You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
106 lines
3.1 KiB
106 lines
3.1 KiB
#if !BESTHTTP_DISABLE_ALTERNATE_SSL && (!UNITY_WEBGL || UNITY_EDITOR) |
|
#pragma warning disable |
|
using System; |
|
|
|
using BestHTTP.SecureProtocol.Org.BouncyCastle.Asn1; |
|
using BestHTTP.SecureProtocol.Org.BouncyCastle.Asn1.X509; |
|
using BestHTTP.SecureProtocol.Org.BouncyCastle.Crypto; |
|
using BestHTTP.SecureProtocol.Org.BouncyCastle.Security; |
|
using BestHTTP.SecureProtocol.Org.BouncyCastle.Security.Certificates; |
|
|
|
namespace BestHTTP.SecureProtocol.Org.BouncyCastle.X509.Extension |
|
{ |
|
/// <remarks>A high level authority key identifier.</remarks> |
|
public class AuthorityKeyIdentifierStructure |
|
: AuthorityKeyIdentifier |
|
{ |
|
/** |
|
* Constructor which will take the byte[] returned from getExtensionValue() |
|
* |
|
* @param encodedValue a DER octet encoded string with the extension structure in it. |
|
* @throws IOException on parsing errors. |
|
*/ |
|
// TODO Add a functional constructor from byte[]? |
|
public AuthorityKeyIdentifierStructure( |
|
Asn1OctetString encodedValue) |
|
: base((Asn1Sequence) X509ExtensionUtilities.FromExtensionValue(encodedValue)) |
|
{ |
|
} |
|
|
|
private static Asn1Sequence FromCertificate( |
|
X509Certificate certificate) |
|
{ |
|
try |
|
{ |
|
GeneralName genName = new GeneralName( |
|
PrincipalUtilities.GetIssuerX509Principal(certificate)); |
|
|
|
if (certificate.Version == 3) |
|
{ |
|
Asn1OctetString ext = certificate.GetExtensionValue(X509Extensions.SubjectKeyIdentifier); |
|
|
|
if (ext != null) |
|
{ |
|
Asn1OctetString str = (Asn1OctetString) X509ExtensionUtilities.FromExtensionValue(ext); |
|
|
|
return (Asn1Sequence) new AuthorityKeyIdentifier( |
|
str.GetOctets(), new GeneralNames(genName), certificate.SerialNumber).ToAsn1Object(); |
|
} |
|
} |
|
|
|
SubjectPublicKeyInfo info = SubjectPublicKeyInfoFactory.CreateSubjectPublicKeyInfo( |
|
certificate.GetPublicKey()); |
|
|
|
return (Asn1Sequence) new AuthorityKeyIdentifier( |
|
info, new GeneralNames(genName), certificate.SerialNumber).ToAsn1Object(); |
|
} |
|
catch (Exception e) |
|
{ |
|
throw new CertificateParsingException("Exception extracting certificate details", e); |
|
} |
|
} |
|
|
|
private static Asn1Sequence FromKey( |
|
AsymmetricKeyParameter pubKey) |
|
{ |
|
try |
|
{ |
|
SubjectPublicKeyInfo info = SubjectPublicKeyInfoFactory.CreateSubjectPublicKeyInfo(pubKey); |
|
|
|
return (Asn1Sequence) new AuthorityKeyIdentifier(info).ToAsn1Object(); |
|
} |
|
catch (Exception e) |
|
{ |
|
throw new InvalidKeyException("can't process key: " + e); |
|
} |
|
} |
|
|
|
/** |
|
* Create an AuthorityKeyIdentifier using the passed in certificate's public |
|
* key, issuer and serial number. |
|
* |
|
* @param certificate the certificate providing the information. |
|
* @throws CertificateParsingException if there is a problem processing the certificate |
|
*/ |
|
public AuthorityKeyIdentifierStructure( |
|
X509Certificate certificate) |
|
: base(FromCertificate(certificate)) |
|
{ |
|
} |
|
|
|
/** |
|
* Create an AuthorityKeyIdentifier using just the hash of the |
|
* public key. |
|
* |
|
* @param pubKey the key to generate the hash from. |
|
* @throws InvalidKeyException if there is a problem using the key. |
|
*/ |
|
public AuthorityKeyIdentifierStructure( |
|
AsymmetricKeyParameter pubKey) |
|
: base(FromKey(pubKey)) |
|
{ |
|
} |
|
} |
|
} |
|
#pragma warning restore |
|
#endif
|
|
|