All Downloads are FREE. Search and download functionalities are using the official Maven repository.

org.bouncycastle.cert.crmf.CertificateResponse Maven / Gradle / Ivy

Go to download

The Bouncy Castle Java APIs for CMS, PKCS, EAC, TSP, CMP, CRMF, OCSP, and certificate generation. This jar contains APIs for JDK 1.5 to JDK 1.8. The APIs can be used in conjunction with a JCE/JCA provider such as the one provided with the Bouncy Castle Cryptography APIs.

There is a newer version: 1.79
Show newest version
package org.bouncycastle.cert.crmf;

import java.util.Collection;

import org.bouncycastle.asn1.cmp.CMPCertificate;
import org.bouncycastle.asn1.cmp.CertResponse;
import org.bouncycastle.asn1.cmp.CertifiedKeyPair;
import org.bouncycastle.asn1.cms.ContentInfo;
import org.bouncycastle.asn1.pkcs.PKCSObjectIdentifiers;
import org.bouncycastle.cms.CMSEnvelopedData;
import org.bouncycastle.cms.CMSException;
import org.bouncycastle.cms.Recipient;
import org.bouncycastle.cms.RecipientInformation;
import org.bouncycastle.cms.RecipientInformationStore;

/**
 * High level wrapper for the CertResponse CRMF structure.
 */
public class CertificateResponse
{
    private final CertResponse certResponse;

    public CertificateResponse(CertResponse certResponse)
    {

        this.certResponse = certResponse;
    }

    /**
     * Return true if the response contains an encrypted certificate.
     *
     * @return true if certificate in response encrypted, false otherwise.
     */
    public boolean hasEncryptedCertificate()
    {
        return certResponse.getCertifiedKeyPair().getCertOrEncCert().hasEncryptedCertificate();
    }

    /**
     * Return a CMSEnvelopedData representing the encrypted certificate contained in the response.
     *
     * @return a CMEEnvelopedData if an encrypted certificate is present.
     * @throws IllegalStateException if no encrypted certificate is present, or there is an issue with the enveloped data.
     */
    public CMSEnvelopedData getEncryptedCertificate()
        throws CMSException
    {
        if (!hasEncryptedCertificate())
        {
            throw new IllegalStateException("encrypted certificate asked for, none found");
        }

        CertifiedKeyPair receivedKeyPair = certResponse.getCertifiedKeyPair();

        CMSEnvelopedData envelopedData = new CMSEnvelopedData(
            new ContentInfo(PKCSObjectIdentifiers.envelopedData, receivedKeyPair.getCertOrEncCert().getEncryptedCert().getValue()));

        if (envelopedData.getRecipientInfos().size() != 1)
        {
            throw new IllegalStateException("data encrypted for more than one recipient");
        }

        return envelopedData;
    }

    /**
     * Return the CMPCertificate representing the plaintext certificate in the response.
     *
     * @return a CMPCertificate if a plaintext certificate is present.
     * @throws IllegalStateException if no plaintext certificate is present.
     */
    public CMPCertificate getCertificate(Recipient recipient)
        throws CMSException
    {
       CMSEnvelopedData encryptedCert = getEncryptedCertificate();

        RecipientInformationStore recipients = encryptedCert.getRecipientInfos();

        Collection c = recipients.getRecipients();

        RecipientInformation recInfo = (RecipientInformation)c.iterator().next();

        return CMPCertificate.getInstance(recInfo.getContent(recipient));
    }

    /**
     * Return the CMPCertificate representing the plaintext certificate in the response.
     *
     * @return a CMPCertificate if a plaintext certificate is present.
     * @throws IllegalStateException if no plaintext certificate is present.
     */
    public CMPCertificate getCertificate()
        throws CMSException
    {
        if (hasEncryptedCertificate())
        {
            throw new IllegalStateException("plaintext certificate asked for, none found");
        }

        return certResponse.getCertifiedKeyPair().getCertOrEncCert().getCertificate();
    }

    /**
     * Return this object's underlying ASN.1 structure.
     *
     * @return a CertResponse
     */
    public CertResponse toASN1Structure()
    {
        return certResponse;
    }
}




© 2015 - 2025 Weber Informatics LLC | Privacy Policy