sun.security.x509

Class IssuingDistributionPointExtension

java.lang.Object

sun.security.x509.Extension

sun.security.x509.IssuingDistributionPointExtension

All Implemented Interfaces:

CertAttrSet<java.lang.String>

public class IssuingDistributionPointExtension
extends Extension
implements CertAttrSet<java.lang.String>

Represents the CRL Issuing Distribution Point Extension (OID = 2.5.29.28).

The issuing distribution point is a critical CRL extension that identifies the CRL distribution point and scope for a particular CRL, and it indicates whether the CRL covers revocation for end entity certificates only, CA certificates only, attribute certificates only, or a limited set of reason codes.

The extension is defined in Section 5.2.5 of Internet X.509 PKI Certific ate and Certificate Revocation List (CRL) Profile.

Its ASN.1 definition is as follows:

     id-ce-issuingDistributionPoint OBJECT IDENTIFIER ::= { id-ce 28 }

     issuingDistributionPoint ::= SEQUENCE {
          distributionPoint          [0] DistributionPointName OPTIONAL,
          onlyContainsUserCerts      [1] BOOLEAN DEFAULT FALSE,
          onlyContainsCACerts        [2] BOOLEAN DEFAULT FALSE,
          onlySomeReasons            [3] ReasonFlags OPTIONAL,
          indirectCRL                [4] BOOLEAN DEFAULT FALSE,
          onlyContainsAttributeCerts [5] BOOLEAN DEFAULT FALSE }
 

Since:

1.6

See Also:

DistributionPoint

Field Summary

Fields

Modifier and Type	Field and Description
static java.lang.String	IDENT Identifier for this attribute, to be used with the get, set, delete methods of Certificate, x509 type.
static java.lang.String	INDIRECT_CRL
static java.lang.String	NAME Attribute names.
static java.lang.String	ONLY_ATTRIBUTE_CERTS
static java.lang.String	ONLY_CA_CERTS
static java.lang.String	ONLY_USER_CERTS
static java.lang.String	POINT
static java.lang.String	REASONS

Fields inherited from class sun.security.x509.Extension

critical, extensionId, extensionValue

Constructor Summary

Constructors

Constructor and Description
IssuingDistributionPointExtension(java.lang.Boolean critical, java.lang.Object value) Creates a critical IssuingDistributionPointExtension from its DER-encoding.
IssuingDistributionPointExtension(DistributionPointName distributionPoint, ReasonFlags revocationReasons, boolean hasOnlyUserCerts, boolean hasOnlyCACerts, boolean hasOnlyAttributeCerts, boolean isIndirectCRL) Creates a critical IssuingDistributionPointExtension.

Method Summary

Methods

Modifier and Type	Method and Description
void	delete(java.lang.String name) Deletes the attribute value.
void	encode(java.io.OutputStream out) Encodes the issuing distribution point extension and writes it to the DerOutputStream.
java.lang.Object	get(java.lang.String name) Gets the attribute value.
java.util.Enumeration<java.lang.String>	getElements() Returns an enumeration of names of attributes existing within this attribute.
java.lang.String	getName() Returns the name of this attribute.
void	set(java.lang.String name, java.lang.Object obj) Sets the attribute value.
java.lang.String	toString() Returns the extension as user readable string.

Methods inherited from class sun.security.x509.Extension

encode, equals, getExtensionId, getExtensionValue, hashCode, isCritical

Methods inherited from class java.lang.Object

clone, finalize, getClass, notify, notifyAll, wait, wait, wait

Field Detail

IDENT

public static final java.lang.String IDENT

Identifier for this attribute, to be used with the get, set, delete methods of Certificate, x509 type.

See Also:

Constant Field Values

NAME

public static final java.lang.String NAME

Attribute names.

See Also:

Constant Field Values

POINT

public static final java.lang.String POINT

See Also:

Constant Field Values

REASONS

public static final java.lang.String REASONS

See Also:

Constant Field Values

ONLY_USER_CERTS

public static final java.lang.String ONLY_USER_CERTS

See Also:

Constant Field Values

ONLY_CA_CERTS

public static final java.lang.String ONLY_CA_CERTS

See Also:

Constant Field Values

ONLY_ATTRIBUTE_CERTS

public static final java.lang.String ONLY_ATTRIBUTE_CERTS

See Also:

Constant Field Values

INDIRECT_CRL

public static final java.lang.String INDIRECT_CRL

See Also:

Constant Field Values

Constructor Detail

IssuingDistributionPointExtension

public IssuingDistributionPointExtension(DistributionPointName distributionPoint,
                                 ReasonFlags revocationReasons,
                                 boolean hasOnlyUserCerts,
                                 boolean hasOnlyCACerts,
                                 boolean hasOnlyAttributeCerts,
                                 boolean isIndirectCRL)
                                  throws java.io.IOException

Creates a critical IssuingDistributionPointExtension.

Parameters:

distributionPoint - the name of the distribution point, or null for none.

revocationReasons - the revocation reasons associated with the distribution point, or null for none.

hasOnlyUserCerts - if true then scope of the CRL includes only user certificates.

hasOnlyCACerts - if true then scope of the CRL includes only CA certificates.

hasOnlyAttributeCerts - if true then scope of the CRL includes only attribute certificates.

isIndirectCRL - if true then the scope of the CRL includes certificates issued by authorities other than the CRL issuer. The responsible authority is indicated by a certificate issuer CRL entry extension.

Throws:

java.lang.IllegalArgumentException - if more than one of hasOnlyUserCerts, hasOnlyCACerts, hasOnlyAttributeCerts is set to true.

java.io.IOException - on encoding error.

IssuingDistributionPointExtension

public IssuingDistributionPointExtension(java.lang.Boolean critical,
                                 java.lang.Object value)
                                  throws java.io.IOException

Creates a critical IssuingDistributionPointExtension from its DER-encoding.

Parameters:

critical - true if the extension is to be treated as critical.

value - the DER-encoded value. It must be a byte[].

Throws:

java.io.IOException - on decoding error.

Method Detail

getName

public java.lang.String getName()

Returns the name of this attribute.

Specified by:

getName in interface CertAttrSet<java.lang.String>

Returns:

the name of this CertAttrSet.

encode

public void encode(java.io.OutputStream out)
            throws java.io.IOException

Encodes the issuing distribution point extension and writes it to the DerOutputStream.

Specified by:

encode in interface CertAttrSet<java.lang.String>

Parameters:

out - the output stream.

Throws:

java.io.IOException - on encoding error.

set

public void set(java.lang.String name,
       java.lang.Object obj)
         throws java.io.IOException

Sets the attribute value.

Specified by:

set in interface CertAttrSet<java.lang.String>

Parameters:

name - the name of the attribute (e.g. "x509.info.key")

obj - the attribute object.

Throws:

java.io.IOException - on other errors.

get

public java.lang.Object get(java.lang.String name)
                     throws java.io.IOException

Gets the attribute value.

Specified by:

get in interface CertAttrSet<java.lang.String>

Parameters:

name - the name of the attribute to return.

Throws:

java.io.IOException - on other errors.

delete

public void delete(java.lang.String name)
            throws java.io.IOException

Deletes the attribute value.

Specified by:

delete in interface CertAttrSet<java.lang.String>

Parameters:

name - the name of the attribute to delete.

Throws:

java.io.IOException - on other errors.

getElements

public java.util.Enumeration<java.lang.String> getElements()

Returns an enumeration of names of attributes existing within this attribute.

Specified by:

getElements in interface CertAttrSet<java.lang.String>

Returns:

an enumeration of the attribute names.

toString

public java.lang.String toString()

Returns the extension as user readable string.

Specified by:

toString in interface CertAttrSet<java.lang.String>

Overrides:

toString in class Extension

Returns:

value of this certificate attribute in printable form.