sun.security.x509

Class CRLDistributionPointsExtension

java.lang.Object

sun.security.x509.Extension

sun.security.x509.CRLDistributionPointsExtension

All Implemented Interfaces:

CertAttrSet<java.lang.String>

Direct Known Subclasses:

FreshestCRLExtension

public class CRLDistributionPointsExtension
extends Extension
implements CertAttrSet<java.lang.String>

Represent the CRL Distribution Points Extension (OID = 2.5.29.31).

The CRL distribution points extension identifies how CRL information is obtained. The extension SHOULD be non-critical, but the PKIX profile recommends support for this extension by CAs and applications.

For PKIX, if the cRLDistributionPoints extension contains a DistributionPointName of type URI, the following semantics MUST be assumed: the URI is a pointer to the current CRL for the associated reasons and will be issued by the associated cRLIssuer. The expected values for the URI conform to the following rules. The name MUST be a non-relative URL, and MUST follow the URL syntax and encoding rules specified in [RFC 1738]. The name must include both a scheme (e.g., "http" or "ftp") and a scheme-specific-part. The scheme- specific-part must include a fully qualified domain name or IP address as the host. As specified in [RFC 1738], the scheme name is not case-sensitive (e.g., "http" is equivalent to "HTTP"). The host part is also not case-sensitive, but other components of the scheme-specific-part may be case-sensitive. When comparing URIs, conforming implementations MUST compare the scheme and host without regard to case, but assume the remainder of the scheme-specific-part is case sensitive. Processing rules for other values are not defined by this specification. If the distributionPoint omits reasons, the CRL MUST include revocations for all reasons. If the distributionPoint omits cRLIssuer, the CRL MUST be issued by the CA that issued the certificate.

The ASN.1 definition for this is:

 id-ce-cRLDistributionPoints OBJECT IDENTIFIER ::=  { id-ce 31 }

 cRLDistributionPoints ::= {
      CRLDistPointsSyntax }

 CRLDistPointsSyntax ::= SEQUENCE SIZE (1..MAX) OF DistributionPoint
 

Since:

1.4.2

Author:

Anne Anderson, Andreas Sterbenz

See Also:

DistributionPoint, Extension, CertAttrSet

Field Summary

Fields

Modifier and Type	Field and Description
static java.lang.String	IDENT Identifier for this attribute, to be used with the get, set, delete methods of Certificate, x509 type.
static java.lang.String	NAME Attribute name.
static java.lang.String	POINTS

Fields inherited from class sun.security.x509.Extension

critical, extensionId, extensionValue

Constructor Summary

Constructors

Modifier	Constructor and Description
	CRLDistributionPointsExtension(boolean isCritical, java.util.List<DistributionPoint> distributionPoints) Create a CRLDistributionPointsExtension from a List of DistributionPoint.
	CRLDistributionPointsExtension(java.lang.Boolean critical, java.lang.Object value) Create the extension from the passed DER encoded value of the same.
	CRLDistributionPointsExtension(java.util.List<DistributionPoint> distributionPoints) Create a CRLDistributionPointsExtension from a List of DistributionPoint; the criticality is set to false.
protected	CRLDistributionPointsExtension(ObjectIdentifier extensionId, boolean isCritical, java.util.List<DistributionPoint> distributionPoints, java.lang.String extensionName) Creates the extension (also called by the subclass).
protected	CRLDistributionPointsExtension(ObjectIdentifier extensionId, java.lang.Boolean critical, java.lang.Object value, java.lang.String extensionName) Creates the extension (also called by the subclass).

Method Summary

Methods

Modifier and Type	Method and Description
void	delete(java.lang.String name) Delete the attribute value.
void	encode(java.io.OutputStream out) Write the extension to the DerOutputStream.
protected void	encode(java.io.OutputStream out, ObjectIdentifier extensionId, boolean isCritical) Write the extension to the DerOutputStream.
java.lang.Object	get(java.lang.String name) Get the attribute value.
java.util.Enumeration<java.lang.String>	getElements() Return an enumeration of names of attributes existing within this attribute.
java.lang.String	getName() Return the name of this attribute.
void	set(java.lang.String name, java.lang.Object obj) Set the attribute value.
java.lang.String	toString() Return the extension as user readable string.

Methods inherited from class sun.security.x509.Extension

encode, equals, getExtensionId, getExtensionValue, hashCode, isCritical

Methods inherited from class java.lang.Object

clone, finalize, getClass, notify, notifyAll, wait, wait, wait

Field Detail

IDENT

public static final java.lang.String IDENT

Identifier for this attribute, to be used with the get, set, delete methods of Certificate, x509 type.

See Also:

Constant Field Values

NAME

public static final java.lang.String NAME

Attribute name.

See Also:

Constant Field Values

POINTS

public static final java.lang.String POINTS

See Also:

Constant Field Values

Constructor Detail

CRLDistributionPointsExtension

public CRLDistributionPointsExtension(java.util.List<DistributionPoint> distributionPoints)
                               throws java.io.IOException

Create a CRLDistributionPointsExtension from a List of DistributionPoint; the criticality is set to false.

Parameters:

distributionPoints - the list of distribution points

Throws:

java.io.IOException - on error

CRLDistributionPointsExtension

public CRLDistributionPointsExtension(boolean isCritical,
                              java.util.List<DistributionPoint> distributionPoints)
                               throws java.io.IOException

Create a CRLDistributionPointsExtension from a List of DistributionPoint.

Parameters:

isCritical - the criticality setting.

distributionPoints - the list of distribution points

Throws:

java.io.IOException - on error

CRLDistributionPointsExtension

protected CRLDistributionPointsExtension(ObjectIdentifier extensionId,
                              boolean isCritical,
                              java.util.List<DistributionPoint> distributionPoints,
                              java.lang.String extensionName)
                                  throws java.io.IOException

Creates the extension (also called by the subclass).

Throws:

java.io.IOException

CRLDistributionPointsExtension

public CRLDistributionPointsExtension(java.lang.Boolean critical,
                              java.lang.Object value)
                               throws java.io.IOException

Create the extension from the passed DER encoded value of the same.

Parameters:

critical - true if the extension is to be treated as critical.

value - Array of DER encoded bytes of the actual value.

Throws:

java.io.IOException - on error.

CRLDistributionPointsExtension

protected CRLDistributionPointsExtension(ObjectIdentifier extensionId,
                              java.lang.Boolean critical,
                              java.lang.Object value,
                              java.lang.String extensionName)
                                  throws java.io.IOException

Creates the extension (also called by the subclass).

Throws:

java.io.IOException

Method Detail

getName

public java.lang.String getName()

Return the name of this attribute.

Specified by:

getName in interface CertAttrSet<java.lang.String>

Returns:

the name of this CertAttrSet.

encode

public void encode(java.io.OutputStream out)
            throws java.io.IOException

Write the extension to the DerOutputStream.

Specified by:

encode in interface CertAttrSet<java.lang.String>

Parameters:

out - the DerOutputStream to write the extension to.

Throws:

java.io.IOException - on encoding errors.

encode

protected void encode(java.io.OutputStream out,
          ObjectIdentifier extensionId,
          boolean isCritical)
               throws java.io.IOException

Write the extension to the DerOutputStream. (Also called by the subclass)

Throws:

java.io.IOException

set

public void set(java.lang.String name,
       java.lang.Object obj)
         throws java.io.IOException

Set the attribute value.

Specified by:

set in interface CertAttrSet<java.lang.String>

Parameters:

name - the name of the attribute (e.g. "x509.info.key")

obj - the attribute object.

Throws:

java.io.IOException - on other errors.

get

public java.lang.Object get(java.lang.String name)
                     throws java.io.IOException

Get the attribute value.

Specified by:

get in interface CertAttrSet<java.lang.String>

Parameters:

name - the name of the attribute to return.

Throws:

java.io.IOException - on other errors.

delete

public void delete(java.lang.String name)
            throws java.io.IOException

Delete the attribute value.

Specified by:

delete in interface CertAttrSet<java.lang.String>

Parameters:

name - the name of the attribute to delete.

Throws:

java.io.IOException - on other errors.

getElements

public java.util.Enumeration<java.lang.String> getElements()

Return an enumeration of names of attributes existing within this attribute.

Specified by:

getElements in interface CertAttrSet<java.lang.String>

Returns:

an enumeration of the attribute names.

toString

public java.lang.String toString()

Return the extension as user readable string.

Specified by:

toString in interface CertAttrSet<java.lang.String>

Overrides:

toString in class Extension

Returns:

value of this certificate attribute in printable form.