Examples of codec.x509.AlgorithmIdentifier

• codec.x509.SubjectPublicKeyInfo
  This class represents the ASN.1/DER value of the AlgorithmIdentifier defined in Annex D to Recommendation X.509. This structure is extensively used for instance in the PKCS standards of RSA Inc. The ASN.1 definition of this structure is as given below:

   AlgorithmIdentifier  ::= SEQUENCE{ algorithm  OBJECT IDENTIFIER, parameters ANY DEFINED BY algorithm OPTIONAL } 

  For this class to work properly, providers need to define the following algorithm aliases for the {@link java.security.AlgorithmParameters AlgorithmParameters} implementations they provide:

  1. AlgorithmParameters.MyAlg = class
  2. Alg.Alias.AlgorithmParameters.1.2.3.4 = MyAlg
  3. Alg.Alias.AlgorithmParameters.OID.1.2.3.4 = MyAlg

  The first property defined the mapping of the JCE compliant standard name of the algorithm to the implementing class. The second provider entry allows mapping OID to those algorithm names while the third allows mapping those names on corresponding OID.

  The alias definitions are used by this class in order to find an AlgorithmParameters implementation for the OID embedded in the X.509 AlgorithmIdentifier structure, and to create the OID for a given AlgorithmParameters instances. This is done by means of the {@link JCA JCA}class, which operates on the engine and alias definitions of the installed providers.

  @author Volker Roth @version "$Id: AlgorithmIdentifier.java,v 1.3 2004/08/13 11:37:03 pebingerExp $" @see JCA

  // if(!Name.defaultEncoding_)
  // throw new BadNameException("Use the constructor that explicitly set
  // the Name encoding type");

  SubjectPublicKeyInfo pki;
  AlgorithmIdentifier aid;
  ASN1Sequence seq;
  PublicKey pub;
  Cipher cipher;
  byte[] b;

  if (cert == null || bek == null) {
      throw new NullPointerException("cert or bulk encryption key");
  }
  /* Global structure and Version */
  version_ = new ASN1Integer(0);
  add(version_);

  /* Issuer and serial number */
  issuer_ = new Name(cert.getIssuerDN().getName(), -1);
  serial_ = new ASN1Integer(cert.getSerialNumber());

  seq = new ASN1Sequence(2);
  seq.add(issuer_);
  seq.add(serial_);
  add(seq);

  /*
   * Extract algorithm identifier from the public key
   */
  pub = cert.getPublicKey();
  pki = new SubjectPublicKeyInfo(pub);
  aid = pki.getAlgorithmIdentifier();

  /*
   * Initialize the cipher instance
   */
  cipher = Cipher.getInstance(pub.getAlgorithm());
  cipher.init(Cipher.ENCRYPT_MODE, pub);

  /*
   * Key Encryption Algorithm Identifier
   */
  cAlg_ = (AlgorithmIdentifier) aid.clone();
  add(cAlg_);

  /*
   * Encrypt the bulk encryption key. Better safe than sorry - we check
   * for bad return values from both the key and the cipher. This already

    public RecipientInfo(X509Certificate cert, Key bek, int encType)
      throws BadNameException, GeneralSecurityException {
  super(4);

  SubjectPublicKeyInfo pki;
  AlgorithmIdentifier aid;
  ASN1Sequence seq;
  PublicKey pub;
  Cipher cipher;
  byte[] b;

  if (cert == null || bek == null) {
      throw new NullPointerException("cert or bulk encryption key");
  }
  /* Global structure and Version */
  version_ = new ASN1Integer(0);
  add(version_);

  /* Issuer and serial number */
  // der scep hack der funktioniert hat
  // issuer_ = new Name(cert.getIssuerDN().getName(),true);
  issuer_ = new Name(cert.getIssuerDN().getName(), encType);
  serial_ = new ASN1Integer(cert.getSerialNumber());

  seq = new ASN1Sequence(2);
  seq.add(issuer_);
  seq.add(serial_);
  add(seq);

  /*
   * Extract algorithm identifier from the public key
   */
  pub = cert.getPublicKey();
  pki = new SubjectPublicKeyInfo(pub);
  aid = pki.getAlgorithmIdentifier();

  /*
   * Initialize the cipher instance
   */
  cipher = Cipher.getInstance(pub.getAlgorithm());
  cipher.init(Cipher.ENCRYPT_MODE, pub);

  /*
   * Key Encryption Algorithm Identifier
   */
  cAlg_ = (AlgorithmIdentifier) aid.clone();
  add(cAlg_);

  /*
   * Encrypt the bulk encryption key. Better safe than sorry - we check
   * for bad return values from both the key and the cipher. This already

    ASN1OctetString os_ = null;

    public DigestInfo() {
  super(2);
  aid_ = new AlgorithmIdentifier();
  os_ = new ASN1OctetString();
  add(aid_);
  add(os_);
    }

     * returns an array of Strings containing all CRL-DP URL's
     * RelativeDistinguishedName not implemented yet!
     */
    public String[] getDPURLs() {
  ASN1Sequence names;
  GeneralName gn;
  Iterator i;
  String[] res;
  int n;

  names = getDistributionPointNames();

  if (names == null) {
      return null;
  }
  res = new String[names.size()];

  for (n = 0, i = names.iterator(); i.hasNext(); n++) {
      try {
    gn = (GeneralName) i.next();
    res[n] = gn.getGeneralName().getValue().toString();
      } catch (codec.x509.X509Exception ex) {
    res[n] = "<could not decode this URL!>";
      }
  }
  return res;

    /**
     * in case of an empty conctructor default values are set.
     */
    public AccessDescription() {
  accessLocation = new GeneralName();
  accessLocation.setUniformResourceIdentifier(new ASN1IA5String(
    "http://ocsptest:8080/ocsp"));
  accessMethod = new ASN1ObjectIdentifier("1.3.6.1.5.5.7.48.1");

  add(accessMethod);

     * returns an array of Strings containing all CRL-DP URL's
     * RelativeDistinguishedName not implemented yet!
     */
    public String[] getDPURLs() {
  ASN1Sequence names;
  GeneralName gn;
  Iterator i;
  String[] res;
  int n;

  names = getDistributionPointNames();

  if (names == null) {
      return null;
  }
  res = new String[names.size()];

  for (n = 0, i = names.iterator(); i.hasNext(); n++) {
      try {
    gn = (GeneralName) i.next();
    res[n] = gn.getGeneralName().getValue().toString();
      } catch (codec.x509.X509Exception ex) {
    res[n] = "<could not decode this URL!>";
      }
  }
  return res;

  certificationRequestInfo_.add(version_);

  subject_ = new Name();
  certificationRequestInfo_.add(subject_);

  subjectPublicKeyInfo_ = new SubjectPublicKeyInfo();
  certificationRequestInfo_.add(subjectPublicKeyInfo_);

  attributes_ = new ASN1SetOf(Attribute.class);
  certificationRequestInfo_.add(new ASN1TaggedType(0, attributes_, false,
    false));

     *                the public key to be put into this certification request
     *                Creation date: (20.08.99 21:42:03)
     */
    private void setPublicKey(PublicKey pk) throws InvalidKeyException {

  subjectPublicKeyInfo_ = new SubjectPublicKeyInfo(pk);
  certificationRequestInfo_.set(2, subjectPublicKeyInfo_);

    }

  // Fraunhofer IGD
  // if(!Name.defaultEncoding_)
  // throw new BadNameException("Use the constructor that explicitly set
  // the Name encoding type");

  SubjectPublicKeyInfo pki;
  AlgorithmIdentifier aid;
  ASN1Sequence seq;
  PublicKey pub;
  Cipher cipher;
  byte[] b;

  if (cert == null || bek == null) {
      throw new NullPointerException("cert or bulk encryption key");
  }
  /* Global structure and Version */
  version_ = new ASN1Integer(0);
  add(version_);

  /* Issuer and serial number */
  issuer_ = new Name(cert.getIssuerDN().getName(), -1);
  serial_ = new ASN1Integer(cert.getSerialNumber());

  seq = new ASN1Sequence(2);
  seq.add(issuer_);
  seq.add(serial_);
  add(seq);

  /*
   * Extract algorithm identifier from the public key
   */
  pub = cert.getPublicKey();
  pki = new SubjectPublicKeyInfo(pub);
  aid = pki.getAlgorithmIdentifier();

  /*
   * Initialize the cipher instance
   */
  cipher = Cipher.getInstance(pub.getAlgorithm());

     */
    public RecipientInfo(X509Certificate cert, Key bek, int encType)
      throws BadNameException, GeneralSecurityException {
  super(4);

  SubjectPublicKeyInfo pki;
  AlgorithmIdentifier aid;
  ASN1Sequence seq;
  PublicKey pub;
  Cipher cipher;
  byte[] b;

  if (cert == null || bek == null) {
      throw new NullPointerException("cert or bulk encryption key");
  }
  /* Global structure and Version */
  version_ = new ASN1Integer(0);
  add(version_);

  /* Issuer and serial number */
  // der scep hack der funktioniert hat
  // issuer_ = new Name(cert.getIssuerDN().getName(),true);
  issuer_ = new Name(cert.getIssuerDN().getName(), encType);
  serial_ = new ASN1Integer(cert.getSerialNumber());

  seq = new ASN1Sequence(2);
  seq.add(issuer_);
  seq.add(serial_);
  add(seq);

  /*
   * Extract algorithm identifier from the public key
   */
  pub = cert.getPublicKey();
  pki = new SubjectPublicKeyInfo(pub);
  aid = pki.getAlgorithmIdentifier();

  /*
   * Initialize the cipher instance
   */
  cipher = Cipher.getInstance(pub.getAlgorithm());