Examples of org.bouncycastle.jce.X509Principal

org.bouncycastle.jce.X509Principal
a general extension of X509Name with a couple of extra methods and constructors.
Objects of this type can be created from certificates and CRLs using the PrincipalUtil class.
@see org.bouncycastle.jce.PrincipalUtil


        Attribute attribute = new Attribute(PKCSObjectIdentifiers.pkcs_9_at_extensionRequest,
            new DERSet(new X509Extensions(oids, values)));
        
        PKCS10CertificationRequest p1 = new PKCS10CertificationRequest(
            "SHA1WithRSA", new X509Principal("cn=csr"),
            pair.getPublic(), new DERSet(attribute), pair.getPrivate(), "BC");
        PKCS10CertificationRequest p2 = new PKCS10CertificationRequest(
            "SHA1WithRSA", new X509Principal("cn=csr"),
            pair.getPublic(), new DERSet(attribute), pair.getPrivate(), "BC");


        if (!p1.equals(p2))
        {
            fail("cert request comparison failed");

View Full Code Here

    public void setIssuerDN(
        X500Principal   issuer)
    {
        try
        {
            tbsGen.setIssuer(new X509Principal(issuer.getEncoded()));
        }
        catch (IOException e)
        {
            throw new IllegalArgumentException("can't process principal: " + e);
        }

View Full Code Here

    public void setSubjectDN(
        X500Principal   subject)
    {
        try
        {
            tbsGen.setSubject(new X509Principal(subject.getEncoded()));
        }
        catch (IOException e)
        {
            throw new IllegalArgumentException("can't process principal: " + e);
        }

View Full Code Here


    public Principal getIssuerDN()
    {
        try
        {
            return new X509Principal(X500Name.getInstance(c.getIssuer().getEncoded()));
        }
        catch (IOException e)
        {
            return null;
        }

View Full Code Here

        }
    }


    public Principal getSubjectDN()
    {
        return new X509Principal(X500Name.getInstance(c.getSubject().toASN1Primitive()));
    }

View Full Code Here

    public void setIssuerDN(
        X500Principal   issuer)
    {
        try
        {
            tbsGen.setIssuer(new X509Principal(issuer.getEncoded()));
        }
        catch (IOException e)
        {
            throw new IllegalArgumentException("can't process principal: " + e);
        }

View Full Code Here

    public void setSubjectDN(
        X500Principal   subject)
    {
        try
        {
            tbsGen.setSubject(new X509Principal(subject.getEncoded()));
        }
        catch (IOException e)
        {
            throw new IllegalArgumentException("can't process principal: " + e);
        }

View Full Code Here

        //
        X509Certificate[] chain = new X509Certificate[1];


        gen = new OCSPReqGenerator();


        gen.setRequestorName(new GeneralName(GeneralName.directoryName, new X509Principal("CN=fred")));


        gen.addRequest(
            new CertificateID(CertificateID.HASH_SHA1, testCert, BigInteger.valueOf(1)));


        chain[0] = testCert;


        req = gen.generate("SHA1withECDSA", signKP.getPrivate(), chain, "BC");


        if (!req.isSigned())
        {
            fail("not signed but should be");
        }


        if (!req.verify(signKP.getPublic(), "BC"))
        {
            fail("signature failed to verify");
        }


        requests = req.getRequestList();


        if (!requests[0].getCertID().equals(id))
        {
            fail("Failed isFor test");
        }


        certs = req.getCerts("BC");


        if (certs == null)
        {
            fail("null certs found");
        }


        if (certs.length != 1 || !certs[0].equals(testCert))
        {
            fail("incorrect certs found in request");
        }


        //
        // encoding test
        //
        byte[] reqEnc = req.getEncoded();


        OCSPReq newReq = new OCSPReq(reqEnc);


        if (!newReq.verify(signKP.getPublic(), "BC"))
        {
            fail("newReq signature failed to verify");
        }


        //
        // request generation with signing and nonce
        //
        chain = new X509Certificate[1];


        gen = new OCSPReqGenerator();


        Vector oids = new Vector();
        Vector values = new Vector();
        byte[] sampleNonce = new byte[16];
        Random rand = new Random();


        rand.nextBytes(sampleNonce);


        gen.setRequestorName(new GeneralName(GeneralName.directoryName, new X509Principal("CN=fred")));


        oids.addElement(OCSPObjectIdentifiers.id_pkix_ocsp_nonce);
        values.addElement(new X509Extension(false, new DEROctetString(new DEROctetString(sampleNonce))));


        gen.setRequestExtensions(new X509Extensions(oids, values));

View Full Code Here

        //
        X509Certificate[] chain = new X509Certificate[1];


        gen = new OCSPReqGenerator();


        gen.setRequestorName(new GeneralName(GeneralName.directoryName, new X509Principal("CN=fred")));


        gen.addRequest(
            new CertificateID(CertificateID.HASH_SHA1, testCert, BigInteger.valueOf(1)));


        chain[0] = testCert;


        req = gen.generate("SHA1withRSA", signKP.getPrivate(), chain, "BC");


        if (!req.isSigned())
        {
            fail("not signed but should be");
        }


        if (!req.verify(signKP.getPublic(), "BC"))
        {
            fail("signature failed to verify");
        }


        requests = req.getRequestList();


        if (!requests[0].getCertID().equals(id))
        {
            fail("Failed isFor test");
        }


        certs = req.getCerts("BC");


        if (certs == null)
        {
            fail("null certs found");
        }


        if (certs.length != 1 || !certs[0].equals(testCert))
        {
            fail("incorrect certs found in request");
        }


        //
        // encoding test
        //
        byte[] reqEnc = req.getEncoded();


        OCSPReq newReq = new OCSPReq(reqEnc);


        if (!newReq.verify(signKP.getPublic(), "BC"))
        {
            fail("newReq signature failed to verify");
        }


        //
        // request generation with signing and nonce
        //
        chain = new X509Certificate[1];


        gen = new OCSPReqGenerator();


        Vector oids = new Vector();
        Vector values = new Vector();
        byte[] sampleNonce = new byte[16];
        Random rand = new Random();


        rand.nextBytes(sampleNonce);


        gen.setRequestorName(new GeneralName(GeneralName.directoryName, new X509Principal("CN=fred")));


        oids.addElement(OCSPObjectIdentifiers.id_pkix_ocsp_nonce);
        values.addElement(new X509Extension(false, new DEROctetString(new DEROctetString(sampleNonce))));


        gen.setRequestExtensions(new X509Extensions(oids, values));

View Full Code Here

        //
        X509Certificate[] chain = new X509Certificate[1];


        gen = new OCSPReqGenerator();


        gen.setRequestorName(new GeneralName(GeneralName.directoryName, new X509Principal("CN=fred")));


        gen.addRequest(
            new CertificateID(CertificateID.HASH_SHA1, testCert, BigInteger.valueOf(1)));


        chain[0] = testCert;


        req = gen.generate("SHA1withRSA", signKP.getPrivate(), chain, "BC");


        if (!req.isSigned())
        {
            fail("not signed but should be");
        }


        if (!req.verify(signKP.getPublic(), "BC"))
        {
            fail("signature failed to verify");
        }


        requests = req.getRequestList();


        if (!requests[0].getCertID().equals(id))
        {
            fail("Failed isFor test");
        }


        certs = req.getCerts("BC");


        if (certs == null)
        {
            fail("null certs found");
        }


        if (certs.length != 1 || !certs[0].equals(testCert))
        {
            fail("incorrect certs found in request");
        }


        //
        // encoding test
        //
        byte[] reqEnc = req.getEncoded();


        OCSPReq newReq = new OCSPReq(reqEnc);


        if (!newReq.verify(signKP.getPublic(), "BC"))
        {
            fail("newReq signature failed to verify");
        }


        //
        // request generation with signing and nonce
        //
        chain = new X509Certificate[1];


        gen = new OCSPReqGenerator();


        Vector oids = new Vector();
        Vector values = new Vector();
        byte[] sampleNonce = new byte[16];
        Random rand = new Random();


        rand.nextBytes(sampleNonce);


        gen.setRequestorName(new GeneralName(GeneralName.directoryName, new X509Principal("CN=fred")));


        oids.addElement(OCSPObjectIdentifiers.id_pkix_ocsp_nonce);
        values.addElement(new X509Extension(false, new DEROctetString(new DEROctetString(sampleNonce))));


        gen.setRequestExtensions(new X509Extensions(oids, values));

View Full Code Here

0 1 2 3 4 5 6 7 8 9

TOP

Related Classes of org.bouncycastle.jce.X509Principal

br.net.woodstock.rockframework.security.sign.impl.PDFSigner

com.itextpdf.text.pdf.PdfPKCS7

com.itextpdf.text.pdf.security.PdfPKCS7

cybervillains.ca.CertificateCreator

org.apache.jmeter.assertions.SMIMEAssertion

org.apache.stratos.keystore.mgt.KeyStoreGenerator

org.bouncycastle.asn1.ASN1InputStream

org.bouncycastle.asn1.DEROutputStream

org.bouncycastle.cms.test.CMSTestUtil

org.bouncycastle.jcajce.provider.asymmetric.x509.X509CertificateObject

All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.