|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Objectnet.rim.device.api.crypto.certificate.x509.X509CertificateRevocationList
public class X509CertificateRevocationList
Provides support for X.509 Certificate Revocation Lists (CRLs) as defined in RFC 2459, including support for both version one and version two. This class does not provide a means to acquire a CRL, but merely parses a CRL that has already been retrieved.
Certificate
,
CertificateRevocationList
Constructor Summary | ||
---|---|---|
|
X509CertificateRevocationList(InputStream in,
KeyStore keyStore)
Creates an X509CertificateRevocationList object from the data in the given input stream. |
|
|
X509CertificateRevocationList(ASN1InputStream in,
KeyStore keyStore)
Creates an X509CertificateRevocationList object from the
data in the given ASN.1 input stream. |
Method Summary | ||
---|---|---|
|
boolean |
equals(Object obj2)
Indicates whether some other object is "equal to" this one. |
|
CertificateExtension |
getCRLEntryExtension(Certificate certificate,
OID oid)
Returns the CRL entry extension, for this certificate, for the given oid if it exists, otherwise null . |
|
CertificateExtension[] |
getCRLEntryExtensions(Certificate certificate)
Returns all the CRL entry extensions associated with this certificate, or null. |
|
CertificateExtension[] |
getCRLEntryExtensions(Certificate certificate,
boolean criticalBit)
Returns all the extensions associated with this CRL Entry that have their critical bit set to the value of criticalBit , or null if none are found. |
|
CertificateStatus |
getCertificateStatus(Certificate certificate)
Returns the status of the given certificate, if it is found in this CRL and the CRL is valid. |
|
CertificateStatus |
getCertificateStatus(Certificate certificate,
long time)
Returns the status of the given certificate, if it is found in this CRL and the CRL is valid. |
|
CertificateExtension |
getExtension(OID oid)
Returns the extension for the given oid if it exists in the CRL, otherwise null . |
|
CertificateExtension[] |
getExtensions()
Returns all the extensions associated with this CRL, or null. |
|
CertificateExtension[] |
getExtensions(boolean criticalBit)
Returns all the extensions associated with this CRL that have their critical bit set to the value of criticalBit , or null if none are found. |
|
DistinguishedName |
getIssuer()
Get the issuer of this CRL. |
|
long |
getNextUpdate()
Returns the date by when the next CRL will be issued, or 0 if this information is not provided. |
|
long |
getThisUpdate()
Returns the date of issue for this CRL. |
Methods inherited from class java.lang.Object |
---|
getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Constructor Detail |
---|
public X509CertificateRevocationList(InputStream in, KeyStore keyStore) throws CRLEncodingException, CRLVerificationException, IOException, CryptoTokenException, CryptoUnsupportedOperationException
X509CertificateRevocationList
object from the data in the given input stream.
The CRL is read in and parsed, and the signature is verified with the appropriate
certificate from the specified key store.
in
- The input stream containing the ASN.1 representation of the CRL.keyStore
- The key store that contains the certificate necessary to verify
the CRL (ie the CA's certificate).
CRLEncodingException
- Thrown if the CRL is formatted improperly.
CRLVerificationException
- Thrown if the signature in the CRL cannot be verified,
or the necessary certificate cannot be found.
IOException
- Thrown in the case of a stream I/O error.
CryptoTokenException
- Thrown if an error occurs with the crypto
token or the crypto token is invalid.
CryptoUnsupportedOperationException
- Thrown if a call is made to
an unsupported operation.public X509CertificateRevocationList(ASN1InputStream in, KeyStore keyStore) throws CRLEncodingException, CRLVerificationException, IOException, CryptoTokenException, CryptoUnsupportedOperationException
X509CertificateRevocationList
object from the
data in the given ASN.1 input stream.
The CRL is read in and parsed, and the signature is verified with the appropriate certificate from the specified key store.
in
- The ASN.1 input stream containing the ASN.1 representation of the CRL.keyStore
- The key store that contains the certificate necessary to verify
the CRL (ie the CA's certificate).
CRLEncodingException
- Thrown if the CRL is formatted improperly.
CRLVerificationException
- Thrown if the signature in the CRL cannot be verified,
or the necessary certificate cannot be found.
IOException
- Thrown in the case of a stream I/O error.
CryptoTokenException
- Thrown if an error occurs with the crypto
token or the crypto token is invalid.
CryptoUnsupportedOperationException
- Thrown if a call is made to
an unsupported operation.Method Detail |
---|
public CertificateStatus getCertificateStatus(Certificate certificate)
getCertificateStatus
in interface CertificateRevocationList
certificate
- The X.509 certificate in question.
CertificateStatus
object (with status set to "REVOKED") or
null if the certificate is not in the CRL or the CRL is not valid.public CertificateStatus getCertificateStatus(Certificate certificate, long time)
time
is
after the creation time of the CRL and before the next update time of the CRL.
getCertificateStatus
in interface CertificateRevocationList
certificate
- The certificate in question.time
- the time to use in checking the certificate status
CertificateStatus
object or
null if the certificate is not in the CRL.public long getThisUpdate()
getThisUpdate
in interface CertificateRevocationList
public long getNextUpdate()
getNextUpdate
in interface CertificateRevocationList
public DistinguishedName getIssuer()
getIssuer
in interface CertificateRevocationList
public CertificateExtension getCRLEntryExtension(Certificate certificate, OID oid)
null
.
getCRLEntryExtension
in interface CertificateRevocationList
certificate
- The certificate to look up the CRL entry extension for.oid
- The oid to use to look up the extension.
CertificateExtension
object. May be null.OIDs
public CertificateExtension[] getCRLEntryExtensions(Certificate certificate)
getCRLEntryExtensions
in interface CertificateRevocationList
certificate
- the certificate to look up the CRL Entry extensions with
OIDs
public CertificateExtension[] getCRLEntryExtensions(Certificate certificate, boolean criticalBit)
criticalBit
, or null if none are found.
getCRLEntryExtensions
in interface CertificateRevocationList
certificate
- the certificate to use to determine which CRL Entry to look up the extensions fromcriticalBit
- a boolean that is true, if all critical extensions are to be returned and
set to false if all non-critical extensions are to be returned
CertificateExtensions
or null.OIDs
public CertificateExtension getExtension(OID oid)
null
.
getExtension
in interface CertificateRevocationList
OIDs
public CertificateExtension[] getExtensions()
getExtensions
in interface CertificateRevocationList
OIDs
public CertificateExtension[] getExtensions(boolean criticalBit)
criticalBit
, or null if none are found.
getExtensions
in interface CertificateRevocationList
criticalBit
- a boolean that is true, if all critical extensions are to be returned and
set to false if all non-critical extensions are to be returned
CertificateExtensions
or null.OIDs
public boolean equals(Object obj2)
Object
The equals
method implements an equivalence relation:
x
,
x.equals(x)
should return true
.
x
and
y
, x.equals(y)
should return
true
if and only if y.equals(x)
returns
true
.
x
,
y
, and z
, if x.equals(y)
returns true
and y.equals(z)
returns
true
, then x.equals(z)
should return
true
.
x
and y
, multiple invocations of x.equals(y)
consistently return true
or consistently return
false
, provided no information used in
equals
comparisons on the object is modified.
x
,
x.equals(null)
should return false
.
The equals method for class Object
implements
the most discriminating possible equivalence relation on objects;
that is, for any reference values x
and y
,
this method returns true
if and only if x
and
y
refer to the same object (x==y
has the
value true
).
equals
in class Object
obj2
- the reference object with which to compare.
true
if this object is the same as the obj
argument; false
otherwise.Boolean.hashCode()
,
Hashtable
|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
Copyright 1999-2010 Research In Motion Limited. 295 Phillip Street, Waterloo, Ontario, Canada, N2L 3W8. All Rights Reserved.
Copyright 1993-2003 Sun Microsystems, Inc. 901 San Antonio Road, Palo Alto, California, 94303, U.S.A. All Rights Reserved.
Copyright 2002-2003 Nokia Corporation All Rights Reserved.
Java is a trademark of Sun Microsystems, Inc.