org.cesecore.certificates.certificate.certextensions.standard.SubjectKeyIdentifier.java Source code

Java tutorial

  1. HOME
  2. Java
  3. org.cesecore.certificates.certificate.certextensions.standard.SubjectKeyIdentifier.java

Introduction

Here is the source code for org.cesecore.certificates.certificate.certextensions.standard.SubjectKeyIdentifier.java

Source

/*************************************************************************
 *                                                                       *
 *  CESeCore: CE Security Core                                           *
 *                                                                       *
 *  This software is free software; you can redistribute it and/or       *
 *  modify it under the terms of the GNU Lesser General Public           *
 *  License as published by the Free Software Foundation; either         *
 *  version 2.1 of the License, or any later version.                    *
 *                                                                       *
 *  See terms of license at gnu.org.                                     *
 *                                                                       *
 *************************************************************************/
package org.cesecore.certificates.certificate.certextensions.standard;

import java.io.ByteArrayInputStream;
import java.io.IOException;
import java.security.PublicKey;

import org.bouncycastle.asn1.ASN1Encodable;
import org.bouncycastle.asn1.ASN1InputStream;
import org.bouncycastle.asn1.ASN1Sequence;
import org.bouncycastle.asn1.x509.Extension;
import org.bouncycastle.asn1.x509.SubjectPublicKeyInfo;
import org.bouncycastle.cert.X509ExtensionUtils;
import org.bouncycastle.cert.bc.BcX509ExtensionUtils;
import org.cesecore.certificates.ca.CA;
import org.cesecore.certificates.ca.internal.CertificateValidity;
import org.cesecore.certificates.certificate.certextensions.CertificateExtensionException;
import org.cesecore.certificates.certificateprofile.CertificateProfile;
import org.cesecore.certificates.endentity.EndEntityInformation;

/** 
 * 
 * Class for standard X509 certificate extension. 
 * See rfc3280 or later for spec of this extension.      
 * 
 * @version $Id: SubjectKeyIdentifier.java 20448 2014-12-12 09:59:30Z mikekushner $
 */
public class SubjectKeyIdentifier extends StandardCertificateExtension {

    @Override
    public void init(final CertificateProfile certProf) {
        super.setOID(Extension.subjectKeyIdentifier.getId());
        super.setCriticalFlag(certProf.getSubjectKeyIdentifierCritical());
    }

    @Override
    public ASN1Encodable getValue(final EndEntityInformation subject, final CA ca,
            final CertificateProfile certProfile, final PublicKey userPublicKey, final PublicKey caPublicKey,
            CertificateValidity val) throws CertificateExtensionException {
        SubjectPublicKeyInfo spki;
        try {
            spki = new SubjectPublicKeyInfo(
                    (ASN1Sequence) new ASN1InputStream(new ByteArrayInputStream(userPublicKey.getEncoded()))
                            .readObject());
        } catch (IOException e) {
            throw new CertificateExtensionException("IOException parsing user public key: " + e.getMessage(), e);
        }

        X509ExtensionUtils x509ExtensionUtils = new BcX509ExtensionUtils();
        return x509ExtensionUtils.createSubjectKeyIdentifier(spki);
    }
}