org.opensc.pkcs11.wrap
Class PKCS11Certificate

java.lang.Object
  org.opensc.util.DestroyableChild
      org.opensc.pkcs11.wrap.PKCS11Object
          org.opensc.pkcs11.wrap.PKCS11Certificate

All Implemented Interfaces:

Destroyable, PKCS11SessionChild

public class PKCS11Certificate
extends PKCS11Object

This class manages X509 certificates stored on the card.

Author:

wglas

Field Summary

Fields inherited from class org.opensc.pkcs11.wrap.PKCS11Object

CKA_AC_ISSUER, CKA_ALWAYS_SENSITIVE, CKA_APPLICATION, CKA_ATTR_TYPES, CKA_BASE, CKA_CERTIFICATE_CATEGORY, CKA_CERTIFICATE_TYPE, CKA_CHECK_VALUE, CKA_CLASS, CKA_COEFFICIENT, CKA_DECRYPT, CKA_DERIVE, CKA_ENCRYPT, CKA_END_DATE, CKA_EXPONENT_1, CKA_EXPONENT_2, CKA_EXTRACTABLE, CKA_HASH_OF_ISSUER_PUBLIC_KEY, CKA_HASH_OF_SUBJECT_PUBLIC_KEY, CKA_ID, CKA_ISSUER, CKA_JAVA_MIDP_SECURITY_DOMAIN, CKA_KEY_TYPE, CKA_LABEL, CKA_LOCAL, CKA_MODULUS, CKA_MODULUS_BITS, CKA_NEVER_EXTRACTABLE, CKA_OBJECT_ID, CKA_OWNER, CKA_PRIME, CKA_PRIME_1, CKA_PRIME_2, CKA_PRIME_BITS, CKA_PRIVATE, CKA_PRIVATE_EXPONENT, CKA_PUBLIC_EXPONENT, CKA_SENSITIVE, CKA_SERIAL_NUMBER, CKA_SIGN, CKA_SIGN_RECOVER, CKA_START_DATE, CKA_SUB_PRIME_BITS, CKA_SUBJECT, CKA_SUBPRIME, CKA_TOKEN, CKA_TRUSTED, CKA_UNWRAP, CKA_URL, CKA_VALUE, CKA_VALUE_BITS, CKA_VALUE_LEN, CKA_VERIFY, CKA_VERIFY_RECOVER, CKA_WRAP, CKO_CERTIFICATE, CKO_PRIVATE_KEY, CKO_PUBLIC_KEY, CKO_SECRET_KEY, handle, hsession, pvh, shandle

Constructor Summary

protected

PKCS11Certificate(PKCS11Session session, long handle)

Method Summary

Certificate	getCertificate()
static List<PKCS11Certificate>	getCertificates(PKCS11Session session) Fetches all certificates stored in the specified slot.
X500Principal	getIssuer()
sun.security.util.BigInt	getSerial()
X500Principal	getSubject()

Methods inherited from class org.opensc.pkcs11.wrap.PKCS11Object

destroy, enumRawObjects, getAllowedMechanisms, getBooleanAttribute, getBooleanAttribute, getHandle, getId, getLabel, getProvider, getPvh, getRawAttribute, getSessionHandle, getSlotHandle, getULongAttribute, getULongAttribute

Methods inherited from class org.opensc.util.DestroyableChild

getParent, isDestroyed, unlink

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface javax.security.auth.Destroyable

isDestroyed

Constructor Detail

PKCS11Certificate

protected PKCS11Certificate(PKCS11Session session,
                            long handle)
                     throws PKCS11Exception

Parameters:

session - The session to which we are associated.

handle - The object handle as returned by PKCS11Object.enumRawObjects().

Throws:

PKCS11Exception - Upon errors when retrieving the information for this certificate from the token.

Method Detail

getCertificates

public static List<PKCS11Certificate> getCertificates(PKCS11Session session)
                                               throws PKCS11Exception

Fetches all certificates stored in the specified slot.

Parameters:

session - The session of which to find the certificates.

Returns:

The list of all certificates found in this slot.

Throws:

PKCS11Exception - Upon errors from the underlying PKCS11 module.

getCertificate

public Certificate getCertificate()
                           throws PKCS11Exception,
                                  CertificateException

Returns:

The decoded X509 certificate of this entry.

Throws:

CertificateException - Upon errors when decoding the raw ASN1 encoded certificate from the token.

PKCS11Exception

getIssuer

public X500Principal getIssuer()

Returns:

Returns the issuer, which is the value of the CKA_ISSUER attribute.

getSerial

public sun.security.util.BigInt getSerial()

Returns:

Returns the serial, which is the value of the CKA_SERIAL_NUMBER attribute.

getSubject

public X500Principal getSubject()

Returns:

Returns the subject, which is the value of the CKA_SUBJECT attribute.