ObjectIdentifier.java revision 8f8adeb1540d89588dba4c26d00a6ed6887cf6de
/**
* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS HEADER.
*
* Copyright (c) 2005 Sun Microsystems Inc. All Rights Reserved
*
* The contents of this file are subject to the terms
* of the Common Development and Distribution License
* (the License). You may not use this file except in
* compliance with the License.
*
* You can obtain a copy of the License at
* See the License for the specific language governing
* permission and limitations under the License.
*
* When distributing Covered Code, include this CDDL
* Header Notice in each file and include the License file
* at opensso/legal/CDDLv1.0.txt.
* If applicable, add the following below the CDDL Header,
* with the fields enclosed by brackets [] replaced by
* your own identifying information:
* "Portions Copyrighted [year] [name of copyright owner]"
*
* $Id: ObjectIdentifier.java,v 1.2 2008/06/25 05:52:44 qcheng Exp $
*
*/
/*
* Portions Copyrighted 2014 ForgeRock AS.
* Portions Copyrighted 2014 Nomura Research Institute, Ltd.
*/
/**
* Represent an ISO Object Identifier.
*
* <P>
* Object Identifiers are arbitrary length hierarchical identifiers. The
* individual components are numbers, and they define paths from the root of an
* ISO-managed identifier space. You will sometimes see a string name used
* instead of (or in addition to) the numerical id. These are synonyms for the
* numerical IDs, but are not widely used since most sites do not know all the
* requisite strings, while all sites can parse the numeric forms.
* </P>
*
* <P>
* So for example, JavaSoft has the sole authority to assign the meaning to
* identifiers below the 1.3.6.1.4.42.2.17 node in the hierarchy, and other
* organizations can easily acquire the ability to assign such unique
* identifiers.
* </P>
*/
final public class ObjectIdentifier implements Serializable {
/** use serialVersionUID from JDK 1.1. for interoperability */
private static final long serialVersionUID = 8697030238860181294L;
/**
* Constructs an object identifier from a string. This string should be of
* the form 1.23.34.45.56 etc.
*/
return;
int ch = '.';
int start = 0;
int end = 0;
// Calculate length of oid
componentLen = 0;
componentLen += 1;
}
componentLen += 1;
components = new int[componentLen];
start = 0;
int i = 0;
}
}
/**
* Constructs an object ID from an array of integers. This is used to
* construct constant object IDs.
*/
public ObjectIdentifier(int values[]) {
try {
} catch (Throwable t) {
}
}
/**
* Constructs an object ID from an ASN.1 encoded input stream. The encoding
* of the ID in the stream uses "DER", a BER/1 subset. In this case, that
* means a triple { typeId, length, data }.
*
* <P>
* <STRONG>NOTE:</STRONG> When an exception is thrown, the input stream has
* not been returned to its "initial" state.
*
* @param in
* DER-encoded data holding an object ID
* @exception IOException
* indicates a decoding error
*/
byte type_id;
int bufferEnd;
/*
* Object IDs are a "universal" type, and their tag needs only one byte
* of encoding. Verify that the tag of this datum is that of an object
* ID.
*
* Then get and check the length of the ID's encoding. We set up so that
* we can use in.available() to check for the end of this value in the
* data stream.
*/
throw new IOException(
"X509.ObjectIdentifier() -- data isn't an object ID"
if (bufferEnd < 0)
throw new IOException("X509.ObjectIdentifier() -- not enough data");
}
/*
* Build the OID from the rest of a DER input buffer; the tag and length
*/
}
/*
* Helper function -- get the OID from a stream, after tag and length are
* verified.
*/
throws IOException {
/*
* Now get the components ("sub IDs") one at a time. We fill a temporary
* buffer, resizing it as needed.
*/
int component;
boolean first_subid = true;
if (first_subid) {
int X, Y;
/*
* The ISO root has three children (0, 1, 2) and those nodes
* aren't allowed to assign IDs larger than 39. These rules are
* memorialized by some special casing in the BER encoding of
* object IDs ... or maybe it's vice versa.
*
* NOTE: the allocation quantum is large enough that we know we
* don't have to reallocate here!
*/
if (component < 40)
X = 0;
else if (component < 80)
X = 1;
else
X = 2;
Y = component - (X * 40);
components[0] = X;
components[1] = Y;
componentLen = 2;
first_subid = false;
} else {
/*
* Other components are encoded less exotically. The only
* potential trouble is the need to grow the array.
*/
int tmp_components[];
}
}
}
/*
* Final sanity check -- if we didn't use exactly the number of bytes
* specified, something's quite wrong.
*/
throw new IOException(
"X509.ObjectIdentifier() -- malformed input data");
}
}
/*
* n.b. the only public interface is DerOutputStream.putOID()
*/
int i;
for (i = 2; i < componentLen; i++)
/*
* Now that we've constructed the component, encode it in the stream we
* were given.
*/
}
/*
* Tricky OID component parsing technique ... note that one bit per octet is
* lost, this returns at most 28 bits of component. Also, notice this parses
* in big-endian format.
*/
retval <<= 7;
return retval;
}
throw new IOException("X509.OID, component value too big");
}
/*
* Reverse of the above routine. Notice it needs to emit in big-endian form,
* so it buffers the output until it's ready. (Minimum length encoding is a
* DER requirement.)
*/
throws IOException {
int i;
byte buf[] = new byte[4];
for (i = 0; i < 4; i++) {
val >>>= 7;
if (val == 0)
break;
}
for (; i > 0; --i)
}
// XXX this API should probably facilitate the JDK sort utility
/**
* Compares this identifier with another, for sorting purposes. An
* identifier does not precede itself.
*
* @param other
* identifer that may precede this one.
* @return true iff <em>other</em> precedes this one in a particular
* sorting order.
*/
int i;
// shorter IDs go first
return false;
return true;
// for each component, the lesser component goes first
for (i = 0; i < componentLen; i++) {
return true;
}
// identical IDs don't precede each other
return false;
}
if (other instanceof ObjectIdentifier)
else
return false;
}
/**
* Compares this identifier with another, for equality.
*
* @return true iff the names are identical.
*/
int i;
if (other == this)
return true;
return false;
for (i = 0; i < componentLen; i++) {
return false;
}
return true;
}
public int hashCode() {
int h = 0;
int oflow = 0;
for (int i = 0; i < componentLen; i++) {
h <<= 9;
h += components[i];
h ^= oflow;
}
return h;
}
/**
* Returns a string form of the object ID. The format is the conventional
* "dot" notation for such IDs, without any user-friendly descriptive
* strings, since those strings will not be understood everywhere.
*/
int i;
if (i != 0)
retval += ".";
retval += components[i];
}
return retval;
}
/*
* To simplify, we assume no individual component of an object ID is larger
* than 32 bits. Then we represent the path from the root as an array that's
* (usually) only filled at the beginning.
*/
private int components[]; // path from root
private int componentLen; // how much is used.
/**
* Netscape Enhancement: This function implements a object identifier
* factory. It should help reduces in-memory Object Identifier object. This
* function also provide additional checking on the OID. A valid OID should
* start with 0, 1, or 2.
*
* Notes: This function never returns null. IOException is raised in error
* conditions.
*/
throws IOException {
int value;
throw new IOException("empty object identifier");
return thisOID;
/* First token should be 0, 1, 2 */
/* Second token should be 0 <= && >= 39 */
return thisOID;
}
} else
} else
}
throws IOException {
int i;
if (i != 0)
retval += ".";
}
return getObjectIdentifier(retval);
}
}