ScepUtil (XiPKI :: scep-common 3.1.0 API)

java.lang.Object
- org.xipki.scep.util.ScepUtil

```
public class ScepUtil
extends Object
```
TODO.

Author:

Lijun Liao

Method Summary

All Methods Static Methods Concrete Methods
Modifier and Type	Method and Description
`static void`	`addCmsCertSet(org.bouncycastle.cms.CMSSignedDataGenerator generator, X509Certificate[] cmsCertSet)`
`static org.bouncycastle.asn1.x509.SubjectPublicKeyInfo`	`createSubjectPublicKeyInfo(PublicKey publicKey)`
`static org.bouncycastle.asn1.ASN1ObjectIdentifier`	`extractDigesetAlgorithmIdentifier(String sigOid, byte[] sigParams)`
`static org.bouncycastle.pkcs.PKCS10CertificationRequest`	`generateRequest(PrivateKey privatekey, org.bouncycastle.asn1.x509.SubjectPublicKeyInfo subjectPublicKeyInfo, org.bouncycastle.asn1.x500.X500Name subjectDn, Map<org.bouncycastle.asn1.ASN1ObjectIdentifier,org.bouncycastle.asn1.ASN1Encodable> attributes)`
`static org.bouncycastle.pkcs.PKCS10CertificationRequest`	`generateRequest(PrivateKey privatekey, org.bouncycastle.asn1.x509.SubjectPublicKeyInfo subjectPublicKeyInfo, org.bouncycastle.asn1.x500.X500Name subjectDn, String challengePassword, List<org.bouncycastle.asn1.x509.Extension> extensions)`
`static X509Certificate`	`generateSelfsignedCert(org.bouncycastle.asn1.pkcs.CertificationRequest csr, PrivateKey identityKey)`
`static X509Certificate`	`generateSelfsignedCert(org.bouncycastle.asn1.x500.X500Name subjectDn, PublicKey pubKey, PrivateKey identityKey)`
`static X509Certificate`	`generateSelfsignedCert(org.bouncycastle.asn1.x500.X500Name subjectDn, org.bouncycastle.asn1.x509.SubjectPublicKeyInfo pubKeyInfo, PrivateKey identityKey)`
`static List<X509Certificate>`	`getCertsFromSignedData(org.bouncycastle.asn1.cms.SignedData signedData)` The first one is a non-CA certificate if there exists one non-CA certificate.
`static X509CRL`	`getCrlFromPkiMessage(org.bouncycastle.asn1.cms.SignedData signedData)`
`static org.bouncycastle.asn1.ASN1Encodable`	`getFirstAttrValue(org.bouncycastle.asn1.cms.AttributeTable attrs, org.bouncycastle.asn1.ASN1ObjectIdentifier type)`
`static String`	`getSignatureAlgorithm(PrivateKey key, ScepHashAlgo hashAlgo)`
`static boolean`	`hasKeyusage(X509Certificate cert, KeyUsage usage)`
`static boolean`	`isSelfSigned(X509Certificate cert)`
`static boolean`	`issues(X509Certificate issuerCert, X509Certificate cert)`
`static X509Certificate`	`parseCert(byte[] certBytes)`
`static X509CRL`	`parseCrl(byte[] encodedCrl)`
`static X509CRL`	`parseCrl(InputStream crlStream)`
`static byte[]`	`read(InputStream in)`
`static String`	`requireNonBlank(String objName, String obj)`
`static <T> Collection<T>`	`requireNonEmpty(String objName, Collection<T> obj)`
`static <T> T`	`requireNonNull(String objName, T obj)`
`static X509Certificate`	`toX509Cert(org.bouncycastle.asn1.x509.Certificate asn1Cert)`
`static X509CRL`	`toX509Crl(org.bouncycastle.asn1.x509.CertificateList asn1CertList)`

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Method Detail

createSubjectPublicKeyInfo

public static org.bouncycastle.asn1.x509.SubjectPublicKeyInfo createSubjectPublicKeyInfo(PublicKey publicKey)
                                                                                  throws IOException

Throws:: IOException

generateRequest

public static org.bouncycastle.pkcs.PKCS10CertificationRequest generateRequest(PrivateKey privatekey,
                                                                               org.bouncycastle.asn1.x509.SubjectPublicKeyInfo subjectPublicKeyInfo,
                                                                               org.bouncycastle.asn1.x500.X500Name subjectDn,
                                                                               Map<org.bouncycastle.asn1.ASN1ObjectIdentifier,org.bouncycastle.asn1.ASN1Encodable> attributes)
                                                                        throws org.bouncycastle.operator.OperatorCreationException

Throws:: org.bouncycastle.operator.OperatorCreationException

generateRequest

public static org.bouncycastle.pkcs.PKCS10CertificationRequest generateRequest(PrivateKey privatekey,
                                                                               org.bouncycastle.asn1.x509.SubjectPublicKeyInfo subjectPublicKeyInfo,
                                                                               org.bouncycastle.asn1.x500.X500Name subjectDn,
                                                                               String challengePassword,
                                                                               List<org.bouncycastle.asn1.x509.Extension> extensions)
                                                                        throws org.bouncycastle.operator.OperatorCreationException

Throws:: org.bouncycastle.operator.OperatorCreationException

generateSelfsignedCert

public static X509Certificate generateSelfsignedCert(org.bouncycastle.asn1.pkcs.CertificationRequest csr,
                                                     PrivateKey identityKey)
                                              throws CertificateException

Throws:: CertificateException

generateSelfsignedCert

public static X509Certificate generateSelfsignedCert(org.bouncycastle.asn1.x500.X500Name subjectDn,
                                                     PublicKey pubKey,
                                                     PrivateKey identityKey)
                                              throws CertificateException

Throws:: CertificateException

generateSelfsignedCert

public static X509Certificate generateSelfsignedCert(org.bouncycastle.asn1.x500.X500Name subjectDn,
                                                     org.bouncycastle.asn1.x509.SubjectPublicKeyInfo pubKeyInfo,
                                                     PrivateKey identityKey)
                                              throws CertificateException

Throws:: CertificateException

getCertsFromSignedData

public static List<X509Certificate> getCertsFromSignedData(org.bouncycastle.asn1.cms.SignedData signedData)
                                                    throws CertificateException

The first one is a non-CA certificate if there exists one non-CA certificate.

Throws:: CertificateException

getCrlFromPkiMessage

public static X509CRL getCrlFromPkiMessage(org.bouncycastle.asn1.cms.SignedData signedData)
                                    throws CRLException

Throws:: CRLException

getSignatureAlgorithm

public static String getSignatureAlgorithm(PrivateKey key,
                                           ScepHashAlgo hashAlgo)

toX509Cert

public static X509Certificate toX509Cert(org.bouncycastle.asn1.x509.Certificate asn1Cert)
                                  throws CertificateException

Throws:: CertificateException

toX509Crl

public static X509CRL toX509Crl(org.bouncycastle.asn1.x509.CertificateList asn1CertList)
                         throws CertificateException,
                                CRLException

Throws:: CertificateException; CRLException

parseCrl

public static X509CRL parseCrl(byte[] encodedCrl)
                        throws CertificateException,
                               CRLException

Throws:: CertificateException; CRLException

parseCrl

public static X509CRL parseCrl(InputStream crlStream)
                        throws CertificateException,
                               CRLException

Throws:: CertificateException; CRLException

parseCert

public static X509Certificate parseCert(byte[] certBytes)
                                 throws CertificateException

Throws:: CertificateException

hasKeyusage

public static boolean hasKeyusage(X509Certificate cert,
                                  KeyUsage usage)

isSelfSigned

public static boolean isSelfSigned(X509Certificate cert)

issues

public static boolean issues(X509Certificate issuerCert,
                             X509Certificate cert)
                      throws CertificateEncodingException

Throws:: CertificateEncodingException

extractDigesetAlgorithmIdentifier

public static org.bouncycastle.asn1.ASN1ObjectIdentifier extractDigesetAlgorithmIdentifier(String sigOid,
                                                                                           byte[] sigParams)
                                                                                    throws NoSuchAlgorithmException

Throws:: NoSuchAlgorithmException

getFirstAttrValue

public static org.bouncycastle.asn1.ASN1Encodable getFirstAttrValue(org.bouncycastle.asn1.cms.AttributeTable attrs,
                                                                    org.bouncycastle.asn1.ASN1ObjectIdentifier type)

read

public static byte[] read(InputStream in)
                   throws IOException

Throws:: IOException

addCmsCertSet

public static void addCmsCertSet(org.bouncycastle.cms.CMSSignedDataGenerator generator,
                                 X509Certificate[] cmsCertSet)
                          throws CertificateEncodingException,
                                 org.bouncycastle.cms.CMSException

Throws:: CertificateEncodingException; org.bouncycastle.cms.CMSException

requireNonNull

public static <T> T requireNonNull(String objName,
                                   T obj)

requireNonBlank

public static String requireNonBlank(String objName,
                                     String obj)

requireNonEmpty

public static <T> Collection<T> requireNonEmpty(String objName,
                                                Collection<T> obj)

Class ScepUtil

Method Summary

Methods inherited from class java.lang.Object

Method Detail

createSubjectPublicKeyInfo

generateRequest

generateRequest

generateSelfsignedCert

generateSelfsignedCert

generateSelfsignedCert

getCertsFromSignedData

getCrlFromPkiMessage

getSignatureAlgorithm

toX509Cert

toX509Crl

parseCrl

parseCrl

parseCert

hasKeyusage

isSelfSigned

issues

extractDigesetAlgorithmIdentifier

getFirstAttrValue

read

addCmsCertSet

requireNonNull

requireNonBlank

requireNonEmpty