Google Git
Sign in
android / platform / external / bouncycastle / 11b8b14a2780c41215bdb706f63def6ad4faa463 / . / bcpkix / src / main / java / org / bouncycastle / cert / path / CertPath.java
blob: 1c1d93a7891b101331049df629b260f6139e1965 [file] [log] [blame]
package org.bouncycastle.cert.path;
import org.bouncycastle.cert.X509CertificateHolder;
public class CertPath
{
private final X509CertificateHolder[] certificates;
public CertPath(X509CertificateHolder[] certificates)
{
this.certificates = copyArray(certificates);
}
public X509CertificateHolder[] getCertificates()
{
return copyArray(certificates);
}
public CertPathValidationResult validate(CertPathValidation[] ruleSet)
{
CertPathValidationContext context = new CertPathValidationContext(CertPathUtils.getCriticalExtensionsOIDs(certificates));
for (int i = 0; i != ruleSet.length; i++)
{
for (int j = certificates.length - 1; j >= 0; j--)
{
try
{
context.setIsEndEntity(j == 0);
ruleSet[i].validate(context, certificates[j]);
}
catch (CertPathValidationException e)
{ // TODO: introduce object to hold (i and e)
return new CertPathValidationResult(context, j, i, e);
}
}
}
return new CertPathValidationResult(context);
}
public CertPathValidationResult evaluate(CertPathValidation[] ruleSet)
{
CertPathValidationContext context = new CertPathValidationContext(CertPathUtils.getCriticalExtensionsOIDs(certificates));
CertPathValidationResultBuilder builder = new CertPathValidationResultBuilder(context);
for (int i = 0; i != ruleSet.length; i++)
{
for (int j = certificates.length - 1; j >= 0; j--)
{
try
{
context.setIsEndEntity(j == 0);
ruleSet[i].validate(context, certificates[j]);
}
catch (CertPathValidationException e)
{
builder.addException(j, i, e);
}
}
}
return builder.build();
}
private X509CertificateHolder[] copyArray(X509CertificateHolder[] array)
{
X509CertificateHolder[] rv = new X509CertificateHolder[array.length];
System.arraycopy(array, 0, rv, 0, rv.length);
return rv;
}
public int length()
{
return certificates.length;
}
}