Package org.gudy.bouncycastle.x509
Class AttributeCertificateHolder
java.lang.Object
org.gudy.bouncycastle.x509.AttributeCertificateHolder
- All Implemented Interfaces:
Cloneable
,CertSelector
,Selector
The Holder object.
Holder ::= SEQUENCE { baseCertificateID [0] IssuerSerial OPTIONAL, -- the issuer and serial number of -- the holder's Public Key Certificate entityName [1] GeneralNames OPTIONAL, -- the name of the claimant or role objectDigestInfo [2] ObjectDigestInfo OPTIONAL -- used to directly authenticate the holder, -- for example, an executable }
-
Field Summary
Fields -
Constructor Summary
ConstructorsConstructorDescriptionAttributeCertificateHolder
(int digestedObjectType, String digestAlgorithm, String otherObjectTypeID, byte[] objectDigest) Constructs a holder for v2 attribute certificates with a hash value for some type of object.AttributeCertificateHolder
(X500Principal principal) AttributeCertificateHolder
(X500Principal issuerName, BigInteger serialNumber) AttributeCertificateHolder
(X509Principal principal) AttributeCertificateHolder
(X509Principal issuerName, BigInteger serialNumber) -
Method Summary
Modifier and TypeMethodDescriptionclone()
boolean
private GeneralNames
generateGeneralNames
(X509Principal principal) Returns the other object type ID if an object digest info is used.int
Returns the digest object type if an object digest info is used.Return any principal objects inside the attribute certificate holder entity names field.Return the principals associated with the issuer attached to this holderprivate Object[]
getNames
(GeneralName[] names) byte[]
Returns the hash if an object digest info is used.Returns the digest algorithm ID if an object digest info is used.private Principal[]
getPrincipals
(GeneralNames names) Return the serial number associated with the issuer attached to this holder.int
hashCode()
boolean
boolean
match
(Certificate cert) private boolean
matchesDN
(X509Principal subject, GeneralNames targets)
-
Field Details
-
holder
-
-
Constructor Details
-
AttributeCertificateHolder
AttributeCertificateHolder(ASN1Sequence seq) -
AttributeCertificateHolder
-
AttributeCertificateHolder
-
AttributeCertificateHolder
- Throws:
CertificateParsingException
-
AttributeCertificateHolder
-
AttributeCertificateHolder
-
AttributeCertificateHolder
public AttributeCertificateHolder(int digestedObjectType, String digestAlgorithm, String otherObjectTypeID, byte[] objectDigest) Constructs a holder for v2 attribute certificates with a hash value for some type of object.digestedObjectType
can be one of the following:- 0 - publicKey - A hash of the public key of the holder must be passed.
- 1 - publicKeyCert - A hash of the public key certificate of the holder must be passed.
- 2 - otherObjectDigest - A hash of some other object type must be
passed.
otherObjectTypeID
must not be empty.
This cannot be used if a v1 attribute certificate is used.
- Parameters:
digestedObjectType
- The digest object type.digestAlgorithm
- The algorithm identifier for the hash.otherObjectTypeID
- The object type ID ifdigestedObjectType
isotherObjectDigest
.objectDigest
- The hash value.
-
-
Method Details
-
getDigestedObjectType
public int getDigestedObjectType()Returns the digest object type if an object digest info is used.- 0 - publicKey - A hash of the public key of the holder must be passed.
- 1 - publicKeyCert - A hash of the public key certificate of the holder must be passed.
- 2 - otherObjectDigest - A hash of some other object type must be
passed.
otherObjectTypeID
must not be empty.
- Returns:
- The digest object type or -1 if no object digest info is set.
-
getDigestAlgorithm
Returns the other object type ID if an object digest info is used.- Returns:
- The other object type ID or
null
if no object digest info is set.
-
getObjectDigest
public byte[] getObjectDigest()Returns the hash if an object digest info is used.- Returns:
- The hash or
null
if no object digest info is set.
-
getOtherObjectTypeID
Returns the digest algorithm ID if an object digest info is used.- Returns:
- The digest algorithm ID or
null
if no object digest info is set.
-
generateGeneralNames
-
matchesDN
-
getNames
-
getPrincipals
-
getEntityNames
Return any principal objects inside the attribute certificate holder entity names field.- Returns:
- an array of Principal objects (usually X500Principal), null if no entity names field is set.
-
getIssuer
Return the principals associated with the issuer attached to this holder- Returns:
- an array of principals, null if no BaseCertificateID is set.
-
getSerialNumber
Return the serial number associated with the issuer attached to this holder.- Returns:
- the certificate serial number, null if no BaseCertificateID is set.
-
clone
-
match
- Specified by:
match
in interfaceCertSelector
-
equals
-
hashCode
public int hashCode() -
match
-