/** * Extract the value of the given extension, if it exists. * * @param ext The extension object. * @param oid The object identifier to obtain. * @throws AnnotatedException if the extension cannot be read. */ protected static ASN1Primitive getExtensionValue( java.security.cert.X509Extension ext, String oid) throws AnnotatedException { byte[] bytes = ext.getExtensionValue(oid); if (bytes == null) { return null; } return getObject(oid, bytes); }
if (!node2.hasChildren()) validPolicyTree = removePolicyNode(validPolicyTree, policyNodes, node2); if (validPolicyTree == null)
private static void removePolicyNodeRecurse( List[] policyNodes, PKIXPolicyNode _node) { policyNodes[_node.getDepth()].remove(_node); if (_node.hasChildren()) { Iterator _iter = _node.getChildren(); while (_iter.hasNext()) { PKIXPolicyNode _child = (PKIXPolicyNode)_iter.next(); removePolicyNodeRecurse(policyNodes, _child); } } }
try isIndirect = isIndirectCRL(crl); crl_entry = crl.getRevokedCertificate(getSerialNumber(cert)); certIssuer = getIssuerPrincipal(crl); if (!getEncodedIssuerPrincipal(cert).equals(certIssuer)) else if (!getEncodedIssuerPrincipal(cert).equals(getIssuerPrincipal(crl))) crl_entry = crl.getRevokedCertificate(getSerialNumber(cert)); .getExtensionValue(crl_entry, X509Extension.reasonCode.getId()));
try policies = DERSequence.getInstance(getExtensionValue(cert, CERTIFICATE_POLICIES)); pq = getQualifierSet(pinfo.getPolicyQualifiers());
CertPathValidatorUtilities.verifyX509Certificate(cert, trustPublicKey, pkixParams.getSigProvider()); CertPathValidatorUtilities.verifyX509Certificate(cert, workingPublicKey, pkixParams.getSigProvider()); CertPathValidatorUtilities.verifyX509Certificate(cert, cert.getPublicKey(), pkixParams.getSigProvider()); ErrorBundle msg = new ErrorBundle(RESOURCE_NAME,"CertPathReviewer.rootKeyIsValidButNotATrustAnchor");
protected static PKIXPolicyNode removePolicyNode( PKIXPolicyNode validPolicyTree, List[] policyNodes, PKIXPolicyNode _node) { PKIXPolicyNode _parent = (PKIXPolicyNode)_node.getParent(); if (validPolicyTree == null) { return null; } if (_parent == null) { for (int j = 0; j < policyNodes.length; j++) { policyNodes[j] = new ArrayList(); } return null; } else { _parent.removeChild(_node); removePolicyNodeRecurse(policyNodes, _node); return validPolicyTree; } }