| /* CertificateFactorySpi.java --- Certificate Factory Class |
| Copyright (C) 1999 Free Software Foundation, Inc. |
| |
| This file is part of GNU Classpath. |
| |
| GNU Classpath is free software; you can redistribute it and/or modify |
| it under the terms of the GNU General Public License as published by |
| the Free Software Foundation; either version 2, or (at your option) |
| any later version. |
| |
| GNU Classpath is distributed in the hope that it will be useful, but |
| WITHOUT ANY WARRANTY; without even the implied warranty of |
| MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU |
| General Public License for more details. |
| |
| You should have received a copy of the GNU General Public License |
| along with GNU Classpath; see the file COPYING. If not, write to the |
| Free Software Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA |
| 02111-1307 USA. |
| |
| As a special exception, if you link this library with other files to |
| produce an executable, this library does not by itself cause the |
| resulting executable to be covered by the GNU General Public License. |
| This exception does not however invalidate any other reasons why the |
| executable file might be covered by the GNU General Public License. */ |
| |
| |
| package java.security.cert; |
| import java.io.InputStream; |
| import java.util.Collection; |
| |
| /** |
| CertificateFactorySpi is the abstract class Service Provider |
| Interface (SPI) for the CertificateFactory class. A provider |
| must implment all the abstract methods if they wish to |
| supply a certificate factory for a particular certificate |
| type. Ex: X.509 |
| |
| Certificate factories are used to generate certificates and |
| certificate revocation lists (CRL) from their encoding. |
| |
| @since JDK 1.2 |
| |
| @author Mark Benvenuto |
| */ |
| public abstract class CertificateFactorySpi |
| { |
| |
| /** |
| Constructs a new CertificateFactorySpi |
| */ |
| public CertificateFactorySpi() |
| {} |
| |
| /** |
| Generates a Certificate based on the encoded data read |
| from the InputStream. |
| |
| The input stream must contain only one certificate. |
| |
| If there exists a specialized certificate class for the |
| certificate format handled by the certificate factory |
| then the return Ceritificate should be a typecast of it. |
| Ex: A X.509 CertificateFactory should return X509Certificate. |
| |
| For X.509 certificates, the certificate in inStream must be |
| DER encoded and supplied in binary or printable (Base64) |
| encoding. If the certificate is in Base64 encoding, it must be |
| bounded by -----BEGINCERTIFICATE-----, and |
| -----END CERTIFICATE-----. |
| |
| @param inStream an input stream containing the certificate data |
| |
| @return a certificate initialized with InputStream data. |
| |
| @throws CertificateException Certificate parsing error |
| */ |
| public abstract Certificate engineGenerateCertificate(InputStream inStream) |
| throws CertificateException; |
| |
| /** |
| Returns a collection of certificates that were read from the |
| input stream. It may be empty, have only one, or have |
| multiple certificates. |
| |
| For a X.509 certificate factory, the stream may contain a |
| single DER encoded certificate or a PKCS#7 certificate |
| chain. This is a PKCS#7 <I>SignedData</I> object with the |
| most significant field being <I>certificates</I>. If no |
| CRLs are present, then an empty collection is returned. |
| |
| @param inStream an input stream containing the certificates |
| |
| @return a collection of certificates initialized with |
| the InputStream data. |
| |
| @throws CertificateException Certificate parsing error |
| */ |
| public abstract Collection engineGenerateCertificates(InputStream inStream) |
| throws CertificateException; |
| |
| /** |
| Generates a CRL based on the encoded data read |
| from the InputStream. |
| |
| The input stream must contain only one CRL. |
| |
| If there exists a specialized CRL class for the |
| CRL format handled by the certificate factory |
| then the return CRL should be a typecast of it. |
| Ex: A X.509 CertificateFactory should return X509CRL. |
| |
| @param inStream an input stream containing the CRL data |
| |
| @return a CRL initialized with InputStream data. |
| |
| @throws CRLException CRL parsing error |
| */ |
| public abstract CRL engineGenerateCRL(InputStream inStream) |
| throws CRLException; |
| |
| /** |
| Generates CRLs based on the encoded data read |
| from the InputStream. |
| |
| For a X.509 certificate factory, the stream may contain a |
| single DER encoded CRL or a PKCS#7 CRL set. This is a |
| PKCS#7 <I>SignedData</I> object with the most significant |
| field being <I>crls</I>. If no CRLs are present, then an |
| empty collection is returned. |
| |
| @param inStream an input stream containing the CRLs |
| |
| @return a collection of CRLs initialized with |
| the InputStream data. |
| |
| @throws CRLException CRL parsing error |
| */ |
| public abstract Collection engineGenerateCRLs(InputStream inStream) |
| throws CRLException; |
| } |
| |