Package org.mozilla.jss.pkix.cert

Class Certificate

java.lang.Object

org.mozilla.jss.pkix.cert.Certificate

All Implemented Interfaces:

ASN1Value

public class Certificate
extends Object
implements ASN1Value

An X.509 signed certificate.

Nested Class Summary

Nested Classes

Modifier and Type	Class	Description
static class	Certificate.Template

Field Summary

Fields

Modifier and Type	Field	Description
private AlgorithmIdentifier	algId
private CertificateInfo	info
private byte[]	infoEncoding
(package private) SEQUENCE	sequence
private byte[]	signature
private static final Tag	TAG
private static final Certificate.Template	templateInstance

Constructor Summary

Constructors

Constructor	Description
Certificate(CertificateInfo info, byte[] infoEncoding, AlgorithmIdentifier algId, byte[] signature)
Certificate(CertificateInfo info, PrivateKey privKey, SignatureAlgorithm signingAlg)	Creates and signs an X.509 Certificate.

Method Summary

Modifier and Type	Method	Description
void	encode(OutputStream ostream)	Write this value's DER encoding to an output stream using its own base tag.
void	encode(Tag implicitTag, OutputStream ostream)	Write this value's DER encoding to an output stream using an implicit tag.
CertificateInfo	getInfo()	Returns the information (TBSCertificate) contained in this certificate.
Tag	getTag()	Returns the base tag for this type, not counting any tags that may be imposed on it by its context.
static Certificate.Template	getTemplate()
static void	main(String[] argv)
void	verify()	Verifies the signature on this certificate.
void	verify(PublicKey key)	Verifies the signature on this certificate, using the given public key.
void	verify(PublicKey key, CryptoToken token)	Verifies the signature on this certificate, using the given public key and CryptoToken.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Details

info

private CertificateInfo info

infoEncoding

private byte[] infoEncoding

signature

private byte[] signature

algId

private AlgorithmIdentifier algId

sequence

SEQUENCE sequence

TAG

private static final Tag TAG

templateInstance

private static final Certificate.Template templateInstance

Constructor Details

Certificate

Certificate(CertificateInfo info,
 byte[] infoEncoding,
 AlgorithmIdentifier algId,
 byte[] signature)

Certificate

public Certificate(CertificateInfo info,
 PrivateKey privKey,
 SignatureAlgorithm signingAlg)
            throws IOException,
NotInitializedException,
TokenException,
NoSuchAlgorithmException,
CertificateException,
InvalidKeyException,
SignatureException

Creates and signs an X.509 Certificate.

Parameters:

info - A CertificateInfo (TBSCertificate), which specifies the actual information of the certificate.

privKey - The private key with which to sign the certificate.

signingAlg - The algorithm to use to sign the certificate. It must match the algorithm specified in the CertificateInfo.

Throws:

IOException - If an error occurred while encoding the certificate.

NotInitializedException - Because this operation involves cryptography (signing), CryptoManager must be initialized before calling it.

TokenException - If an error occurs on a PKCS #11 token.

NoSuchAlgorithmException - If the OID for the signing algorithm cannot be located.

CertificateException - If the signing algorithm specified as a parameter does not match the one in the certificate info.

InvalidKeyException - If the key does not match the signing algorithm.

SignatureException - If an error occurs while signing the certificate.

Method Details

verify

public void verify()
            throws InvalidKeyException,
NoSuchAlgorithmException,
CertificateException,
SignatureException,
InvalidKeyFormatException

Verifies the signature on this certificate. Does not indicate that the certificate is valid at any specific time.

Throws:

InvalidKeyException

NoSuchAlgorithmException

CertificateException

SignatureException

InvalidKeyFormatException

verify

public void verify(PublicKey key)
            throws InvalidKeyException,
NoSuchAlgorithmException,
CertificateException,
SignatureException

Verifies the signature on this certificate, using the given public key. Does not indicate the certificate is valid at any specific time.

Throws:

InvalidKeyException

NoSuchAlgorithmException

CertificateException

SignatureException

verify

public void verify(PublicKey key,
 CryptoToken token)
            throws NoSuchAlgorithmException,
CertificateException,
SignatureException,
InvalidKeyException

Verifies the signature on this certificate, using the given public key and CryptoToken. Does not indicate the certificate is valid at any specific time.

Throws:

NoSuchAlgorithmException

CertificateException

SignatureException

InvalidKeyException

getInfo

public CertificateInfo getInfo()

Returns the information (TBSCertificate) contained in this certificate.

getTag

public Tag getTag()

Description copied from interface: ASN1Value

Returns the base tag for this type, not counting any tags that may be imposed on it by its context.

Specified by:

getTag in interface ASN1Value

Returns:

Base tag.

encode

public void encode(OutputStream ostream)
            throws IOException

Description copied from interface: ASN1Value

Write this value's DER encoding to an output stream using its own base tag.

Specified by:

encode in interface ASN1Value

Parameters:

ostream - Output stream.

Throws:

IOException - If an error occurred.

encode

public void encode(Tag implicitTag,
 OutputStream ostream)
            throws IOException

Description copied from interface: ASN1Value

Write this value's DER encoding to an output stream using an implicit tag.

Specified by:

encode in interface ASN1Value

Parameters:

implicitTag - Implicit tag.

ostream - Output stream.

Throws:

IOException - If an error occurred.

getTemplate

public static Certificate.Template getTemplate()

main

public static void main(String[] argv)