org.bouncycastle.jce.provider
Class PKIXAttrCertPathBuilderSpi
java.lang.Object
java.security.cert.CertPathBuilderSpi
org.bouncycastle.jce.provider.PKIXAttrCertPathBuilderSpi
public class PKIXAttrCertPathBuilderSpi
- extends java.security.cert.CertPathBuilderSpi
|
Method Summary |
private void |
addAdditionalStoresFromAltNames(java.security.cert.X509Certificate cert,
ExtendedPKIXParameters pkixParams)
|
private java.security.cert.CertPathBuilderResult |
build(X509AttributeCertificate attrCert,
java.security.cert.X509Certificate tbvCert,
ExtendedPKIXBuilderParameters pkixParams,
java.util.List tbvPath)
|
java.security.cert.CertPathBuilderResult |
engineBuild(java.security.cert.CertPathParameters params)
Build and validate a CertPath using the given parameter. |
private java.util.Collection |
findIssuerCerts(java.security.cert.X509Certificate cert,
java.util.List certStores)
Find the issuer certificates of the given certificate. |
private java.security.cert.TrustAnchor |
findTrustAnchor(java.security.cert.X509Certificate cert,
java.util.Set trustAnchors)
Search the given Set of TrustAnchor's for one that is the
issuer of the given X.509 certificate. |
| Methods inherited from class java.lang.Object |
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
certPathException
private java.lang.Exception certPathException
PKIXAttrCertPathBuilderSpi
public PKIXAttrCertPathBuilderSpi()
engineBuild
public java.security.cert.CertPathBuilderResult engineBuild(java.security.cert.CertPathParameters params)
throws java.security.cert.CertPathBuilderException,
java.security.InvalidAlgorithmParameterException
- Build and validate a CertPath using the given parameter.
- Specified by:
engineBuild in class java.security.cert.CertPathBuilderSpi
- Parameters:
params - PKIXBuilderParameters object containing all information to
build the CertPath
- Throws:
java.security.cert.CertPathBuilderException
java.security.InvalidAlgorithmParameterException
build
private java.security.cert.CertPathBuilderResult build(X509AttributeCertificate attrCert,
java.security.cert.X509Certificate tbvCert,
ExtendedPKIXBuilderParameters pkixParams,
java.util.List tbvPath)
addAdditionalStoresFromAltNames
private void addAdditionalStoresFromAltNames(java.security.cert.X509Certificate cert,
ExtendedPKIXParameters pkixParams)
throws java.security.cert.CertificateParsingException
- Throws:
java.security.cert.CertificateParsingException
findTrustAnchor
private java.security.cert.TrustAnchor findTrustAnchor(java.security.cert.X509Certificate cert,
java.util.Set trustAnchors)
throws AnnotatedException
- Search the given
Set of TrustAnchor's for one that is the
issuer of the given X.509 certificate.
- Parameters:
cert - The X.509 certificate.trustAnchors - A Set of TrustAnchor's
- Returns:
- The
TrustAnchor object if found or
null if not.
- Throws:
AnnotatedException - if a TrustAnchor was found but the
signature verification on the given certificate has thrown
an exception.
findIssuerCerts
private java.util.Collection findIssuerCerts(java.security.cert.X509Certificate cert,
java.util.List certStores)
throws AnnotatedException
- Find the issuer certificates of the given certificate.
- Parameters:
cert - The certificate for which the issuer certificate should be
found.certStores - A list of X509Store object that will be
searched through.
- Returns:
- A
Collection object containing the issuer
X509Certificates. Never null.
- Throws:
AnnotatedException - if the signature verification on the given
certificate fails for all found issuer certificates or an
other error occurrs.