Examples of GeneralName

codec.x509.GeneralName

This class represents the GeneralName data type as denoted in X.509. It implements the following ASN1 data structure:

 GeneralName ::= CHOICE { otherName                     [0]  IMPLICIT OtherName  rfc822Name                    [1]  IMPLICIT IA5String dNSName                       [2]  IMPLICIT IA5String x400Address                   [3]  IMPLICIT ORAAddress directoryName                 [4]  IMPLICIT Name ediPartyName                  [5]  IMPLICIT EDIPartyName uniformRessourceIdentifier    [6]  IMPLICIT IA5String iPAddress                     [7]  IMPLICIT OCTET STRING registeredID                  [8]  IMPLICIT OBJECT IDENTIFIER } OtherName ::= SEQUENCE { type-id    OBJECT IDENTIFIER, value      [0] EXPLICIT ANY DEFINED BY type-id  }

Note that x400Address and ediPartyName are not yet implemented and will cause exceptions to be thrown. @author Markus Tak

gnu.java.security.x509.ext.GeneralName

org.apache.geronimo.crypto.asn1.x509.GeneralName

The GeneralName object.

 GeneralName ::= CHOICE { otherName                       [0]     OtherName, rfc822Name                      [1]     IA5String, dNSName                         [2]     IA5String, x400Address                     [3]     ORAddress, directoryName                   [4]     Name, ediPartyName                    [5]     EDIPartyName, uniformResourceIdentifier       [6]     IA5String, iPAddress                       [7]     OCTET STRING, registeredID                    [8]     OBJECT IDENTIFIER} OtherName ::= SEQUENCE { type-id    OBJECT IDENTIFIER, value      [0] EXPLICIT ANY DEFINED BY type-id } EDIPartyName ::= SEQUENCE { nameAssigner            [0]     DirectoryString OPTIONAL, partyName               [1]     DirectoryString } Name ::= CHOICE { RDNSequence }

org.apache.geronimo.util.asn1.x509.GeneralName

The GeneralName object.

 GeneralName ::= CHOICE { otherName                       [0]     OtherName, rfc822Name                      [1]     IA5String, dNSName                         [2]     IA5String, x400Address                     [3]     ORAddress, directoryName                   [4]     Name, ediPartyName                    [5]     EDIPartyName, uniformResourceIdentifier       [6]     IA5String, iPAddress                       [7]     OCTET STRING, registeredID                    [8]     OBJECT IDENTIFIER} OtherName ::= SEQUENCE { type-id    OBJECT IDENTIFIER, value      [0] EXPLICIT ANY DEFINED BY type-id } EDIPartyName ::= SEQUENCE { nameAssigner            [0]     DirectoryString OPTIONAL, partyName               [1]     DirectoryString } Name ::= CHOICE { RDNSequence }

org.apache.harmony.security.x509.GeneralName

etf.org/rfc/rfc3280.txt):

 GeneralName::= CHOICE { otherName                       [0]     OtherName, rfc822Name                      [1]     IA5String, dNSName                         [2]     IA5String, x400Address                     [3]     ORAddress, directoryName                   [4]     Name, ediPartyName                    [5]     EDIPartyName, uniformResourceIdentifier       [6]     IA5String, iPAddress                       [7]     OCTET STRING, registeredID                    [8]     OBJECT IDENTIFIER } OtherName::= SEQUENCE { type-id    OBJECT IDENTIFIER, value      [0] EXPLICIT ANY DEFINED BY type-id  } EDIPartyName::= SEQUENCE { nameAssigner            [0]     DirectoryString OPTIONAL, partyName               [1]     DirectoryString  } DirectoryString::= CHOICE { teletexString             TeletexString   (SIZE (1..MAX)), printableString           PrintableString (SIZE (1..MAX)), universalString           UniversalString (SIZE (1..MAX)), utf8String              UTF8String      (SIZE (1..MAX)), bmpString               BMPString       (SIZE (1..MAX))  }

@see org.apache.harmony.security.x509.NameConstraints @see org.apache.harmony.security.x509.GeneralSubtree

org.bouncycastle.asn1.x509.GeneralName

The GeneralName object.

 GeneralName ::= CHOICE { otherName                       [0]     OtherName, rfc822Name                      [1]     IA5String, dNSName                         [2]     IA5String, x400Address                     [3]     ORAddress, directoryName                   [4]     Name, ediPartyName                    [5]     EDIPartyName, uniformResourceIdentifier       [6]     IA5String, iPAddress                       [7]     OCTET STRING, registeredID                    [8]     OBJECT IDENTIFIER} OtherName ::= SEQUENCE { type-id    OBJECT IDENTIFIER, value      [0] EXPLICIT ANY DEFINED BY type-id } EDIPartyName ::= SEQUENCE { nameAssigner            [0]     DirectoryString OPTIONAL, partyName               [1]     DirectoryString } Name ::= CHOICE { RDNSequence }

org.bouncycastle2.asn1.x509.GeneralName

The GeneralName object.

 GeneralName ::= CHOICE { otherName                       [0]     OtherName, rfc822Name                      [1]     IA5String, dNSName                         [2]     IA5String, x400Address                     [3]     ORAddress, directoryName                   [4]     Name, ediPartyName                    [5]     EDIPartyName, uniformResourceIdentifier       [6]     IA5String, iPAddress                       [7]     OCTET STRING, registeredID                    [8]     OBJECT IDENTIFIER} OtherName ::= SEQUENCE { type-id    OBJECT IDENTIFIER, value      [0] EXPLICIT ANY DEFINED BY type-id } EDIPartyName ::= SEQUENCE { nameAssigner            [0]     DirectoryString OPTIONAL, partyName               [1]     DirectoryString } Name ::= CHOICE { RDNSequence }

sun.security.x509.GeneralName

This class implements the ASN.1 GeneralName object class.

The ASN.1 syntax for this is:

 GeneralName ::= CHOICE { otherName                       [0]     OtherName, rfc822Name                      [1]     IA5String, dNSName                         [2]     IA5String, x400Address                     [3]     ORAddress, directoryName                   [4]     Name, ediPartyName                    [5]     EDIPartyName, uniformResourceIdentifier       [6]     IA5String, iPAddress                       [7]     OCTET STRING, registeredID                    [8]     OBJECT IDENTIFIER }

@author Amit Kapoor @author Hemma Prafullchandra

Examples of org.bouncycastle.asn1.x509.GeneralName

        byte[] issuerBytes = CertPathValidatorUtilities.getIssuerPrincipal(crl).getEncoded();


        boolean matchIssuer = false;
        if (dp.getCRLIssuer() != null)
        {
            GeneralName genNames[] = dp.getCRLIssuer().getNames();
            for (int j = 0; j < genNames.length; j++)
            {
                if (genNames[j].getTagNo() == GeneralName.directoryName)
                {
                    try

View Full Code Here

Examples of org.bouncycastle.asn1.x509.GeneralName

            }
            Vector emails = new X509Name(dns).getValues(X509Name.EmailAddress);
            for (Enumeration e = emails.elements(); e.hasMoreElements();)
            {
                String email = (String)e.nextElement();
                GeneralName emailAsGeneralName = new GeneralName(GeneralName.rfc822Name, email);
                try
                {
                    nameConstraintValidator.checkPermitted(emailAsGeneralName);
                    nameConstraintValidator.checkExcluded(emailAsGeneralName);
                }

View Full Code Here

Examples of org.bouncycastle.asn1.x509.GeneralName

                catch (Exception e)
                {
                    throw new AnnotatedException("Issuer from certificate for CRL could not be reencoded.", e);
                }
                DistributionPoint dp = new DistributionPoint(new DistributionPointName(0, new GeneralNames(
                    new GeneralName(GeneralName.directoryName, issuer))), null, null);
                ExtendedPKIXParameters paramsPKIXClone = (ExtendedPKIXParameters)paramsPKIX.clone();
                checkCRL(dp, paramsPKIXClone, cert, validDate, sign, workingPublicKey, certStatus, reasonsMask,
                    certPathCerts);
                validCrlFound = true;
            }

View Full Code Here

Examples of org.bouncycastle.asn1.x509.GeneralName

    {
        try
        {
            if (certificate.getVersion() != 3)
            {
                GeneralName          genName = new GeneralName(PrincipalUtil.getIssuerX509Principal(certificate));
                SubjectPublicKeyInfo info = new SubjectPublicKeyInfo(
                        (ASN1Sequence)new ASN1InputStream(certificate.getPublicKey().getEncoded()).readObject());
                
                return (ASN1Sequence)new AuthorityKeyIdentifier(
                               info, new GeneralNames(genName), certificate.getSerialNumber()).toASN1Object();
            }
            else
            {
                GeneralName             genName = new GeneralName(PrincipalUtil.getIssuerX509Principal(certificate));
                
                byte[]                  ext = certificate.getExtensionValue(X509Extensions.SubjectKeyIdentifier.getId());
                
                if (ext != null)
                {

View Full Code Here

Examples of org.bouncycastle.asn1.x509.GeneralName

        String signDN = "O=Bouncy Castle, C=AU";
        KeyPair signKP = OCSPTestUtil.makeECKeyPair();
        X509Certificate testCert = OCSPTestUtil.makeECDSACertificate(signKP, signDN, signKP, signDN);


        String origDN = "CN=Eric H. Echidna, E=eric@bouncycastle.org, O=Bouncy Castle, C=AU";
        GeneralName origName = new GeneralName(new X509Name(origDN));


        //
        // general id value for our test issuer cert and a serial number.
        //
        CertificateID id = new CertificateID(CertificateID.HASH_SHA1, testCert, BigInteger.valueOf(1));


        //
        // basic request generation
        //
        OCSPReqGenerator gen = new OCSPReqGenerator();
        gen.addRequest(id);


        OCSPReq req = gen.generate();


        if (req.isSigned())
        {
            fail("signed but shouldn't be");
        }


        X509Certificate[] certs = req.getCerts("BC");


        if (certs != null)
        {
            fail("null certs expected, but not found");
        }


        Req[] requests = req.getRequestList();


        if (!requests[0].getCertID().equals(id))
        {
            fail("Failed isFor test");
        }


        //
        // request generation with signing
        //
        X509Certificate[] chain = new X509Certificate[1];


        gen = new OCSPReqGenerator();


        gen.setRequestorName(new GeneralName(GeneralName.directoryName, new X509Principal("CN=fred")));


        gen.addRequest(
            new CertificateID(CertificateID.HASH_SHA1, testCert, BigInteger.valueOf(1)));


        chain[0] = testCert;


        req = gen.generate("SHA1withECDSA", signKP.getPrivate(), chain, "BC");


        if (!req.isSigned())
        {
            fail("not signed but should be");
        }


        if (!req.verify(signKP.getPublic(), "BC"))
        {
            fail("signature failed to verify");
        }


        requests = req.getRequestList();


        if (!requests[0].getCertID().equals(id))
        {
            fail("Failed isFor test");
        }


        certs = req.getCerts("BC");


        if (certs == null)
        {
            fail("null certs found");
        }


        if (certs.length != 1 || !certs[0].equals(testCert))
        {
            fail("incorrect certs found in request");
        }


        //
        // encoding test
        //
        byte[] reqEnc = req.getEncoded();


        OCSPReq newReq = new OCSPReq(reqEnc);


        if (!newReq.verify(signKP.getPublic(), "BC"))
        {
            fail("newReq signature failed to verify");
        }


        //
        // request generation with signing and nonce
        //
        chain = new X509Certificate[1];


        gen = new OCSPReqGenerator();


        Vector oids = new Vector();
        Vector values = new Vector();
        byte[] sampleNonce = new byte[16];
        Random rand = new Random();


        rand.nextBytes(sampleNonce);


        gen.setRequestorName(new GeneralName(GeneralName.directoryName, new X509Principal("CN=fred")));


        oids.addElement(OCSPObjectIdentifiers.id_pkix_ocsp_nonce);
        values.addElement(new X509Extension(false, new DEROctetString(new DEROctetString(sampleNonce))));


        gen.setRequestExtensions(new X509Extensions(oids, values));

View Full Code Here

Examples of org.bouncycastle.asn1.x509.GeneralName

        String signDN = "O=Bouncy Castle, C=AU";
        KeyPair signKP = OCSPTestUtil.makeKeyPair();
        X509Certificate testCert = OCSPTestUtil.makeCertificate(signKP, signDN, signKP, signDN);


        String origDN = "CN=Eric H. Echidna, E=eric@bouncycastle.org, O=Bouncy Castle, C=AU";
        GeneralName origName = new GeneralName(new X509Name(origDN));


        //
        // general id value for our test issuer cert and a serial number.
        //
        CertificateID id = new CertificateID(CertificateID.HASH_SHA1, testCert, BigInteger.valueOf(1));


        //
        // basic request generation
        //
        OCSPReqGenerator gen = new OCSPReqGenerator();


        gen.addRequest(
            new CertificateID(CertificateID.HASH_SHA1, testCert, BigInteger.valueOf(1)));


        OCSPReq req = gen.generate();


        if (req.isSigned())
        {
            fail("signed but shouldn't be");
        }


        X509Certificate[] certs = req.getCerts("BC");


        if (certs != null)
        {
            fail("null certs expected, but not found");
        }


        Req[] requests = req.getRequestList();


        if (!requests[0].getCertID().equals(id))
        {
            fail("Failed isFor test");
        }


        //
        // request generation with signing
        //
        X509Certificate[] chain = new X509Certificate[1];


        gen = new OCSPReqGenerator();


        gen.setRequestorName(new GeneralName(GeneralName.directoryName, new X509Principal("CN=fred")));


        gen.addRequest(
            new CertificateID(CertificateID.HASH_SHA1, testCert, BigInteger.valueOf(1)));


        chain[0] = testCert;


        req = gen.generate("SHA1withRSA", signKP.getPrivate(), chain, "BC");


        if (!req.isSigned())
        {
            fail("not signed but should be");
        }


        if (!req.verify(signKP.getPublic(), "BC"))
        {
            fail("signature failed to verify");
        }


        requests = req.getRequestList();


        if (!requests[0].getCertID().equals(id))
        {
            fail("Failed isFor test");
        }


        certs = req.getCerts("BC");


        if (certs == null)
        {
            fail("null certs found");
        }


        if (certs.length != 1 || !certs[0].equals(testCert))
        {
            fail("incorrect certs found in request");
        }


        //
        // encoding test
        //
        byte[] reqEnc = req.getEncoded();


        OCSPReq newReq = new OCSPReq(reqEnc);


        if (!newReq.verify(signKP.getPublic(), "BC"))
        {
            fail("newReq signature failed to verify");
        }


        //
        // request generation with signing and nonce
        //
        chain = new X509Certificate[1];


        gen = new OCSPReqGenerator();


        Vector oids = new Vector();
        Vector values = new Vector();
        byte[] sampleNonce = new byte[16];
        Random rand = new Random();


        rand.nextBytes(sampleNonce);


        gen.setRequestorName(new GeneralName(GeneralName.directoryName, new X509Principal("CN=fred")));


        oids.addElement(OCSPObjectIdentifiers.id_pkix_ocsp_nonce);
        values.addElement(new X509Extension(false, new DEROctetString(new DEROctetString(sampleNonce))));


        gen.setRequestExtensions(new X509Extensions(oids, values));

View Full Code Here

Examples of org.bouncycastle.asn1.x509.GeneralName

        String signDN = "O=Bouncy Castle, C=AU";
        KeyPair signKP = OCSPTestUtil.makeKeyPair();
        X509Certificate testCert = OCSPTestUtil.makeCertificate(signKP, signDN, signKP, signDN);


        String origDN = "CN=Eric H. Echidna, E=eric@bouncycastle.org, O=Bouncy Castle, C=AU";
        GeneralName origName = new GeneralName(new X509Name(origDN));


        //
        // general id value for our test issuer cert and a serial number.
        //
        CertificateID id = new CertificateID(CertificateID.HASH_SHA1, testCert, BigInteger.valueOf(1));


        //
        // general id value for our test issuer cert and a serial number and the default provider
        //
        id = new CertificateID(CertificateID.HASH_SHA1, testCert, BigInteger.valueOf(1), null);


        //
        // basic request generation
        //
        OCSPReqGenerator gen = new OCSPReqGenerator();


        gen.addRequest(
            new CertificateID(CertificateID.HASH_SHA1, testCert, BigInteger.valueOf(1)));


        OCSPReq req = gen.generate();


        if (req.isSigned())
        {
            fail("signed but shouldn't be");
        }


        X509Certificate[] certs = req.getCerts("BC");


        if (certs != null)
        {
            fail("null certs expected, but not found");
        }


        Req[] requests = req.getRequestList();


        if (!requests[0].getCertID().equals(id))
        {
            fail("Failed isFor test");
        }


        //
        // request generation with signing
        //
        X509Certificate[] chain = new X509Certificate[1];


        gen = new OCSPReqGenerator();


        gen.setRequestorName(new GeneralName(GeneralName.directoryName, new X509Principal("CN=fred")));


        gen.addRequest(
            new CertificateID(CertificateID.HASH_SHA1, testCert, BigInteger.valueOf(1)));


        chain[0] = testCert;


        req = gen.generate("SHA1withRSA", signKP.getPrivate(), chain, "BC");


        if (!req.isSigned())
        {
            fail("not signed but should be");
        }


        if (!req.verify(signKP.getPublic(), "BC"))
        {
            fail("signature failed to verify");
        }


        requests = req.getRequestList();


        if (!requests[0].getCertID().equals(id))
        {
            fail("Failed isFor test");
        }


        certs = req.getCerts("BC");


        if (certs == null)
        {
            fail("null certs found");
        }


        if (certs.length != 1 || !certs[0].equals(testCert))
        {
            fail("incorrect certs found in request");
        }


        //
        // encoding test
        //
        byte[] reqEnc = req.getEncoded();


        OCSPReq newReq = new OCSPReq(reqEnc);


        if (!newReq.verify(signKP.getPublic(), "BC"))
        {
            fail("newReq signature failed to verify");
        }


        //
        // request generation with signing and nonce
        //
        chain = new X509Certificate[1];


        gen = new OCSPReqGenerator();


        Vector oids = new Vector();
        Vector values = new Vector();
        byte[] sampleNonce = new byte[16];
        Random rand = new Random();


        rand.nextBytes(sampleNonce);


        gen.setRequestorName(new GeneralName(GeneralName.directoryName, new X509Principal("CN=fred")));


        oids.addElement(OCSPObjectIdentifiers.id_pkix_ocsp_nonce);
        values.addElement(new X509Extension(false, new DEROctetString(new DEROctetString(sampleNonce))));


        gen.setRequestExtensions(new X509Extensions(oids, values));

View Full Code Here

Examples of org.bouncycastle.asn1.x509.GeneralName

                    
                    if (altName != null)
                    {
                        for (int j = 0; j < altName.size(); j++)
                        {
                            GeneralName name = GeneralName.getInstance(altName.getObjectAt(j));


                            try
                            {
                                nameConstraintValidator.checkPermitted(name);
                                nameConstraintValidator.checkExcluded(name);

View Full Code Here

Examples of org.bouncycastle.asn1.x509.GeneralName

                        AuthorityKeyIdentifier aki = AuthorityKeyIdentifier.getInstance(
                            X509ExtensionUtil.fromExtensionValue(akiBytes));
                        GeneralNames issuerNames = aki.getAuthorityCertIssuer();
                        if (issuerNames != null)
                        {
                            GeneralName name = issuerNames.getNames()[0];
                            BigInteger serial = aki.getAuthorityCertSerialNumber(); 
                            if (serial != null)
                            {
                                Object[] extraArgs = {new LocaleString(RESOURCE_NAME, "missingIssuer"), " \"", name , 
                                        "\" ", new LocaleString(RESOURCE_NAME, "missingSerial") , " ", serial};

View Full Code Here

Examples of org.bouncycastle.asn1.x509.GeneralName

            AccessDescription[] ads = authInfoAccess.getAccessDescriptions();
            for (int i = 0; i < ads.length; i++)
            {
                if (ads[i].getAccessMethod().equals(AccessDescription.id_ad_ocsp))
                {
                    GeneralName name = ads[i].getAccessLocation();
                    if (name.getTagNo() == GeneralName.uniformResourceIdentifier)
                    {
                        String url = ((DERIA5String) name.getName()).getString();
                        urls.add(url);
                    }
                }
            }
        }

View Full Code Here

0 1 2 3 4 5

TOP

All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.