org.mozilla.jss.pkcs7
public class SignerInfo extends Object implements ASN1Value
Nested Class Summary | |
---|---|
static class | SignerInfo.Template
A template for decoding a SignerInfo blob
|
Constructor Summary | |
---|---|
SignerInfo(IssuerAndSerialNumber issuerAndSerialNumber, SET authenticatedAttributes, SET unauthenticatedAttributes, OBJECT_IDENTIFIER contentType, byte[] messageDigest, SignatureAlgorithm signingAlg, PrivateKey signingKey)
A constructor for creating a new SignerInfo from scratch.
|
Method Summary | |
---|---|
void | encode(OutputStream ostream) |
void | encode(Tag tag, OutputStream ostream) |
SET | getAuthenticatedAttributes()
Retrieves the authenticated attributes, if they exist.
|
DigestAlgorithm | getDigestAlgorithm()
Retrieves the DigestAlgorithm used in this SignerInfo.
|
AlgorithmIdentifier | getDigestAlgorithmIdentifer()
Retrieves the DigestAlgorithmIdentifier used in this SignerInfo. |
SignatureAlgorithm | getDigestEncryptionAlgorithm()
Returns the raw signature (digest encryption) algorithm used in this
SignerInfo.
|
AlgorithmIdentifier | getDigestEncryptionAlgorithmIdentifier()
Returns the DigestEncryptionAlgorithmIdentifier used in this SignerInfo. |
byte[] | getEncryptedDigest()
Retrieves the encrypted digest. |
IssuerAndSerialNumber | getIssuerAndSerialNumber()
Retrieves the issuer and serial number of the certificate whose
private key was used to sign the SignerInfo. |
Tag | getTag() |
static SignerInfo.Template | getTemplate() |
SET | getUnauthenticatedAttributes()
Retrieves the unauthenticated attributes, if they exist.
|
INTEGER | getVersion()
Retrieves the version number of this SignerInfo. |
boolean | hasAuthenticatedAttributes()
Returns true if the authenticatedAttributes field is present. |
boolean | hasUnauthenticatedAttributes()
Returns true if the unauthenticatedAttributes field is present. |
void | verify(byte[] messageDigest, OBJECT_IDENTIFIER contentType)
Verifies that this SignerInfo contains a valid signature of the
given message digest. |
void | verify(byte[] messageDigest, OBJECT_IDENTIFIER contentType, PublicKey pubkey)
Verifies that this SignerInfo contains a valid signature of the
given message digest. |
Parameters: issuerAndSerialNumber The issuer and serial number of the
certificate from which the public key was extracted to create
this SignerInfo. signingAlg The algorithm to be used to sign the content.
This should be a composite algorithm, such as
RSASignatureWithMD5Digest, instead of a raw algorithm, such as
RSASignature.
Note that the digest portion of this algorithm must be the same
algorithm as was used to digest the message content. authenticatedAttributes An optional set of Attributes, which
will be signed along with the message content. This parameter may
be null, or the SET may be empty. DO NOT insert
the PKCS #9 content-type or message-digest attributes. They will
be added automatically if they are necessary. unauthenticatedAttributes An optional set of Attributes, which
will be included in the SignerInfo but not signed. This parameter
may be null, or the SET may be empty. messageDigest The digest of the message contents. The digest
must have been created with the digest algorithm specified by
the signingAlg parameter. contentType The type of the ContentInfo that is being signed.
If it is not data
, then the PKCS #9 attributes
content-type and message-digest will be automatically computed and
added to the authenticated attributes.
Throws: NoSuchAlgorithm If the algorithm is not recognized by JSS.
Throws: NoSuchAlgorithmException If the algorithm is not recognized by JSS.
Note that this does not verify the validity of the the certificate itself, only the signature.
Parameters: messageDigest The hash of the content that is signed by this SignerInfo. contentType The type of the content that is signed by this SignerInfo. pubkey The public key to use to verify the signature.
Throws: NoSuchObjectException If no certificate matching the the issuer name and serial number can be found.
Parameters: messageDigest The hash of the content that is signed by this SignerInfo. contentType The type of the content that is signed by this SignerInfo. pubkey The public key to use to verify the signature.