Package org.mozilla.jss.pkcs11
Class PK11Cert
java.lang.Object
java.security.cert.Certificate
java.security.cert.X509Certificate
org.mozilla.jss.pkcs11.PK11Cert
- All Implemented Interfaces:
Serializable
,AutoCloseable
,X509Extension
,X509Certificate
- Direct Known Subclasses:
PK11InternalCert
,PK11TokenCert
- See Also:
-
Nested Class Summary
Nested ClassesModifier and TypeClassDescriptionprotected static class
A class that implements Principal with a String.Nested classes/interfaces inherited from class java.security.cert.Certificate
Certificate.CertificateRep
-
Field Summary
FieldsModifier and TypeFieldDescriptionprotected org.mozilla.jss.pkcs11.CertProxy
static org.slf4j.Logger
protected String
protected TokenProxy
-
Method Summary
Modifier and TypeMethodDescriptionvoid
void
checkValidity
(Date date) void
close()
boolean
void
finalize()
int
byte[]
byte[]
getExtensionValue
(String oid) protected String
boolean[]
boolean[]
protected CryptoToken
protected byte[]
byte[]
byte[]
protected String
boolean[]
byte[]
protected int
getTrust
(int type) Gets the trust flags for this cert.protected byte[]
int
int
hashCode()
boolean
protected void
setTrust
(int type, int trust) Sets the trust flags for this cert.toString()
void
void
Methods inherited from class java.security.cert.X509Certificate
getExtendedKeyUsage, getIssuerAlternativeNames, getIssuerX500Principal, getSubjectAlternativeNames, getSubjectX500Principal, verify
Methods inherited from class java.security.cert.Certificate
getType, writeReplace
-
Field Details
-
logger
public static org.slf4j.Logger logger -
certProxy
protected org.mozilla.jss.pkcs11.CertProxy certProxy -
tokenProxy
-
nickname
-
-
Method Details
-
getEncoded
- Specified by:
getEncoded
in interfaceX509Certificate
- Specified by:
getEncoded
in classCertificate
- Returns:
- The DER encoding of this certificate.
- Throws:
CertificateEncodingException
- If an error occurred.
-
getNickname
- Specified by:
getNickname
in interfaceX509Certificate
- Returns:
- The nickname of this certificate (could be null).
-
hashCode
public int hashCode()- Overrides:
hashCode
in classCertificate
-
equals
- Overrides:
equals
in classCertificate
-
getSubjectDN
- Specified by:
getSubjectDN
in interfaceX509Certificate
- Specified by:
getSubjectDN
in classX509Certificate
- Returns:
- The RFC 1485 ASCII encoding of the Subject Name.
-
getIssuerDN
- Specified by:
getIssuerDN
in interfaceX509Certificate
- Specified by:
getIssuerDN
in classX509Certificate
- Returns:
- The RFC 1485 ASCII encoding of the issuer's Subject Name.
-
getSerialNumber
- Specified by:
getSerialNumber
in interfaceX509Certificate
- Specified by:
getSerialNumber
in classX509Certificate
- Returns:
- The serial number of this certificate.
-
getSerialNumberByteArray
protected byte[] getSerialNumberByteArray() -
getSubjectDNString
-
getIssuerDNString
-
getPublicKey
- Specified by:
getPublicKey
in interfaceX509Certificate
- Specified by:
getPublicKey
in classCertificate
- Returns:
- The Public Key from this certificate.
-
getVersion
public int getVersion()- Specified by:
getVersion
in interfaceX509Certificate
- Specified by:
getVersion
in classX509Certificate
- Returns:
- the version number of this X.509 certificate. 0 means v1, 1 means v2, 2 means v3.
-
getBasicConstraints
public int getBasicConstraints()- Specified by:
getBasicConstraints
in classX509Certificate
-
getKeyUsage
public boolean[] getKeyUsage()- Specified by:
getKeyUsage
in classX509Certificate
-
getSubjectUniqueID
public boolean[] getSubjectUniqueID()- Specified by:
getSubjectUniqueID
in classX509Certificate
-
getIssuerUniqueID
public boolean[] getIssuerUniqueID()- Specified by:
getIssuerUniqueID
in classX509Certificate
-
getSigAlgParams
public byte[] getSigAlgParams()- Specified by:
getSigAlgParams
in classX509Certificate
-
getSigAlgName
- Specified by:
getSigAlgName
in classX509Certificate
-
getSigAlgOID
- Specified by:
getSigAlgOID
in classX509Certificate
-
getSignature
public byte[] getSignature()- Specified by:
getSignature
in classX509Certificate
-
getTBSCertificate
- Specified by:
getTBSCertificate
in classX509Certificate
- Throws:
CertificateEncodingException
-
getNotAfter
- Specified by:
getNotAfter
in classX509Certificate
-
getNotBefore
- Specified by:
getNotBefore
in classX509Certificate
-
checkValidity
- Specified by:
checkValidity
in classX509Certificate
- Throws:
CertificateExpiredException
CertificateNotYetValidException
-
checkValidity
public void checkValidity(Date date) throws CertificateExpiredException, CertificateNotYetValidException - Specified by:
checkValidity
in classX509Certificate
- Throws:
CertificateExpiredException
CertificateNotYetValidException
-
toString
- Specified by:
toString
in classCertificate
-
verify
public void verify(PublicKey key) throws CertificateException, NoSuchAlgorithmException, InvalidKeyException, NoSuchProviderException, SignatureException - Specified by:
verify
in classCertificate
- Throws:
CertificateException
NoSuchAlgorithmException
InvalidKeyException
NoSuchProviderException
SignatureException
-
verify
public void verify(PublicKey key, String sigProvider) throws CertificateException, NoSuchAlgorithmException, InvalidKeyException, NoSuchProviderException, SignatureException - Specified by:
verify
in classCertificate
- Throws:
CertificateException
NoSuchAlgorithmException
InvalidKeyException
NoSuchProviderException
SignatureException
-
getExtensionValue
- Specified by:
getExtensionValue
in interfaceX509Extension
-
getCriticalExtensionOIDs
- Specified by:
getCriticalExtensionOIDs
in interfaceX509Extension
-
getNonCriticalExtensionOIDs
- Specified by:
getNonCriticalExtensionOIDs
in interfaceX509Extension
-
hasUnsupportedCriticalExtension
public boolean hasUnsupportedCriticalExtension()- Specified by:
hasUnsupportedCriticalExtension
in interfaceX509Extension
-
finalize
-
close
- Specified by:
close
in interfaceAutoCloseable
- Throws:
Exception
-
getUniqueID
protected byte[] getUniqueID() -
getOwningToken
-
setTrust
protected void setTrust(int type, int trust) Sets the trust flags for this cert.- Parameters:
type
- SSL, EMAIL, or OBJECT_SIGNING.trust
- The trust flags for this type of trust.
-
getTrust
protected int getTrust(int type) Gets the trust flags for this cert.- Parameters:
type
- SSL, EMAIL, or OBJECT_SIGNING.- Returns:
- The trust flags for this type of trust.
-