-
V2TBSCertListGenerator
-
version: DERInteger
-
signature: AlgorithmIdentifier
-
issuer: X509Name
-
thisUpdate: Time
-
nextUpdate: Time
-
extensions: X509Extensions
-
crlentries: Vector
-
V2TBSCertListGenerator(): void
-
setSignature(AlgorithmIdentifier): void
-
setIssuer(X509Name): void
-
setIssuer(X500Name): void
-
setThisUpdate(DERUTCTime): void
-
setNextUpdate(DERUTCTime): void
-
setThisUpdate(Time): void
-
setNextUpdate(Time): void
-
addCRLEntry(ASN1Sequence): void
-
addCRLEntry(DERInteger, DERUTCTime, int): void
-
addCRLEntry(DERInteger, Time, int): void
-
addCRLEntry(DERInteger, Time, int, DERGeneralizedTime): void
-
addCRLEntry(DERInteger, Time, X509Extensions): void
-
setExtensions(X509Extensions): void
-
generateTBSCertList(): TBSCertList
-
package org.bouncycastle.asn1.x509;
import java.io.IOException;
import java.util.Enumeration;
import java.util.Vector;
import org.bouncycastle.asn1.ASN1EncodableVector;
import org.bouncycastle.asn1.ASN1Sequence;
import org.bouncycastle.asn1.DERGeneralizedTime;
import org.bouncycastle.asn1.DERInteger;
import org.bouncycastle.asn1.DEROctetString;
import org.bouncycastle.asn1.DERSequence;
import org.bouncycastle.asn1.DERTaggedObject;
import org.bouncycastle.asn1.DERUTCTime;
import org.bouncycastle.asn1.x500.X500Name;
Generator for Version 2 TBSCertList structures.
TBSCertList ::= SEQUENCE {
version Version OPTIONAL,
-- if present, shall be v2
signature AlgorithmIdentifier,
issuer Name,
thisUpdate Time,
nextUpdate Time OPTIONAL,
revokedCertificates SEQUENCE OF SEQUENCE {
userCertificate CertificateSerialNumber,
revocationDate Time,
crlEntryExtensions Extensions OPTIONAL
-- if present, shall be v2
} OPTIONAL,
crlExtensions [0] EXPLICIT Extensions OPTIONAL
-- if present, shall be v2
}
Note: This class may be subject to change
/**
* Generator for Version 2 TBSCertList structures.
* <pre>
* TBSCertList ::= SEQUENCE {
* version Version OPTIONAL,
* -- if present, shall be v2
* signature AlgorithmIdentifier,
* issuer Name,
* thisUpdate Time,
* nextUpdate Time OPTIONAL,
* revokedCertificates SEQUENCE OF SEQUENCE {
* userCertificate CertificateSerialNumber,
* revocationDate Time,
* crlEntryExtensions Extensions OPTIONAL
* -- if present, shall be v2
* } OPTIONAL,
* crlExtensions [0] EXPLICIT Extensions OPTIONAL
* -- if present, shall be v2
* }
* </pre>
*
* <b>Note: This class may be subject to change</b>
*/
public class V2TBSCertListGenerator
{
DERInteger version = new DERInteger(1);
AlgorithmIdentifier signature;
X509Name issuer;
Time thisUpdate, nextUpdate=null;
X509Extensions extensions=null;
private Vector crlentries=null;
public V2TBSCertListGenerator()
{
}
public void setSignature(
AlgorithmIdentifier signature)
{
this.signature = signature;
}
public void setIssuer(
X509Name issuer)
{
this.issuer = issuer;
}
public void setIssuer(X500Name issuer)
{
this.issuer = X509Name.getInstance(issuer);
}
public void setThisUpdate(
DERUTCTime thisUpdate)
{
this.thisUpdate = new Time(thisUpdate);
}
public void setNextUpdate(
DERUTCTime nextUpdate)
{
this.nextUpdate = new Time(nextUpdate);
}
public void setThisUpdate(
Time thisUpdate)
{
this.thisUpdate = thisUpdate;
}
public void setNextUpdate(
Time nextUpdate)
{
this.nextUpdate = nextUpdate;
}
public void addCRLEntry(
ASN1Sequence crlEntry)
{
if (crlentries == null)
{
crlentries = new Vector();
}
crlentries.addElement(crlEntry);
}
public void addCRLEntry(DERInteger userCertificate, DERUTCTime revocationDate, int reason)
{
addCRLEntry(userCertificate, new Time(revocationDate), reason);
}
public void addCRLEntry(DERInteger userCertificate, Time revocationDate, int reason)
{
addCRLEntry(userCertificate, revocationDate, reason, null);
}
public void addCRLEntry(DERInteger userCertificate, Time revocationDate, int reason, DERGeneralizedTime invalidityDate)
{
Vector extOids = new Vector();
Vector extValues = new Vector();
if (reason != 0)
{
CRLReason crlReason = new CRLReason(reason);
try
{
extOids.addElement(X509Extension.reasonCode);
extValues.addElement(new X509Extension(false, new DEROctetString(crlReason.getEncoded())));
}
catch (IOException e)
{
throw new IllegalArgumentException("error encoding reason: " + e);
}
}
if (invalidityDate != null)
{
try
{
extOids.addElement(X509Extension.invalidityDate);
extValues.addElement(new X509Extension(false, new DEROctetString(invalidityDate.getEncoded())));
}
catch (IOException e)
{
throw new IllegalArgumentException("error encoding invalidityDate: " + e);
}
}
if (extOids.size() != 0)
{
addCRLEntry(userCertificate, revocationDate, new X509Extensions(extOids, extValues));
}
else
{
addCRLEntry(userCertificate, revocationDate, null);
}
}
public void addCRLEntry(DERInteger userCertificate, Time revocationDate, X509Extensions extensions)
{
ASN1EncodableVector v = new ASN1EncodableVector();
v.add(userCertificate);
v.add(revocationDate);
if (extensions != null)
{
v.add(extensions);
}
addCRLEntry(new DERSequence(v));
}
public void setExtensions(
X509Extensions extensions)
{
this.extensions = extensions;
}
public TBSCertList generateTBSCertList()
{
if ((signature == null) || (issuer == null) || (thisUpdate == null))
{
throw new IllegalStateException("Not all mandatory fields set in V2 TBSCertList generator.");
}
ASN1EncodableVector v = new ASN1EncodableVector();
v.add(version);
v.add(signature);
v.add(issuer);
v.add(thisUpdate);
if (nextUpdate != null)
{
v.add(nextUpdate);
}
// Add CRLEntries if they exist
if (crlentries != null)
{
ASN1EncodableVector certs = new ASN1EncodableVector();
Enumeration it = crlentries.elements();
while(it.hasMoreElements())
{
certs.add((ASN1Sequence)it.nextElement());
}
v.add(new DERSequence(certs));
}
if (extensions != null)
{
v.add(new DERTaggedObject(0, extensions));
}
return new TBSCertList(new DERSequence(v));
}
}