1. /*

  2.  * @(#)Certificate.java	1.15 01/11/29

  3.  *

  4.  * Copyright 2002 Sun Microsystems, Inc. All rights reserved.

  5.  * SUN PROPRIETARY/CONFIDENTIAL. Use is subject to license terms.

  6.  */

  7. 

  8. package java.security.cert;

  9. 

  10. import java.security.PublicKey;

  11. import java.security.NoSuchAlgorithmException;

  12. import java.security.NoSuchProviderException;

  13. import java.security.InvalidKeyException;

  14. import java.security.SignatureException;

  15. 

  16. /**

  17.  * <p>Abstract class for managing a variety of identity certificates.

  18.  * An identity certificate is a binding of a principal to a public key which

  19.  * is vouched for by another principal.  (A principal represents

  20.  * an entity such as an individual user, a group, or a corporation.)

  21.  *<p>

  22.  * This class is an abstraction for certificates that have different

  23.  * formats but important common uses.  For example, different types of

  24.  * certificates, such as X.509 and PGP, share general certificate

  25.  * functionality (like encoding and verifying) and

  26.  * some types of information (like a public key).

  27.  * <p>

  28.  * X.509, PGP, and SDSI certificates can all be implemented by

  29.  * subclassing the Certificate class, even though they contain different

  30.  * sets of information, and they store and retrieve the information in

  31.  * different ways.

  32.  *

  33.  * @see X509Certificate

  34.  * @see CertificateFactory

  35.  *

  36.  * @author Hemma Prafullchandra

  37.  * @version 1.15 01/11/29

  38.  */

  39. 

  40. public abstract class Certificate {

  41. 

  42.     // the certificate type

  43.     private String type;

  44. 

  45.     /**

  46.      * Creates a certificate of the specified type.

  47.      *

  48.      * @param type the standard name of the certificate type.

  49.      * See Appendix A in the <a href=

  50.      * "../../../../guide/security/CryptoSpec.html#AppA">

  51.      * Java Cryptography Architecture API Specification & Reference </a>

  52.      * for information about standard certificate types.

  53.      */

  54.     protected Certificate(String type) {

  55. 	this.type = type;

  56.     }

  57. 

  58.     /**

  59.      * Returns the type of this certificate.

  60.      *

  61.      * @return the type of this certificate.

  62.      */

  63.     public final String getType() {

  64. 	return this.type;

  65.     }

  66. 

  67.     /**

  68.      * Compares this certificate for equality with the specified

  69.      * object. If the <code>other</code> object is an

  70.      * <code>instanceof</code> <code>Certificate</code>, then

  71.      * its encoded form is retrieved and compared with the

  72.      * encoded form of this certificate.

  73.      *

  74.      * @param other the object to test for equality with this certificate.

  75.      * @return true iff the encoded forms of the two certificates

  76.      * match, false otherwise.

  77.      */

  78.     public boolean equals(Object other) {

  79.         if (this == other)

  80.             return true;

  81.         if (!(other instanceof Certificate))

  82.             return false;

  83.         try {

  84.             byte[] thisCert = this.getEncoded();

  85.             byte[] otherCert = ((Certificate)other).getEncoded();

  86. 

  87.             if (thisCert.length != otherCert.length)

  88.                 return false;

  89.             for (int i = 0; i < thisCert.length; i++)

  90.                  if (thisCert[i] != otherCert[i])

  91.                      return false;

  92.             return true;

  93.         } catch (CertificateException e) {

  94. 	    return false;

  95.         }

  96.     }

  97. 

  98.     /**

  99.      * Returns a hashcode value for this certificate from its

  100.      * encoded form.

  101.      *

  102.      * @return the hashcode value.

  103.      */

  104.     public int hashCode() {

  105.         int     retval = 0;

  106.         try {

  107.             byte[] certData = this.getEncoded();

  108.             for (int i = 1; i < certData.length; i++) {

  109.                  retval += certData[i] * i;

  110.             }

  111.             return(retval);

  112.         } catch (CertificateException e) {

  113.             return(retval);

  114.         }

  115.     }

  116. 

  117.     /**

  118.      * Returns the encoded form of this certificate. It is

  119.      * assumed that each certificate type would have only a single

  120.      * form of encoding; for example, X.509 certificates would

  121.      * be encoded as ASN.1 DER.

  122.      *

  123.      * @exception CertificateEncodingException if an encoding error occurs.

  124.      */

  125.     public abstract byte[] getEncoded()

  126.         throws CertificateEncodingException;

  127. 

  128.     /**

  129.      * Verifies that this certificate was signed using the

  130.      * private key that corresponds to the specified public key.

  131.      *

  132.      * @param key the PublicKey used to carry out the verification.

  133.      *

  134.      * @exception NoSuchAlgorithmException on unsupported signature

  135.      * algorithms.

  136.      * @exception InvalidKeyException on incorrect key.

  137.      * @exception NoSuchProviderException if there's no default provider.

  138.      * @exception SignatureException on signature errors.

  139.      * @exception CertificateException on encoding errors.

  140.      */

  141.     public abstract void verify(PublicKey key)

  142.         throws CertificateException, NoSuchAlgorithmException,

  143.         InvalidKeyException, NoSuchProviderException,

  144.         SignatureException;

  145. 

  146.     /**

  147. 

  148.      * Verifies that this certificate was signed using the

  149.      * private key that corresponds to the specified public key.

  150.      * This method uses the signature verification engine

  151.      * supplied by the specified provider.

  152.      *

  153.      * @param key the PublicKey used to carry out the verification.

  154.      * @param sigProvider the name of the signature provider.

  155.      *

  156.      * @exception NoSuchAlgorithmException on unsupported signature

  157.      * algorithms.

  158.      * @exception InvalidKeyException on incorrect key.

  159.      * @exception NoSuchProviderException on incorrect provider.

  160.      * @exception SignatureException on signature errors.

  161.      * @exception CertificateException on encoding errors.

  162.      */

  163.     public abstract void verify(PublicKey key, String sigProvider)

  164.         throws CertificateException, NoSuchAlgorithmException,

  165.         InvalidKeyException, NoSuchProviderException,

  166.         SignatureException;

  167. 

  168.     /**

  169.      * Returns a string representation of this certificate.

  170.      *

  171.      * @return a string representation of this certificate.

  172.      */

  173.     public abstract String toString();

  174. 

  175.     /**

  176.      * Gets the public key from this certificate.

  177.      *

  178.      * @return the public key.

  179.      */

  180.     public abstract PublicKey getPublicKey();

  181. }