Initial Commit
This commit is contained in:
180
iTechSharp/srcbc/x509/X509V2AttributeCertificateGenerator.cs
Normal file
180
iTechSharp/srcbc/x509/X509V2AttributeCertificateGenerator.cs
Normal file
@@ -0,0 +1,180 @@
|
||||
using System;
|
||||
using System.Collections;
|
||||
|
||||
using Org.BouncyCastle.Asn1;
|
||||
using Org.BouncyCastle.Asn1.X509;
|
||||
using Org.BouncyCastle.Crypto;
|
||||
using Org.BouncyCastle.Math;
|
||||
using Org.BouncyCastle.Security;
|
||||
using Org.BouncyCastle.Security.Certificates;
|
||||
using Org.BouncyCastle.Utilities;
|
||||
|
||||
namespace Org.BouncyCastle.X509
|
||||
{
|
||||
/// <remarks>Class to produce an X.509 Version 2 AttributeCertificate.</remarks>
|
||||
public class X509V2AttributeCertificateGenerator
|
||||
{
|
||||
private readonly X509ExtensionsGenerator extGenerator = new X509ExtensionsGenerator();
|
||||
|
||||
private V2AttributeCertificateInfoGenerator acInfoGen;
|
||||
private DerObjectIdentifier sigOID;
|
||||
private AlgorithmIdentifier sigAlgId;
|
||||
private string signatureAlgorithm;
|
||||
|
||||
public X509V2AttributeCertificateGenerator()
|
||||
{
|
||||
acInfoGen = new V2AttributeCertificateInfoGenerator();
|
||||
}
|
||||
|
||||
/// <summary>Reset the generator</summary>
|
||||
public void Reset()
|
||||
{
|
||||
acInfoGen = new V2AttributeCertificateInfoGenerator();
|
||||
extGenerator.Reset();
|
||||
}
|
||||
|
||||
/// <summary>Set the Holder of this Attribute Certificate.</summary>
|
||||
public void SetHolder(
|
||||
AttributeCertificateHolder holder)
|
||||
{
|
||||
acInfoGen.SetHolder(holder.holder);
|
||||
}
|
||||
|
||||
/// <summary>Set the issuer.</summary>
|
||||
public void SetIssuer(
|
||||
AttributeCertificateIssuer issuer)
|
||||
{
|
||||
acInfoGen.SetIssuer(AttCertIssuer.GetInstance(issuer.form));
|
||||
}
|
||||
|
||||
/// <summary>Set the serial number for the certificate.</summary>
|
||||
public void SetSerialNumber(
|
||||
BigInteger serialNumber)
|
||||
{
|
||||
acInfoGen.SetSerialNumber(new DerInteger(serialNumber));
|
||||
}
|
||||
|
||||
public void SetNotBefore(
|
||||
DateTime date)
|
||||
{
|
||||
acInfoGen.SetStartDate(new DerGeneralizedTime(date));
|
||||
}
|
||||
|
||||
public void SetNotAfter(
|
||||
DateTime date)
|
||||
{
|
||||
acInfoGen.SetEndDate(new DerGeneralizedTime(date));
|
||||
}
|
||||
|
||||
/// <summary>
|
||||
/// Set the signature algorithm. This can be either a name or an OID, names
|
||||
/// are treated as case insensitive.
|
||||
/// </summary>
|
||||
/// <param name="signatureAlgorithm">The algorithm name.</param>
|
||||
public void SetSignatureAlgorithm(
|
||||
string signatureAlgorithm)
|
||||
{
|
||||
this.signatureAlgorithm = signatureAlgorithm;
|
||||
|
||||
try
|
||||
{
|
||||
sigOID = X509Utilities.GetAlgorithmOid(signatureAlgorithm);
|
||||
}
|
||||
catch (Exception)
|
||||
{
|
||||
throw new ArgumentException("Unknown signature type requested");
|
||||
}
|
||||
|
||||
sigAlgId = X509Utilities.GetSigAlgID(sigOID, signatureAlgorithm);
|
||||
|
||||
acInfoGen.SetSignature(sigAlgId);
|
||||
}
|
||||
|
||||
/// <summary>Add an attribute.</summary>
|
||||
public void AddAttribute(
|
||||
X509Attribute attribute)
|
||||
{
|
||||
acInfoGen.AddAttribute(AttributeX509.GetInstance(attribute.ToAsn1Object()));
|
||||
}
|
||||
|
||||
public void SetIssuerUniqueId(
|
||||
bool[] iui)
|
||||
{
|
||||
// TODO convert bool array to bit string
|
||||
//acInfoGen.SetIssuerUniqueID(iui);
|
||||
throw Platform.CreateNotImplementedException("SetIssuerUniqueId()");
|
||||
}
|
||||
|
||||
/// <summary>Add a given extension field for the standard extensions tag.</summary>
|
||||
public void AddExtension(
|
||||
string oid,
|
||||
bool critical,
|
||||
Asn1Encodable extensionValue)
|
||||
{
|
||||
extGenerator.AddExtension(new DerObjectIdentifier(oid), critical, extensionValue);
|
||||
}
|
||||
|
||||
/// <summary>
|
||||
/// Add a given extension field for the standard extensions tag.
|
||||
/// The value parameter becomes the contents of the octet string associated
|
||||
/// with the extension.
|
||||
/// </summary>
|
||||
public void AddExtension(
|
||||
string oid,
|
||||
bool critical,
|
||||
byte[] extensionValue)
|
||||
{
|
||||
extGenerator.AddExtension(new DerObjectIdentifier(oid), critical, extensionValue);
|
||||
}
|
||||
|
||||
/// <summary>
|
||||
/// Generate an X509 certificate, based on the current issuer and subject.
|
||||
/// </summary>
|
||||
public IX509AttributeCertificate Generate(
|
||||
AsymmetricKeyParameter publicKey)
|
||||
{
|
||||
return Generate(publicKey, null);
|
||||
}
|
||||
|
||||
/// <summary>
|
||||
/// Generate an X509 certificate, based on the current issuer and subject,
|
||||
/// using the supplied source of randomness, if required.
|
||||
/// </summary>
|
||||
public IX509AttributeCertificate Generate(
|
||||
AsymmetricKeyParameter publicKey,
|
||||
SecureRandom random)
|
||||
{
|
||||
if (!extGenerator.IsEmpty)
|
||||
{
|
||||
acInfoGen.SetExtensions(extGenerator.Generate());
|
||||
}
|
||||
|
||||
AttributeCertificateInfo acInfo = acInfoGen.GenerateAttributeCertificateInfo();
|
||||
|
||||
Asn1EncodableVector v = new Asn1EncodableVector();
|
||||
|
||||
v.Add(acInfo, sigAlgId);
|
||||
|
||||
try
|
||||
{
|
||||
v.Add(new DerBitString(X509Utilities.GetSignatureForObject(sigOID, signatureAlgorithm, publicKey, random, acInfo)));
|
||||
|
||||
return new X509V2AttributeCertificate(AttributeCertificate.GetInstance(new DerSequence(v)));
|
||||
}
|
||||
catch (Exception e)
|
||||
{
|
||||
// TODO
|
||||
// throw new ExtCertificateEncodingException("constructed invalid certificate", e);
|
||||
throw new CertificateEncodingException("constructed invalid certificate", e);
|
||||
}
|
||||
}
|
||||
|
||||
/// <summary>
|
||||
/// Allows enumeration of the signature names supported by the generator.
|
||||
/// </summary>
|
||||
public IEnumerable SignatureAlgNames
|
||||
{
|
||||
get { return X509Utilities.GetAlgNames(); }
|
||||
}
|
||||
}
|
||||
}
|
||||
Reference in New Issue
Block a user