org.bouncycastle.jce.provider
Class PKIXCertPathValidatorSpi

java.lang.Object
  java.security.cert.CertPathValidatorSpi
      org.bouncycastle.jce.provider.PKIXCertPathValidatorSpi

public class PKIXCertPathValidatorSpi
extends java.security.cert.CertPathValidatorSpi

CertPathValidatorSpi implemenation for X.509 Certificate validation ala rfc 3280

Field Summary

private static java.lang.String	ANY_POLICY
private static java.lang.String	BASIC_CONSTRAINTS
private static java.lang.String	CERTIFICATE_POLICIES
private static java.lang.String	CRL_NUMBER
private static int	CRL_SIGN
private static java.lang.String[]	crlReasons
private static java.lang.String	DELTA_CRL_INDICATOR
private static java.lang.String	INHIBIT_ANY_POLICY
private static java.lang.String	ISSUING_DISTRIBUTION_POINT
private static int	KEY_CERT_SIGN
private static java.lang.String	KEY_USAGE
private static java.lang.String	NAME_CONSTRAINTS
private static java.lang.String	POLICY_CONSTRAINTS
private static java.lang.String	POLICY_MAPPINGS
private static java.lang.String	SUBJECT_ALTERNATIVE_NAME

Constructor Summary

PKIXCertPathValidatorSpi()

Method Summary

private void	checkCRLs(java.security.cert.PKIXParameters paramsPKIX, java.security.cert.X509Certificate cert, java.util.Date validDate, java.security.cert.X509Certificate sign, java.security.PublicKey workingPublicKey)
java.security.cert.CertPathValidatorResult	engineValidate(java.security.cert.CertPath certPath, java.security.cert.CertPathParameters params)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

CERTIFICATE_POLICIES

private static final java.lang.String CERTIFICATE_POLICIES

POLICY_MAPPINGS

private static final java.lang.String POLICY_MAPPINGS

INHIBIT_ANY_POLICY

private static final java.lang.String INHIBIT_ANY_POLICY

ISSUING_DISTRIBUTION_POINT

private static final java.lang.String ISSUING_DISTRIBUTION_POINT

DELTA_CRL_INDICATOR

private static final java.lang.String DELTA_CRL_INDICATOR

POLICY_CONSTRAINTS

private static final java.lang.String POLICY_CONSTRAINTS

BASIC_CONSTRAINTS

private static final java.lang.String BASIC_CONSTRAINTS

SUBJECT_ALTERNATIVE_NAME

private static final java.lang.String SUBJECT_ALTERNATIVE_NAME

NAME_CONSTRAINTS

private static final java.lang.String NAME_CONSTRAINTS

KEY_USAGE

private static final java.lang.String KEY_USAGE

CRL_NUMBER

private static final java.lang.String CRL_NUMBER

ANY_POLICY

private static final java.lang.String ANY_POLICY

See Also:

Constant Field Values

KEY_CERT_SIGN

private static final int KEY_CERT_SIGN

See Also:

Constant Field Values

CRL_SIGN

private static final int CRL_SIGN

See Also:

Constant Field Values

crlReasons

private static final java.lang.String[] crlReasons

Constructor Detail

PKIXCertPathValidatorSpi

public PKIXCertPathValidatorSpi()

Method Detail

engineValidate

public java.security.cert.CertPathValidatorResult engineValidate(java.security.cert.CertPath certPath,
                                                                 java.security.cert.CertPathParameters params)
                                                          throws java.security.cert.CertPathValidatorException,
                                                                 java.security.InvalidAlgorithmParameterException

Specified by:

engineValidate in class java.security.cert.CertPathValidatorSpi

Throws:

java.security.cert.CertPathValidatorException

java.security.InvalidAlgorithmParameterException

checkCRLs

private void checkCRLs(java.security.cert.PKIXParameters paramsPKIX,
                       java.security.cert.X509Certificate cert,
                       java.util.Date validDate,
                       java.security.cert.X509Certificate sign,
                       java.security.PublicKey workingPublicKey)
                throws AnnotatedException

Throws:

AnnotatedException