using System;
using System.Collections.Generic;
using System.IO;
using Org.BouncyCastle.Asn1;
using Org.BouncyCastle.Asn1.Pkcs;
using Org.BouncyCastle.Asn1.X509;
using Org.BouncyCastle.Security.Certificates;
using Org.BouncyCastle.Utilities.IO;
namespace Org.BouncyCastle.X509
{
public class X509AttrCertParser
{
private static readonly PemParser PemAttrCertParser = new PemParser("ATTRIBUTE CERTIFICATE");
private Asn1Set sData;
private int sDataObjectCount;
private Stream currentStream;
private X509V2AttributeCertificate ReadDerCertificate(
Asn1InputStream dIn)
{
Asn1Sequence seq = (Asn1Sequence)dIn.ReadObject();
if (seq.Count > 1 && seq[0] is DerObjectIdentifier)
{
if (seq[0].Equals(PkcsObjectIdentifiers.SignedData))
{
sData = SignedData.GetInstance(
Asn1Sequence.GetInstance((Asn1TaggedObject) seq[1], true)).Certificates;
return GetCertificate();
}
}
return new X509V2AttributeCertificate(AttributeCertificate.GetInstance(seq));
}
private X509V2AttributeCertificate GetCertificate()
{
if (sData != null)
{
while (sDataObjectCount < sData.Count)
{
Asn1Encodable ae = sData[sDataObjectCount++];
if (ae.ToAsn1Object() is Asn1TaggedObject t && t.TagNo == 2)
{
return new X509V2AttributeCertificate(
AttributeCertificate.GetInstance(Asn1Sequence.GetInstance(t, false)));
}
}
}
return null;
}
private X509V2AttributeCertificate ReadPemCertificate(
Stream inStream)
{
Asn1Sequence seq = PemAttrCertParser.ReadPemObject(inStream);
return seq == null
? null
: new X509V2AttributeCertificate(AttributeCertificate.GetInstance(seq));
}
///
/// Create loading data from byte array.
///
///
public X509V2AttributeCertificate ReadAttrCert(byte[] input)
{
return ReadAttrCert(new MemoryStream(input, false));
}
///
/// Create loading data from byte array.
///
///
public IList ReadAttrCerts(byte[] input)
{
return ReadAttrCerts(new MemoryStream(input, false));
}
/**
* Generates a certificate object and initializes it with the data
* read from the input stream inStream.
*/
public X509V2AttributeCertificate ReadAttrCert(
Stream inStream)
{
if (inStream == null)
throw new ArgumentNullException("inStream");
if (!inStream.CanRead)
throw new ArgumentException("inStream must be read-able", "inStream");
if (currentStream == null)
{
currentStream = inStream;
sData = null;
sDataObjectCount = 0;
}
else if (currentStream != inStream) // reset if input stream has changed
{
currentStream = inStream;
sData = null;
sDataObjectCount = 0;
}
try
{
if (sData != null)
{
if (sDataObjectCount != sData.Count)
return GetCertificate();
sData = null;
sDataObjectCount = 0;
return null;
}
int tag = inStream.ReadByte();
if (tag < 0)
return null;
if (inStream.CanSeek)
{
inStream.Seek(-1L, SeekOrigin.Current);
}
else
{
PushbackStream pis = new PushbackStream(inStream);
pis.Unread(tag);
inStream = pis;
}
if (tag != 0x30) // assume ascii PEM encoded.
return ReadPemCertificate(inStream);
return ReadDerCertificate(new Asn1InputStream(inStream));
}
catch (CertificateException)
{
throw;
}
catch (Exception e)
{
throw new CertificateException(e.ToString());
}
}
/**
* Returns a (possibly empty) collection view of the certificates
* read from the given input stream inStream.
*/
public IList ReadAttrCerts(Stream inStream)
{
var attrCerts = new List();
X509V2AttributeCertificate attrCert;
while ((attrCert = ReadAttrCert(inStream)) != null)
{
attrCerts.Add(attrCert);
}
return attrCerts;
}
}
}