protected void checkRevocation(PKIXParameters paramsPKIX, X509Certificate cert, Date validDate, X509Certificate sign, PublicKey workingPublicKey, Vector crlDistPointUrls, Vector ocspUrls, int index) throws CertPathReviewerException { checkCRLs(paramsPKIX, cert, validDate, sign, workingPublicKey, crlDistPointUrls, index); }
addNotification(msg); Collection trustColl = getTrustAnchors(cert,pkixParams.getTrustAnchors()); if (trustColl.size() > 1) new Object[]{Integers.valueOf(trustColl.size()), new UntrustedInput(cert.getIssuerX500Principal())}); addError(msg); new Object[]{new UntrustedInput(cert.getIssuerX500Principal()), Integers.valueOf(pkixParams.getTrustAnchors().size())}); addError(msg); addError(msg); addError(cpre.getErrorMessage()); "CertPathReviewer.unknown", new Object[] {new UntrustedInput(t.getMessage()), new UntrustedInput(t)}); addError(msg); trustPrincipal = getSubjectPrincipal(sign); addError(msg); addNotification(msg); workingAlgId = getAlgorithmIdentifier(workingPublicKey); workingPublicKeyAlgorithm = workingAlgId.getAlgorithm();
certPolicies = (ASN1Sequence) getExtensionValue( cert, CERTIFICATE_POLICIES); pq = getQualifierSet(pInfo.getPolicyQualifiers()); boolean match = processCertD1i(i, policyNodes, pOid, pq); processCertD1ii(i, policyNodes, pOid, pq); if ((inhibitAnyPolicy > 0) || ((i < n) && isSelfIssued(cert))) _apq = getQualifierSet(pInfo.getPolicyQualifiers()); validPolicyTree = removePolicyNode( validPolicyTree, policyNodes, node); if (validPolicyTree == null) pm = getExtensionValue(cert, POLICY_MAPPINGS); prepareNextCertB1(i,policyNodes,id_p,m_idp,cert); validPolicyTree = prepareNextCertB2(i,policyNodes,id_p,validPolicyTree); if (!isSelfIssued(cert)) ASN1Sequence pc = (ASN1Sequence) getExtensionValue(cert,POLICY_CONSTRAINTS); if (pc != null) ASN1Integer iap = (ASN1Integer)getExtensionValue(cert, INHIBIT_ANY_POLICY);
crlselect.addIssuerName(getEncodedIssuerPrincipal(cert).getEncoded()); new UntrustedInput(nonMatchingCrlNames), Integers.valueOf(numbOfCrls)}); addNotification(msg,index); addError(msg,index); crl_iter = new ArrayList().iterator(); "CertPathReviewer.localValidCRL", new Object[] {new TrustedInput(crl.getThisUpdate()), new TrustedInput(crl.getNextUpdate())}); addNotification(msg,index); break; "CertPathReviewer.localInvalidCRL", new Object[] {new TrustedInput(crl.getThisUpdate()), new TrustedInput(crl.getNextUpdate())}); addNotification(msg,index); onlineCRL = getCRL(location); if (onlineCRL != null) new UntrustedInput(cert.getIssuerX500Principal().getName()), new UntrustedUrlInput(location)}); addNotification(msg,index); continue; new TrustedInput(onlineCRL.getNextUpdate()), new UntrustedUrlInput(location)}); addNotification(msg,index);
if (!isSelfIssued(cert)) addError(msg); try bc = BasicConstraints.getInstance(getExtensionValue(cert, BASIC_CONSTRAINTS)); addError(msg,index); bc = null; new Object[]{Integers.valueOf(totalPathLength)}); addNotification(msg);
if (!isSelfIssued(cert)) X500Principal principal = getSubjectPrincipal(cert); ASN1InputStream aIn = new ASN1InputStream(new ByteArrayInputStream(principal.getEncoded())); ASN1Sequence dns; try altName = (ASN1Sequence)getExtensionValue(cert, SUBJECT_ALTERNATIVE_NAME); try ncSeq = (ASN1Sequence)getExtensionValue(cert, NAME_CONSTRAINTS); addError(cpre.getErrorMessage(),cpre.getIndex());
ASN1Sequence qcSt = (ASN1Sequence) getExtensionValue(cert,QC_STATEMENT); for (int j = 0; j < qcSt.size(); j++) addNotification(msg,index); addNotification(msg,index); limit}); addNotification(msg,index); addNotification(msg,index); unknownStatement = true; addError(msg,index);
if (processQcStatements(cert,index)) addError(msg, index); addError(cpre.getErrorMessage(),cpre.getIndex());
proxyParams.addCertPathChecker(new PKIXProxyCertificateChecker()); proxyParams.setRevocationEnabled(false); proxyReviewer = new PKIXCertPathReviewer(proxyCertPath, proxyParams); } catch (InvalidAlgorithmParameterException e1) errors.addAll(convertErrors(proxyReviewer.getErrors(), true, 0, proxyChain)); unresolvedExtensions.addAll(getUnresolvedExtensionons(proxyReviewer.getErrors()));