Package org.ejbca.ui.web.pub.inspect

Source Code of org.ejbca.ui.web.pub.inspect.CertAndRequestDumpBean

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
/*************************************************************************
*                                                                       *
*  EJBCA: The OpenSource Certificate Authority                          *
*                                                                       *
*  This software is free software; you can redistribute it and/or       *
*  modify it under the terms of the GNU Lesser General Public           *
*  License as published by the Free Software Foundation; either         *
*  version 2.1 of the License, or any later version.                    *
*                                                                       *
*  See terms of license at gnu.org.                                     *
*                                                                       *
*************************************************************************/
package org.ejbca.ui.web.pub.inspect;

import java.io.ByteArrayInputStream;
import java.io.IOException;
import java.security.cert.Certificate;
import java.security.cert.CertificateException;
import java.util.ArrayList;
import java.util.Collection;
import java.util.Iterator;

import org.bouncycastle.asn1.ASN1InputStream;
import org.bouncycastle.asn1.DERObject;
import org.bouncycastle.asn1.util.ASN1Dump;
import org.bouncycastle.jce.PKCS10CertificationRequest;
import org.ejbca.cvc.CVCObject;
import org.ejbca.cvc.CertificateParser;
import org.ejbca.cvc.exception.CvcException;
import org.ejbca.util.CertTools;
import org.ejbca.util.RequestMessageUtils;

/**
* This bean dumps contents of certificate and certificate request as text. CVC dump or ASN.1 dump.
*
* To make it easy to use from JSTL pages, most methods take no arguments.
* The arguments are supplied as member variables instead. <br>
*
* @version $Id: CertAndRequestDumpBean.java 10880 2010-12-15 13:29:44Z anatom $
*/
public class CertAndRequestDumpBean {
 
  private byte[] bytes;
  private String type = "unknown";

  /**
   * Empty default constructor.
   */
  public CertAndRequestDumpBean() {
  }

  public void setBytes(final byte[] b) {
    if (b.length < 10000) {
      // don't accept anything too large
      this.bytes = b;
      // Figure out type of request
      getDump(); // as side effect sets type variable
    } else {
      type = "too large";
    }
  }
 
  /** Dumps contents, and updates "type" variable as side-effect.
   *
   * @return String containing raw text output or null of input is null, or error message if input invalid.
   */
  public String getDump() {
    String ret = null;
    if (bytes == null) {
      return null;
    }
    final byte[] requestBytes = RequestMessageUtils.getDecodedBytes(bytes);
    ret = getCvcDump(false);
    if ((ret == null) && (requestBytes != null) && (requestBytes.length > 0)) {
      // Not a CVC request, perhaps a PKCS10 request
      try {
        final PKCS10CertificationRequest pkcs10 = new PKCS10CertificationRequest(requestBytes);
//        ret = pkcs10.toString();
        final ASN1InputStream ais = new ASN1InputStream(new ByteArrayInputStream(pkcs10.getEncoded()));
        final DERObject obj = ais.readObject();
        ret = ASN1Dump.dumpAsString(obj);
        type = "PKCS#10";
      } catch (IOException e1) {
         // ignore, move on to certificate decoding
      } catch (IllegalArgumentException e1) {
        // ignore, move on to certificate decoding
      } catch (ClassCastException e2) {
        // ignore, move on to certificate decoding
      }
    } else if (ret != null) {
      type = "CVC";
    }
    if (ret == null) {
      // Not a CVC object or PKCS10 request message, perhaps a X.509 certificate?
      try {
        final Certificate cert = getCert(bytes);
        ret = CertTools.dumpCertificateAsString(cert);
        type = "X.509";
      } catch (Exception e) {
        // Not a X.509 certificate either...try to simply decode asn.1
        try {
          final ASN1InputStream ais = new ASN1InputStream(new ByteArrayInputStream(bytes));
          final DERObject obj = ais.readObject();
          if (obj != null) {
            ret = ASN1Dump.dumpAsString(obj);
            type = "ASN.1";           
          }
        } catch (IOException e1) {
          // Last stop, say what the error is
          ret = e1.getMessage();
        }
      }           
    }
    return ret;
  }

  public String getType() {
    return type;
  }

  public String getCvcDump(final boolean returnMessageOnError) {
    String ret = null;
    final byte[] requestBytes = RequestMessageUtils.getDecodedBytes(bytes);
    try {
      final CVCObject obj = getCVCObject(requestBytes);
      ret = obj.getAsText("");
    } catch (Exception e) {
      // Not a CVC request, perhaps a PKCS10 request
      if (returnMessageOnError) {
        ret = e.getMessage();       
      }
    }
    return ret;
  }

  private static CVCObject getCVCObject(final byte[] cvcdata) throws IOException, CvcException, CertificateException {
    CVCObject ret = null;
    try {
      ret = CertificateParser.parseCVCObject(cvcdata);
    } catch (Exception e) {
      try {
        // this was not parseable, try to see it it was a PEM certificate
        final Collection<Certificate> col = CertTools.getCertsFromPEM(new ByteArrayInputStream(cvcdata));
        final Certificate cert = col.iterator().next();
            ret = CertificateParser.parseCVCObject(cert.getEncoded());
      } catch (Exception ie) {
        // this was not a PEM cert, try to see it it was a PEM certificate req
        final byte[] req = RequestMessageUtils.getRequestBytes(cvcdata);
        ret = CertificateParser.parseCVCObject(req);
      }
    }
    return ret;
  }

  private Certificate getCert(final byte[] certbytes) throws CertificateException {
      Certificate cert = null;
      Collection<Certificate> cachain = null;
      try {
        final Collection<Certificate> certs = CertTools.getCertsFromPEM(new ByteArrayInputStream(certbytes));
        final Iterator<Certificate> iter = certs.iterator();
        cert = (Certificate) iter.next()
        if (iter.hasNext()) {
          // There is a complete certificate chain returned here
          cachain = new ArrayList<Certificate>();
          while (iter.hasNext()) {
            final Certificate chaincert = iter.next();
            cachain.add(chaincert);
          }
        }
      } catch (IOException e) {
        // See if it is a single binary certificate
        cert = CertTools.getCertfromByteArray(certbytes);
      }
      return cert;
  }

}
TOP

Related Classes of org.ejbca.ui.web.pub.inspect.CertAndRequestDumpBean

  • org.bouncycastle.asn1.ASN1InputStream
  • org.bouncycastle.asn1.DERObject
  • org.bouncycastle.jce.PKCS10CertificationRequest
  • org.ejbca.cvc.CVCObject
  • java.io.ByteArrayInputStream
  • java.security.cert.Certificate
    • TOP
    Copyright © 2018 www.massapi.com. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.