Package org.conscrypt
Class OpenSSLX509Certificate
- java.lang.Object
-
- java.security.cert.Certificate
-
- java.security.cert.X509Certificate
-
- org.conscrypt.OpenSSLX509Certificate
-
- All Implemented Interfaces:
Serializable,X509Extension
@Internal public final class OpenSSLX509Certificate extends X509Certificate
An implementation ofX509Certificatebased on BoringSSL.- See Also:
- Serialized Form
-
-
Nested Class Summary
-
Nested classes/interfaces inherited from class java.security.cert.Certificate
Certificate.CertificateRep
-
-
Method Summary
-
Methods inherited from class java.security.cert.Certificate
getType, writeReplace
-
-
-
-
Method Detail
-
fromX509DerInputStream
public static OpenSSLX509Certificate fromX509DerInputStream(InputStream is) throws org.conscrypt.OpenSSLX509CertificateFactory.ParsingException
- Throws:
org.conscrypt.OpenSSLX509CertificateFactory.ParsingException
-
fromX509Der
public static OpenSSLX509Certificate fromX509Der(byte[] encoded) throws CertificateEncodingException
- Throws:
CertificateEncodingException
-
fromPkcs7DerInputStream
public static List<OpenSSLX509Certificate> fromPkcs7DerInputStream(InputStream is) throws org.conscrypt.OpenSSLX509CertificateFactory.ParsingException
- Throws:
org.conscrypt.OpenSSLX509CertificateFactory.ParsingException
-
fromX509PemInputStream
public static OpenSSLX509Certificate fromX509PemInputStream(InputStream is) throws org.conscrypt.OpenSSLX509CertificateFactory.ParsingException
- Throws:
org.conscrypt.OpenSSLX509CertificateFactory.ParsingException
-
fromPkcs7PemInputStream
public static List<OpenSSLX509Certificate> fromPkcs7PemInputStream(InputStream is) throws org.conscrypt.OpenSSLX509CertificateFactory.ParsingException
- Throws:
org.conscrypt.OpenSSLX509CertificateFactory.ParsingException
-
fromCertificate
public static OpenSSLX509Certificate fromCertificate(Certificate cert) throws CertificateEncodingException
- Throws:
CertificateEncodingException
-
getExtensionValue
public byte[] getExtensionValue(String oid)
-
hasUnsupportedCriticalExtension
public boolean hasUnsupportedCriticalExtension()
-
checkValidity
public void checkValidity() throws CertificateExpiredException, CertificateNotYetValidException- Specified by:
checkValidityin classX509Certificate- Throws:
CertificateExpiredExceptionCertificateNotYetValidException
-
checkValidity
public void checkValidity(Date date) throws CertificateExpiredException, CertificateNotYetValidException
- Specified by:
checkValidityin classX509Certificate- Throws:
CertificateExpiredExceptionCertificateNotYetValidException
-
getVersion
public int getVersion()
- Specified by:
getVersionin classX509Certificate
-
getSerialNumber
public BigInteger getSerialNumber()
- Specified by:
getSerialNumberin classX509Certificate
-
getIssuerDN
public Principal getIssuerDN()
- Specified by:
getIssuerDNin classX509Certificate
-
getSubjectDN
public Principal getSubjectDN()
- Specified by:
getSubjectDNin classX509Certificate
-
getNotBefore
public Date getNotBefore()
- Specified by:
getNotBeforein classX509Certificate
-
getNotAfter
public Date getNotAfter()
- Specified by:
getNotAfterin classX509Certificate
-
getTBSCertificate
public byte[] getTBSCertificate() throws CertificateEncodingException- Specified by:
getTBSCertificatein classX509Certificate- Throws:
CertificateEncodingException
-
getSignature
public byte[] getSignature()
- Specified by:
getSignaturein classX509Certificate
-
getSigAlgName
public String getSigAlgName()
- Specified by:
getSigAlgNamein classX509Certificate
-
getSigAlgOID
public String getSigAlgOID()
- Specified by:
getSigAlgOIDin classX509Certificate
-
getSigAlgParams
public byte[] getSigAlgParams()
- Specified by:
getSigAlgParamsin classX509Certificate
-
getIssuerUniqueID
public boolean[] getIssuerUniqueID()
- Specified by:
getIssuerUniqueIDin classX509Certificate
-
getSubjectUniqueID
public boolean[] getSubjectUniqueID()
- Specified by:
getSubjectUniqueIDin classX509Certificate
-
getKeyUsage
public boolean[] getKeyUsage()
- Specified by:
getKeyUsagein classX509Certificate
-
getBasicConstraints
public int getBasicConstraints()
- Specified by:
getBasicConstraintsin classX509Certificate
-
getEncoded
public byte[] getEncoded() throws CertificateEncodingException- Specified by:
getEncodedin classCertificate- Throws:
CertificateEncodingException
-
verify
public void verify(PublicKey key) throws CertificateException, NoSuchAlgorithmException, InvalidKeyException, NoSuchProviderException, SignatureException
- Specified by:
verifyin classCertificate- Throws:
CertificateExceptionNoSuchAlgorithmExceptionInvalidKeyExceptionNoSuchProviderExceptionSignatureException
-
verify
public void verify(PublicKey key, String sigProvider) throws CertificateException, NoSuchAlgorithmException, InvalidKeyException, NoSuchProviderException, SignatureException
- Specified by:
verifyin classCertificate- Throws:
CertificateExceptionNoSuchAlgorithmExceptionInvalidKeyExceptionNoSuchProviderExceptionSignatureException
-
verify
public void verify(PublicKey key, Provider sigProvider) throws CertificateException, NoSuchAlgorithmException, InvalidKeyException, SignatureException
- Overrides:
verifyin classX509Certificate- Throws:
CertificateExceptionNoSuchAlgorithmExceptionInvalidKeyExceptionSignatureException
-
toString
public String toString()
- Specified by:
toStringin classCertificate
-
getPublicKey
public PublicKey getPublicKey()
- Specified by:
getPublicKeyin classCertificate
-
getIssuerX500Principal
public X500Principal getIssuerX500Principal()
- Overrides:
getIssuerX500Principalin classX509Certificate
-
getSubjectX500Principal
public X500Principal getSubjectX500Principal()
- Overrides:
getSubjectX500Principalin classX509Certificate
-
getExtendedKeyUsage
public List<String> getExtendedKeyUsage() throws CertificateParsingException
- Overrides:
getExtendedKeyUsagein classX509Certificate- Throws:
CertificateParsingException
-
getSubjectAlternativeNames
public Collection<List<?>> getSubjectAlternativeNames() throws CertificateParsingException
- Overrides:
getSubjectAlternativeNamesin classX509Certificate- Throws:
CertificateParsingException
-
getIssuerAlternativeNames
public Collection<List<?>> getIssuerAlternativeNames() throws CertificateParsingException
- Overrides:
getIssuerAlternativeNamesin classX509Certificate- Throws:
CertificateParsingException
-
equals
public boolean equals(Object other)
- Overrides:
equalsin classCertificate
-
hashCode
public int hashCode()
- Overrides:
hashCodein classCertificate
-
getContext
public long getContext()
Returns the raw pointer to the X509 context for use in JNI calls. The life cycle of this native pointer is managed by theOpenSSLX509Certificateinstance and must not be destroyed or freed by users of this API.
-
withDeletedExtension
public OpenSSLX509Certificate withDeletedExtension(String oid)
Delete an extension. A modified copy of the certificate is returned. The original object is unchanged. If the extension is not present, an unmodified copy is returned.
-
-