com.tencent.kona.sun.security.x509

Class CertificatePoliciesExtension

java.lang.Object

com.tencent.kona.sun.security.x509.Extension

com.tencent.kona.sun.security.x509.CertificatePoliciesExtension

All Implemented Interfaces:

com.tencent.kona.sun.security.util.DerEncoder, java.security.cert.Extension

public class CertificatePoliciesExtension
extends Extension

This class defines the certificate policies extension which specifies the policies under which the certificate has been issued and the purposes for which the certificate may be used.

Applications with specific policy requirements are expected to have a list of those policies which they will accept and to compare the policy OIDs in the certificate to that list. If this extension is critical, the path validation software MUST be able to interpret this extension (including the optional qualifier), or MUST reject the certificate.

Optional qualifiers are not supported in this implementation, as they are not recommended by RFC 5280. The ASN.1 syntax for this is (IMPLICIT tagging is defined in the module definition):

 id-ce-certificatePolicies OBJECT IDENTIFIER ::=  { id-ce 32 }

 certificatePolicies ::= SEQUENCE SIZE (1..MAX) OF PolicyInformation

 PolicyInformation ::= SEQUENCE {
      policyIdentifier   CertPolicyId,
      policyQualifiers   SEQUENCE SIZE (1..MAX) OF
                              PolicyQualifierInfo OPTIONAL }

 CertPolicyId ::= OBJECT IDENTIFIER
 

Since:

1.4

See Also:

Extension

Field Summary

Fields

Modifier and Type	Field and Description
static java.lang.String	NAME

Fields inherited from class com.tencent.kona.sun.security.x509.Extension

critical, extensionId, extensionValue

Constructor Summary

Constructors

Constructor and Description
CertificatePoliciesExtension(java.lang.Boolean critical, java.util.List<PolicyInformation> certPolicies) Create a CertificatePoliciesExtension object from a List of PolicyInformation with specified criticality.
CertificatePoliciesExtension(java.lang.Boolean critical, java.lang.Object value) Create the extension from its DER encoded value and criticality.
CertificatePoliciesExtension(java.util.List<PolicyInformation> certPolicies) Create a CertificatePoliciesExtension object from a List of PolicyInformation; the criticality is set to false.

Method Summary

Modifier and Type	Method and Description
void	encode(com.tencent.kona.sun.security.util.DerOutputStream out) Write the extension to the DerOutputStream.
java.util.List<PolicyInformation>	getCertPolicies() Get the PolicyInformation value.
java.lang.String	getName() Return the name of this extension.
java.lang.String	toString() Return the extension as user readable string.

Methods inherited from class com.tencent.kona.sun.security.x509.Extension

encode, equals, getExtensionId, getExtensionValue, getId, getValue, hashCode, isCritical, newExtension

Methods inherited from class java.lang.Object

clone, finalize, getClass, notify, notifyAll, wait, wait, wait

Field Detail

NAME

public static final java.lang.String NAME

See Also:

Constant Field Values

Constructor Detail

CertificatePoliciesExtension

public CertificatePoliciesExtension(java.util.List<PolicyInformation> certPolicies)

Create a CertificatePoliciesExtension object from a List of PolicyInformation; the criticality is set to false.

Parameters:

certPolicies - the List of PolicyInformation.

CertificatePoliciesExtension

public CertificatePoliciesExtension(java.lang.Boolean critical,
                                    java.util.List<PolicyInformation> certPolicies)

Create a CertificatePoliciesExtension object from a List of PolicyInformation with specified criticality.

Parameters:

critical - true if the extension is to be treated as critical.

certPolicies - the List of PolicyInformation, cannot be null or empty.

CertificatePoliciesExtension

public CertificatePoliciesExtension(java.lang.Boolean critical,
                                    java.lang.Object value)
                             throws java.io.IOException

Create the extension from its DER encoded value and criticality.

Parameters:

critical - true if the extension is to be treated as critical.

value - an array of DER encoded bytes of the actual value.

Throws:

java.lang.ClassCastException - if value is not an array of bytes

java.io.IOException - on error.

Method Detail

toString

public java.lang.String toString()

Return the extension as user readable string.

Overrides:

toString in class Extension

encode

public void encode(com.tencent.kona.sun.security.util.DerOutputStream out)

Write the extension to the DerOutputStream.

Specified by:

encode in interface com.tencent.kona.sun.security.util.DerEncoder

Overrides:

encode in class Extension

Parameters:

out - the DerOutputStream to write the extension to.

getCertPolicies

public java.util.List<PolicyInformation> getCertPolicies()

Get the PolicyInformation value.

getName

public java.lang.String getName()

Return the name of this extension.

Overrides:

getName in class Extension