org.bouncycastle.jce.provider
Class PKIXAttrCertPathBuilderSpi
java.lang.Object
java.security.cert.CertPathBuilderSpi
org.bouncycastle.jce.provider.PKIXAttrCertPathBuilderSpi
public class PKIXAttrCertPathBuilderSpi
- extends java.security.cert.CertPathBuilderSpi
Method Summary |
private void |
addAdditionalStoresFromAltNames(java.security.cert.X509Certificate cert,
ExtendedPKIXParameters pkixParams)
|
private java.security.cert.CertPathBuilderResult |
build(X509AttributeCertificate attrCert,
java.security.cert.X509Certificate tbvCert,
ExtendedPKIXBuilderParameters pkixParams,
java.util.List tbvPath)
|
java.security.cert.CertPathBuilderResult |
engineBuild(java.security.cert.CertPathParameters params)
Build and validate a CertPath using the given parameter. |
private java.util.Collection |
findIssuerCerts(java.security.cert.X509Certificate cert,
java.util.List certStores)
Find the issuer certificates of the given certificate. |
private java.security.cert.TrustAnchor |
findTrustAnchor(java.security.cert.X509Certificate cert,
java.util.Set trustAnchors)
Search the given Set of TrustAnchor's for one that is the
issuer of the given X.509 certificate. |
Methods inherited from class java.lang.Object |
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
certPathException
private java.lang.Exception certPathException
PKIXAttrCertPathBuilderSpi
public PKIXAttrCertPathBuilderSpi()
engineBuild
public java.security.cert.CertPathBuilderResult engineBuild(java.security.cert.CertPathParameters params)
throws java.security.cert.CertPathBuilderException,
java.security.InvalidAlgorithmParameterException
- Build and validate a CertPath using the given parameter.
- Specified by:
engineBuild
in class java.security.cert.CertPathBuilderSpi
- Parameters:
params
- PKIXBuilderParameters object containing all information to
build the CertPath
- Throws:
java.security.cert.CertPathBuilderException
java.security.InvalidAlgorithmParameterException
build
private java.security.cert.CertPathBuilderResult build(X509AttributeCertificate attrCert,
java.security.cert.X509Certificate tbvCert,
ExtendedPKIXBuilderParameters pkixParams,
java.util.List tbvPath)
addAdditionalStoresFromAltNames
private void addAdditionalStoresFromAltNames(java.security.cert.X509Certificate cert,
ExtendedPKIXParameters pkixParams)
throws java.security.cert.CertificateParsingException
- Throws:
java.security.cert.CertificateParsingException
findTrustAnchor
private java.security.cert.TrustAnchor findTrustAnchor(java.security.cert.X509Certificate cert,
java.util.Set trustAnchors)
throws AnnotatedException
- Search the given
Set
of TrustAnchor's for one that is the
issuer of the given X.509 certificate.
- Parameters:
cert
- The X.509 certificate.trustAnchors
- A Set
of TrustAnchor's
- Returns:
- The
TrustAnchor
object if found or
null
if not.
- Throws:
AnnotatedException
- if a TrustAnchor was found but the
signature verification on the given certificate has thrown
an exception.
findIssuerCerts
private java.util.Collection findIssuerCerts(java.security.cert.X509Certificate cert,
java.util.List certStores)
throws AnnotatedException
- Find the issuer certificates of the given certificate.
- Parameters:
cert
- The certificate for which the issuer certificate should be
found.certStores
- A list of X509Store
object that will be
searched through.
- Returns:
- A
Collection
object containing the issuer
X509Certificate
s. Never null
.
- Throws:
AnnotatedException
- if the signature verification on the given
certificate fails for all found issuer certificates or an
other error occurrs.