2002/03/21 01:19:32

[org.ibex.core.git] / src / org / bouncycastle / asn1 / x509 / TBSCertList.java
diff --git a/src/org/bouncycastle/asn1/x509/TBSCertList.java b/src/org/bouncycastle/asn1/x509/TBSCertList.java

new file mode 100644 (file)

index 0000000..11cb2ab
--- /dev/null
+++ b/src/org/bouncycastle/asn1/x509/TBSCertList.java
@@ -0,0 +1,192 @@
+
+package org.bouncycastle.asn1.x509;
+
+import org.bouncycastle.asn1.*;
+import org.bouncycastle.asn1.pkcs.*;
+
+/**
+ * PKIX RFC-2459
+ *
+ * <pre>
+ * TBSCertList  ::=  SEQUENCE  {
+ *      version                 Version OPTIONAL,
+ *                                   -- if present, shall be v2
+ *      signature               AlgorithmIdentifier,
+ *      issuer                  Name,
+ *      thisUpdate              Time,
+ *      nextUpdate              Time OPTIONAL,
+ *      revokedCertificates     SEQUENCE OF SEQUENCE  {
+ *           userCertificate         CertificateSerialNumber,
+ *           revocationDate          Time,
+ *           crlEntryExtensions      Extensions OPTIONAL
+ *                                         -- if present, shall be v2
+ *                                }  OPTIONAL,
+ *      crlExtensions           [0]  EXPLICIT Extensions OPTIONAL
+ *                                         -- if present, shall be v2
+ *                                }
+ * </pre>
+ */
+
+public class TBSCertList
+       implements DEREncodable
+{
+       public class CRLEntry
+               implements DEREncodable
+       {
+               DERConstructedSequence  seq;
+
+               DERInteger              userCertificate;
+               DERUTCTime              revocationDate;
+               X509Extensions  crlEntryExtensions;
+
+               public CRLEntry(
+                       DERConstructedSequence  seq)
+               {
+                       this.seq = seq;
+
+                       userCertificate = (DERInteger)seq.getObjectAt(0);
+                       revocationDate = (DERUTCTime)seq.getObjectAt(1);
+                       if ( seq.getSize() == 3 )
+                       {
+                               crlEntryExtensions = new X509Extensions((DERConstructedSequence)seq.getObjectAt(2));
+                       }
+               }
+
+               public DERInteger getUserCertificate()
+               {
+                       return userCertificate;
+               }
+
+               public DERUTCTime getRevocationDate()
+               {
+                       return revocationDate;
+               }
+
+               public X509Extensions getExtensions()
+               {
+                       return crlEntryExtensions;
+               }
+
+               public DERObject getDERObject()
+               {
+                       return seq;
+               }
+       }
+
+    DERConstructedSequence  seq;
+
+    DERInteger              version;
+    AlgorithmIdentifier     signature;
+    X509Name                issuer;
+       DERUTCTime                              thisUpdate;
+       DERUTCTime                              nextUpdate;
+       CRLEntry[]                              revokedCertificates;
+    X509Extensions          crlExtensions;
+
+    public TBSCertList(
+        DERConstructedSequence  seq)
+    {
+        int seqPos = 0;
+
+        this.seq = seq;
+
+        if ( seq.getObjectAt(seqPos) instanceof DERInteger )
+        {
+            version = (DERInteger)seq.getObjectAt(seqPos++);
+        }
+        else
+        {
+            version = new DERInteger(0);
+        }
+
+        if ( seq.getObjectAt(seqPos) instanceof AlgorithmIdentifier )
+        {
+            signature = (AlgorithmIdentifier)seq.getObjectAt(seqPos++);
+        }
+        else
+        {
+            signature = new AlgorithmIdentifier((DERConstructedSequence)seq.getObjectAt(seqPos++));
+        }
+
+        if ( seq.getObjectAt(seqPos) instanceof X509Name )
+        {
+            issuer = (X509Name)seq.getObjectAt(seqPos++);
+        }
+        else
+        {
+            issuer = new X509Name((DERConstructedSequence)seq.getObjectAt(seqPos++));
+        }
+
+        thisUpdate = (DERUTCTime)seq.getObjectAt(seqPos++);
+
+               if ( seqPos < seq.getSize()
+               && seq.getObjectAt(seqPos) instanceof DERUTCTime )
+        {
+                       nextUpdate = (DERUTCTime)seq.getObjectAt(seqPos++);
+        }
+
+               if ( seqPos < seq.getSize()
+                       && !(seq.getObjectAt(seqPos) instanceof DERTaggedObject) )
+               {
+                       DERConstructedSequence certs = (DERConstructedSequence)seq.getObjectAt(seqPos++);
+                       revokedCertificates = new CRLEntry[certs.getSize()];
+
+                       for ( int i = 0; i < revokedCertificates.length; i++ )
+                       {
+                               revokedCertificates[i] = new CRLEntry((DERConstructedSequence)certs.getObjectAt(i));
+                       }
+               }
+
+               if ( seqPos < seq.getSize()
+                       && seq.getObjectAt(seqPos) instanceof DERTaggedObject )
+               {
+                       crlExtensions = new X509Extensions((DERConstructedSequence)((DERTaggedObject)seq.getObjectAt(seqPos++)).getObject());
+               }
+    }
+
+    public int getVersion()
+    {
+        return version.getValue().intValue() + 1;
+    }
+
+    public DERInteger getVersionNumber()
+    {
+        return version;
+    }
+
+    public AlgorithmIdentifier getSignature()
+    {
+        return signature;
+    }
+
+    public X509Name getIssuer()
+    {
+        return issuer;
+    }
+
+    public DERUTCTime getThisUpdate()
+    {
+        return thisUpdate;
+    }
+
+    public DERUTCTime getNextUpdate()
+    {
+        return nextUpdate;
+    }
+
+    public CRLEntry[] getRevokedCertificates()
+    {
+        return revokedCertificates;
+    }
+
+    public X509Extensions getExtensions()
+    {
+        return crlExtensions;
+    }
+
+    public DERObject getDERObject()
+    {
+        return seq;
+    }
+}
+