/*
* Licensed to the Apache Software Foundation (ASF) under one or more
* contributor license agreements. See the NOTICE file distributed with
* this work for additional information regarding copyright ownership.
* The ASF licenses this file to You under the Apache License, Version 2.0
* (the "License"); you may not use this file except in compliance with
* the License. You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
/**
* @author Alexander Y. Kleymenov
* @version $Revision$
*/
package org.apache.harmony.security.x509;
import java.io.IOException;
import java.math.BigInteger;
import org.apache.harmony.security.asn1.ASN1Implicit;
import org.apache.harmony.security.asn1.ASN1Integer;
import org.apache.harmony.security.asn1.ASN1OctetString;
import org.apache.harmony.security.asn1.ASN1Sequence;
import org.apache.harmony.security.asn1.ASN1Type;
import org.apache.harmony.security.asn1.BerInputStream;
import org.apache.harmony.security.utils.Array;
/**
* The class encapsulates the ASN.1 DER encoding/decoding work
* with Authority Key Identifier Extension (OID = 2.5.29.35).
* (as specified in RFC 3280 -
* Internet X.509 Public Key Infrastructure.
* Certificate and Certificate Revocation List (CRL) Profile.
* http://www.ietf.org/rfc/rfc3280.txt):
*
* <pre>
* id-ce-authorityKeyIdentifier OBJECT IDENTIFIER ::= { id-ce 35 }
*
* AuthorityKeyIdentifier ::= SEQUENCE {
* keyIdentifier [0] KeyIdentifier OPTIONAL,
* authorityCertIssuer [1] GeneralNames OPTIONAL,
* authorityCertSerialNumber [2] CertificateSerialNumber OPTIONAL }
*
* KeyIdentifier ::= OCTET STRING
* </pre>
*/
public final class AuthorityKeyIdentifier extends ExtensionValue {
private final byte[] keyIdentifier;
private final GeneralNames authorityCertIssuer;
private final BigInteger authorityCertSerialNumber;
public AuthorityKeyIdentifier(byte[] keyIdentifier,
GeneralNames authorityCertIssuer,
BigInteger authorityCertSerialNumber) {
this.keyIdentifier = keyIdentifier;
this.authorityCertIssuer = authorityCertIssuer;
this.authorityCertSerialNumber = authorityCertSerialNumber;
}
public static AuthorityKeyIdentifier decode(byte[] encoding) throws IOException {
AuthorityKeyIdentifier aki = (AuthorityKeyIdentifier) ASN1.decode(encoding);
aki.encoding = encoding;
return aki;
}
/**
* The key identifier for the authority.
*
* @return key identifier or {@code null}
*/
public byte[] getKeyIdentifier() {
return keyIdentifier;
}
/**
* The GeneralNames for this authority key identifier.
*
* @return names for the authority certificate issuer or {@code null}
*/
public GeneralNames getAuthorityCertIssuer() {
return authorityCertIssuer;
}
/**
* The serial number of the certificate identified by this authority key
* identifier.
*
* @return authority's certificate serial number or {@code null}
*/
public BigInteger getAuthorityCertSerialNumber() {
return authorityCertSerialNumber;
}
@Override public byte[] getEncoded() {
if (encoding == null) {
encoding = ASN1.encode(this);
}
return encoding;
}
@Override public void dumpValue(StringBuilder sb, String prefix) {
sb.append(prefix).append("AuthorityKeyIdentifier [\n");
if (keyIdentifier != null) {
sb.append(prefix).append(" keyIdentifier:\n");
sb.append(Array.toString(keyIdentifier, prefix + " "));
}
if (authorityCertIssuer != null) {
sb.append(prefix).append(" authorityCertIssuer: [\n");
authorityCertIssuer.dumpValue(sb, prefix + " ");
sb.append(prefix).append(" ]\n");
}
if (authorityCertSerialNumber != null) {
sb.append(prefix).append(" authorityCertSerialNumber: ");
sb.append(authorityCertSerialNumber).append('\n');
}
sb.append(prefix).append("]\n");
}
public static final ASN1Type ASN1 = new ASN1Sequence(
new ASN1Type[] {
new ASN1Implicit(0, ASN1OctetString.getInstance()),
new ASN1Implicit(1, GeneralNames.ASN1),
new ASN1Implicit(2, ASN1Integer.getInstance()),
}) {
{
setOptional(0);
setOptional(1);
setOptional(2);
}
@Override protected Object getDecodedObject(BerInputStream in) throws IOException {
Object[] values = (Object[]) in.content;
byte[] bytes = (byte[]) values[2];
BigInteger authorityCertSerialNumber = null;
if (bytes != null) {
authorityCertSerialNumber = new BigInteger(bytes);
}
return new AuthorityKeyIdentifier((byte[]) values[0],
(GeneralNames) values[1], authorityCertSerialNumber);
}
@Override protected void getValues(Object object, Object[] values) {
AuthorityKeyIdentifier akid = (AuthorityKeyIdentifier) object;
values[0] = akid.keyIdentifier;
values[1] = akid.authorityCertIssuer;
if (akid.authorityCertSerialNumber != null) {
values[2] = akid.authorityCertSerialNumber.toByteArray();
}
}
};
}