Package java.security.cert

Examples of java.security.cert.X509CertSelector

35
36
37
38
39
40
41
42
43
44
45
    public void test_addSubjectAlternativeNameLintLbyte_array() throws IOException {
        // Regression for HARMONY-2487
        int[] types = { 0, 1, 2, 3, 4, 5, 6, 7, 8 };
        for (int i = 0; i < types.length; i++) {
            try {
                new X509CertSelector().addSubjectAlternativeName(types[i],
                        (byte[]) null);
                fail("No expected NullPointerException for type: " + i);
            } catch (NullPointerException e) {
            }
        }
View Full Code Here
51
52
53
54
55
56
57
58
59
60
61
    public void test_addSubjectAlternativeNameLintLjava_lang_String() {
        // Regression for HARMONY-727
        int[] types = { 0, 2, 3, 4, 5, 6, 7, 8 };
        for (int i = 0; i < types.length; i++) {
            try {
                new X509CertSelector().addSubjectAlternativeName(types[i],
                        "0xDFRF");
                fail("IOException expected");
            } catch (IOException e) {
            }
        }
View Full Code Here
67
68
69
70
71
72
73
74
75
76
77
    public void test_addPathToNameLintLbyte_array() throws IOException {
        // Regression for HARMONY-2487
        int[] types = { 0, 1, 2, 3, 4, 5, 6, 7, 8 };
        for (int i = 0; i < types.length; i++) {
            try {
                new X509CertSelector().addPathToName(types[i], (byte[]) null);
                fail("No expected NullPointerException for type: " + i);
            } catch (NullPointerException e) {
            }
        }
    }
View Full Code Here
81
82
83
84
85
86
87
88
89
90
91
     */
    public void test_addPathToNameLintLjava_lang_String() {
        // Regression for HARMONY-724
        for (int type = 0; type <= 8; type++) {
            try {
                new X509CertSelector().addPathToName(type, (String) null);
                fail("IOException expected!");
            } catch (IOException ioe) {
                // expected
            }
        }
View Full Code Here
104
105
106
107
108
109
110
111
112
113
114
115
116
117
                0x06, 0x02, 0x03, 0x05,//OID
                0x01, 0x01, 0x07, //ANY
                0x03, 0x03, 0x01, 0x01, 0x06, // subjectPublicKey
        };

        X509CertSelector selector = new X509CertSelector();

        selector.setSubjectPublicKey(enc);
        PublicKey key = selector.getSubjectPublicKey();
        assertEquals("0.3.5", key.getAlgorithm());
        assertEquals("X.509", key.getFormat());
        assertTrue(Arrays.equals(enc, key.getEncoded()));
        assertNotNull(key.toString());
    }
View Full Code Here
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
        Set taSet = TestUtils.getTrustAnchorSet();
        if (taSet == null) {
            fail(getName() + ": not performed (could not create test TrustAnchor set)");
        }

        X509CertSelector x509cs = new X509CertSelector();
        PKIXParameters p = new PKIXParameters(taSet);
        p.setTargetCertConstraints(x509cs);
        // get cert selector
        X509CertSelector cs1 = (X509CertSelector)p.getTargetCertConstraints();
        // modify returned selector
        cs1.setIssuer(testIssuer);
        // get cert selector again
        X509CertSelector cs2 = (X509CertSelector)p.getTargetCertConstraints();
        // check that selector is not the same
        assertNotSame("notTheSame", cs1, cs2);
        // check that selector's internal state has
        // not been changed by above modification
        assertFalse("stateNotChanged", testIssuer.equals(cs2.getIssuerAsString()));
    }
View Full Code Here
445
446
447
448
449
450
451
452
453
454
455
456
        Set taSet = TestUtils.getTrustAnchorSet();
        if (taSet == null) {
            fail(getName() + ": not performed (could not create test TrustAnchor set)");
        }

        X509CertSelector x509cs = new X509CertSelector();
        x509cs.setIssuer(testIssuer);
        PKIXParameters p = new PKIXParameters(taSet);
        p.setTargetCertConstraints(x509cs);
        assertEquals("set",
          testIssuer,
          ((X509CertSelector)p.getTargetCertConstraints()).getIssuerAsString());
View Full Code Here
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
        Set taSet = TestUtils.getTrustAnchorSet();
        if (taSet == null) {
            fail(getName() + ": not performed (could not create test TrustAnchor set)");
        }

        X509CertSelector x509cs = new X509CertSelector();
        PKIXParameters p = new PKIXParameters(taSet);
        p.setTargetCertConstraints(x509cs);
        // modify selector
        x509cs.setIssuer(testIssuer);
        // get selector
        X509CertSelector x509cs1 = (X509CertSelector)p.getTargetCertConstraints();
        // check that selector's internal state has
        // not been changed by above modification
        assertFalse(testIssuer.equals(x509cs1.getIssuerAsString()));
    }
View Full Code Here
61
62
63
64
65
66
67
68
69
        if (taSet == null) {
            fail(getName() + ": not performed (could not create test TrustAnchor set)");
        }
        // both parameters are valid and non-null
        PKIXParameters p =
            new PKIXBuilderParameters(taSet, new X509CertSelector());
        assertTrue("instanceOf", p instanceof PKIXBuilderParameters);
        assertNotNull("certSelector", p.getTargetCertConstraints());
    }
View Full Code Here
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
    private KeySelectorResult x509DataSelect(X509Data xd, SignatureMethod sm)
  throws KeyStoreException, KeySelectorException {

  // convert signature algorithm to compatible public-key alg OID
  String algOID = getPKAlgorithmOID(sm.getAlgorithm());
        X509CertSelector subjectcs = new X509CertSelector();
  try {
            subjectcs.setSubjectPublicKeyAlgID(algOID);
        } catch (IOException ioe) {
      throw new KeySelectorException(ioe);
  }
        Collection certs = new ArrayList();

        Iterator xi = xd.getContent().iterator();
        while (xi.hasNext()) {
            Object o = xi.next();
      // check X509IssuerSerial
      if (o instanceof X509IssuerSerial) {
          X509IssuerSerial xis = (X509IssuerSerial) o;
          try {
              subjectcs.setSerialNumber(xis.getSerialNumber());
        String issuer = new X500Principal(xis.getIssuerName()).getName();
        // strip off newline
        if (issuer.endsWith("\n")) {
      issuer = new String
          (issuer.toCharArray(), 0, issuer.length()-1);
        }
        subjectcs.setIssuer(issuer);
          } catch (IOException ioe) {
        throw new KeySelectorException(ioe);
    }
      // check X509SubjectName
      } else if (o instanceof String) {
          String sn = (String) o;
          try {
        String subject = new X500Principal(sn).getName();
        // strip off newline
        if (subject.endsWith("\n")) {
      subject = new String
          (subject.toCharArray(), 0, subject.length()-1);
        }
        subjectcs.setSubject(subject);
    } catch (IOException ioe) {
        throw new KeySelectorException(ioe);
    }
      // check X509SKI
      } else if (o instanceof byte[]) {
          byte[] ski = (byte[]) o;
    // DER-encode ski - required by X509CertSelector
    byte[] encodedSki = new byte[ski.length+2];
    encodedSki[0] = 0x04; // OCTET STRING tag value
    encodedSki[1] = (byte) ski.length; // length
    System.arraycopy(ski, 0, encodedSki, 2, ski.length);
    subjectcs.setSubjectKeyIdentifier(encodedSki);
      } else if (o instanceof X509Certificate) {
    certs.add((X509Certificate) o);
      // check X509CRL
      // not supported: should use CertPath API
      } else {
          // skip all other entries
          continue;
      }
  }
  KeySelectorResult ksr = keyStoreSelect(subjectcs);
  if (ksr != null) {
      return ksr;
  }
  if (!certs.isEmpty() && !trusted) {
      // try to find public key in certs in X509Data
      Iterator i = certs.iterator();
      while (i.hasNext()) {
    X509Certificate cert = (X509Certificate) i.next();
    if (subjectcs.match(cert)) {
        return new SimpleKeySelectorResult(cert.getPublicKey());
    }
      }
  }
  return null;
View Full Code Here
TOP

Related Classes of java.security.cert.X509CertSelector

  • br.net.woodstock.rockframework.security.cert.impl.PKIXCertificateValidator
  • br.net.woodstock.rockframework.security.cert.impl.PKIXCertificateVerifier
  • com.facebook.presto.jdbc.internal.jetty.util.ssl.SslContextFactory
  • com.sun.xml.wss.impl.misc.DefaultCallbackHandler$X509CertificateValidatorImpl
  • com.sun.xml.wss.impl.misc.WSITProviderSecurityEnvironment
  • com.sun.xml.wss.impl.WssProviderSecurityEnvironment
  • gnu.java.security.OID
  • gnu.java.security.x509.ext.GeneralName
  • gnu.java.security.x509.ext.NameConstraints
  • org.apache.cloudstack.network.lb.CertServiceImpl
    • Copyright © 2018 www.massapicom. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.