org.bouncycastle.x509

Class X509V2CRLGenerator

public class X509V2CRLGenerator extends Object

class to produce an X.509 Version 2 CRL.
Constructor Summary
X509V2CRLGenerator()
Method Summary
voidaddCRL(X509CRL other)
Add the CRLEntry objects contained in a previous CRL.
voidaddCRLEntry(BigInteger userCertificate, Date revocationDate, int reason)
Reason being as indicated by ReasonFlags, i.e.
voidaddCRLEntry(BigInteger userCertificate, Date revocationDate, int reason, Date invalidityDate)
Add a CRL entry with an Invalidity Date extension as well as a CRLReason extension.
voidaddCRLEntry(BigInteger userCertificate, Date revocationDate, X509Extensions extensions)
Add a CRL entry with extensions.
voidaddExtension(String oid, boolean critical, DEREncodable value)
add a given extension field for the standard extensions tag (tag 0)
voidaddExtension(DERObjectIdentifier oid, boolean critical, DEREncodable value)
add a given extension field for the standard extensions tag (tag 0)
voidaddExtension(String oid, boolean critical, byte[] value)
add a given extension field for the standard extensions tag (tag 0)
voidaddExtension(DERObjectIdentifier oid, boolean critical, byte[] value)
add a given extension field for the standard extensions tag (tag 0)
X509CRLgenerate(PrivateKey key)
generate an X509 CRL, based on the current issuer and subject using the default provider.
X509CRLgenerate(PrivateKey key, SecureRandom random)
generate an X509 CRL, based on the current issuer and subject using the default provider and an user defined SecureRandom object as source of randomness.
X509CRLgenerate(PrivateKey key, String provider)
generate an X509 certificate, based on the current issuer and subject using the passed in provider for the signing.
X509CRLgenerate(PrivateKey key, String provider, SecureRandom random)
generate an X509 CRL, based on the current issuer and subject, using the passed in provider for the signing.
X509CRLgenerateX509CRL(PrivateKey key)
generate an X509 CRL, based on the current issuer and subject using the default provider "BC".
X509CRLgenerateX509CRL(PrivateKey key, SecureRandom random)
generate an X509 CRL, based on the current issuer and subject using the default provider "BC" and an user defined SecureRandom object as source of randomness.
X509CRLgenerateX509CRL(PrivateKey key, String provider)
generate an X509 certificate, based on the current issuer and subject using the passed in provider for the signing.
X509CRLgenerateX509CRL(PrivateKey key, String provider, SecureRandom random)
generate an X509 CRL, based on the current issuer and subject, using the passed in provider for the signing.
IteratorgetSignatureAlgNames()
Return an iterator of the signature names supported by the generator.
voidreset()
reset the generator
voidsetIssuerDN(X500Principal issuer)
Set the issuer distinguished name - the issuer is the entity whose private key is used to sign the certificate.
voidsetIssuerDN(X509Name issuer)
Set the issuer distinguished name - the issuer is the entity whose private key is used to sign the certificate.
voidsetNextUpdate(Date date)
voidsetSignatureAlgorithm(String signatureAlgorithm)
Set the signature algorithm.
voidsetThisUpdate(Date date)

Constructor Detail

X509V2CRLGenerator

public X509V2CRLGenerator()

Method Detail

addCRL

public void addCRL(X509CRL other)
Add the CRLEntry objects contained in a previous CRL.

Parameters: other the X509CRL to source the other entries from.

addCRLEntry

public void addCRLEntry(BigInteger userCertificate, Date revocationDate, int reason)
Reason being as indicated by ReasonFlags, i.e. ReasonFlags.keyCompromise or 0 if ReasonFlags are not to be used

addCRLEntry

public void addCRLEntry(BigInteger userCertificate, Date revocationDate, int reason, Date invalidityDate)
Add a CRL entry with an Invalidity Date extension as well as a CRLReason extension. Reason being as indicated by ReasonFlags, i.e. ReasonFlags.keyCompromise or 0 if ReasonFlags are not to be used

addCRLEntry

public void addCRLEntry(BigInteger userCertificate, Date revocationDate, X509Extensions extensions)
Add a CRL entry with extensions.

addExtension

public void addExtension(String oid, boolean critical, DEREncodable value)
add a given extension field for the standard extensions tag (tag 0)

addExtension

public void addExtension(DERObjectIdentifier oid, boolean critical, DEREncodable value)
add a given extension field for the standard extensions tag (tag 0)

addExtension

public void addExtension(String oid, boolean critical, byte[] value)
add a given extension field for the standard extensions tag (tag 0)

addExtension

public void addExtension(DERObjectIdentifier oid, boolean critical, byte[] value)
add a given extension field for the standard extensions tag (tag 0)

generate

public X509CRL generate(PrivateKey key)
generate an X509 CRL, based on the current issuer and subject using the default provider.

Note: this differs from the deprecated method in that the default provider is used - not "BC".

generate

public X509CRL generate(PrivateKey key, SecureRandom random)
generate an X509 CRL, based on the current issuer and subject using the default provider and an user defined SecureRandom object as source of randomness.

Note: this differs from the deprecated method in that the default provider is used - not "BC".

generate

public X509CRL generate(PrivateKey key, String provider)
generate an X509 certificate, based on the current issuer and subject using the passed in provider for the signing.

generate

public X509CRL generate(PrivateKey key, String provider, SecureRandom random)
generate an X509 CRL, based on the current issuer and subject, using the passed in provider for the signing.

generateX509CRL

public X509CRL generateX509CRL(PrivateKey key)

Deprecated: use generate(key, "BC")

generate an X509 CRL, based on the current issuer and subject using the default provider "BC".

generateX509CRL

public X509CRL generateX509CRL(PrivateKey key, SecureRandom random)

Deprecated: use generate(key, random, "BC")

generate an X509 CRL, based on the current issuer and subject using the default provider "BC" and an user defined SecureRandom object as source of randomness.

generateX509CRL

public X509CRL generateX509CRL(PrivateKey key, String provider)

Deprecated: use generate()

generate an X509 certificate, based on the current issuer and subject using the passed in provider for the signing.

generateX509CRL

public X509CRL generateX509CRL(PrivateKey key, String provider, SecureRandom random)

Deprecated: use generate()

generate an X509 CRL, based on the current issuer and subject, using the passed in provider for the signing.

getSignatureAlgNames

public Iterator getSignatureAlgNames()
Return an iterator of the signature names supported by the generator.

Returns: an iterator containing recognised names.

reset

public void reset()
reset the generator

setIssuerDN

public void setIssuerDN(X500Principal issuer)
Set the issuer distinguished name - the issuer is the entity whose private key is used to sign the certificate.

setIssuerDN

public void setIssuerDN(X509Name issuer)
Set the issuer distinguished name - the issuer is the entity whose private key is used to sign the certificate.

setNextUpdate

public void setNextUpdate(Date date)

setSignatureAlgorithm

public void setSignatureAlgorithm(String signatureAlgorithm)
Set the signature algorithm. This can be either a name or an OID, names are treated as case insensitive.

Parameters: signatureAlgorithm string representation of the algorithm name.

setThisUpdate

public void setThisUpdate(Date date)