diff options
Diffstat (limited to 'pki/base/util/src/netscape/security/extensions/AuthInfoAccessExtension.java')
-rw-r--r-- | pki/base/util/src/netscape/security/extensions/AuthInfoAccessExtension.java | 78 |
1 files changed, 36 insertions, 42 deletions
diff --git a/pki/base/util/src/netscape/security/extensions/AuthInfoAccessExtension.java b/pki/base/util/src/netscape/security/extensions/AuthInfoAccessExtension.java index 108dab070..ff017a7d1 100644 --- a/pki/base/util/src/netscape/security/extensions/AuthInfoAccessExtension.java +++ b/pki/base/util/src/netscape/security/extensions/AuthInfoAccessExtension.java @@ -17,7 +17,6 @@ // --- END COPYRIGHT BLOCK --- package netscape.security.extensions; - import java.io.ByteArrayInputStream; import java.io.ByteArrayOutputStream; import java.io.IOException; @@ -37,29 +36,24 @@ import netscape.security.x509.Extension; import netscape.security.x509.GeneralName; import netscape.security.x509.URIName; - /** - * This represents the authority information access extension - * as defined in RFC2459. - * + * This represents the authority information access extension as defined in + * RFC2459. + * * id-pkix OBJECT IDENTIFIER ::= { iso(1) identified-organization(3) dod(6) - * internet(1) security(5) mechanisms(5) - * pkix(7) } } - * id-pe OBJECT IDENTIFIER ::= { id-pkix 1 } - * id-pe-authorityInfoAccess OBJECT IDENTIFIER ::= { id-pe 1 } + * internet(1) security(5) mechanisms(5) pkix(7) } } id-pe OBJECT IDENTIFIER ::= + * { id-pkix 1 } id-pe-authorityInfoAccess OBJECT IDENTIFIER ::= { id-pe 1 } * AuthorityInfoAccessSyntax ::= SEQUENCE SIZE (1..MAX) OF AccessDescription - * AccessDescription ::= SEQUENCE { - * accessMethod OBJECT IDENTIFIER, - * accessLocation GeneralName - * } - * id-ad OBJECT IDENTIFIER ::= { id-pkix 48 } - * id-ad-ocsp OBJECT IDENTIFIER ::= { id-ad 1 } - * id-ad-caIssuers OBJECT IDENTIFIER ::= { id-ad 2 } - * + * AccessDescription ::= SEQUENCE { accessMethod OBJECT IDENTIFIER, + * accessLocation GeneralName } id-ad OBJECT IDENTIFIER ::= { id-pkix 48 } + * id-ad-ocsp OBJECT IDENTIFIER ::= { id-ad 1 } id-ad-caIssuers OBJECT + * IDENTIFIER ::= { id-ad 2 } + * * Need to make sure the following is added to CMS.cfg: - * oidmap.auth_info_access.class=com.netscape.certsrv.cert.AuthInfoAccessExtension + * oidmap.auth_info_access.class + * =com.netscape.certsrv.cert.AuthInfoAccessExtension * oidmap.auth_info_access.oid=1.3.6.1.5.5.7.1.1 - * + * * @author thomask * @version $Revision$, $Date$ */ @@ -72,12 +66,12 @@ public class AuthInfoAccessExtension extends Extension implements CertAttrSet { public static final String NAME2 = "AuthorityInformationAccess"; public static final int OID_OCSP[] = { 1, 3, 6, 1, 5, 5, 7, 48, 1 }; - public static final ObjectIdentifier METHOD_OCSP = new - ObjectIdentifier(OID_OCSP); + public static final ObjectIdentifier METHOD_OCSP = new ObjectIdentifier( + OID_OCSP); public static final int OID_CA_ISSUERS[] = { 1, 3, 6, 1, 5, 5, 7, 48, 2 }; - public static final ObjectIdentifier METHOD_CA_ISSUERS = new - ObjectIdentifier(OID_CA_ISSUERS); + public static final ObjectIdentifier METHOD_CA_ISSUERS = new ObjectIdentifier( + OID_CA_ISSUERS); public static final int OID[] = { 1, 3, 6, 1, 5, 5, 7, 1, 1 }; public static final ObjectIdentifier ID = new ObjectIdentifier(OID); @@ -86,7 +80,7 @@ public class AuthInfoAccessExtension extends Extension implements CertAttrSet { /** * Create the extension from the passed DER encoded value of the same. - * + * * @param critical true if the extension is to be treated as critical. * @param value Array of DER encoded bytes of the actual value. * @exception IOException on error. @@ -97,8 +91,8 @@ public class AuthInfoAccessExtension extends Extension implements CertAttrSet { this.extensionValue = null; // build this when encodeThis() is called } - public AuthInfoAccessExtension(Boolean critical, Object value) - throws IOException { + public AuthInfoAccessExtension(Boolean critical, Object value) + throws IOException { this.extensionId = ID; this.critical = critical.booleanValue(); this.extensionValue = (byte[]) ((byte[]) value).clone(); @@ -153,10 +147,8 @@ public class AuthInfoAccessExtension extends Extension implements CertAttrSet { /** * Adds Access Description. */ - public void addAccessDescription( - ObjectIdentifier method, - GeneralName gn) { - clearValue(); + public void addAccessDescription(ObjectIdentifier method, GeneralName gn) { + clearValue(); mDesc.addElement(new AccessDescription(method, gn)); } @@ -175,7 +167,8 @@ public class AuthInfoAccessExtension extends Extension implements CertAttrSet { DerValue val = new DerValue(this.extensionValue); if (val.tag != DerValue.tag_Sequence) { - throw new IOException("Invalid encoding of AuthInfoAccess extension"); + throw new IOException( + "Invalid encoding of AuthInfoAccess extension"); } while (val.data.available() != 0) { DerValue seq = val.data.getDerValue(); @@ -186,7 +179,7 @@ public class AuthInfoAccessExtension extends Extension implements CertAttrSet { } } - private void encodeThis() throws IOException { + private void encodeThis() throws IOException { DerOutputStream seq = new DerOutputStream(); DerOutputStream tmp = new DerOutputStream(); @@ -201,10 +194,10 @@ public class AuthInfoAccessExtension extends Extension implements CertAttrSet { seq.write(DerValue.tag_Sequence, tmp); this.extensionValue = seq.toByteArray(); } - + /** * Write the extension to the DerOutputStream. - * + * * @param out the DerOutputStream to write the extension to. * @exception IOException on encoding errors. */ @@ -236,20 +229,21 @@ public class AuthInfoAccessExtension extends Extension implements CertAttrSet { public static void main(String[] argv) { AuthInfoAccessExtension aia = new AuthInfoAccessExtension(false); - GeneralName ocspName = new GeneralName(new - URIName("http://ocsp.netscape.com")); + GeneralName ocspName = new GeneralName(new URIName( + "http://ocsp.netscape.com")); aia.addAccessDescription(METHOD_OCSP, ocspName); - GeneralName caIssuersName = new GeneralName(new - URIName("http://ocsp.netscape.com")); + GeneralName caIssuersName = new GeneralName(new URIName( + "http://ocsp.netscape.com")); - aia.addAccessDescription(METHOD_CA_ISSUERS, caIssuersName); + aia.addAccessDescription(METHOD_CA_ISSUERS, caIssuersName); ByteArrayOutputStream os = new ByteArrayOutputStream(); try { aia.encode(os); - System.out.println(com.netscape.osutil.OSUtil.BtoA(os.toByteArray())); + System.out + .println(com.netscape.osutil.OSUtil.BtoA(os.toByteArray())); } catch (IOException e) { System.out.println(e.toString()); } @@ -264,8 +258,8 @@ public class AuthInfoAccessExtension extends Extension implements CertAttrSet { ByteArrayInputStream bis = new ByteArrayInputStream( bos.toByteArray()); ObjectInputStream ois = new ObjectInputStream(bis); - AuthInfoAccessExtension clone = (AuthInfoAccessExtension) - ois.readObject(); + AuthInfoAccessExtension clone = (AuthInfoAccessExtension) ois + .readObject(); System.out.println(clone); } catch (Exception e) { |