@Deprecated
public class X509Attributes
extends java.lang.Object
X509ExtensionSet
.
Provides a high-level description of those properties of an X.509 v3 certificate or CRL which are defined by its extensions.
The methods of this class are of the following form:
isAttributeDefined
-- indicates whether the extension which defines Attribute is presentisAttributeCritical
-- indicates whether the extension which defines Attribute is criticialgetAttribute
-- returns the value of AttributesetAttribute
-- sets the value of Attributewhere Attribute is one of the following:
CA
, KeyUsage
, CertificatePolicies
, AuthorityKeyIdentifier
(*), SubjectKeyIdentifier
, NetscapeCertType
, or SETCertType
CRLNumber
(*)The AuthorityKeyIdentifier
attribute is handled slightly differently, in that there are two variants: AuthorityKeyIdentifierID
, and the combination of AuthorityKeyIdentifierIssuer
and AuthorityKeyIdentifierSerialNo
. See the documentation of the methods involved for more details.
Modifier and Type | Field and Description |
---|---|
static int |
CERTIFICATE
Deprecated.
Constant for use with
fromExtensionSet(oracle.security.crypto.cert.X509ExtensionSet, int) . |
static int |
CR_LIST
Deprecated.
Constant for use with
fromExtensionSet(oracle.security.crypto.cert.X509ExtensionSet, int) . |
static int |
CRL_SIGN
Deprecated.
Key usage bit mask.
|
static int |
DATA_ENCIPHERMENT
Deprecated.
Key usage bit mask.
|
static int |
DECIPHER_ONLY
Deprecated.
Key usage bit mask.
|
static int |
DIGITAL_SIGNATURE
Deprecated.
Key usage bit mask.
|
static int |
ENCIPHER_ONLY
Deprecated.
Key usage bit mask.
|
static int |
KEY_AGREEMENT
Deprecated.
Key usage bit mask.
|
static int |
KEY_CERT_SIGN
Deprecated.
Key usage bit mask.
|
static int |
KEY_ENCIPHERMENT
Deprecated.
Key usage bit mask.
|
static int |
NETSCAPE_CODE_SIGNING_CA
Deprecated.
A Netscape certificate type.
|
static int |
NETSCAPE_EMAIL
Deprecated.
A Netscape certificate type.
|
static int |
NETSCAPE_EMAIL_CA
Deprecated.
A Netscape certificate type.
|
static int |
NETSCAPE_OBJECT_SIGNER
Deprecated.
A Netscape certificate type.
|
static int |
NETSCAPE_SSL_CA
Deprecated.
A Netscape certificate type.
|
static int |
NETSCAPE_SSL_CLIENT
Deprecated.
A Netscape certificate type.
|
static int |
NETSCAPE_SSL_SERVER
Deprecated.
A Netscape certificate type.
|
static int |
NON_REPUDIATION
Deprecated.
Key usage bit mask.
|
static int |
OTHER
Deprecated.
Constant for use with
fromExtensionSet(oracle.security.crypto.cert.X509ExtensionSet, int) . |
static int |
SET_ACQ
Deprecated.
An SET certificate type.
|
static int |
SET_BCA
Deprecated.
An SET certificate type.
|
static int |
SET_CARD
Deprecated.
An SET certificate type.
|
static int |
SET_CCA
Deprecated.
An SET certificate type.
|
static int |
SET_GCA
Deprecated.
An SET certificate type.
|
static int |
SET_MCA
Deprecated.
An SET certificate type.
|
static int |
SET_MER
Deprecated.
An SET certificate type.
|
static int |
SET_PCA
Deprecated.
An SET certificate type.
|
static int |
SET_PGWY
Deprecated.
An SET certificate type.
|
static int |
SET_RCA
Deprecated.
An SET certificate type.
|
Constructor and Description |
---|
X509Attributes()
Deprecated.
This class has been deprecated in favor of
X509ExtensionSet . |
Modifier and Type | Method and Description |
---|---|
void |
addGenericExt(X509Extension ext)
Deprecated.
|
static X509Attributes |
fromExtensionSet(X509ExtensionSet set, int container)
Deprecated.
Returns a
X509Attributes containing the extensions from the given X509ExtensionSet . |
byte[] |
getAuthorityKeyIdentifierID()
Deprecated.
|
X500Name |
getAuthorityKeyIdentifierIssuer()
Deprecated.
|
java.math.BigInteger |
getAuthorityKeyIdentifierSerialNo()
Deprecated.
|
boolean |
getCA()
Deprecated.
|
java.util.Vector |
getCertificatePolicies()
Deprecated.
|
java.math.BigInteger |
getCRLNumber()
Deprecated.
|
java.util.Vector |
getGenericExts()
Deprecated.
|
int |
getKeyUsage()
Deprecated.
|
int |
getNetscapeCertType()
Deprecated.
|
int |
getSETCertType()
Deprecated.
|
byte[] |
getSubjectKeyIdentifier()
Deprecated.
|
boolean |
isAuthorityKeyIdentifierCritical()
Deprecated.
|
boolean |
isAuthorityKeyIdentifierDefined()
Deprecated.
|
boolean |
isAuthorityKeyIdentifierIdDefined()
Deprecated.
|
boolean |
isAuthorityKeyIdentifierIsnDefined()
Deprecated.
|
boolean |
isCACritical()
Deprecated.
|
boolean |
isCADefined()
Deprecated.
|
boolean |
isCertificatePoliciesCritical()
Deprecated.
|
boolean |
isCertificatePoliciesDefined()
Deprecated.
|
boolean |
isCRLNumberCritical()
Deprecated.
|
boolean |
isCRLNumberDefined()
Deprecated.
|
boolean |
isKeyUsageCritical()
Deprecated.
|
boolean |
isKeyUsageDefined()
Deprecated.
|
boolean |
isNetscapeCertTypeCritical()
Deprecated.
|
boolean |
isNetscapeCertTypeDefined()
Deprecated.
|
boolean |
isSETCertTypeCritical()
Deprecated.
|
boolean |
isSETCertTypeDefined()
Deprecated.
|
boolean |
isSubjectKeyIdentifierCritical()
Deprecated.
|
boolean |
isSubjectKeyIdentifierDefined()
Deprecated.
|
void |
setAuthorityKeyIdentifier(byte[] id)
Deprecated.
|
void |
setAuthorityKeyIdentifier(byte[] id, boolean critical)
Deprecated.
|
void |
setAuthorityKeyIdentifier(X500Name is, java.math.BigInteger sn)
Deprecated.
|
void |
setAuthorityKeyIdentifier(X500Name is, java.math.BigInteger sn, boolean critical)
Deprecated.
|
void |
setAuthorityKeyIdentifier(X509 is)
Deprecated.
|
void |
setAuthorityKeyIdentifier(X509 is, boolean critical)
Deprecated.
|
void |
setCA(boolean CA)
Deprecated.
|
void |
setCA(boolean CA, boolean critical)
Deprecated.
|
void |
setCertificatePolicies(java.util.Vector cp)
Deprecated.
|
void |
setCertificatePolicies(java.util.Vector cp, boolean critical)
Deprecated.
|
void |
setCRLNumber(java.math.BigInteger cn)
Deprecated.
|
void |
setCRLNumber(java.math.BigInteger cn, boolean critical)
Deprecated.
|
void |
setGenericExts(java.util.Vector genericExts)
Deprecated.
|
void |
setKeyUsage(int ku)
Deprecated.
|
void |
setKeyUsage(int ku, boolean critical)
Deprecated.
|
void |
setNetscapeCertType(int nct)
Deprecated.
|
void |
setNetscapeCertType(int nct, boolean critical)
Deprecated.
|
void |
setSETCertType(int sct)
Deprecated.
|
void |
setSETCertType(int sct, boolean critical)
Deprecated.
|
void |
setSubjectKeyIdentifier(byte[] id)
Deprecated.
|
void |
setSubjectKeyIdentifier(byte[] id, boolean critical)
Deprecated.
|
static X509ExtensionSet |
toExtensionSet(X509Attributes attr)
Deprecated.
Returns a
X509ExtensionSet containing the extensions defined in the given X509Attributes . |
java.lang.String |
toString()
Deprecated.
Returns a string representing this object.
|
public static final int CERTIFICATE
fromExtensionSet(oracle.security.crypto.cert.X509ExtensionSet, int)
.public static final int CR_LIST
fromExtensionSet(oracle.security.crypto.cert.X509ExtensionSet, int)
.public static final int OTHER
fromExtensionSet(oracle.security.crypto.cert.X509ExtensionSet, int)
.public static final int DIGITAL_SIGNATURE
public static final int NON_REPUDIATION
public static final int KEY_ENCIPHERMENT
public static final int DATA_ENCIPHERMENT
public static final int KEY_AGREEMENT
public static final int KEY_CERT_SIGN
public static final int CRL_SIGN
public static final int ENCIPHER_ONLY
public static final int DECIPHER_ONLY
public static final int NETSCAPE_SSL_CLIENT
public static final int NETSCAPE_SSL_SERVER
public static final int NETSCAPE_EMAIL
public static final int NETSCAPE_OBJECT_SIGNER
public static final int NETSCAPE_SSL_CA
public static final int NETSCAPE_EMAIL_CA
public static final int NETSCAPE_CODE_SIGNING_CA
public static final int SET_CARD
public static final int SET_MER
public static final int SET_PGWY
public static final int SET_CCA
public static final int SET_MCA
public static final int SET_PCA
public static final int SET_GCA
public static final int SET_BCA
public static final int SET_RCA
public static final int SET_ACQ
public X509Attributes()
X509ExtensionSet
.X509Attributes
object, with all attributes undefined.public static X509ExtensionSet toExtensionSet(X509Attributes attr)
X509ExtensionSet
containing the extensions defined in the given X509Attributes
.attr
- the X509Attributes
to convert.X509ExtensionSet
.public static X509Attributes fromExtensionSet(X509ExtensionSet set, int container)
X509Attributes
containing the extensions from the given X509ExtensionSet
.set
- the X509ExtensionSet
to be converted.container
- the type of object that contains the extension set, defined as constants in this class: CERTIFICATE
, CR_LIST
, OTHER
.X509Attributes
.public boolean isCADefined()
Applicable to: certificates
true
if the the CA is defined, and false
if it is not.public boolean isCACritical()
Applicable to: certificates
true
if the the basic constraints extension is critical, and false
if it is not.java.lang.IllegalStateException
- If the basic constraints extension is not defined.public boolean getCA()
Applicable to: certificates
true
if the subject is a CA, and false
if it is not.java.lang.IllegalStateException
- If the basic constraints extension is not defined.public void setCA(boolean CA)
Applicable to: certificates
ca
- the value of the CA fieldpublic void setCA(boolean CA, boolean critical)
Applicable to: certificates
ca
- value of the CA fieldcritical
- true
if the ca is critical, and false
otherwisepublic boolean isKeyUsageDefined()
Applicable to: certificates
true
if the key usage is defined, and false
if it is not.public boolean isKeyUsageCritical()
true
if the key usage is critical, and false
if it is not.java.lang.IllegalStateException
- If the key usageis not defined.public int getKeyUsage()
The following constants defined in this class can be used as masks to access the individual bits: DIGITAL_SIGNATURE, NON_REPUDIATION, KEY_ENCIPHERMENT, DATA_ENCIPHERMENT, KEY_AGREEMENT, KEY_CERT_SIGN, CRL_SIGN
.
Applicable to: certificates
java.lang.IllegalStateException
- If the key usage is not defined.public void setKeyUsage(int ku)
Applicable to: certificates
ku
- the key usage bitspublic void setKeyUsage(int ku, boolean critical)
Applicable to: certificates
ku
- the key usage bitscritical
- true
if the key usage is critical, and false
otherwisepublic boolean isCertificatePoliciesDefined()
Applicable to: certificates
true
if the certificate policies extension is defined, and false
if it is not.public boolean isCertificatePoliciesCritical()
Applicable to: certificates
true
if the certificate policies extension is critical, and false
if it is not.java.lang.IllegalStateException
- If the certificate policy is not defined.public java.util.Vector getCertificatePolicies()
Applicable to: certificates
If the Certificate Policies extension is defined, returns the set of certificate policies. The value is a vector of X509PolicyInformation
objects.
java.lang.IllegalStateException
- If the certificate policy is not defined.public void setCertificatePolicies(java.util.Vector cp)
not
be marked critical.
Applicable to: certificates
ku
- the key usage bitspublic void setCertificatePolicies(java.util.Vector cp, boolean critical)
Applicable to: certificates
cp
- the values of the certificate policiescritical
- true
if the certificate policies are critical, and false
otherwisepublic boolean isAuthorityKeyIdentifierDefined()
Applicable to: certificates
true
if either the issuer and serial number or the key ID of the CA certificate are defined, false
otherwisepublic boolean isAuthorityKeyIdentifierIsnDefined()
Applicable to: certificates
true
if the issuer and
serial number of the CA certificate are defined, false
otherwisepublic boolean isAuthorityKeyIdentifierIdDefined()
Applicable to: certificates
true
if the key ID of the CA certificate is defined, or false
otherwisepublic boolean isAuthorityKeyIdentifierCritical()
Applicable to: certificates
true
if either the issuer and serial number or the key ID of the CA certificate is critical, false
otherwisepublic X500Name getAuthorityKeyIdentifierIssuer()
Authority key identifier: the issuer of the CA certificate used to sign this certificate.
Applicable to: certificates
java.lang.IllegalStateException
- If the authority key identifier issuer is not defined.public java.math.BigInteger getAuthorityKeyIdentifierSerialNo()
Applicable to: certificates
Authority key identifier: the serial number of the CA certificate used to sign this certificate.
java.lang.IllegalStateException
- If the authority key identifier serial No. is not defined.public byte[] getAuthorityKeyIdentifierID()
Applicable to: certificates
Authority key identifier: the ID of the key used to sign this certificate (corresponding to the subject key identifier in the CA certificate).
java.lang.IllegalStateException
- If the certificate policy is not defined.public void setAuthorityKeyIdentifier(byte[] id)
Applicable to: certificates
id
- value of the authority key identifierpublic void setAuthorityKeyIdentifier(X509 is)
Applicable to: certificates
is
- value of the authority key identifierpublic void setAuthorityKeyIdentifier(X500Name is, java.math.BigInteger sn)
Applicable to: certificates
is
- value of the authority key identifiersn
- serial numberpublic void setAuthorityKeyIdentifier(byte[] id, boolean critical)
Applicable to: certificates
id
- value of the authority key identifiercritical
- true
if the CRL number extension is critical, and false
otherwisepublic void setAuthorityKeyIdentifier(X509 is, boolean critical)
Applicable to: certificates
is
- value of the authority key identifiercritical
- true
if the CRL number extension is critical, and false
otherwisepublic void setAuthorityKeyIdentifier(X500Name is, java.math.BigInteger sn, boolean critical)
Applicable to: certificates
is
- value of the authority key identifiersn
- the serial numbercritical
- true
if the CRL number extension is critical, and false
otherwisepublic boolean isSubjectKeyIdentifierDefined()
Applicable to: certificates
true
if subject key identifier is defined, and false
if it is not.public boolean isSubjectKeyIdentifierCritical()
Applicable to: certificates
true
if subject key identifier is critical, and false
if it is not.java.lang.IllegalStateException
- If the subject key identifier is not defined.public byte[] getSubjectKeyIdentifier()
Applicable to: certificates
java.lang.IllegalStateException
- If the subject key identifier is not defined.public void setSubjectKeyIdentifier(byte[] id)
Applicable to: Certificate
id
- the value of the subjectkey identifierpublic void setSubjectKeyIdentifier(byte[] id, boolean critical)
Applicable to: Certificate
id
- the value of the subjectkey identifiercritical
- true
if the CRL number extension is critical, and false
otherwisepublic boolean isNetscapeCertTypeDefined()
Applicable to: certificates
true
if the Netscape cert type is critical, and false
if it is not.public boolean isNetscapeCertTypeCritical()
Applicable to: certificates
true
if the Netscape cert type is critical, and false
if it is not.java.lang.IllegalStateException
- If the Netscape cert type is not defined.public int getNetscapeCertType()
The following constants defined in this class can be used to access its fields: NETSCAPE_SSL_CLIENT, NETSCAPE_SSL_SERVER, NETSCAPE_EMAIL, NETSCAPE_OBJECT_SIGNER, NETSCAPE_SSL_CA, NETSCAPE_EMAIL_CA, NETSCAPE_CODE_SIGNING_CA
.
Applicable to: certificates
java.lang.IllegalStateException
- if the Netscape cert type is not definedpublic void setNetscapeCertType(int nct)
Applicable to: certificates
nct
- the Netscape cert typepublic void setNetscapeCertType(int nct, boolean critical)
Applicable to: Certificate
id
- the value of the Netscape cert typecritical
- true
if the Netscape cert type is critical, and false
otherwisepublic boolean isSETCertTypeDefined()
Applicable to: certificates
true
if the SET cert type is critical, and false
if it is not.public boolean isSETCertTypeCritical()
Applicable to: certificates
true
if the SET cert type is critical, and false
if it is not.java.lang.IllegalStateException
- If the SET cert type is not defined.public int getSETCertType()
The following constants defined in this class can be used to access its fields: SET_CARD, SET_MER, SET_PGWY, SET_CCA, SET_MCA, SET_PCA, SET_GCA, SET_BCA, SET_RCA, SET_ACQ.
Applicable to: certificates
java.lang.IllegalStateException
- if the SET cert type is not definedpublic void setSETCertType(int sct)
Applicable to: certificates
sct
- the SET cert typepublic void setSETCertType(int sct, boolean critical)
Applicable to: Certificate
id
- the value of the SET cert typecritical
- true
if the SET cert type is critical, and false
otherwisepublic boolean isCRLNumberDefined()
Applicable to: CRLs.
true
if the CRL number extension is defined, and false
if it is not.public boolean isCRLNumberCritical()
Applicable to: CRLs.
true
if the CRL number extension is critical, and false
if it is not.java.lang.IllegalStateException
- If the CRL number extension is not defined.public java.math.BigInteger getCRLNumber()
Applicable to: CRLs.
java.lang.IllegalStateException
- If the CRL number extension is not defined.public void setCRLNumber(java.math.BigInteger cn)
Applicable to: CRLs.
cn
- the CRL numberpublic void setCRLNumber(java.math.BigInteger cn, boolean critical)
Applicable to: CRLs.
cn
- the CRL numbercritical
- true
if the CRL number extension is critical, and false
otherwisepublic java.util.Vector getGenericExts()
Applicable to: CRLs.
X509Extension
s, or nullpublic void setGenericExts(java.util.Vector genericExts)
These will be passed to the X509
or CRL
object verbatim and put at the end of the extension list.
Applicable to: certificates
genericExts
- the vector of generic extensionscritical
- true
if the CRL number extension is critical, and false
otherwisepublic void addGenericExt(X509Extension ext)
Applicable to: certificates
ext
- a generic extension to be addpublic java.lang.String toString()
toString
in class java.lang.Object