Class FixedBCPKIXCertPathReviewer


  • public class FixedBCPKIXCertPathReviewer
    extends org.bouncycastle.x509.PKIXCertPathReviewer
    PKIXCertPathReviewer
    Validation of X.509 Certificate Paths. Tries to find as much errors in the Path as possible. Copy note: unfortunately a lot of code can not be inherited, as too many methods are private + are very long :-(
    • Field Detail

      • CRL_UTIL

        protected static final org.bouncycastle.x509.PKIXCRLUtil CRL_UTIL
      • CERTIFICATE_POLICIES

        protected static final String CERTIFICATE_POLICIES
      • BASIC_CONSTRAINTS

        protected static final String BASIC_CONSTRAINTS
      • POLICY_MAPPINGS

        protected static final String POLICY_MAPPINGS
      • SUBJECT_ALTERNATIVE_NAME

        protected static final String SUBJECT_ALTERNATIVE_NAME
      • NAME_CONSTRAINTS

        protected static final String NAME_CONSTRAINTS
      • KEY_USAGE

        protected static final String KEY_USAGE
      • INHIBIT_ANY_POLICY

        protected static final String INHIBIT_ANY_POLICY
      • ISSUING_DISTRIBUTION_POINT

        protected static final String ISSUING_DISTRIBUTION_POINT
      • DELTA_CRL_INDICATOR

        protected static final String DELTA_CRL_INDICATOR
      • POLICY_CONSTRAINTS

        protected static final String POLICY_CONSTRAINTS
      • FRESHEST_CRL

        protected static final String FRESHEST_CRL
      • CRL_DISTRIBUTION_POINTS

        protected static final String CRL_DISTRIBUTION_POINTS
      • AUTHORITY_KEY_IDENTIFIER

        protected static final String AUTHORITY_KEY_IDENTIFIER
      • CRL_NUMBER

        protected static final String CRL_NUMBER
      • crlReasons

        protected static final String[] crlReasons
    • Constructor Detail

      • FixedBCPKIXCertPathReviewer

        public FixedBCPKIXCertPathReviewer​(CertPath certPath,
                                           ExtPKIXParameters2 params)
                                    throws org.bouncycastle.x509.CertPathReviewerException
        Creates a PKIXCertPathReviewer and initializes it with the given CertPath and PKIXParameters params
        Parameters:
        certPath - the CertPath to validate
        params - the PKIXParameters to use
        Throws:
        org.bouncycastle.x509.CertPathReviewerException - if the certPath is empty
    • Method Detail

      • init

        public void init​(CertPath certPath,
                         ExtPKIXParameters2 params)
                  throws org.bouncycastle.x509.CertPathReviewerException
        Initializes the PKIXCertPathReviewer with the given CertPath and PKIXParameters params
        Parameters:
        certPath - the CertPath to validate
        params - the PKIXParameters to use
        Throws:
        org.bouncycastle.x509.CertPathReviewerException - if the certPath is empty
        IllegalStateException - if the PKIXCertPathReviewer is already initialized
      • doChecks

        protected void doChecks()
        Overrides:
        doChecks in class org.bouncycastle.x509.PKIXCertPathReviewer
      • getCRLDistUrls

        protected Vector getCRLDistUrls​(org.bouncycastle.asn1.x509.CRLDistPoint crlDistPoints)
        Overrides:
        getCRLDistUrls in class org.bouncycastle.x509.PKIXCertPathReviewer
      • getEncodedIssuerPrincipal

        protected static X500Principal getEncodedIssuerPrincipal​(Object arg0)
      • isSelfIssued

        protected static boolean isSelfIssued​(X509Certificate arg0)
      • getExtensionValue

        protected static org.bouncycastle.asn1.ASN1Primitive getExtensionValue​(X509Extension arg0,
                                                                               String arg1)
                                                                        throws org.bouncycastle.jce.provider.AnnotatedException
        Throws:
        org.bouncycastle.jce.provider.AnnotatedException
      • removePolicyNode

        protected static org.bouncycastle.jce.provider.PKIXPolicyNode removePolicyNode​(org.bouncycastle.jce.provider.PKIXPolicyNode arg0,
                                                                                       List[] arg1,
                                                                                       org.bouncycastle.jce.provider.PKIXPolicyNode arg2)
      • processCertD1i

        protected static boolean processCertD1i​(int arg0,
                                                List[] arg1,
                                                org.bouncycastle.asn1.ASN1ObjectIdentifier arg2,
                                                Set arg3)
      • processCertD1ii

        protected static void processCertD1ii​(int arg0,
                                              List[] arg1,
                                              org.bouncycastle.asn1.ASN1ObjectIdentifier arg2,
                                              Set arg3)
      • prepareNextCertB2

        protected static org.bouncycastle.jce.provider.PKIXPolicyNode prepareNextCertB2​(int arg0,
                                                                                        List[] arg1,
                                                                                        String arg2,
                                                                                        org.bouncycastle.jce.provider.PKIXPolicyNode arg3)
      • isAnyPolicy

        protected static boolean isAnyPolicy​(Set arg0)
      • findCertificates

        protected static Collection findCertificates​(org.bouncycastle.x509.X509CertStoreSelector arg0,
                                                     List arg1)
                                              throws org.bouncycastle.jce.provider.AnnotatedException
        Throws:
        org.bouncycastle.jce.provider.AnnotatedException
      • findCertificates

        protected static Collection findCertificates​(org.bouncycastle.jcajce.PKIXCertStoreSelector arg0,
                                                     List arg1)
                                              throws org.bouncycastle.jce.provider.AnnotatedException
        Throws:
        org.bouncycastle.jce.provider.AnnotatedException
      • findCertificates

        protected static Collection findCertificates​(org.bouncycastle.x509.X509AttributeCertStoreSelector arg0,
                                                     List arg1)
                                              throws org.bouncycastle.jce.provider.AnnotatedException
        Throws:
        org.bouncycastle.jce.provider.AnnotatedException
      • getCertStatus

        protected static void getCertStatus​(Date arg0,
                                            X509CRL arg1,
                                            Object arg2,
                                            org.bouncycastle.x509.CertStatus arg3)
                                     throws org.bouncycastle.jce.provider.AnnotatedException
        Throws:
        org.bouncycastle.jce.provider.AnnotatedException