| /* |
| * Copyright (C) 2009 The Android Open Source Project |
| * |
| * Licensed under the Apache License, Version 2.0 (the "License"); |
| * you may not use this file except in compliance with the License. |
| * You may obtain a copy of the License at |
| * |
| * http://www.apache.org/licenses/LICENSE-2.0 |
| * |
| * Unless required by applicable law or agreed to in writing, software |
| * distributed under the License is distributed on an "AS IS" BASIS, |
| * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| * See the License for the specific language governing permissions and |
| * limitations under the License. |
| */ |
| package tests.targets.security.cert; |
| |
| import java.io.ByteArrayInputStream; |
| import java.security.KeyStore; |
| import java.security.cert.CertPath; |
| import java.security.cert.CertPathParameters; |
| import java.security.cert.CertStore; |
| import java.security.cert.CertStoreParameters; |
| import java.security.cert.Certificate; |
| import java.security.cert.CertificateFactory; |
| import java.security.cert.CollectionCertStoreParameters; |
| import java.security.cert.PKIXBuilderParameters; |
| import java.security.cert.X509CertSelector; |
| import java.security.cert.X509Certificate; |
| import java.util.ArrayList; |
| import java.util.List; |
| import javax.security.auth.x500.X500Principal; |
| import tests.security.CertPathBuilderTest; |
| |
| public class CertPathBuilderTestPKIX extends CertPathBuilderTest { |
| |
| public CertPathBuilderTestPKIX() { |
| super("PKIX"); |
| } |
| |
| @Override |
| public CertPathParameters getCertPathParameters() throws Exception { |
| KeyStore keyStore = KeyStore.getInstance(KeyStore.getDefaultType()); |
| |
| keyStore.load(null, null); |
| |
| CertificateFactory certificateFactory = CertificateFactory.getInstance("X509"); |
| |
| X509Certificate selfSignedcertificate = |
| (X509Certificate) certificateFactory.generateCertificate( |
| new ByteArrayInputStream(selfSignedCert.getBytes())); |
| |
| keyStore.setCertificateEntry("selfSignedCert", selfSignedcertificate); |
| |
| X509CertSelector targetConstraints = new X509CertSelector(); |
| targetConstraints.setCertificate(selfSignedcertificate); |
| |
| List<Certificate> certList = new ArrayList<Certificate>(); |
| certList.add(selfSignedcertificate); |
| CertStoreParameters storeParams = new CollectionCertStoreParameters( |
| certList); |
| |
| |
| CertStore certStore = CertStore.getInstance("Collection", storeParams); |
| |
| |
| PKIXBuilderParameters parameters = new PKIXBuilderParameters( |
| keyStore, targetConstraints); |
| parameters.addCertStore(certStore); |
| parameters.setRevocationEnabled(false); |
| return parameters; |
| } |
| |
| @Override |
| public void validateCertPath(CertPath path) { |
| List<? extends Certificate> certificates = path.getCertificates(); |
| Certificate certificate = certificates.get(0); |
| |
| assertEquals("unexpected certificate type", "X.509", certificate |
| .getType()); |
| |
| X509Certificate x509Certificate = (X509Certificate) certificate; |
| X500Principal subjectX500Principal = x509Certificate |
| .getSubjectX500Principal(); |
| |
| X500Principal expectedPrincipal = new X500Principal("CN=Android CTS, " |
| + "OU=Android, O=Android, L=Android, ST=Android, C=AN"); |
| |
| assertEquals("unexpected principal", expectedPrincipal, |
| subjectX500Principal); |
| } |
| |
| private String selfSignedCert = "-----BEGIN CERTIFICATE-----\n" |
| + "MIICSDCCAbECBEk2ZvswDQYJKoZIhvcNAQEEBQAwazELMAkGA1UEBhMCQU4xEDAOBgNVBAgTB0Fu\n" |
| + "ZHJvaWQxEDAOBgNVBAcTB0FuZHJvaWQxEDAOBgNVBAoTB0FuZHJvaWQxEDAOBgNVBAsTB0FuZHJv\n" |
| + "aWQxFDASBgNVBAMTC0FuZHJvaWQgQ1RTMB4XDTA4MTIwMzExMDExNVoXDTM2MDQyMDExMDExNVow\n" |
| + "azELMAkGA1UEBhMCQU4xEDAOBgNVBAgTB0FuZHJvaWQxEDAOBgNVBAcTB0FuZHJvaWQxEDAOBgNV\n" |
| + "BAoTB0FuZHJvaWQxEDAOBgNVBAsTB0FuZHJvaWQxFDASBgNVBAMTC0FuZHJvaWQgQ1RTMIGfMA0G\n" |
| + "CSqGSIb3DQEBAQUAA4GNADCBiQKBgQCAMd+N1Bu2eiI4kukOLvFlpTSEHTGplN2vvw76T7jSZinx\n" |
| + "WcrtLe6qH1uPffbVNW4/BRn6OywbcynazEdqEUa09hWtHYmUsXpRPyGUBScNnyF751SGA2JIQUfg\n" |
| + "3gi3gT3h32Z64AIHnn5gsGDJkeWOHx6/uVOV7iqr7cwPdLp03QIDAQABMA0GCSqGSIb3DQEBBAUA\n" |
| + "A4GBAGG46Udsh6U7bSkJsyPPmSCCEkGr14L8F431UuaWbLvQVDtyPv8vtdJilyUTVnlWM6JNGV/q\n" |
| + "bgHuLbohkVXn9l68GtgQ7QDexHJE5hEDG/S7cYNi9GhrCfzAjEed13VMntZHZ0XQ4E7jBOmhcMAY\n" |
| + "DC9BBx1sVKoji17RP4R8CTf1\n" + "-----END CERTIFICATE-----"; |
| } |