);
sb.append(INDENT);
sb.append(reasonFlag);
sb.append(NEWLINE);
}
}
if (crlIssuer != null) {
// Optional
sb.append(baseIndent);
sb.append(res.getString("DistributionPointCrlIssuer"));
sb.append(NEWLINE);
for (GeneralName generalName : crlIssuer.getNames()) {
sb.append(baseIndent);
sb.append(INDENT);
sb.append(GeneralNameUtil.toString(generalName));
sb.append(NEWLINE);
}
}
return sb.toString();
}
Also used :
GeneralNames(org.bouncycastle.asn1.x509.GeneralNames)
ReasonFlags(org.bouncycastle.asn1.x509.ReasonFlags)
DistributionPointName(org.bouncycastle.asn1.x509.DistributionPointName)
DERBitString(org.bouncycastle.asn1.DERBitString)
ASN1OctetString(org.bouncycastle.asn1.ASN1OctetString)
DERBMPString(org.bouncycastle.asn1.DERBMPString)
DERGeneralString(org.bouncycastle.asn1.DERGeneralString)
DirectoryString(org.bouncycastle.asn1.x500.DirectoryString)
DERPrintableString(org.bouncycastle.asn1.DERPrintableString)
DERIA5String(org.bouncycastle.asn1.DERIA5String)
GeneralName(org.bouncycastle.asn1.x509.GeneralName)
Example 97 with GeneralNames
use of sun.security.x509.GeneralNames in project keystore-explorer by kaikramer.
the class DAuthorityKeyIdentifier method prepopulateWithAuthorityCertDetails.
private void prepopulateWithAuthorityCertDetails(X500Name authorityCertName, BigInteger authorityCertSerialNumber) {
if (authorityCertName != null) {
try {
GeneralName generalName = new GeneralName(GeneralName.directoryName, authorityCertName);
GeneralNames generalNames = new GeneralNames(generalName);
jgnAuthorityCertIssuer.setGeneralNames(generalNames);
} catch (Exception ex) {
DError dError = new DError(this, ex);
dError.setLocationRelativeTo(this);
dError.setVisible(true);
return;
}
}
if (authorityCertSerialNumber != null) {
jtfAuthorityCertSerialNumber.setText("" + authorityCertSerialNumber.toString());
jtfAuthorityCertSerialNumber.setCaretPosition(0);
}
}
Also used :
JGeneralNames(org.kse.gui.crypto.generalname.JGeneralNames)
GeneralNames(org.bouncycastle.asn1.x509.GeneralNames)
GeneralName(org.bouncycastle.asn1.x509.GeneralName)
IOException(java.io.IOException)
DError(org.kse.gui.error.DError)
Example 98 with GeneralNames
use of sun.security.x509.GeneralNames in project keystore-explorer by kaikramer.
the class DAuthorityKeyIdentifier method okPressed.
private void okPressed() {
byte[] keyIdentifier = jkiKeyIdentifier.getKeyIdentifier();
GeneralNames authorityCertIssuer = jgnAuthorityCertIssuer.getGeneralNames();
BigInteger authorityCertSerialNumber = null;
String authorityCertSerialNumberStr = jtfAuthorityCertSerialNumber.getText().trim();
if (authorityCertSerialNumberStr.length() != 0) {
try {
authorityCertSerialNumber = new BigInteger(authorityCertSerialNumberStr);
if (authorityCertSerialNumber.compareTo(BigInteger.ONE) < 0) {
JOptionPane.showMessageDialog(this, res.getString("DAuthorityKeyIdentifier.AuthorityCertSerialNumberNonZero.message"), getTitle(), JOptionPane.WARNING_MESSAGE);
return;
}
} catch (NumberFormatException ex) {
JOptionPane.showMessageDialog(this, res.getString("DAuthorityKeyIdentifier.AuthorityCertSerialNumberNotInteger.message"), getTitle(), JOptionPane.WARNING_MESSAGE);
return;
}
}
// serial number are required
if ((keyIdentifier == null) && ((authorityCertIssuer.getNames().length == 0) || (authorityCertSerialNumber == null))) {
JOptionPane.showMessageDialog(this, res.getString("DAuthorityKeyIdentifier.ValueReq.message"), getTitle(), JOptionPane.WARNING_MESSAGE);
return;
}
AuthorityKeyIdentifier authorityKeyIdentifier;
if ((keyIdentifier != null) && (authorityCertSerialNumber == null)) {
// only key identifier
authorityKeyIdentifier = new AuthorityKeyIdentifier(keyIdentifier);
} else if (keyIdentifier == null) {
// only issuer / serial
authorityKeyIdentifier = new AuthorityKeyIdentifier(authorityCertIssuer, authorityCertSerialNumber);
} else {
// both
authorityKeyIdentifier = new AuthorityKeyIdentifier(keyIdentifier, authorityCertIssuer, authorityCertSerialNumber);
}
try {
value = authorityKeyIdentifier.getEncoded(ASN1Encoding.DER);
} catch (IOException ex) {
DError dError = new DError(this, ex);
dError.setLocationRelativeTo(this);
dError.setVisible(true);
return;
}
closeDialog();
}
Also used :
JGeneralNames(org.kse.gui.crypto.generalname.JGeneralNames)
GeneralNames(org.bouncycastle.asn1.x509.GeneralNames)
BigInteger(java.math.BigInteger)
AuthorityKeyIdentifier(org.bouncycastle.asn1.x509.AuthorityKeyIdentifier)
IOException(java.io.IOException)
DError(org.kse.gui.error.DError)
Example 99 with GeneralNames
use of sun.security.x509.GeneralNames in project keystore-explorer by kaikramer.
the class DIssuerAlternativeName method okPressed.
private void okPressed() {
GeneralNames issuerAlternativeName = jgnAlternativeName.getGeneralNames();
if (issuerAlternativeName.getNames().length == 0) {
JOptionPane.showMessageDialog(this, res.getString("DIssuerAlternativeName.ValueReq.message"), getTitle(), JOptionPane.WARNING_MESSAGE);
return;
}
try {
value = issuerAlternativeName.getEncoded(ASN1Encoding.DER);
} catch (IOException ex) {
DError dError = new DError(this, ex);
dError.setLocationRelativeTo(this);
dError.setVisible(true);
return;
}
closeDialog();
}
Also used :
JGeneralNames(org.kse.gui.crypto.generalname.JGeneralNames)
GeneralNames(org.bouncycastle.asn1.x509.GeneralNames)
IOException(java.io.IOException)
DError(org.kse.gui.error.DError)
Example 100 with GeneralNames
use of sun.security.x509.GeneralNames in project dcos-commons by mesosphere.
the class CertificateNamesGeneratorTest method testDiscoveryNameAddedAsSan.
@Test
public void testDiscoveryNameAddedAsSan() {
Mockito.when(mockTaskSpec.getDiscovery()).thenReturn(Optional.of(mockDiscoverySpec));
Mockito.when(mockDiscoverySpec.getPrefix()).thenReturn(Optional.of("custom-name"));
CertificateNamesGenerator certificateNamesGenerator = new CertificateNamesGenerator(TestConstants.SERVICE_NAME, mockTaskSpec, mockPodInstance, mockSchedulerConfig);
GeneralNames sans = certificateNamesGenerator.getSANs();
Assert.assertEquals(1, sans.getNames().length);
List<String> names = Arrays.stream(sans.getNames()).map(name -> name.getName().toString()).collect(Collectors.toList());
Assert.assertEquals(1, names.size());
Assert.assertTrue(names.contains(String.format("custom-name-0.%s.%s", TestConstants.SERVICE_NAME, Constants.DNS_TLD)));
// echo -n "custom-name-0.service-name.autoip.dcos.thisdcos.directory" | sha1sum
Assert.assertEquals("6ce3490a694a0917beec2bd5f7ac978be7a59ef0", certificateNamesGenerator.getSANsHash());
}
Also used :
SchedulerConfig(com.mesosphere.sdk.scheduler.SchedulerConfig)
java.util(java.util)
TestConstants(com.mesosphere.sdk.testutils.TestConstants)
RDN(org.bouncycastle.asn1.x500.RDN)
Mock(org.mockito.Mock)
TaskSpec(com.mesosphere.sdk.specification.TaskSpec)
Test(org.junit.Test)
DiscoverySpec(com.mesosphere.sdk.specification.DiscoverySpec)
BCStyle(org.bouncycastle.asn1.x500.style.BCStyle)
Collectors(java.util.stream.Collectors)
ResourceSet(com.mesosphere.sdk.specification.ResourceSet)
Mockito(org.mockito.Mockito)
MockitoAnnotations(org.mockito.MockitoAnnotations)
NamedVIPSpec(com.mesosphere.sdk.specification.NamedVIPSpec)
GeneralNames(org.bouncycastle.asn1.x509.GeneralNames)
PodInstance(com.mesosphere.sdk.specification.PodInstance)
Constants(com.mesosphere.sdk.offer.Constants)
Assert(org.junit.Assert)
Before(org.junit.Before)
GeneralNames(org.bouncycastle.asn1.x509.GeneralNames)
Test(org.junit.Test)
Aggregations
GeneralNames (org.bouncycastle.asn1.x509.GeneralNames)82
GeneralName (org.bouncycastle.asn1.x509.GeneralName)67
IOException (java.io.IOException)35
X509Certificate (java.security.cert.X509Certificate)27
ArrayList (java.util.ArrayList)23
X500Name (org.bouncycastle.asn1.x500.X500Name)23
JcaX509CertificateConverter (org.bouncycastle.cert.jcajce.JcaX509CertificateConverter)18
JcaContentSignerBuilder (org.bouncycastle.operator.jcajce.JcaContentSignerBuilder)18
ContentSigner (org.bouncycastle.operator.ContentSigner)17
BigInteger (java.math.BigInteger)16
DERIA5String (org.bouncycastle.asn1.DERIA5String)16
JcaX509v3CertificateBuilder (org.bouncycastle.cert.jcajce.JcaX509v3CertificateBuilder)16
BasicConstraints (org.bouncycastle.asn1.x509.BasicConstraints)15
X509v3CertificateBuilder (org.bouncycastle.cert.X509v3CertificateBuilder)15
X500Principal (javax.security.auth.x500.X500Principal)14
DEROctetString (org.bouncycastle.asn1.DEROctetString)14
CRLDistPoint (org.bouncycastle.asn1.x509.CRLDistPoint)14
DistributionPoint (org.bouncycastle.asn1.x509.DistributionPoint)14
GeneralNames (sun.security.x509.GeneralNames)14
List (java.util.List)13
