X509CertificateFactory (Java API Reference for Oracle WebLogic Server)

java.lang.Object
- java.security.cert.CertificateFactorySpi
- - weblogic.security.pk.X509CertificateFactory

```
public class X509CertificateFactory
extends java.security.cert.CertificateFactorySpi
```
This class is the X509 CertificateFactory that ensures tries to convert PKCS#7 to ordered cert paths that can be passed to the CLV validator, which only accepts ordered X509 cert paths. We wrote this implementation because the SUN X509 CertificateFactory does not order CertPaths that come from PKCS#7, which is an unordered format. This implementation delegates all the work to the SUN X509 CertificateFactory, then orders CertPaths that were decoded from PKCS#7. Rather than reject un-orderable PKCS#7 certificates, it returns them in their original order. This was done so that we would not restrict the PKCS#7 cert paths that could be decoded by this JDK (since this provider will be installed as the default X509 CertificateFactory for this JDK). This doesn't create a hole for the CLV validator since it detects if the cert path is either unordered or non-X509, and if so, throws an IllegalArgumentException. This means that CLV providers can rely on only receiving ordered, X509 cert paths.

Excluded in public API Reference.

Nested Class Summary

Nested Classes
Modifier and Type Class and Description

private static class X509CertificateFactory.MyJDKSecurityProvider

Nested Classes
Modifier and Type	Class and Description
`private static class`	`X509CertificateFactory.MyJDKSecurityProvider`

Field Summary

Fields
Modifier and Type	Field and Description
`private static java.lang.String`	`FACTORY_ALGORITHM`
`private static java.lang.String`	`MY_JDK_SECURITY_PROVIDER_NAME`
`private static java.security.cert.CertificateFactory`	`standardFactory`

Constructor Summary

Constructors
Constructor and Description

X509CertificateFactory()

Constructors
Constructor and Description
`X509CertificateFactory()`

Method Summary

All Methods Static Methods Instance Methods Concrete Methods
Modifier and Type	Method and Description
`java.security.cert.Certificate`	`engineGenerateCertificate(java.io.InputStream is)`
`java.util.Collection`	`engineGenerateCertificates(java.io.InputStream is)`
`java.security.cert.CertPath`	`engineGenerateCertPath(java.io.InputStream is)`
`java.security.cert.CertPath`	`engineGenerateCertPath(java.io.InputStream is, java.lang.String encoding)`
`java.security.cert.CertPath`	`engineGenerateCertPath(java.util.List list)`
`java.security.cert.CRL`	`engineGenerateCRL(java.io.InputStream is)`
`java.util.Collection`	`engineGenerateCRLs(java.io.InputStream is)`
`java.util.Iterator`	`engineGetCertPathEncodings()`
`private static java.security.cert.X509Certificate`	`findIssued(java.security.cert.X509Certificate[] unorderedCerts, java.security.cert.X509Certificate issuer)`
`private static java.security.cert.X509Certificate`	`findIssuer(java.security.cert.X509Certificate[] unorderedCerts, java.security.cert.X509Certificate issued)`
`private java.security.cert.CertificateFactory`	`getStandardFactory()`
`private static java.security.cert.CertPath`	`orderCertPath(java.security.cert.CertPath originalCertPath)`
`static void`	`register()`

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

MY_JDK_SECURITY_PROVIDER_NAME

private static final java.lang.String MY_JDK_SECURITY_PROVIDER_NAME

See Also:: Constant Field Values

FACTORY_ALGORITHM

private static final java.lang.String FACTORY_ALGORITHM

See Also:: Constant Field Values

standardFactory

private static java.security.cert.CertificateFactory standardFactory

Constructor Detail
- X509CertificateFactory
```
public X509CertificateFactory()
```

Method Detail

getStandardFactory

private java.security.cert.CertificateFactory getStandardFactory()

engineGenerateCertPath

public java.security.cert.CertPath engineGenerateCertPath(java.io.InputStream is)
                                                   throws java.security.cert.CertificateException

Overrides:: engineGenerateCertPath in class java.security.cert.CertificateFactorySpi
Throws:: java.security.cert.CertificateException

engineGenerateCertPath

public java.security.cert.CertPath engineGenerateCertPath(java.io.InputStream is,
                                                          java.lang.String encoding)
                                                   throws java.security.cert.CertificateException

Overrides:: engineGenerateCertPath in class java.security.cert.CertificateFactorySpi
Throws:: java.security.cert.CertificateException

engineGenerateCertPath

public java.security.cert.CertPath engineGenerateCertPath(java.util.List list)
                                                   throws java.security.cert.CertificateException

Overrides:: engineGenerateCertPath in class java.security.cert.CertificateFactorySpi
Throws:: java.security.cert.CertificateException

engineGenerateCertificate

public java.security.cert.Certificate engineGenerateCertificate(java.io.InputStream is)
                                                         throws java.security.cert.CertificateException

Specified by:: engineGenerateCertificate in class java.security.cert.CertificateFactorySpi
Throws:: java.security.cert.CertificateException

engineGetCertPathEncodings
```
public java.util.Iterator engineGetCertPathEncodings()
```
Overrides:

engineGetCertPathEncodings in class java.security.cert.CertificateFactorySpi

engineGenerateCertificates

public java.util.Collection engineGenerateCertificates(java.io.InputStream is)
                                                throws java.security.cert.CertificateException

Specified by:: engineGenerateCertificates in class java.security.cert.CertificateFactorySpi
Throws:: java.security.cert.CertificateException

engineGenerateCRL

public java.security.cert.CRL engineGenerateCRL(java.io.InputStream is)
                                         throws java.security.cert.CRLException

Specified by:: engineGenerateCRL in class java.security.cert.CertificateFactorySpi
Throws:: java.security.cert.CRLException

engineGenerateCRLs

public java.util.Collection engineGenerateCRLs(java.io.InputStream is)
                                        throws java.security.cert.CRLException

Specified by:: engineGenerateCRLs in class java.security.cert.CertificateFactorySpi
Throws:: java.security.cert.CRLException

findIssuer

private static java.security.cert.X509Certificate findIssuer(java.security.cert.X509Certificate[] unorderedCerts,
                                                             java.security.cert.X509Certificate issued)

findIssued

private static java.security.cert.X509Certificate findIssued(java.security.cert.X509Certificate[] unorderedCerts,
                                                             java.security.cert.X509Certificate issuer)

orderCertPath

private static java.security.cert.CertPath orderCertPath(java.security.cert.CertPath originalCertPath)
                                                  throws java.security.cert.CertificateException

Throws:: java.security.cert.CertificateException

Class X509CertificateFactory

Nested Class Summary

Field Summary

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Field Detail

MY_JDK_SECURITY_PROVIDER_NAME

FACTORY_ALGORITHM

standardFactory

Constructor Detail

X509CertificateFactory

Method Detail

register

getStandardFactory

engineGenerateCertPath

engineGenerateCertPath

engineGenerateCertPath

engineGenerateCertificate

engineGetCertPathEncodings

engineGenerateCertificates

engineGenerateCRL

engineGenerateCRLs

findIssuer

findIssued

orderCertPath