From d342a45d98c4795b3a3fe1aaef5236ad4a782b55 Mon Sep 17 00:00:00 2001
From: Yuuta Liang <yuutaw@students.cs.ubc.ca>
Date: Thu, 12 Oct 2023 12:10:33 +0800
Subject: Implement data structures from X.680, X.501, X.509, and PKCS#10, with
 X.690 encoding / decoding support

The implementation took four days, and it is still a little bit rough. Updated version should arrive soon.

Signed-off-by: Yuuta Liang <yuutaw@students.cs.ubc.ca>
---
 src/main/model/csr/CertificationRequestInfo.java | 127 +++++++++++++++++++++++
 1 file changed, 127 insertions(+)
 create mode 100644 src/main/model/csr/CertificationRequestInfo.java

(limited to 'src/main/model/csr/CertificationRequestInfo.java')

diff --git a/src/main/model/csr/CertificationRequestInfo.java b/src/main/model/csr/CertificationRequestInfo.java
new file mode 100644
index 0000000..425dba9
--- /dev/null
+++ b/src/main/model/csr/CertificationRequestInfo.java
@@ -0,0 +1,127 @@
+package model.csr;
+
+import model.asn1.ASN1Object;
+import model.asn1.Int;
+import model.asn1.Tag;
+import model.asn1.TagClass;
+import model.asn1.exceptions.ParseException;
+import model.asn1.parsing.BytesReader;
+import model.pki.SubjectPublicKeyInfo;
+import model.x501.Name;
+
+import java.util.Arrays;
+import java.util.Collection;
+import java.util.stream.Stream;
+
+/**
+ * Represents a RFC2986 / PKCS#10 CSR CertificationRequestInfo object.
+ * For more info on CRL, see {@link CertificationRequest}.
+ *
+ * <pre>
+ *    DEFINITIONS IMPLICIT TAGS ::=
+ *
+ *    CertificationRequestInfo ::= SEQUENCE {
+ *         version       INTEGER { v1(0) } (v1,...),
+ *         subject       Name,
+ *         subjectPKInfo SubjectPublicKeyInfo{{ PKInfoAlgorithms }},
+ *         attributes    [0] Attributes{{ CRIAttributes }}
+ *    }
+ *
+ * </pre>
+ *
+ * It represents all information of a CSR (version, subject, public key, attributes).
+ * It will be signed, and the signature is in {@link CertificationRequest}.
+ */
+public class CertificationRequestInfo extends ASN1Object {
+    public static final int VERSION_V1 = 0;
+
+    /**
+     * Version of the CRL. Always {@link CertificationRequestInfo#VERSION_V1} (0).
+     */
+    private final Int version;
+
+    /**
+     * Subject of the requested certificate
+     */
+    private final Name subject;
+
+    /**
+     * The public key to request.
+     */
+    private final SubjectPublicKeyInfo subjectPKInfo;
+
+    private final Attributes attributes;
+
+    /**
+     * EFFECTS: Construct with the given version, subject, pubkey, attributes, and the given tags.
+     * REQUIRES: Version must be {@link CertificationRequestInfo#VERSION_V1}. The fields must have correct tags as
+     * described in class specification.
+     */
+    public CertificationRequestInfo(Tag tag, Tag parentTag,
+                                    final Int version,
+                                    final Name subject,
+                                    final SubjectPublicKeyInfo subjectPKInfo,
+                                    final Attributes attributes) {
+        super(tag, parentTag);
+        this.version = version;
+        this.subject = subject;
+        this.subjectPKInfo = subjectPKInfo;
+        this.attributes = attributes;
+    }
+
+    /**
+     * EFFECTS: Parse the object with the given DER input.
+     *   Throws {@link ParseException} if the input is invalid:
+     *    - Any fields missing (version, subject, subjectPKInfo, attributes)
+     *    - Any fields having an incorrect tag (as seen in the ASN.1 definition)
+     *    - Any fields with encoding instructions that violate implicit / explicit encoding rules
+     *    - Other issues found during parsing the object, like early EOF (see {@link ASN1Object})
+     * MODIFIES: this, encoded
+     */
+    public CertificationRequestInfo(BytesReader encoded, boolean hasParentTag) throws ParseException {
+        super(encoded, hasParentTag);
+        this.version = new Int(encoded, false);
+        this.version.getTag().enforce(Int.TAG);
+        if (this.version.getLong() != VERSION_V1) {
+            throw new ParseException("Illegal version " + this.version.getLong());
+        }
+
+        this.subject = new Name(encoded, false);
+        this.subject.getTag().enforce(TAG_SEQUENCE);
+
+        this.subjectPKInfo = new SubjectPublicKeyInfo(encoded, false);
+        this.subjectPKInfo.getTag().enforce(TAG_SEQUENCE);
+
+        this.attributes = new Attributes(encoded, false);
+        this.attributes.getTag().enforce(new Tag(TagClass.CONTEXT_SPECIFIC, true, 0));
+    }
+
+    /**
+     * EFFECTS: Encode the value of that object, in the same order and format as denoted in the ASN.1 specification.
+     */
+    @Override
+    public Byte[] encodeValueDER() {
+        return Stream.of(Arrays.asList(version.encodeDER()),
+                Arrays.asList(subject.encodeDER()),
+                Arrays.asList(subjectPKInfo.encodeDER()),
+                Arrays.asList(attributes.encodeDER()))
+                .flatMap(Collection::stream)
+                .toArray(Byte[]::new);
+    }
+
+    public Int getVersion() {
+        return version;
+    }
+
+    public Name getSubject() {
+        return subject;
+    }
+
+    public SubjectPublicKeyInfo getSubjectPKInfo() {
+        return subjectPKInfo;
+    }
+
+    public Attributes getAttributes() {
+        return attributes;
+    }
+}
-- 
cgit v1.2.3