public class X509V3CertificateGenerator
extends java.lang.Object
Modifier and Type | Field and Description |
---|---|
private X509ExtensionsGenerator |
extGenerator |
private AlgorithmIdentifier |
sigAlgId |
private java.lang.String |
signatureAlgorithm |
private DERObjectIdentifier |
sigOID |
private V3TBSCertificateGenerator |
tbsGen |
Constructor and Description |
---|
X509V3CertificateGenerator() |
X509V3CertificateGenerator(V3TBSCertificateGenerator tbs) |
Modifier and Type | Method and Description |
---|---|
void |
addExtension(DERObjectIdentifier oid,
boolean critical,
byte[] value)
add a given extension field for the standard extensions tag (tag 3)
|
void |
addExtension(DERObjectIdentifier oid,
boolean critical,
DEREncodable value)
add a given extension field for the standard extensions tag (tag 3)
|
void |
addExtension(java.lang.String oid,
boolean critical,
byte[] value)
add a given extension field for the standard extensions tag (tag 3)
The value parameter becomes the contents of the octet string associated
with the extension.
|
void |
addExtension(java.lang.String oid,
boolean critical,
DEREncodable value)
add a given extension field for the standard extensions tag (tag 3)
|
void |
copyAndAddExtension(DERObjectIdentifier oid,
boolean critical,
java.security.cert.X509Certificate cert)
add a given extension field for the standard extensions tag (tag 3)
copying the extension value from another certificate.
|
void |
copyAndAddExtension(java.lang.String oid,
boolean critical,
java.security.cert.X509Certificate cert)
add a given extension field for the standard extensions tag (tag 3)
copying the extension value from another certificate.
|
java.security.cert.X509Certificate |
generate(java.security.PrivateKey key)
generate an X509 certificate, based on the current issuer and subject
using the default provider.
|
java.security.cert.X509Certificate |
generate(java.security.PrivateKey key,
java.security.SecureRandom random)
generate an X509 certificate, based on the current issuer and subject
using the default provider, and the passed in source of randomness
(if required).
|
java.security.cert.X509Certificate |
generate(java.security.PrivateKey key,
java.lang.String provider)
generate an X509 certificate, based on the current issuer and subject,
using the passed in provider for the signing.
|
java.security.cert.X509Certificate |
generate(java.security.PrivateKey key,
java.lang.String provider,
java.security.SecureRandom random)
generate an X509 certificate, based on the current issuer and subject,
using the passed in provider for the signing and the supplied source
of randomness, if required.
|
private java.security.cert.X509Certificate |
generateJcaObject(TBSCertificateStructure tbsCert,
byte[] signature) |
private TBSCertificateStructure |
generateTbsCert() |
java.security.cert.X509Certificate |
generateX509Certificate(java.security.PrivateKey key)
Deprecated.
use generate(key, GammaTechProvider.PROVIDER_NAME)
|
java.security.cert.X509Certificate |
generateX509Certificate(java.security.PrivateKey key,
java.security.SecureRandom random)
Deprecated.
use generate(key, random, GammaTechProvider.PROVIDER_NAME)
|
java.security.cert.X509Certificate |
generateX509Certificate(java.security.PrivateKey key,
java.lang.String provider)
Deprecated.
use generate()
|
java.security.cert.X509Certificate |
generateX509Certificate(java.security.PrivateKey key,
java.lang.String provider,
java.security.SecureRandom random)
Deprecated.
use generate()
|
java.util.Iterator |
getSignatureAlgNames()
Return an iterator of the signature names supported by the generator.
|
void |
reset()
reset the generator
|
void |
setIssuerDN(javax.security.auth.x500.X500Principal issuer)
Set the issuer distinguished name - the issuer is the entity whose private key is used to sign the
certificate.
|
void |
setIssuerDN(X509Name issuer)
Set the issuer distinguished name - the issuer is the entity whose private key is used to sign the
certificate.
|
void |
setNotAfter(java.util.Date date) |
void |
setNotBefore(java.util.Date date) |
void |
setPublicKey(java.security.PublicKey key) |
void |
setSerialNumber(java.math.BigInteger serialNumber)
set the serial number for the certificate.
|
void |
setSignatureAlgorithm(java.lang.String signatureAlgorithm)
Set the signature algorithm.
|
void |
setSubjectDN(javax.security.auth.x500.X500Principal subject)
Set the subject distinguished name.
|
void |
setSubjectDN(X509Name subject)
Set the subject distinguished name.
|
private V3TBSCertificateGenerator tbsGen
private DERObjectIdentifier sigOID
private AlgorithmIdentifier sigAlgId
private java.lang.String signatureAlgorithm
private X509ExtensionsGenerator extGenerator
public X509V3CertificateGenerator()
public X509V3CertificateGenerator(V3TBSCertificateGenerator tbs)
public void reset()
public void setSerialNumber(java.math.BigInteger serialNumber)
serialNumber
- Серийный номерpublic void setIssuerDN(javax.security.auth.x500.X500Principal issuer)
issuer
- DN выпустившегоpublic void setIssuerDN(X509Name issuer)
issuer
- DN выпустившегоpublic void setNotBefore(java.util.Date date)
public void setNotAfter(java.util.Date date)
public void setSubjectDN(javax.security.auth.x500.X500Principal subject)
public void setSubjectDN(X509Name subject)
public void setPublicKey(java.security.PublicKey key) throws java.lang.IllegalArgumentException
java.lang.IllegalArgumentException
public void setSignatureAlgorithm(java.lang.String signatureAlgorithm)
signatureAlgorithm
- string representation of the algorithm name.public void addExtension(java.lang.String oid, boolean critical, DEREncodable value)
public void addExtension(DERObjectIdentifier oid, boolean critical, DEREncodable value)
public void addExtension(java.lang.String oid, boolean critical, byte[] value)
public void addExtension(DERObjectIdentifier oid, boolean critical, byte[] value)
public void copyAndAddExtension(java.lang.String oid, boolean critical, java.security.cert.X509Certificate cert) throws java.security.cert.CertificateParsingException
java.security.cert.CertificateParsingException
- if the extension cannot be extracted.public void copyAndAddExtension(DERObjectIdentifier oid, boolean critical, java.security.cert.X509Certificate cert) throws java.security.cert.CertificateParsingException
java.security.cert.CertificateParsingException
- if the extension cannot be extracted.public java.security.cert.X509Certificate generateX509Certificate(java.security.PrivateKey key) throws java.lang.SecurityException, java.security.SignatureException, java.security.InvalidKeyException
java.lang.SecurityException
java.security.SignatureException
java.security.InvalidKeyException
public java.security.cert.X509Certificate generateX509Certificate(java.security.PrivateKey key, java.security.SecureRandom random) throws java.lang.SecurityException, java.security.SignatureException, java.security.InvalidKeyException
java.lang.SecurityException
java.security.SignatureException
java.security.InvalidKeyException
public java.security.cert.X509Certificate generateX509Certificate(java.security.PrivateKey key, java.lang.String provider) throws java.security.NoSuchProviderException, java.lang.SecurityException, java.security.SignatureException, java.security.InvalidKeyException
java.security.NoSuchProviderException
java.lang.SecurityException
java.security.SignatureException
java.security.InvalidKeyException
public java.security.cert.X509Certificate generateX509Certificate(java.security.PrivateKey key, java.lang.String provider, java.security.SecureRandom random) throws java.security.NoSuchProviderException, java.lang.SecurityException, java.security.SignatureException, java.security.InvalidKeyException
java.security.NoSuchProviderException
java.lang.SecurityException
java.security.SignatureException
java.security.InvalidKeyException
public java.security.cert.X509Certificate generate(java.security.PrivateKey key) throws java.security.cert.CertificateEncodingException, java.lang.IllegalStateException, java.security.NoSuchAlgorithmException, java.security.SignatureException, java.security.InvalidKeyException
Note: this differs from the deprecated method in that the default provider is used - not GammaTechProvider.PROVIDER_NAME.
java.security.cert.CertificateEncodingException
java.lang.IllegalStateException
java.security.NoSuchAlgorithmException
java.security.SignatureException
java.security.InvalidKeyException
public java.security.cert.X509Certificate generate(java.security.PrivateKey key, java.security.SecureRandom random) throws java.security.cert.CertificateEncodingException, java.lang.IllegalStateException, java.security.NoSuchAlgorithmException, java.security.SignatureException, java.security.InvalidKeyException
Note: this differs from the deprecated method in that the default provider is used - not GammaTechProvider.PROVIDER_NAME.
java.security.cert.CertificateEncodingException
java.lang.IllegalStateException
java.security.NoSuchAlgorithmException
java.security.SignatureException
java.security.InvalidKeyException
public java.security.cert.X509Certificate generate(java.security.PrivateKey key, java.lang.String provider) throws java.security.cert.CertificateEncodingException, java.lang.IllegalStateException, java.security.NoSuchProviderException, java.security.NoSuchAlgorithmException, java.security.SignatureException, java.security.InvalidKeyException
java.security.cert.CertificateEncodingException
java.lang.IllegalStateException
java.security.NoSuchProviderException
java.security.NoSuchAlgorithmException
java.security.SignatureException
java.security.InvalidKeyException
public java.security.cert.X509Certificate generate(java.security.PrivateKey key, java.lang.String provider, java.security.SecureRandom random) throws java.security.cert.CertificateEncodingException, java.lang.IllegalStateException, java.security.NoSuchProviderException, java.security.NoSuchAlgorithmException, java.security.SignatureException, java.security.InvalidKeyException
java.security.cert.CertificateEncodingException
java.lang.IllegalStateException
java.security.NoSuchProviderException
java.security.NoSuchAlgorithmException
java.security.SignatureException
java.security.InvalidKeyException
private TBSCertificateStructure generateTbsCert()
private java.security.cert.X509Certificate generateJcaObject(TBSCertificateStructure tbsCert, byte[] signature) throws java.security.cert.CertificateParsingException
java.security.cert.CertificateParsingException
public java.util.Iterator getSignatureAlgNames()
Copyright © 1998-2014 Gamma Technologies. All Rights Reserved.