using System; using Org.BouncyCastle.Asn1.X509; namespace Org.BouncyCastle.Asn1.Pkcs { /** * Pkcs10 CertificationRequestInfo object. *
* CertificationRequestInfo ::= Sequence { * version Integer { v1(0) } (v1,...), * subject Name, * subjectPKInfo SubjectPublicKeyInfo{{ PKInfoAlgorithms }}, * attributes [0] Attributes{{ CRIAttributes }} * } * * Attributes { ATTRIBUTE:IOSet } ::= Set OF Attr{{ IOSet }} * * Attr { ATTRIBUTE:IOSet } ::= Sequence { * type ATTRIBUTE.&id({IOSet}), * values Set SIZE(1..MAX) OF ATTRIBUTE.&Type({IOSet}{\@type}) * } **/ public class CertificationRequestInfo : Asn1Encodable { internal DerInteger version = new DerInteger(0); internal X509Name subject; internal SubjectPublicKeyInfo subjectPKInfo; internal Asn1Set attributes; public static CertificationRequestInfo GetInstance(object obj) { if (obj is CertificationRequestInfo) return (CertificationRequestInfo)obj; if (obj != null) return new CertificationRequestInfo(Asn1Sequence.GetInstance(obj)); return null; } public CertificationRequestInfo( X509Name subject, SubjectPublicKeyInfo pkInfo, Asn1Set attributes) { this.subject = subject; this.subjectPKInfo = pkInfo; this.attributes = attributes; ValidateAttributes(attributes); if (subject == null || version == null || subjectPKInfo == null) { throw new ArgumentException( "Not all mandatory fields set in CertificationRequestInfo generator."); } } private CertificationRequestInfo( Asn1Sequence seq) { version = (DerInteger) seq[0]; subject = X509Name.GetInstance(seq[1]); subjectPKInfo = SubjectPublicKeyInfo.GetInstance(seq[2]); // // some CertificationRequestInfo objects seem to treat this field // as optional. // if (seq.Count > 3) { Asn1TaggedObject tagobj = (Asn1TaggedObject)seq[3]; attributes = Asn1Set.GetInstance(tagobj, false); } ValidateAttributes(attributes); if (subject == null || version == null || subjectPKInfo == null) { throw new ArgumentException( "Not all mandatory fields set in CertificationRequestInfo generator."); } } public DerInteger Version { get { return version; } } public X509Name Subject { get { return subject; } } public SubjectPublicKeyInfo SubjectPublicKeyInfo { get { return subjectPKInfo; } } public Asn1Set Attributes { get { return attributes; } } public override Asn1Object ToAsn1Object() { Asn1EncodableVector v = new Asn1EncodableVector(version, subject, subjectPKInfo); v.AddOptionalTagged(false, 0, attributes); return new DerSequence(v); } private static void ValidateAttributes(Asn1Set attributes) { if (attributes == null) return; foreach (Asn1Encodable ae in attributes) { Asn1Object obj = ae.ToAsn1Object(); AttributePkcs attr = AttributePkcs.GetInstance(obj); if (attr.AttrType.Equals(PkcsObjectIdentifiers.Pkcs9AtChallengePassword)) { if (attr.AttrValues.Count != 1) throw new ArgumentException("challengePassword attribute must have one value"); } } } } }