package org.bouncycastle.asn1.x509;

import java.math.BigInteger;

import org.bouncycastle.asn1.ASN1EncodableVector;
import org.bouncycastle.asn1.ASN1Integer;
import org.bouncycastle.asn1.ASN1Object;
import org.bouncycastle.asn1.ASN1Primitive;
import org.bouncycastle.asn1.ASN1Sequence;
import org.bouncycastle.asn1.ASN1TaggedObject;
import org.bouncycastle.asn1.DERSequence;
import org.bouncycastle.asn1.DERTaggedObject;

PKIX RFC 5280
id-ce-policyConstraints OBJECT IDENTIFIER ::=  { id-ce 36 }
PolicyConstraints ::= SEQUENCE {
     requireExplicitPolicy           [0] SkipCerts OPTIONAL,
     inhibitPolicyMapping            [1] SkipCerts OPTIONAL }
SkipCerts ::= INTEGER (0..MAX)
/** * PKIX RFC 5280 * <pre> * id-ce-policyConstraints OBJECT IDENTIFIER ::= { id-ce 36 } * * PolicyConstraints ::= SEQUENCE { * requireExplicitPolicy [0] SkipCerts OPTIONAL, * inhibitPolicyMapping [1] SkipCerts OPTIONAL } * * SkipCerts ::= INTEGER (0..MAX) * </pre> */
public class PolicyConstraints extends ASN1Object { private BigInteger requireExplicitPolicyMapping; private BigInteger inhibitPolicyMapping; public PolicyConstraints(BigInteger requireExplicitPolicyMapping, BigInteger inhibitPolicyMapping) { this.requireExplicitPolicyMapping = requireExplicitPolicyMapping; this.inhibitPolicyMapping = inhibitPolicyMapping; } private PolicyConstraints(ASN1Sequence seq) { for (int i = 0; i != seq.size(); i++) { ASN1TaggedObject to = ASN1TaggedObject.getInstance(seq.getObjectAt(i)); if (to.getTagNo() == 0) { requireExplicitPolicyMapping = ASN1Integer.getInstance(to, false).getValue(); } else if (to.getTagNo() == 1) { inhibitPolicyMapping = ASN1Integer.getInstance(to, false).getValue(); } else { throw new IllegalArgumentException("Unknown tag encountered."); } } } public static PolicyConstraints getInstance( Object obj) { if (obj instanceof PolicyConstraints) { return (PolicyConstraints)obj; } if (obj != null) { return new PolicyConstraints(ASN1Sequence.getInstance(obj)); } return null; } public static PolicyConstraints fromExtensions(Extensions extensions) { return PolicyConstraints.getInstance(extensions.getExtensionParsedValue(Extension.policyConstraints)); } public BigInteger getRequireExplicitPolicyMapping() { return requireExplicitPolicyMapping; } public BigInteger getInhibitPolicyMapping() { return inhibitPolicyMapping; } public ASN1Primitive toASN1Primitive() { ASN1EncodableVector v = new ASN1EncodableVector(); if (requireExplicitPolicyMapping != null) { v.add(new DERTaggedObject(false,0, new ASN1Integer(requireExplicitPolicyMapping))); } if (inhibitPolicyMapping != null) { v.add(new DERTaggedObject(false, 1, new ASN1Integer(inhibitPolicyMapping))); } return new DERSequence(v); } }