Class JcaTlsCertificate
- java.lang.Object
-
- org.bouncycastle.tls.crypto.impl.jcajce.JcaTlsCertificate
-
- All Implemented Interfaces:
TlsCertificate
public class JcaTlsCertificate extends java.lang.Object implements TlsCertificate
Implementation class for a single X.509 certificate based on the JCA.
-
-
Field Summary
Fields Modifier and Type Field Description protected java.security.cert.X509Certificate
certificate
protected JcaTlsCrypto
crypto
protected javax.crypto.interfaces.DHPublicKey
pubKeyDH
protected java.security.interfaces.ECPublicKey
pubKeyEC
protected java.security.interfaces.RSAPublicKey
pubKeyRSA
-
Constructor Summary
Constructors Constructor Description JcaTlsCertificate(JcaTlsCrypto crypto, byte[] encoding)
JcaTlsCertificate(JcaTlsCrypto crypto, java.security.cert.X509Certificate certificate)
-
Method Summary
All Methods Static Methods Instance Methods Concrete Methods Modifier and Type Method Description static JcaTlsCertificate
convert(JcaTlsCrypto crypto, TlsCertificate certificate)
TlsVerifier
createVerifier(short signatureAlgorithm)
byte[]
getEncoded()
byte[]
getExtension(org.bouncycastle.asn1.ASN1ObjectIdentifier extensionOID)
short
getLegacySignatureAlgorithm()
protected java.security.PublicKey
getPublicKey()
java.math.BigInteger
getSerialNumber()
java.lang.String
getSigAlgOID()
protected org.bouncycastle.asn1.x509.SubjectPublicKeyInfo
getSubjectPublicKeyInfo()
java.security.cert.X509Certificate
getX509Certificate()
static java.security.cert.X509Certificate
parseCertificate(org.bouncycastle.jcajce.util.JcaJceHelper helper, byte[] encoding)
protected boolean
supportsKeyUsage(int keyUsageBits)
protected boolean
supportsRSA_PKCS1()
protected boolean
supportsRSA_PSS_PSS(short signatureAlgorithm)
protected boolean
supportsRSA_PSS_RSAE()
boolean
supportsSignatureAlgorithm(short signatureAlgorithm)
TlsCertificate
useInRole(int connectionEnd, int keyExchangeAlgorithm)
protected void
validateKeyUsage(int keyUsageBits)
protected void
validateRSA_PKCS1()
protected void
validateRSA_PSS_PSS(short signatureAlgorithm)
protected void
validateRSA_PSS_RSAE()
-
-
-
Field Detail
-
crypto
protected final JcaTlsCrypto crypto
-
certificate
protected final java.security.cert.X509Certificate certificate
-
pubKeyDH
protected javax.crypto.interfaces.DHPublicKey pubKeyDH
-
pubKeyEC
protected java.security.interfaces.ECPublicKey pubKeyEC
-
pubKeyRSA
protected java.security.interfaces.RSAPublicKey pubKeyRSA
-
-
Constructor Detail
-
JcaTlsCertificate
public JcaTlsCertificate(JcaTlsCrypto crypto, byte[] encoding) throws java.io.IOException
- Throws:
java.io.IOException
-
JcaTlsCertificate
public JcaTlsCertificate(JcaTlsCrypto crypto, java.security.cert.X509Certificate certificate)
-
-
Method Detail
-
convert
public static JcaTlsCertificate convert(JcaTlsCrypto crypto, TlsCertificate certificate) throws java.io.IOException
- Throws:
java.io.IOException
-
parseCertificate
public static java.security.cert.X509Certificate parseCertificate(org.bouncycastle.jcajce.util.JcaJceHelper helper, byte[] encoding) throws java.io.IOException
- Throws:
java.io.IOException
-
createVerifier
public TlsVerifier createVerifier(short signatureAlgorithm) throws java.io.IOException
- Specified by:
createVerifier
in interfaceTlsCertificate
- Parameters:
signatureAlgorithm
-SignatureAlgorithm
- Throws:
java.io.IOException
-
getEncoded
public byte[] getEncoded() throws java.io.IOException
- Specified by:
getEncoded
in interfaceTlsCertificate
- Throws:
java.io.IOException
-
getExtension
public byte[] getExtension(org.bouncycastle.asn1.ASN1ObjectIdentifier extensionOID) throws java.io.IOException
- Specified by:
getExtension
in interfaceTlsCertificate
- Throws:
java.io.IOException
-
getSerialNumber
public java.math.BigInteger getSerialNumber()
- Specified by:
getSerialNumber
in interfaceTlsCertificate
-
getSigAlgOID
public java.lang.String getSigAlgOID()
- Specified by:
getSigAlgOID
in interfaceTlsCertificate
- Returns:
- the OID of this certificate's 'signatureAlgorithm', as a String.
-
getLegacySignatureAlgorithm
public short getLegacySignatureAlgorithm() throws java.io.IOException
- Specified by:
getLegacySignatureAlgorithm
in interfaceTlsCertificate
- Returns:
SignatureAlgorithm
- Throws:
java.io.IOException
-
supportsSignatureAlgorithm
public boolean supportsSignatureAlgorithm(short signatureAlgorithm) throws java.io.IOException
- Specified by:
supportsSignatureAlgorithm
in interfaceTlsCertificate
- Parameters:
signatureAlgorithm
-SignatureAlgorithm
- Returns:
- true if (and only if) this certificate can be used to verify the given signature algorithm.
- Throws:
java.io.IOException
-
useInRole
public TlsCertificate useInRole(int connectionEnd, int keyExchangeAlgorithm) throws java.io.IOException
- Specified by:
useInRole
in interfaceTlsCertificate
- Parameters:
connectionEnd
-ConnectionEnd
keyExchangeAlgorithm
-KeyExchangeAlgorithm
- Throws:
java.io.IOException
-
getPublicKey
protected java.security.PublicKey getPublicKey() throws java.io.IOException
- Throws:
java.io.IOException
-
getSubjectPublicKeyInfo
protected org.bouncycastle.asn1.x509.SubjectPublicKeyInfo getSubjectPublicKeyInfo() throws java.io.IOException
- Throws:
java.io.IOException
-
getX509Certificate
public java.security.cert.X509Certificate getX509Certificate()
-
supportsKeyUsage
protected boolean supportsKeyUsage(int keyUsageBits)
-
supportsRSA_PKCS1
protected boolean supportsRSA_PKCS1() throws java.io.IOException
- Throws:
java.io.IOException
-
supportsRSA_PSS_PSS
protected boolean supportsRSA_PSS_PSS(short signatureAlgorithm) throws java.io.IOException
- Throws:
java.io.IOException
-
supportsRSA_PSS_RSAE
protected boolean supportsRSA_PSS_RSAE() throws java.io.IOException
- Throws:
java.io.IOException
-
validateKeyUsage
protected void validateKeyUsage(int keyUsageBits) throws java.io.IOException
- Throws:
java.io.IOException
-
validateRSA_PKCS1
protected void validateRSA_PKCS1() throws java.io.IOException
- Throws:
java.io.IOException
-
validateRSA_PSS_PSS
protected void validateRSA_PSS_PSS(short signatureAlgorithm) throws java.io.IOException
- Throws:
java.io.IOException
-
validateRSA_PSS_RSAE
protected void validateRSA_PSS_RSAE() throws java.io.IOException
- Throws:
java.io.IOException
-
-