151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski/* 2d7819a81f8b1b8d1a6b26329e4aa5f046afbf1f6Kenny Root * Copyright (c) 1997, 2011, Oracle and/or its affiliates. All rights reserved. 351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER. 451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * 551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * This code is free software; you can redistribute it and/or modify it 651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * under the terms of the GNU General Public License version 2 only, as 751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * published by the Free Software Foundation. Oracle designates this 851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * particular file as subject to the "Classpath" exception as provided 951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * by Oracle in the LICENSE file that accompanied this code. 1051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * 1151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * This code is distributed in the hope that it will be useful, but WITHOUT 1251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or 1351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License 1451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * version 2 for more details (a copy is included in the LICENSE file that 1551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * accompanied this code). 1651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * 1751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * You should have received a copy of the GNU General Public License version 1851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * 2 along with this work; if not, write to the Free Software Foundation, 1951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. 2051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * 2151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA 2251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * or visit www.oracle.com if you need additional information or have any 2351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * questions. 2451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski */ 2551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 2651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebskipackage sun.security.x509; 2751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 2851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebskiimport java.io.IOException; 2951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebskiimport java.io.OutputStream; 3051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebskiimport java.util.Arrays; 3151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebskiimport sun.security.util.*; 3251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 3351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski/** 3451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * Represent a X509 Extension Attribute. 3551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * 3651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * <p>Extensions are additional attributes which can be inserted in a X509 3751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * v3 certificate. For example a "Driving License Certificate" could have 3851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * the driving license number as a extension. 3951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * 4051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * <p>Extensions are represented as a sequence of the extension identifier 4151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * (Object Identifier), a boolean flag stating whether the extension is to 4251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * be treated as being critical and the extension value itself (this is again 4351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * a DER encoding of the extension value). 4451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * <pre> 4551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * ASN.1 definition of Extension: 4651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * Extension ::= SEQUENCE { 4751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * ExtensionId OBJECT IDENTIFIER, 4851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * critical BOOLEAN DEFAULT FALSE, 4951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * extensionValue OCTET STRING 5051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * } 5151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * </pre> 5251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * All subclasses need to implement a constructor of the form 5351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * <pre> 5451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * <subclass> (Boolean, Object) 5551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * </pre> 5651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * where the Object is typically an array of DER encoded bytes. 5751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * <p> 5851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * @author Amit Kapoor 5951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * @author Hemma Prafullchandra 6051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski */ 6151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebskipublic class Extension implements java.security.cert.Extension { 6251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 6351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski protected ObjectIdentifier extensionId = null; 6451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski protected boolean critical = false; 6551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski protected byte[] extensionValue = null; 6651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 6751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski /** 6851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * Default constructor. Used only by sub-classes. 6951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski */ 7051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski public Extension() { } 7151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 7251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski /** 7351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * Constructs an extension from a DER encoded array of bytes. 7451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski */ 7551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski public Extension(DerValue derVal) throws IOException { 7651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 7751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski DerInputStream in = derVal.toDerInputStream(); 7851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 7951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski // Object identifier 8051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski extensionId = in.getOID(); 8151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 8251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski // If the criticality flag was false, it will not have been encoded. 8351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski DerValue val = in.getDerValue(); 8451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski if (val.tag == DerValue.tag_Boolean) { 8551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski critical = val.getBoolean(); 8651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 8751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski // Extension value (DER encoded) 8851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski val = in.getDerValue(); 8951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski extensionValue = val.getOctetString(); 9051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } else { 9151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski critical = false; 9251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski extensionValue = val.getOctetString(); 9351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 9451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 9551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 9651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski /** 9751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * Constructs an Extension from individual components of ObjectIdentifier, 9851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * criticality and the DER encoded OctetString. 9951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * 10051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * @param extensionId the ObjectIdentifier of the extension 10151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * @param critical the boolean indicating if the extension is critical 10251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * @param extensionValue the DER encoded octet string of the value. 10351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski */ 10451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski public Extension(ObjectIdentifier extensionId, boolean critical, 10551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski byte[] extensionValue) throws IOException { 10651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski this.extensionId = extensionId; 10751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski this.critical = critical; 10851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski // passed in a DER encoded octet string, strip off the tag 10951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski // and length 11051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski DerValue inDerVal = new DerValue(extensionValue); 11151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski this.extensionValue = inDerVal.getOctetString(); 11251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 11351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 11451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski /** 11551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * Constructs an Extension from another extension. To be used for 11651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * creating decoded subclasses. 11751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * 11851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * @param ext the extension to create from. 11951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski */ 12051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski public Extension(Extension ext) { 12151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski this.extensionId = ext.extensionId; 12251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski this.critical = ext.critical; 12351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski this.extensionValue = ext.extensionValue; 12451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 12551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 12651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski /** 12751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * Constructs an Extension from individual components of ObjectIdentifier, 12851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * criticality and the raw encoded extension value. 12951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * 13051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * @param extensionId the ObjectIdentifier of the extension 13151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * @param critical the boolean indicating if the extension is critical 13251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * @param rawExtensionValue the raw DER-encoded extension value (this 13351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * is not the encoded OctetString). 13451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski */ 13551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski public static Extension newExtension(ObjectIdentifier extensionId, 13651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski boolean critical, byte[] rawExtensionValue) throws IOException { 13751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski Extension ext = new Extension(); 13851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski ext.extensionId = extensionId; 13951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski ext.critical = critical; 14051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski ext.extensionValue = rawExtensionValue; 14151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski return ext; 14251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 14351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 14451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski public void encode(OutputStream out) throws IOException { 14551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski if (out == null) { 14651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski throw new NullPointerException(); 14751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 14851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 14951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski DerOutputStream dos1 = new DerOutputStream(); 15051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski DerOutputStream dos2 = new DerOutputStream(); 15151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 15251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski dos1.putOID(extensionId); 15351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski if (critical) { 15451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski dos1.putBoolean(critical); 15551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 15651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski dos1.putOctetString(extensionValue); 15751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 15851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski dos2.write(DerValue.tag_Sequence, dos1); 15951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski out.write(dos2.toByteArray()); 16051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 16151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 16251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski /** 16351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * Write the extension to the DerOutputStream. 16451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * 16551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * @param out the DerOutputStream to write the extension to. 16651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * @exception IOException on encoding errors 16751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski */ 16851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski public void encode(DerOutputStream out) throws IOException { 16951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 17051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski if (extensionId == null) 17151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski throw new IOException("Null OID to encode for the extension!"); 17251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski if (extensionValue == null) 17351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski throw new IOException("No value to encode for the extension!"); 17451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 17551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski DerOutputStream dos = new DerOutputStream(); 17651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 17751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski dos.putOID(extensionId); 17851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski if (critical) 17951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski dos.putBoolean(critical); 18051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski dos.putOctetString(extensionValue); 18151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 18251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski out.write(DerValue.tag_Sequence, dos); 18351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 18451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 18551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski /** 18651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * Returns true if extension is critical. 18751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski */ 18851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski public boolean isCritical() { 18951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski return critical; 19051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 19151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 19251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski /** 19351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * Returns the ObjectIdentifier of the extension. 19451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski */ 19551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski public ObjectIdentifier getExtensionId() { 19651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski return extensionId; 19751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 19851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 19951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski public byte[] getValue() { 20051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski return extensionValue.clone(); 20151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 20251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 20351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski /** 20451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * Returns the extension value as an byte array for further processing. 20551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * Note, this is the raw DER value of the extension, not the DER 20651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * encoded octet string which is in the certificate. 20751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * This method does not return a clone; it is the responsibility of the 20851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * caller to clone the array if necessary. 20951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski */ 21051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski public byte[] getExtensionValue() { 21151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski return extensionValue; 21251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 21351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 21451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski public String getId() { 21551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski return extensionId.toString(); 21651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 21751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 21851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski /** 21951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * Returns the Extension in user readable form. 22051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski */ 22151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski public String toString() { 22251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski String s = "ObjectId: " + extensionId.toString(); 22351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski if (critical) { 22451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski s += " Criticality=true\n"; 22551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } else { 22651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski s += " Criticality=false\n"; 22751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 22851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski return (s); 22951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 23051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 23151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski // Value to mix up the hash 23251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski private static final int hashMagic = 31; 23351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 23451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski /** 23551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * Returns a hashcode value for this Extension. 23651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * 23751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * @return the hashcode value. 23851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski */ 23951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski public int hashCode() { 24051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski int h = 0; 24151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski if (extensionValue != null) { 24251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski byte[] val = extensionValue; 24351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski int len = val.length; 24451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski while (len > 0) 24551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski h += len * val[--len]; 24651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 24751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski h = h * hashMagic + extensionId.hashCode(); 24851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski h = h * hashMagic + (critical?1231:1237); 24951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski return h; 25051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 25151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 25251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski /** 25351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * Compares this Extension for equality with the specified 25451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * object. If the <code>other</code> object is an 25551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * <code>instanceof</code> <code>Extension</code>, then 25651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * its encoded form is retrieved and compared with the 25751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * encoded form of this Extension. 25851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * 25951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * @param other the object to test for equality with this Extension. 26051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * @return true iff the other object is of type Extension, and the 26151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * criticality flag, object identifier and encoded extension value of 26251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * the two Extensions match, false otherwise. 26351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski */ 26451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski public boolean equals(Object other) { 26551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski if (this == other) 26651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski return true; 26751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski if (!(other instanceof Extension)) 26851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski return false; 26951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski Extension otherExt = (Extension) other; 27051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski if (critical != otherExt.critical) 27151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski return false; 272d7819a81f8b1b8d1a6b26329e4aa5f046afbf1f6Kenny Root if (!extensionId.equals((Object)otherExt.extensionId)) 27351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski return false; 27451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski return Arrays.equals(extensionValue, otherExt.extensionValue); 27551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 27651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski} 277