protected static void additionalChecks(X509AttributeCertificate attrCert, Set prohibitedACAttributes, Set necessaryACAttributes) throws CertPathValidatorException { // 1 for (Iterator it = prohibitedACAttributes.iterator(); it .hasNext();) { String oid = (String) it.next(); if (attrCert.getAttributes(oid) != null) { throw new CertPathValidatorException( "Attribute certificate contains prohibited attribute: " + oid + "."); } } for (Iterator it = necessaryACAttributes.iterator(); it .hasNext();) { String oid = (String) it.next(); if (attrCert.getAttributes(oid) == null) { throw new CertPathValidatorException( "Attribute certificate does not contain necessary attribute: " + oid + "."); } } }
public boolean equals( Object o) { if (o == this) { return true; } if (!(o instanceof X509AttributeCertificate)) { return false; } X509AttributeCertificate other = (X509AttributeCertificate)o; try { byte[] b1 = this.getEncoded(); byte[] b2 = other.getEncoded(); return Arrays.areEqual(b1, b2); } catch (IOException e) { return false; } }
/** * Returns the issuer of an attribute certificate or certificate. * * @param cert The attribute certificate or certificate. * @return The issuer as <code>X500Principal</code>. */ protected static X500Principal getEncodedIssuerPrincipal( Object cert) { if (cert instanceof X509Certificate) { return ((X509Certificate)cert).getIssuerX500Principal(); } else { return (X500Principal)((X509AttributeCertificate)cert).getIssuer().getPrincipals()[0]; } }
if (!attrCert.getSerialNumber().equals(serialNumber)) if (!attrCert.getHolder().equals(holder)) if (!attrCert.getIssuer().equals(issuer)) attrCert.checkValidity(attributeCertificateValid); .getExtensionValue(X509Extensions.TargetInformation.getId()); if (targetInfoExt != null)
if (xselector.getAttributeCert().getHolder().getEntityNames() != null) principals = xselector.getAttributeCert().getHolder() .getEntityNames(); serials.add(xselector.getAttributeCert().getSerialNumber() .toString());
if (attrCert.getExtensionValue(X509Extensions.NoRevAvail.getId()) != null) if (attrCert.getNotAfter().getTime() < crl.getThisUpdate() .getTime())
if (attrCert.getExtensionValue(NO_REV_AVAIL) == null) ((X500Principal) attrCert.getIssuer() .getPrincipals()[0]).getEncoded()) .readObject(); if (attrCert.getExtensionValue(CRL_DISTRIBUTION_POINTS) != null || attrCert.getExtensionValue(AUTHORITY_INFO_ACCESS) != null)
private static BigInteger getSerialNumber( Object cert) { if (cert instanceof X509Certificate) { return ((X509Certificate)cert).getSerialNumber(); } else { return ((X509AttributeCertificate)cert).getSerialNumber(); } }
protected static void processAttrCert5(X509AttributeCertificate attrCert, PKIXExtendedParameters pkixParams) throws CertPathValidatorException { try { attrCert.checkValidity(CertPathValidatorUtilities .getValidDate(pkixParams)); } catch (CertificateExpiredException e) { throw new ExtCertPathValidatorException( "Attribute certificate is not valid.", e); } catch (CertificateNotYetValidException e) { throw new ExtCertPathValidatorException( "Attribute certificate is not valid.", e); } }
Set set = attrCert.getCriticalExtensionOIDs();
if (attrCert.getHolder().getIssuer() != null) selector.setSerialNumber(attrCert.getHolder().getSerialNumber()); Principal[] principals = attrCert.getHolder().getIssuer(); for (int i = 0; i < principals.length; i++) if (attrCert.getHolder().getEntityNames() != null) Principal[] principals = attrCert.getHolder().getEntityNames(); for (int i = 0; i < principals.length; i++)
if (!attrCert.getSerialNumber().equals(serialNumber)) if (!attrCert.getHolder().equals(holder)) if (!attrCert.getIssuer().equals(issuer)) attrCert.checkValidity(attributeCertificateValid); .getExtensionValue(X509Extensions.TargetInformation.getId()); if (targetInfoExt != null)
if (xselector.getAttributeCert().getHolder().getEntityNames() != null) principals = xselector.getAttributeCert().getHolder() .getEntityNames(); serials.add(xselector.getAttributeCert().getSerialNumber() .toString());
if (attrCert.getExtensionValue(X509Extensions.NoRevAvail.getId()) != null) if (attrCert.getNotAfter().getTime() < crl.getThisUpdate() .getTime())
if (attrCert.getExtensionValue(NO_REV_AVAIL) == null) ((X500Principal) attrCert.getIssuer() .getPrincipals()[0]).getEncoded()) .readObject(); if (attrCert.getExtensionValue(CRL_DISTRIBUTION_POINTS) != null || attrCert.getExtensionValue(AUTHORITY_INFO_ACCESS) != null)
private static BigInteger getSerialNumber( Object cert) { if (cert instanceof X509Certificate) { return ((X509Certificate)cert).getSerialNumber(); } else { return ((X509AttributeCertificate)cert).getSerialNumber(); } }
protected static void processAttrCert5(X509AttributeCertificate attrCert, ExtendedPKIXParameters pkixParams) throws CertPathValidatorException { try { attrCert.checkValidity(CertPathValidatorUtilities .getValidDate(pkixParams)); } catch (CertificateExpiredException e) { throw new ExtCertPathValidatorException( "Attribute certificate is not valid.", e); } catch (CertificateNotYetValidException e) { throw new ExtCertPathValidatorException( "Attribute certificate is not valid.", e); } }
Set set = attrCert.getCriticalExtensionOIDs();
if (attrCert.getHolder().getIssuer() != null) selector.setSerialNumber(attrCert.getHolder().getSerialNumber()); Principal[] principals = attrCert.getHolder().getIssuer(); for (int i = 0; i < principals.length; i++) if (attrCert.getHolder().getEntityNames() != null) Principal[] principals = attrCert.getHolder().getEntityNames(); for (int i = 0; i < principals.length; i++)
/** * Returns the issuer of an attribute certificate or certificate. * * @param cert The attribute certificate or certificate. * @return The issuer as <code>X500Principal</code>. */ protected static X500Principal getEncodedIssuerPrincipal( Object cert) { if (cert instanceof X509Certificate) { return ((X509Certificate)cert).getIssuerX500Principal(); } else { return (X500Principal)((X509AttributeCertificate)cert).getIssuer().getPrincipals()[0]; } }