Examples of org.bouncycastle.cert.X509v3CertificateBuilder.build()

Class org.bouncycastle.cert.X509v3CertificateBuilder

Examples of org.bouncycastle.cert.X509v3CertificateBuilder.build()

org.bouncycastle.cert.X509v3CertificateBuilder.build()


      AsymmetricKeyParameter caPrivateKeyParameters = PrivateKeyFactory.createKey(signerPrivateKey.getEncoded());
      ContentSigner contentSigner = new BcRSAContentSignerBuilder(sigAlgId, digestAlgId)
          .build(caPrivateKeyParameters);


      X509CertificateHolder certificateHolder = certificateBuilder.build(contentSigner);
      Certificate certificate = certificateHolder.toASN1Structure();


      return certificate;
    } catch (OperatorCreationException e) {
      throw new OpsException("Error signing certificate", e);

View Full Code Here

      certGen.addExtension(X509Extension.basicConstraints, false,
          new BasicConstraints(0));
      // convert the certificate to a standard one
      final X509Certificate cert = new JcaX509CertificateConverter()
          .setProvider(BouncyCastleProvider.PROVIDER_NAME)
          .getCertificate(certGen.build(sigGen));


      cert.checkValidity(new Date());


      // build key store
      final KeyStore ks = KeyStore.getInstance(KEY_STORE_TYPE,

View Full Code Here

      }


      ContentSigner caSigner = new JcaContentSignerBuilder(SIGNING_ALGORITHM)
          .setProvider(BC).build(caPrivateKey);
      X509Certificate cert = new JcaX509CertificateConverter().setProvider(BC)
          .getCertificate(certBuilder.build(caSigner));


      cert.checkValidity(new Date());
      cert.verify(caCert.getPublicKey());


      // Save to keystore

View Full Code Here

      caBuilder.addExtension(X509Extension.authorityKeyIdentifier, false, extUtils.createAuthorityKeyIdentifier(caPair.getPublic()));
      caBuilder.addExtension(X509Extension.basicConstraints, false, new BasicConstraints(true));
      caBuilder.addExtension(X509Extension.keyUsage, true, new KeyUsage(KeyUsage.digitalSignature | KeyUsage.keyCertSign | KeyUsage.cRLSign));


      JcaX509CertificateConverter converter = new JcaX509CertificateConverter().setProvider(BC);
      X509Certificate cert = converter.getCertificate(caBuilder.build(caSigner));


      // confirm the validity of the CA certificate
      cert.checkValidity(new Date());
      cert.verify(cert.getPublicKey());

View Full Code Here

        certBuilder.addExtension(X509Extension.subjectAlternativeName, false, subjectAltName);
      }


      ContentSigner signer = new JcaContentSignerBuilder(SIGNING_ALGORITHM).setProvider(BC).build(caPrivateKey);


      X509Certificate userCert = new JcaX509CertificateConverter().setProvider(BC).getCertificate(certBuilder.build(signer));
      PKCS12BagAttributeCarrier bagAttr = (PKCS12BagAttributeCarrier)pair.getPrivate();
      bagAttr.setBagAttribute(PKCSObjectIdentifiers.pkcs_9_at_localKeyId,
          extUtils.createSubjectKeyIdentifier(pair.getPublic()));


      // confirm the validity of the user certificate

View Full Code Here

                    SubjectPublicKeyInfo.getInstance(kp.getPublic()
                            .getEncoded()));
            ContentSigner signer = new JcaContentSignerBuilder(
                    "SHA256WithRSAEncryption").build(kp.getPrivate());
            Certificate certificate = new JcaX509CertificateConverter()
                    .getCertificate(v3CertGen.build(signer));


            final KeyStore keystore = KeyStore.getInstance(KeyStore
                    .getDefaultType());
            keystore.load(null); // bogus: required to "initialize" keystore
            keystore.setEntry("jetty",

View Full Code Here

    X509v3CertificateBuilder certBuilder = new X509v3CertificateBuilder(name, serial, now, expirationDate, Locale.ENGLISH, name,
        SubjectPublicKeyInfo.getInstance(keyPair.getPublic().getEncoded()));


    try {
      ContentSigner sigGen = new JcaContentSignerBuilder("SHA1withRSA").setProvider(BouncyCastleProvider.PROVIDER_NAME).build(keyPair.getPrivate());
      cert = new JcaX509CertificateConverter().setProvider(BouncyCastleProvider.PROVIDER_NAME).getCertificate(certBuilder.build(sigGen));
      key = (RSAPrivateKey) keyPair.getPrivate();
    } catch (Exception e) {
      // Nothing should go wrong here
      e.printStackTrace();
      return false;

View Full Code Here


        JcaContentSignerBuilder signerBuilder = new JcaContentSignerBuilder(signatureAlgorithm);
        signerBuilder.setProvider("BC");
        
        X509CertificateHolder certHolder =
            certificateGenerator.build(signerBuilder.build(issuerPrivateKey));


        /*
         * Next certificate factory trick is needed to make sure that the
         * certificate delivered to the caller is provided by the default
         * security provider instead of BouncyCastle. If we don't do this trick

View Full Code Here

    X509v3CertificateBuilder certBuilder = new X509v3CertificateBuilder(name, serial, now, expirationDate, Locale.ENGLISH, name,
        SubjectPublicKeyInfo.getInstance(keyPair.getPublic().getEncoded()));


    try {
      ContentSigner sigGen = new JcaContentSignerBuilder("SHA1withRSA").setProvider(BouncyCastleProvider.PROVIDER_NAME).build(keyPair.getPrivate());
      cert = new JcaX509CertificateConverter().setProvider(BouncyCastleProvider.PROVIDER_NAME).getCertificate(certBuilder.build(sigGen));
      key = (RSAPrivateKey) keyPair.getPrivate();
    } catch (Exception e) {
      // Nothing should go wrong here
      e.printStackTrace();
      return false;

View Full Code Here

      .setProvider(CipherParams.CRYPTO_PROVIDER)
      .build(keyPair.getPrivate());
    
    X509Certificate certificate = new JcaX509CertificateConverter()
      .setProvider(CipherParams.CRYPTO_PROVIDER)
      .getCertificate(certificateGenerator.build(signatureGenerator));
    
    certificate.checkValidity(new Date());
    certificate.verify(certificate.getPublicKey());


    return certificate;

View Full Code Here

0 1

TOP

All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.