package org.bouncycastle.asn1.x509; import org.bouncycastle.asn1.ASN1Encodable; import org.bouncycastle.asn1.ASN1EncodableVector; import org.bouncycastle.asn1.ASN1Sequence; import org.bouncycastle.asn1.ASN1TaggedObject; import org.bouncycastle.asn1.DERBitString; import org.bouncycastle.asn1.DEREnumerated; import org.bouncycastle.asn1.DERObject; import org.bouncycastle.asn1.DERObjectIdentifier; import org.bouncycastle.asn1.DERSequence; /** * ObjectDigestInfo ASN.1 structure used in v2 attribute certificates. * *
* * ObjectDigestInfo ::= SEQUENCE { * digestedObjectType ENUMERATED { * publicKey (0), * publicKeyCert (1), * otherObjectTypes (2) }, * -- otherObjectTypes MUST NOT * -- be used in this profile * otherObjectTypeID OBJECT IDENTIFIER OPTIONAL, * digestAlgorithm AlgorithmIdentifier, * objectDigest BIT STRING * } * ** */ public class ObjectDigestInfo extends ASN1Encodable { /** * The public key is hashed. */ public final static int publicKey = 0; /** * The public key certificate is hashed. */ public final static int publicKeyCert = 1; /** * An other object is hashed. */ public final static int otherObjectDigest = 2; DEREnumerated digestedObjectType; DERObjectIdentifier otherObjectTypeID; AlgorithmIdentifier digestAlgorithm; DERBitString objectDigest; public static ObjectDigestInfo getInstance( Object obj) { if (obj == null || obj instanceof ObjectDigestInfo) { return (ObjectDigestInfo)obj; } if (obj instanceof ASN1Sequence) { return new ObjectDigestInfo((ASN1Sequence)obj); } throw new IllegalArgumentException("illegal object in getInstance: " + obj.getClass().getName()); } public static ObjectDigestInfo getInstance( ASN1TaggedObject obj, boolean explicit) { return getInstance(ASN1Sequence.getInstance(obj, explicit)); } /** * Constructor from given details. *
* If digestedObjectType
is not {@link #publicKeyCert} or
* {@link #publicKey} otherObjectTypeID
must be given,
* otherwise it is ignored.
*
* @param digestedObjectType The digest object type.
* @param otherObjectTypeID The object type ID for
* otherObjectDigest
.
* @param digestAlgorithm The algorithm identifier for the hash.
* @param objectDigest The hash value.
*/
public ObjectDigestInfo(
int digestedObjectType,
String otherObjectTypeID,
AlgorithmIdentifier digestAlgorithm,
byte[] objectDigest)
{
this.digestedObjectType = new DEREnumerated(digestedObjectType);
if (digestedObjectType == otherObjectDigest)
{
this.otherObjectTypeID = new DERObjectIdentifier(otherObjectTypeID);
}
this.digestAlgorithm = digestAlgorithm;
this.objectDigest = new DERBitString(objectDigest);
}
private ObjectDigestInfo(
ASN1Sequence seq)
{
if (seq.size() > 4 || seq.size() < 3)
{
throw new IllegalArgumentException("Bad sequence size: "
+ seq.size());
}
digestedObjectType = DEREnumerated.getInstance(seq.getObjectAt(0));
int offset = 0;
if (seq.size() == 4)
{
otherObjectTypeID = DERObjectIdentifier.getInstance(seq.getObjectAt(1));
offset++;
}
digestAlgorithm = AlgorithmIdentifier.getInstance(seq.getObjectAt(1 + offset));
objectDigest = DERBitString.getInstance(seq.getObjectAt(2 + offset));
}
public DEREnumerated getDigestedObjectType()
{
return digestedObjectType;
}
public DERObjectIdentifier getOtherObjectTypeID()
{
return otherObjectTypeID;
}
public AlgorithmIdentifier getDigestAlgorithm()
{
return digestAlgorithm;
}
public DERBitString getObjectDigest()
{
return objectDigest;
}
/**
* Produce an object suitable for an ASN1OutputStream.
*
*
* * ObjectDigestInfo ::= SEQUENCE { * digestedObjectType ENUMERATED { * publicKey (0), * publicKeyCert (1), * otherObjectTypes (2) }, * -- otherObjectTypes MUST NOT * -- be used in this profile * otherObjectTypeID OBJECT IDENTIFIER OPTIONAL, * digestAlgorithm AlgorithmIdentifier, * objectDigest BIT STRING * } * **/ public DERObject toASN1Object() { ASN1EncodableVector v = new ASN1EncodableVector(); v.add(digestedObjectType); if (otherObjectTypeID != null) { v.add(otherObjectTypeID); } v.add(digestAlgorithm); v.add(objectDigest); return new DERSequence(v); } }