📄 x509certtest.java
字号:
/*
Name: X509CertTest.java
Licensing: LGPL
API: Sun (http://java.sun.com) JCE 1.2.2 API (cleanroom implementation by Bouncy Castle)
Provider: Bouncy Castle (http://www.bouncycastle.org)
Disclaimer:
COVERED CODE IS PROVIDED UNDER THIS LICENSE ON AN "AS IS" BASIS, WITHOUT WARRANTY OF ANY KIND,
EITHER EXPRESSED OR IMPLIED, INCLUDING, WITHOUT LIMITATION, WARRANTIES THAT THE COVERED CODE
IS FREE OF DEFECTS, MERCHANTABLE, FIT FOR A PARTICULAR PURPOSE OR NON-INFRINGING. THE ENTIRE
RISK AS TO THE QUALITY AND PERFORMANCE OF THE COVERED CODE IS WITH YOU. SHOULD ANY COVERED CODE
PROVE DEFECTIVE IN ANY RESPECT, YOU (NOT THE INITIAL DEVELOPER OR ANY OTHER CONTRIBUTOR)
ASSUME THE COST OF ANY NECESSARY SERVICING, REPAIR OR CORRECTION. THIS DISCLAIMER OF WARRANTY
CONSTITUTES AN ESSENTIAL PART OF THIS LICENSE. NO USE OF ANY COVERED CODE IS AUTHORIZED
HEREUNDER EXCEPT UNDER THIS DISCLAIMER.
(C) Copyright 2003 Gert Van Ham
*/
package net.sourceforge.jcetaglib.test;
import junit.framework.Assert;
import junit.framework.TestCase;
import net.sourceforge.jcetaglib.lib.X509Cert;
import org.bouncycastle.asn1.pkcs.CertificationRequestInfo;
import org.bouncycastle.jce.PKCS10CertificationRequest;
import java.math.BigInteger;
import java.security.PrivateKey;
import java.security.cert.X509CRL;
import java.security.cert.X509Certificate;
/**
* A collection of X509 Certificate tests
* <P>
* NOTE: generating keys & certification tests can be found in KeyTest.java
* <P>
* These tests can be run using JUnit (http://www.junit.org)
*
* @author Gert Van Ham
* @author hamgert@users.sourceforge.net
* @author http://jcetaglib.sourceforge.net
* @version $Id: X509CertTest.java,v 1.3 2004/04/15 07:28:36 hamgert Exp $
*/
public class X509CertTest extends TestCase {
private String pkcs10request =
"-----BEGIN CERTIFICATE REQUEST-----\r\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\r\n-----END CERTIFICATE REQUEST-----";
/**
* test PKCS10 request
*
* @throws Exception
*/
public void testPCKS10Request() throws Exception {
PKCS10CertificationRequest cr = X509Cert.getPKCS10Request(pkcs10request);
CertificationRequestInfo reqinfo = cr.getCertificationRequestInfo();
Assert.assertEquals("C=BE,O=net,OU=sourceforge,CN=bob,O=bob@sourceforge.net", reqinfo.getSubject().toString());
}
/**
* test CRL generation & certificate verification
*
* @throws Exception
*/
public void testVerifyCertificate() throws Exception {
// load Alice's & Bob's certificate
X509Certificate alicecert = X509Cert.getCertificateFromP12(RunTest.TEMPFOLDER + "alice.p12", "alice", new StringBuffer("password"));
X509Certificate bobcert = X509Cert.getCertificateFromP12(RunTest.TEMPFOLDER + "bob.p12", "bob", new StringBuffer("password"));
// load CA certificate & private key
X509Certificate cacert = X509Cert.getCertificateFromP12(RunTest.TEMPFOLDER + "ca.p12", "ca", new StringBuffer("password"));
PrivateKey caprivkey = X509Cert.getPrivateFromP12(RunTest.TEMPFOLDER + "ca.p12", "ca", new StringBuffer("password"));
// we create a CRL where Alice's certificate is valid and Bob's is revoked
BigInteger[] certnumbers = new BigInteger[1];
certnumbers[0] = bobcert.getSerialNumber();
X509CRL crl = X509Cert.CreateCRL(certnumbers
, 1
, 24
, "MD5WithRSAEncryption"
, cacert
, caprivkey);
Assert.assertEquals("VERIFIED", X509Cert.verifyCertificate(alicecert, cacert, crl));
Assert.assertEquals("REVOKED", X509Cert.verifyCertificate(bobcert, cacert, crl));
}
}
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -