com.tencent.kona.sun.security.x509

Class ExtendedKeyUsageExtension

java.lang.Object

com.tencent.kona.sun.security.x509.Extension

com.tencent.kona.sun.security.x509.ExtendedKeyUsageExtension

All Implemented Interfaces:

com.tencent.kona.sun.security.util.DerEncoder, java.security.cert.Extension

public class ExtendedKeyUsageExtension
extends Extension

This class defines the Extended Key Usage Extension, which indicates one or more purposes for which the certified public key may be used, in addition to or in place of the basic purposes indicated in the key usage extension field. This field is defined as follows:

id-ce-extKeyUsage OBJECT IDENTIFIER ::= {id-ce 37}

ExtKeyUsageSyntax ::= SEQUENCE SIZE (1..MAX) OF KeyPurposeId

KeyPurposeId ::= OBJECT IDENTIFIER

Key purposes may be defined by any organization with a need. Object identifiers used to identify key purposes shall be assigned in accordance with IANA or ITU-T Rec. X.660 | ISO/IEC/ITU 9834-1.

This extension may, at the option of the certificate issuer, be either critical or non-critical.

If the extension is flagged critical, then the certificate MUST be used only for one of the purposes indicated.

If the extension is flagged non-critical, then it indicates the intended purpose or purposes of the key, and may be used in finding the correct key/certificate of an entity that has multiple keys/certificates. It is an advisory field and does not imply that usage of the key is restricted by the certification authority to the purpose indicated. Certificate using applications may nevertheless require that a particular purpose be indicated in order for the certificate to be acceptable to that application.

If a certificate contains both a critical key usage field and a critical extended key usage field, then both fields MUST be processed independently and the certificate MUST only be used for a purpose consistent with both fields. If there is no purpose consistent with both fields, then the certificate MUST NOT be used for any purpose.

Since:

1.4

Field Summary

Fields

Modifier and Type	Field and Description
static java.lang.String	NAME

Fields inherited from class com.tencent.kona.sun.security.x509.Extension

critical, extensionId, extensionValue

Constructor Summary

Constructors

Constructor and Description
ExtendedKeyUsageExtension(java.lang.Boolean critical, java.lang.Object value) Create the extension from its DER encoded value and criticality.
ExtendedKeyUsageExtension(java.lang.Boolean critical, java.util.Vector<com.tencent.kona.sun.security.util.ObjectIdentifier> keyUsages) Create a ExtendedKeyUsageExtension object from a Vector of KeyUsages with specified criticality.
ExtendedKeyUsageExtension(java.util.Vector<com.tencent.kona.sun.security.util.ObjectIdentifier> keyUsages) Create a ExtendedKeyUsageExtension object from a Vector of Key Usages; the criticality is set to false.

Method Summary

Modifier and Type	Method and Description
void	encode(com.tencent.kona.sun.security.util.DerOutputStream out) Write the extension to the DerOutputStream.
java.util.List<java.lang.String>	getExtendedKeyUsage()
java.lang.String	getName() Return the name of this extension.
java.util.Vector<com.tencent.kona.sun.security.util.ObjectIdentifier>	getUsages() Get the keyUsages value.
java.lang.String	toString() Return the extension as user readable string.

Methods inherited from class com.tencent.kona.sun.security.x509.Extension

encode, equals, getExtensionId, getExtensionValue, getId, getValue, hashCode, isCritical, newExtension

Methods inherited from class java.lang.Object

clone, finalize, getClass, notify, notifyAll, wait, wait, wait

Field Detail

NAME

public static final java.lang.String NAME

See Also:

Constant Field Values

Constructor Detail

ExtendedKeyUsageExtension

public ExtendedKeyUsageExtension(java.util.Vector<com.tencent.kona.sun.security.util.ObjectIdentifier> keyUsages)

Create a ExtendedKeyUsageExtension object from a Vector of Key Usages; the criticality is set to false.

Parameters:

keyUsages - the Vector of KeyUsages (ObjectIdentifiers)

ExtendedKeyUsageExtension

public ExtendedKeyUsageExtension(java.lang.Boolean critical,
                                 java.util.Vector<com.tencent.kona.sun.security.util.ObjectIdentifier> keyUsages)

Create a ExtendedKeyUsageExtension object from a Vector of KeyUsages with specified criticality.

Parameters:

critical - true if the extension is to be treated as critical.

keyUsages - the Vector of KeyUsages (ObjectIdentifiers), cannot be null or empty.

ExtendedKeyUsageExtension

public ExtendedKeyUsageExtension(java.lang.Boolean critical,
                                 java.lang.Object value)
                          throws java.io.IOException

Create the extension from its DER encoded value and criticality.

Parameters:

critical - true if the extension is to be treated as critical.

value - an array of DER encoded bytes of the actual value.

Throws:

java.lang.ClassCastException - if value is not an array of bytes

java.io.IOException - on error.

Method Detail

toString

public java.lang.String toString()

Return the extension as user readable string.

Overrides:

toString in class Extension

encode

public void encode(com.tencent.kona.sun.security.util.DerOutputStream out)

Write the extension to the DerOutputStream.

Specified by:

encode in interface com.tencent.kona.sun.security.util.DerEncoder

Overrides:

encode in class Extension

Parameters:

out - the DerOutputStream to write the extension to.

getUsages

public java.util.Vector<com.tencent.kona.sun.security.util.ObjectIdentifier> getUsages()

Get the keyUsages value.

getName

public java.lang.String getName()

Return the name of this extension.

Overrides:

getName in class Extension

getExtendedKeyUsage

public java.util.List<java.lang.String> getExtendedKeyUsage()