← Back to branch summary

~brian-thomason/+junk/bouncycastle

« back to all changes in this revision

Viewing changes to test/jdk1.3/org/bouncycastle/jce/provider/test/CertPathBuilderTest.java

  • Committer: Brian Thomason
  • Date: 2011-12-20 17:20:32 UTC
  • Revision ID: brian.thomason@canonical.com-20111220172032-rdtm13jgdxtksacr
Initial import

Show diffs side-by-side

added added

removed removed

Lines of Context:
test/jdk1.3/org/bouncycastle/jce/provider/test/CertPathBuilderTest.java
 
1
package org.bouncycastle.jce.provider.test;
 
2
 
 
3
import java.io.ByteArrayInputStream;
 
4
import java.math.BigInteger;
 
5
import java.security.KeyPair;
 
6
import java.security.Security;
 
7
import org.bouncycastle.jce.cert.CertPath;
 
8
import org.bouncycastle.jce.cert.CertPathBuilder;
 
9
import org.bouncycastle.jce.cert.CertStore;
 
10
import org.bouncycastle.jce.cert.CertificateFactory;
 
11
import org.bouncycastle.jce.cert.CollectionCertStoreParameters;
 
12
import org.bouncycastle.jce.cert.PKIXBuilderParameters;
 
13
import org.bouncycastle.jce.cert.PKIXCertPathBuilderResult;
 
14
import org.bouncycastle.jce.cert.TrustAnchor;
 
15
import java.security.cert.X509CRL;
 
16
import org.bouncycastle.jce.cert.X509CertSelector;
 
17
import java.security.cert.X509Certificate;
 
18
import java.util.ArrayList;
 
19
import java.util.Calendar;
 
20
import java.util.Collections;
 
21
import java.util.Date;
 
22
import java.util.HashSet;
 
23
import java.util.List;
 
24
import java.util.Set;
 
25
 
 
26
import org.bouncycastle.jce.PrincipalUtil;
 
27
import org.bouncycastle.jce.provider.BouncyCastleProvider;
 
28
import org.bouncycastle.util.test.SimpleTestResult;
 
29
import org.bouncycastle.util.test.Test;
 
30
import org.bouncycastle.util.test.TestResult;
 
31
 
 
32
public class CertPathBuilderTest
 
33
    implements Test
 
34
{
 
35
 
 
36
    public TestResult baseTest()
 
37
    {
 
38
        try
 
39
        {
 
40
            CertificateFactory cf = CertificateFactory.getInstance("X.509", "BC");
 
41
 
 
42
                // initialise CertStore
 
43
            X509Certificate rootCert = (X509Certificate)cf.generateCertificate(new ByteArrayInputStream(CertPathTest.rootCertBin));
 
44
            X509Certificate interCert = (X509Certificate)cf.generateCertificate(new ByteArrayInputStream(CertPathTest.interCertBin));
 
45
            X509Certificate finalCert = (X509Certificate)cf.generateCertificate(new ByteArrayInputStream(CertPathTest.finalCertBin));
 
46
            X509CRL rootCrl = (X509CRL)cf.generateCRL(new ByteArrayInputStream(CertPathTest.rootCrlBin));
 
47
            X509CRL interCrl = (X509CRL)cf.generateCRL(new ByteArrayInputStream(CertPathTest.interCrlBin));
 
48
            List list = new ArrayList();
 
49
            list.add(rootCert);
 
50
            list.add(interCert);
 
51
            list.add(finalCert);
 
52
            list.add(rootCrl);
 
53
            list.add(interCrl);
 
54
            CollectionCertStoreParameters ccsp = new CollectionCertStoreParameters(list);
 
55
            CertStore store = CertStore.getInstance("Collection", ccsp, "BC");
 
56
            Calendar validDate = Calendar.getInstance();
 
57
            validDate.set(2002,2,21,2,21,10);
 
58
 
 
59
                //Searching for rootCert by subjectDN without CRL
 
60
            Set trust = new HashSet();
 
61
            trust.add(new TrustAnchor(rootCert, null));
 
62
 
 
63
            CertPathBuilder cpb = CertPathBuilder.getInstance("PKIX","BC");
 
64
            X509CertSelector targetConstraints = new X509CertSelector();
 
65
            targetConstraints.setSubject(PrincipalUtil.getSubjectX509Principal(finalCert).getEncoded());
 
66
            PKIXBuilderParameters params = new PKIXBuilderParameters(trust, targetConstraints);
 
67
            params.addCertStore(store);
 
68
            params.setDate(validDate.getTime());
 
69
            PKIXCertPathBuilderResult result = (PKIXCertPathBuilderResult) cpb.build(params);
 
70
            CertPath                  path = result.getCertPath();
 
71
            
 
72
            if (path.getCertificates().size() != 2)
 
73
            {
 
74
                return new SimpleTestResult(false, this.getName() + ": wrong number of certs in baseTest path");
 
75
            }
 
76
        }
 
77
        catch (Exception e)
 
78
        {
 
79
            return new SimpleTestResult(false, this.getName() + ": exception - " + e.toString(), e);
 
80
        }
 
81
 
 
82
        return new SimpleTestResult(true, this.getName() + ": Okay");
 
83
    }
 
84
 
 
85
    public TestResult v0Test()
 
86
    {
 
87
        try
 
88
        {
 
89
            // create certificates and CRLs
 
90
            KeyPair         rootPair = TestUtils.generateRSAKeyPair();
 
91
            KeyPair         interPair = TestUtils.generateRSAKeyPair();
 
92
            KeyPair         endPair = TestUtils.generateRSAKeyPair();
 
93
            
 
94
            X509Certificate rootCert = TestUtils.generateRootCert(rootPair);
 
95
            X509Certificate interCert = TestUtils.generateIntermediateCert(interPair.getPublic(), rootPair.getPrivate(), rootCert);
 
96
            X509Certificate endCert = TestUtils.generateEndEntityCert(endPair.getPublic(), interPair.getPrivate(), interCert);
 
97
            
 
98
            BigInteger      revokedSerialNumber = BigInteger.valueOf(2);
 
99
            X509CRL         rootCRL = TestUtils.createCRL(rootCert, rootPair.getPrivate(), revokedSerialNumber);
 
100
            X509CRL         interCRL = TestUtils.createCRL(interCert, interPair.getPrivate(), revokedSerialNumber);
 
101
            
 
102
            // create CertStore to support path building
 
103
            List list = new ArrayList();
 
104
            
 
105
            list.add(rootCert);
 
106
            list.add(interCert);
 
107
            list.add(endCert);
 
108
            list.add(rootCRL);
 
109
            list.add(interCRL);
 
110
            
 
111
            CollectionCertStoreParameters params = new CollectionCertStoreParameters(list);
 
112
            CertStore                     store = CertStore.getInstance("Collection", params);
 
113
    
 
114
            // build the path
 
115
            CertPathBuilder  builder = CertPathBuilder.getInstance("PKIX", "BC");
 
116
            X509CertSelector pathConstraints = new X509CertSelector();
 
117
            
 
118
            pathConstraints.setSubject(PrincipalUtil.getSubjectX509Principal(endCert).getEncoded());
 
119
            
 
120
            PKIXBuilderParameters buildParams = new PKIXBuilderParameters(Collections.singleton(new TrustAnchor(rootCert, null)), pathConstraints);
 
121
            
 
122
            buildParams.addCertStore(store);
 
123
            buildParams.setDate(new Date());
 
124
            
 
125
            PKIXCertPathBuilderResult result = (PKIXCertPathBuilderResult)builder.build(buildParams);
 
126
            CertPath                  path = result.getCertPath();
 
127
            
 
128
            if (path.getCertificates().size() != 2)
 
129
            {
 
130
                return new SimpleTestResult(false, this.getName() + ": wrong number of certs in v0Test path");
 
131
            }
 
132
        }
 
133
        catch (Exception e)
 
134
        {
 
135
            return new SimpleTestResult(false, this.getName() + ": exception - " + e.toString(), e);
 
136
        }
 
137
 
 
138
        return new SimpleTestResult(true, this.getName() + ": Okay");
 
139
    }
 
140
    
 
141
    /* (non-Javadoc)
 
142
     * @see org.bouncycastle.util.test.Test#perform()
 
143
     */
 
144
    public TestResult perform()
 
145
    {
 
146
        TestResult res = baseTest();
 
147
        if (!res.isSuccessful())
 
148
        {
 
149
            return res;
 
150
        }
 
151
        
 
152
        return v0Test();
 
153
    }
 
154
    
 
155
    public String getName()
 
156
    {
 
157
        return "CertPathBuilder";
 
158
    }
 
159
 
 
160
    public static void main(
 
161
        String[] args)
 
162
    {
 
163
        Security.addProvider(new BouncyCastleProvider());
 
164
 
 
165
        Test            test = new CertPathBuilderTest();
 
166
        TestResult        result = test.perform();
 
167
 
 
168
        System.out.println(result.toString());
 
169
    }
 
170
}
 
171