summary refs log tree commit diff
path: root/crypto/src/x509/store/X509CertPairStoreSelector.cs
blob: 2796971c78c365a6f0cbf6fb44f5286df2ff6f05 (plain) (blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
using System;

namespace Org.BouncyCastle.X509.Store
{
	/// <remarks>
	/// This class is an <code>IX509Selector</code> implementation to select
	/// certificate pairs, which are e.g. used for cross certificates. The set of
	/// criteria is given from two <code>X509CertStoreSelector</code> objects,
	/// each of which, if present, must match the respective component of a pair.
	/// </remarks>
	public class X509CertPairStoreSelector
		: IX509Selector
	{
		private static X509CertStoreSelector CloneSelector(
			X509CertStoreSelector s)
		{
			return s == null ? null : (X509CertStoreSelector) s.Clone();
		}

		private X509CertificatePair certPair;
		private X509CertStoreSelector forwardSelector;
		private X509CertStoreSelector reverseSelector;

		public X509CertPairStoreSelector()
		{
		}

		private X509CertPairStoreSelector(
			X509CertPairStoreSelector o)
		{
			this.certPair = o.CertPair;
			this.forwardSelector = o.ForwardSelector;
			this.reverseSelector = o.ReverseSelector;
		}

		/// <summary>The certificate pair which is used for testing on equality.</summary>
		public X509CertificatePair CertPair
		{
			get { return certPair; }
			set { this.certPair = value; }
		}

		/// <summary>The certificate selector for the forward part.</summary>
		public X509CertStoreSelector ForwardSelector
		{
			get { return CloneSelector(forwardSelector); }
			set { this.forwardSelector = CloneSelector(value); }
		}

		/// <summary>The certificate selector for the reverse part.</summary>
		public X509CertStoreSelector ReverseSelector
		{
			get { return CloneSelector(reverseSelector); }
			set { this.reverseSelector = CloneSelector(value); }
		}

		/// <summary>
		/// Decides if the given certificate pair should be selected. If
		/// <c>obj</c> is not a <code>X509CertificatePair</code>, this method
		/// returns <code>false</code>.
		/// </summary>
		/// <param name="obj">The <code>X509CertificatePair</code> to be tested.</param>
		/// <returns><code>true</code> if the object matches this selector.</returns>
		public bool Match(
			object obj)
		{
			if (obj == null)
				throw new ArgumentNullException("obj");

			X509CertificatePair pair = obj as X509CertificatePair;

			if (pair == null)
				return false;

			if (certPair != null && !certPair.Equals(pair))
				return false;

			if (forwardSelector != null && !forwardSelector.Match(pair.Forward))
				return false;

			if (reverseSelector != null && !reverseSelector.Match(pair.Reverse))
				return false;

			return true;
		}

		public object Clone()
		{
			return new X509CertPairStoreSelector(this);
		}
	}
}