blob: 37c047563b4bf84d732e75ce27fb9eb6b42228e7 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
|
/* GENERATED SOURCE. DO NOT MODIFY. */
package com.android.org.bouncycastle.jcajce;
import java.io.IOException;
import java.security.cert.CertSelector;
import java.security.cert.CertStore;
import java.security.cert.CertStoreException;
import java.security.cert.Certificate;
import java.security.cert.X509CertSelector;
import java.util.Collection;
import com.android.org.bouncycastle.util.Selector;
/**
* This class is a Selector implementation for certificates.
*
* @see com.android.org.bouncycastle.util.Selector
*/
public class PKIXCertStoreSelector<T extends Certificate>
implements Selector<T>
{
/**
* Builder for a PKIXCertStoreSelector.
*/
public static class Builder
{
private final CertSelector baseSelector;
/**
* Constructor initializing a builder with a CertSelector.
*
* @param certSelector the CertSelector to copy the match details from.
*/
public Builder(CertSelector certSelector)
{
this.baseSelector = (CertSelector)certSelector.clone();
}
/**
* Build a selector.
*
* @return a new PKIXCertStoreSelector
*/
public PKIXCertStoreSelector<? extends Certificate> build()
{
return new PKIXCertStoreSelector(baseSelector);
}
}
private final CertSelector baseSelector;
private PKIXCertStoreSelector(CertSelector baseSelector)
{
this.baseSelector = baseSelector;
}
public boolean match(Certificate cert)
{
return baseSelector.match(cert);
}
public Object clone()
{
return new PKIXCertStoreSelector(baseSelector);
}
public static Collection<? extends Certificate> getCertificates(final PKIXCertStoreSelector selector, CertStore certStore)
throws CertStoreException
{
return certStore.getCertificates(new SelectorClone(selector));
}
private static class SelectorClone
extends X509CertSelector
{
private final PKIXCertStoreSelector selector;
SelectorClone(PKIXCertStoreSelector selector)
{
this.selector = selector;
if (selector.baseSelector instanceof X509CertSelector)
{
X509CertSelector baseSelector = (X509CertSelector)selector.baseSelector;
this.setAuthorityKeyIdentifier(baseSelector.getAuthorityKeyIdentifier());
this.setBasicConstraints(baseSelector.getBasicConstraints());
this.setCertificate(baseSelector.getCertificate());
this.setCertificateValid(baseSelector.getCertificateValid());
this.setKeyUsage(baseSelector.getKeyUsage());
this.setMatchAllSubjectAltNames(baseSelector.getMatchAllSubjectAltNames());
this.setPrivateKeyValid(baseSelector.getPrivateKeyValid());
this.setSerialNumber(baseSelector.getSerialNumber());
this.setSubjectKeyIdentifier(baseSelector.getSubjectKeyIdentifier());
this.setSubjectPublicKey(baseSelector.getSubjectPublicKey());
try
{
this.setExtendedKeyUsage(baseSelector.getExtendedKeyUsage());
this.setIssuer(baseSelector.getIssuerAsBytes());
this.setNameConstraints(baseSelector.getNameConstraints());
this.setPathToNames(baseSelector.getPathToNames());
this.setPolicy(baseSelector.getPolicy());
this.setSubject(baseSelector.getSubjectAsBytes());
this.setSubjectAlternativeNames(baseSelector.getSubjectAlternativeNames());
this.setSubjectPublicKeyAlgID(baseSelector.getSubjectPublicKeyAlgID());
}
catch (IOException e)
{
throw new IllegalStateException("base selector invalid: " + e.getMessage(), e);
}
}
}
public boolean match(Certificate certificate)
{
return (selector == null) ? (certificate != null) : selector.match(certificate);
}
}
}
|
