using System;
using System.Collections.Generic;
using System.IO;
using Org.BouncyCastle.Asn1;
using Org.BouncyCastle.Asn1.Pkcs;
using Org.BouncyCastle.Asn1.X509;
using Org.BouncyCastle.Security.Certificates;
using Org.BouncyCastle.Utilities.IO;
namespace Org.BouncyCastle.X509
{
public class X509CrlParser
{
private static readonly PemParser PemCrlParser = new PemParser("CRL");
private Asn1Set sCrlData;
private int sCrlDataObjectCount;
private Stream currentCrlStream;
public X509CrlParser()
{
}
/// Value of is ignored.
[Obsolete("Will be removed")]
public X509CrlParser(bool lazyAsn1)
{
}
private X509Crl ReadDerCrl(Asn1InputStream dIn)
{
Asn1Sequence seq = (Asn1Sequence)dIn.ReadObject();
if (seq.Count > 1 && seq[0] is DerObjectIdentifier)
{
if (seq[0].Equals(PkcsObjectIdentifiers.SignedData))
{
sCrlData = SignedData.GetInstance(
Asn1Sequence.GetInstance((Asn1TaggedObject) seq[1], true)).Crls;
return GetCrl();
}
}
return new X509Crl(CertificateList.GetInstance(seq));
}
private X509Crl ReadPemCrl(Stream inStream)
{
Asn1Sequence seq = PemCrlParser.ReadPemObject(inStream);
return seq == null ? null : new X509Crl(CertificateList.GetInstance(seq));
}
private X509Crl GetCrl()
{
if (sCrlData == null || sCrlDataObjectCount >= sCrlData.Count)
return null;
return new X509Crl(CertificateList.GetInstance(sCrlData[sCrlDataObjectCount++]));
}
///
/// Create loading data from byte array.
///
///
public X509Crl ReadCrl(byte[] input)
{
return ReadCrl(new MemoryStream(input, false));
}
///
/// Create loading data from byte array.
///
///
public IList ReadCrls(byte[] input)
{
return ReadCrls(new MemoryStream(input, false));
}
/**
* Generates a certificate revocation list (CRL) object and initializes
* it with the data read from the input stream inStream.
*/
public X509Crl ReadCrl(Stream inStream)
{
if (inStream == null)
throw new ArgumentNullException("inStream");
if (!inStream.CanRead)
throw new ArgumentException("inStream must be read-able", "inStream");
if (currentCrlStream == null)
{
currentCrlStream = inStream;
sCrlData = null;
sCrlDataObjectCount = 0;
}
else if (currentCrlStream != inStream) // reset if input stream has changed
{
currentCrlStream = inStream;
sCrlData = null;
sCrlDataObjectCount = 0;
}
try
{
if (sCrlData != null)
{
if (sCrlDataObjectCount != sCrlData.Count)
return GetCrl();
sCrlData = null;
sCrlDataObjectCount = 0;
return null;
}
int tag = inStream.ReadByte();
if (tag < 0)
return null;
if (inStream.CanSeek)
{
inStream.Seek(-1L, SeekOrigin.Current);
}
else
{
PushbackStream pis = new PushbackStream(inStream);
pis.Unread(tag);
inStream = pis;
}
if (tag != 0x30) // assume ascii PEM encoded.
return ReadPemCrl(inStream);
using (var asn1 = new Asn1InputStream(inStream, int.MaxValue, leaveOpen: true))
{
return ReadDerCrl(asn1);
}
}
catch (CrlException)
{
throw;
}
catch (Exception e)
{
throw new CrlException(e.ToString());
}
}
/**
* Returns a (possibly empty) collection view of the CRLs read from
* the given input stream inStream.
*
* The inStream may contain a sequence of DER-encoded CRLs, or
* a PKCS#7 CRL set. This is a PKCS#7 SignedData object, with the
* only significant field being crls. In particular the signature
* and the contents are ignored.
*/
public IList ReadCrls(Stream inStream)
{
return new List(ParseCrls(inStream));
}
public IEnumerable ParseCrls(Stream inStream)
{
X509Crl crl;
while ((crl = ReadCrl(inStream)) != null)
{
yield return crl;
}
}
}
}