sop / x509

lib/X509/Certificate/UniqueIdentifier.php

Indentation +64 added lines, -64 removed lines

@@ -13,74 +13,74 @@
  */
 class UniqueIdentifier
 {
-    /**
-     * Identifier.
-     *
-     * @var BitString
-     */
-    protected $_uid;
+	/**
+	 * Identifier.
+	 *
+	 * @var BitString
+	 */
+	protected $_uid;
 
-    /**
-     * Constructor.
-     *
-     * @param BitString $bs
-     */
-    public function __construct(BitString $bs)
-    {
-        $this->_uid = $bs;
-    }
+	/**
+	 * Constructor.
+	 *
+	 * @param BitString $bs
+	 */
+	public function __construct(BitString $bs)
+	{
+		$this->_uid = $bs;
+	}
 
-    /**
-     * Initialize from ASN.1.
-     *
-     * @param BitString $bs
-     *
-     * @return self
-     */
-    public static function fromASN1(BitString $bs): UniqueIdentifier
-    {
-        return new self($bs);
-    }
+	/**
+	 * Initialize from ASN.1.
+	 *
+	 * @param BitString $bs
+	 *
+	 * @return self
+	 */
+	public static function fromASN1(BitString $bs): UniqueIdentifier
+	{
+		return new self($bs);
+	}
 
-    /**
-     * Initialize from string.
-     *
-     * @param string $str
-     *
-     * @return self
-     */
-    public static function fromString(string $str): UniqueIdentifier
-    {
-        return new self(new BitString($str));
-    }
+	/**
+	 * Initialize from string.
+	 *
+	 * @param string $str
+	 *
+	 * @return self
+	 */
+	public static function fromString(string $str): UniqueIdentifier
+	{
+		return new self(new BitString($str));
+	}
 
-    /**
-     * Get unique identifier as a string.
-     *
-     * @return string
-     */
-    public function string(): string
-    {
-        return $this->_uid->string();
-    }
+	/**
+	 * Get unique identifier as a string.
+	 *
+	 * @return string
+	 */
+	public function string(): string
+	{
+		return $this->_uid->string();
+	}
 
-    /**
-     * Get unique identifier as a bit string.
-     *
-     * @return BitString
-     */
-    public function bitString(): BitString
-    {
-        return $this->_uid;
-    }
+	/**
+	 * Get unique identifier as a bit string.
+	 *
+	 * @return BitString
+	 */
+	public function bitString(): BitString
+	{
+		return $this->_uid;
+	}
 
-    /**
-     * Get ASN.1 element.
-     *
-     * @return BitString
-     */
-    public function toASN1(): BitString
-    {
-        return $this->_uid;
-    }
+	/**
+	 * Get ASN.1 element.
+	 *
+	 * @return BitString
+	 */
+	public function toASN1(): BitString
+	{
+		return $this->_uid;
+	}
 }

lib/X509/Certificate/Extensions.php

Indentation +401 added lines, -401 removed lines

@@ -31,405 +31,405 @@
  */
 class Extensions implements \Countable, \IteratorAggregate
 {
-    /**
-     * Extensions.
-     *
-     * @var Extension[]
-     */
-    protected $_extensions;
-
-    /**
-     * Constructor.
-     *
-     * @param Extension ...$extensions Extension objects
-     */
-    public function __construct(Extension ...$extensions)
-    {
-        $this->_extensions = [];
-        foreach ($extensions as $ext) {
-            $this->_extensions[$ext->oid()] = $ext;
-        }
-    }
-
-    /**
-     * Initialize from ASN.1.
-     *
-     * @param Sequence $seq
-     *
-     * @return self
-     */
-    public static function fromASN1(Sequence $seq): Extensions
-    {
-        $extensions = array_map(
-            function (UnspecifiedType $el) {
-                return Extension::fromASN1($el->asSequence());
-            }, $seq->elements());
-        return new self(...$extensions);
-    }
-
-    /**
-     * Generate ASN.1 structure.
-     *
-     * @return Sequence
-     */
-    public function toASN1(): Sequence
-    {
-        $elements = array_values(
-            array_map(
-                function ($ext) {
-                    return $ext->toASN1();
-                }, $this->_extensions));
-        return new Sequence(...$elements);
-    }
-
-    /**
-     * Get self with extensions added.
-     *
-     * @param Extension ...$exts One or more extensions to add
-     *
-     * @return self
-     */
-    public function withExtensions(Extension ...$exts): Extensions
-    {
-        $obj = clone $this;
-        foreach ($exts as $ext) {
-            $obj->_extensions[$ext->oid()] = $ext;
-        }
-        return $obj;
-    }
-
-    /**
-     * Check whether extension is present.
-     *
-     * @param string $oid Extensions OID
-     *
-     * @return bool
-     */
-    public function has(string $oid): bool
-    {
-        return isset($this->_extensions[$oid]);
-    }
-
-    /**
-     * Get extension by OID.
-     *
-     * @param string $oid
-     *
-     * @throws \LogicException If extension is not present
-     *
-     * @return Extension
-     */
-    public function get(string $oid): Extension
-    {
-        if (!$this->has($oid)) {
-            throw new \LogicException("No extension by OID {$oid}.");
-        }
-        return $this->_extensions[$oid];
-    }
-
-    /**
-     * Check whether 'Authority Key Identifier' extension is present.
-     *
-     * @return bool
-     */
-    public function hasAuthorityKeyIdentifier(): bool
-    {
-        return $this->has(Extension::OID_AUTHORITY_KEY_IDENTIFIER);
-    }
-
-    /**
-     * Get 'Authority Key Identifier' extension.
-     *
-     * @throws \LogicException If extension is not present
-     *
-     * @return AuthorityKeyIdentifierExtension
-     */
-    public function authorityKeyIdentifier(): AuthorityKeyIdentifierExtension
-    {
-        return $this->get(Extension::OID_AUTHORITY_KEY_IDENTIFIER);
-    }
-
-    /**
-     * Check whether 'Subject Key Identifier' extension is present.
-     *
-     * @return bool
-     */
-    public function hasSubjectKeyIdentifier(): bool
-    {
-        return $this->has(Extension::OID_SUBJECT_KEY_IDENTIFIER);
-    }
-
-    /**
-     * Get 'Subject Key Identifier' extension.
-     *
-     * @throws \LogicException If extension is not present
-     *
-     * @return SubjectKeyIdentifierExtension
-     */
-    public function subjectKeyIdentifier(): SubjectKeyIdentifierExtension
-    {
-        return $this->get(Extension::OID_SUBJECT_KEY_IDENTIFIER);
-    }
-
-    /**
-     * Check whether 'Key Usage' extension is present.
-     *
-     * @return bool
-     */
-    public function hasKeyUsage(): bool
-    {
-        return $this->has(Extension::OID_KEY_USAGE);
-    }
-
-    /**
-     * Get 'Key Usage' extension.
-     *
-     * @throws \LogicException If extension is not present
-     *
-     * @return KeyUsageExtension
-     */
-    public function keyUsage(): KeyUsageExtension
-    {
-        return $this->get(Extension::OID_KEY_USAGE);
-    }
-
-    /**
-     * Check whether 'Certificate Policies' extension is present.
-     *
-     * @return bool
-     */
-    public function hasCertificatePolicies(): bool
-    {
-        return $this->has(Extension::OID_CERTIFICATE_POLICIES);
-    }
-
-    /**
-     * Get 'Certificate Policies' extension.
-     *
-     * @throws \LogicException If extension is not present
-     *
-     * @return CertificatePoliciesExtension
-     */
-    public function certificatePolicies(): CertificatePoliciesExtension
-    {
-        return $this->get(Extension::OID_CERTIFICATE_POLICIES);
-    }
-
-    /**
-     * Check whether 'Policy Mappings' extension is present.
-     *
-     * @return bool
-     */
-    public function hasPolicyMappings(): bool
-    {
-        return $this->has(Extension::OID_POLICY_MAPPINGS);
-    }
-
-    /**
-     * Get 'Policy Mappings' extension.
-     *
-     * @throws \LogicException If extension is not present
-     *
-     * @return PolicyMappingsExtension
-     */
-    public function policyMappings(): PolicyMappingsExtension
-    {
-        return $this->get(Extension::OID_POLICY_MAPPINGS);
-    }
-
-    /**
-     * Check whether 'Subject Alternative Name' extension is present.
-     *
-     * @return bool
-     */
-    public function hasSubjectAlternativeName(): bool
-    {
-        return $this->has(Extension::OID_SUBJECT_ALT_NAME);
-    }
-
-    /**
-     * Get 'Subject Alternative Name' extension.
-     *
-     * @throws \LogicException If extension is not present
-     *
-     * @return SubjectAlternativeNameExtension
-     */
-    public function subjectAlternativeName(): SubjectAlternativeNameExtension
-    {
-        return $this->get(Extension::OID_SUBJECT_ALT_NAME);
-    }
-
-    /**
-     * Check whether 'Issuer Alternative Name' extension is present.
-     *
-     * @return bool
-     */
-    public function hasIssuerAlternativeName(): bool
-    {
-        return $this->has(Extension::OID_ISSUER_ALT_NAME);
-    }
-
-    /**
-     * Get 'Issuer Alternative Name' extension.
-     *
-     * @return IssuerAlternativeNameExtension
-     */
-    public function issuerAlternativeName(): IssuerAlternativeNameExtension
-    {
-        return $this->get(Extension::OID_ISSUER_ALT_NAME);
-    }
-
-    /**
-     * Check whether 'Basic Constraints' extension is present.
-     *
-     * @return bool
-     */
-    public function hasBasicConstraints(): bool
-    {
-        return $this->has(Extension::OID_BASIC_CONSTRAINTS);
-    }
-
-    /**
-     * Get 'Basic Constraints' extension.
-     *
-     * @throws \LogicException If extension is not present
-     *
-     * @return BasicConstraintsExtension
-     */
-    public function basicConstraints(): BasicConstraintsExtension
-    {
-        return $this->get(Extension::OID_BASIC_CONSTRAINTS);
-    }
-
-    /**
-     * Check whether 'Name Constraints' extension is present.
-     *
-     * @return bool
-     */
-    public function hasNameConstraints(): bool
-    {
-        return $this->has(Extension::OID_NAME_CONSTRAINTS);
-    }
-
-    /**
-     * Get 'Name Constraints' extension.
-     *
-     * @throws \LogicException If extension is not present
-     *
-     * @return NameConstraintsExtension
-     */
-    public function nameConstraints(): NameConstraintsExtension
-    {
-        return $this->get(Extension::OID_NAME_CONSTRAINTS);
-    }
-
-    /**
-     * Check whether 'Policy Constraints' extension is present.
-     *
-     * @return bool
-     */
-    public function hasPolicyConstraints(): bool
-    {
-        return $this->has(Extension::OID_POLICY_CONSTRAINTS);
-    }
-
-    /**
-     * Get 'Policy Constraints' extension.
-     *
-     * @throws \LogicException If extension is not present
-     *
-     * @return PolicyConstraintsExtension
-     */
-    public function policyConstraints(): PolicyConstraintsExtension
-    {
-        return $this->get(Extension::OID_POLICY_CONSTRAINTS);
-    }
-
-    /**
-     * Check whether 'Extended Key Usage' extension is present.
-     *
-     * @return bool
-     */
-    public function hasExtendedKeyUsage(): bool
-    {
-        return $this->has(Extension::OID_EXT_KEY_USAGE);
-    }
-
-    /**
-     * Get 'Extended Key Usage' extension.
-     *
-     * @throws \LogicException If extension is not present
-     *
-     * @return ExtendedKeyUsageExtension
-     */
-    public function extendedKeyUsage(): ExtendedKeyUsageExtension
-    {
-        return $this->get(Extension::OID_EXT_KEY_USAGE);
-    }
-
-    /**
-     * Check whether 'CRL Distribution Points' extension is present.
-     *
-     * @return bool
-     */
-    public function hasCRLDistributionPoints(): bool
-    {
-        return $this->has(Extension::OID_CRL_DISTRIBUTION_POINTS);
-    }
-
-    /**
-     * Get 'CRL Distribution Points' extension.
-     *
-     * @throws \LogicException If extension is not present
-     *
-     * @return CRLDistributionPointsExtension
-     */
-    public function crlDistributionPoints(): CRLDistributionPointsExtension
-    {
-        return $this->get(Extension::OID_CRL_DISTRIBUTION_POINTS);
-    }
-
-    /**
-     * Check whether 'Inhibit anyPolicy' extension is present.
-     *
-     * @return bool
-     */
-    public function hasInhibitAnyPolicy(): bool
-    {
-        return $this->has(Extension::OID_INHIBIT_ANY_POLICY);
-    }
-
-    /**
-     * Get 'Inhibit anyPolicy' extension.
-     *
-     * @throws \LogicException If extension is not present
-     *
-     * @return InhibitAnyPolicyExtension
-     */
-    public function inhibitAnyPolicy(): InhibitAnyPolicyExtension
-    {
-        return $this->get(Extension::OID_INHIBIT_ANY_POLICY);
-    }
-
-    /**
-     * @see \Countable::count()
-     *
-     * @return int
-     */
-    public function count(): int
-    {
-        return count($this->_extensions);
-    }
-
-    /**
-     * Get iterator for extensions.
-     *
-     * @see \IteratorAggregate::getIterator()
-     *
-     * @return \Traversable
-     */
-    public function getIterator(): \Traversable
-    {
-        return new \ArrayIterator($this->_extensions);
-    }
+	/**
+	 * Extensions.
+	 *
+	 * @var Extension[]
+	 */
+	protected $_extensions;
+
+	/**
+	 * Constructor.
+	 *
+	 * @param Extension ...$extensions Extension objects
+	 */
+	public function __construct(Extension ...$extensions)
+	{
+		$this->_extensions = [];
+		foreach ($extensions as $ext) {
+			$this->_extensions[$ext->oid()] = $ext;
+		}
+	}
+
+	/**
+	 * Initialize from ASN.1.
+	 *
+	 * @param Sequence $seq
+	 *
+	 * @return self
+	 */
+	public static function fromASN1(Sequence $seq): Extensions
+	{
+		$extensions = array_map(
+			function (UnspecifiedType $el) {
+				return Extension::fromASN1($el->asSequence());
+			}, $seq->elements());
+		return new self(...$extensions);
+	}
+
+	/**
+	 * Generate ASN.1 structure.
+	 *
+	 * @return Sequence
+	 */
+	public function toASN1(): Sequence
+	{
+		$elements = array_values(
+			array_map(
+				function ($ext) {
+					return $ext->toASN1();
+				}, $this->_extensions));
+		return new Sequence(...$elements);
+	}
+
+	/**
+	 * Get self with extensions added.
+	 *
+	 * @param Extension ...$exts One or more extensions to add
+	 *
+	 * @return self
+	 */
+	public function withExtensions(Extension ...$exts): Extensions
+	{
+		$obj = clone $this;
+		foreach ($exts as $ext) {
+			$obj->_extensions[$ext->oid()] = $ext;
+		}
+		return $obj;
+	}
+
+	/**
+	 * Check whether extension is present.
+	 *
+	 * @param string $oid Extensions OID
+	 *
+	 * @return bool
+	 */
+	public function has(string $oid): bool
+	{
+		return isset($this->_extensions[$oid]);
+	}
+
+	/**
+	 * Get extension by OID.
+	 *
+	 * @param string $oid
+	 *
+	 * @throws \LogicException If extension is not present
+	 *
+	 * @return Extension
+	 */
+	public function get(string $oid): Extension
+	{
+		if (!$this->has($oid)) {
+			throw new \LogicException("No extension by OID {$oid}.");
+		}
+		return $this->_extensions[$oid];
+	}
+
+	/**
+	 * Check whether 'Authority Key Identifier' extension is present.
+	 *
+	 * @return bool
+	 */
+	public function hasAuthorityKeyIdentifier(): bool
+	{
+		return $this->has(Extension::OID_AUTHORITY_KEY_IDENTIFIER);
+	}
+
+	/**
+	 * Get 'Authority Key Identifier' extension.
+	 *
+	 * @throws \LogicException If extension is not present
+	 *
+	 * @return AuthorityKeyIdentifierExtension
+	 */
+	public function authorityKeyIdentifier(): AuthorityKeyIdentifierExtension
+	{
+		return $this->get(Extension::OID_AUTHORITY_KEY_IDENTIFIER);
+	}
+
+	/**
+	 * Check whether 'Subject Key Identifier' extension is present.
+	 *
+	 * @return bool
+	 */
+	public function hasSubjectKeyIdentifier(): bool
+	{
+		return $this->has(Extension::OID_SUBJECT_KEY_IDENTIFIER);
+	}
+
+	/**
+	 * Get 'Subject Key Identifier' extension.
+	 *
+	 * @throws \LogicException If extension is not present
+	 *
+	 * @return SubjectKeyIdentifierExtension
+	 */
+	public function subjectKeyIdentifier(): SubjectKeyIdentifierExtension
+	{
+		return $this->get(Extension::OID_SUBJECT_KEY_IDENTIFIER);
+	}
+
+	/**
+	 * Check whether 'Key Usage' extension is present.
+	 *
+	 * @return bool
+	 */
+	public function hasKeyUsage(): bool
+	{
+		return $this->has(Extension::OID_KEY_USAGE);
+	}
+
+	/**
+	 * Get 'Key Usage' extension.
+	 *
+	 * @throws \LogicException If extension is not present
+	 *
+	 * @return KeyUsageExtension
+	 */
+	public function keyUsage(): KeyUsageExtension
+	{
+		return $this->get(Extension::OID_KEY_USAGE);
+	}
+
+	/**
+	 * Check whether 'Certificate Policies' extension is present.
+	 *
+	 * @return bool
+	 */
+	public function hasCertificatePolicies(): bool
+	{
+		return $this->has(Extension::OID_CERTIFICATE_POLICIES);
+	}
+
+	/**
+	 * Get 'Certificate Policies' extension.
+	 *
+	 * @throws \LogicException If extension is not present
+	 *
+	 * @return CertificatePoliciesExtension
+	 */
+	public function certificatePolicies(): CertificatePoliciesExtension
+	{
+		return $this->get(Extension::OID_CERTIFICATE_POLICIES);
+	}
+
+	/**
+	 * Check whether 'Policy Mappings' extension is present.
+	 *
+	 * @return bool
+	 */
+	public function hasPolicyMappings(): bool
+	{
+		return $this->has(Extension::OID_POLICY_MAPPINGS);
+	}
+
+	/**
+	 * Get 'Policy Mappings' extension.
+	 *
+	 * @throws \LogicException If extension is not present
+	 *
+	 * @return PolicyMappingsExtension
+	 */
+	public function policyMappings(): PolicyMappingsExtension
+	{
+		return $this->get(Extension::OID_POLICY_MAPPINGS);
+	}
+
+	/**
+	 * Check whether 'Subject Alternative Name' extension is present.
+	 *
+	 * @return bool
+	 */
+	public function hasSubjectAlternativeName(): bool
+	{
+		return $this->has(Extension::OID_SUBJECT_ALT_NAME);
+	}
+
+	/**
+	 * Get 'Subject Alternative Name' extension.
+	 *
+	 * @throws \LogicException If extension is not present
+	 *
+	 * @return SubjectAlternativeNameExtension
+	 */
+	public function subjectAlternativeName(): SubjectAlternativeNameExtension
+	{
+		return $this->get(Extension::OID_SUBJECT_ALT_NAME);
+	}
+
+	/**
+	 * Check whether 'Issuer Alternative Name' extension is present.
+	 *
+	 * @return bool
+	 */
+	public function hasIssuerAlternativeName(): bool
+	{
+		return $this->has(Extension::OID_ISSUER_ALT_NAME);
+	}
+
+	/**
+	 * Get 'Issuer Alternative Name' extension.
+	 *
+	 * @return IssuerAlternativeNameExtension
+	 */
+	public function issuerAlternativeName(): IssuerAlternativeNameExtension
+	{
+		return $this->get(Extension::OID_ISSUER_ALT_NAME);
+	}
+
+	/**
+	 * Check whether 'Basic Constraints' extension is present.
+	 *
+	 * @return bool
+	 */
+	public function hasBasicConstraints(): bool
+	{
+		return $this->has(Extension::OID_BASIC_CONSTRAINTS);
+	}
+
+	/**
+	 * Get 'Basic Constraints' extension.
+	 *
+	 * @throws \LogicException If extension is not present
+	 *
+	 * @return BasicConstraintsExtension
+	 */
+	public function basicConstraints(): BasicConstraintsExtension
+	{
+		return $this->get(Extension::OID_BASIC_CONSTRAINTS);
+	}
+
+	/**
+	 * Check whether 'Name Constraints' extension is present.
+	 *
+	 * @return bool
+	 */
+	public function hasNameConstraints(): bool
+	{
+		return $this->has(Extension::OID_NAME_CONSTRAINTS);
+	}
+
+	/**
+	 * Get 'Name Constraints' extension.
+	 *
+	 * @throws \LogicException If extension is not present
+	 *
+	 * @return NameConstraintsExtension
+	 */
+	public function nameConstraints(): NameConstraintsExtension
+	{
+		return $this->get(Extension::OID_NAME_CONSTRAINTS);
+	}
+
+	/**
+	 * Check whether 'Policy Constraints' extension is present.
+	 *
+	 * @return bool
+	 */
+	public function hasPolicyConstraints(): bool
+	{
+		return $this->has(Extension::OID_POLICY_CONSTRAINTS);
+	}
+
+	/**
+	 * Get 'Policy Constraints' extension.
+	 *
+	 * @throws \LogicException If extension is not present
+	 *
+	 * @return PolicyConstraintsExtension
+	 */
+	public function policyConstraints(): PolicyConstraintsExtension
+	{
+		return $this->get(Extension::OID_POLICY_CONSTRAINTS);
+	}
+
+	/**
+	 * Check whether 'Extended Key Usage' extension is present.
+	 *
+	 * @return bool
+	 */
+	public function hasExtendedKeyUsage(): bool
+	{
+		return $this->has(Extension::OID_EXT_KEY_USAGE);
+	}
+
+	/**
+	 * Get 'Extended Key Usage' extension.
+	 *
+	 * @throws \LogicException If extension is not present
+	 *
+	 * @return ExtendedKeyUsageExtension
+	 */
+	public function extendedKeyUsage(): ExtendedKeyUsageExtension
+	{
+		return $this->get(Extension::OID_EXT_KEY_USAGE);
+	}
+
+	/**
+	 * Check whether 'CRL Distribution Points' extension is present.
+	 *
+	 * @return bool
+	 */
+	public function hasCRLDistributionPoints(): bool
+	{
+		return $this->has(Extension::OID_CRL_DISTRIBUTION_POINTS);
+	}
+
+	/**
+	 * Get 'CRL Distribution Points' extension.
+	 *
+	 * @throws \LogicException If extension is not present
+	 *
+	 * @return CRLDistributionPointsExtension
+	 */
+	public function crlDistributionPoints(): CRLDistributionPointsExtension
+	{
+		return $this->get(Extension::OID_CRL_DISTRIBUTION_POINTS);
+	}
+
+	/**
+	 * Check whether 'Inhibit anyPolicy' extension is present.
+	 *
+	 * @return bool
+	 */
+	public function hasInhibitAnyPolicy(): bool
+	{
+		return $this->has(Extension::OID_INHIBIT_ANY_POLICY);
+	}
+
+	/**
+	 * Get 'Inhibit anyPolicy' extension.
+	 *
+	 * @throws \LogicException If extension is not present
+	 *
+	 * @return InhibitAnyPolicyExtension
+	 */
+	public function inhibitAnyPolicy(): InhibitAnyPolicyExtension
+	{
+		return $this->get(Extension::OID_INHIBIT_ANY_POLICY);
+	}
+
+	/**
+	 * @see \Countable::count()
+	 *
+	 * @return int
+	 */
+	public function count(): int
+	{
+		return count($this->_extensions);
+	}
+
+	/**
+	 * Get iterator for extensions.
+	 *
+	 * @see \IteratorAggregate::getIterator()
+	 *
+	 * @return \Traversable
+	 */
+	public function getIterator(): \Traversable
+	{
+		return new \ArrayIterator($this->_extensions);
+	}
 }

lib/X509/Certificate/Extension/KeyUsageExtension.php

Indentation +149 added lines, -149 removed lines

@@ -15,153 +15,153 @@
  */
 class KeyUsageExtension extends Extension
 {
-    const DIGITAL_SIGNATURE = 0x100;
-    const NON_REPUDIATION = 0x080;
-    const KEY_ENCIPHERMENT = 0x040;
-    const DATA_ENCIPHERMENT = 0x020;
-    const KEY_AGREEMENT = 0x010;
-    const KEY_CERT_SIGN = 0x008;
-    const CRL_SIGN = 0x004;
-    const ENCIPHER_ONLY = 0x002;
-    const DECIPHER_ONLY = 0x001;
-
-    /**
-     * Key usage flags.
-     *
-     * @var int
-     */
-    protected $_keyUsage;
-
-    /**
-     * Constructor.
-     *
-     * @param bool $critical
-     * @param int  $keyUsage
-     */
-    public function __construct(bool $critical, int $keyUsage)
-    {
-        parent::__construct(self::OID_KEY_USAGE, $critical);
-        $this->_keyUsage = $keyUsage;
-    }
-
-    /**
-     * Check whether digitalSignature flag is set.
-     *
-     * @return bool
-     */
-    public function isDigitalSignature(): bool
-    {
-        return $this->_flagSet(self::DIGITAL_SIGNATURE);
-    }
-
-    /**
-     * Check whether nonRepudiation/contentCommitment flag is set.
-     *
-     * @return bool
-     */
-    public function isNonRepudiation(): bool
-    {
-        return $this->_flagSet(self::NON_REPUDIATION);
-    }
-
-    /**
-     * Check whether keyEncipherment flag is set.
-     *
-     * @return bool
-     */
-    public function isKeyEncipherment(): bool
-    {
-        return $this->_flagSet(self::KEY_ENCIPHERMENT);
-    }
-
-    /**
-     * Check whether dataEncipherment flag is set.
-     *
-     * @return bool
-     */
-    public function isDataEncipherment(): bool
-    {
-        return $this->_flagSet(self::DATA_ENCIPHERMENT);
-    }
-
-    /**
-     * Check whether keyAgreement flag is set.
-     *
-     * @return bool
-     */
-    public function isKeyAgreement(): bool
-    {
-        return $this->_flagSet(self::KEY_AGREEMENT);
-    }
-
-    /**
-     * Check whether keyCertSign flag is set.
-     *
-     * @return bool
-     */
-    public function isKeyCertSign(): bool
-    {
-        return $this->_flagSet(self::KEY_CERT_SIGN);
-    }
-
-    /**
-     * Check whether cRLSign flag is set.
-     *
-     * @return bool
-     */
-    public function isCRLSign(): bool
-    {
-        return $this->_flagSet(self::CRL_SIGN);
-    }
-
-    /**
-     * Check whether encipherOnly flag is set.
-     *
-     * @return bool
-     */
-    public function isEncipherOnly(): bool
-    {
-        return $this->_flagSet(self::ENCIPHER_ONLY);
-    }
-
-    /**
-     * Check whether decipherOnly flag is set.
-     *
-     * @return bool
-     */
-    public function isDecipherOnly(): bool
-    {
-        return $this->_flagSet(self::DECIPHER_ONLY);
-    }
-
-    /**
-     * Check whether given flag is set.
-     *
-     * @param int $flag
-     *
-     * @return bool
-     */
-    protected function _flagSet(int $flag): bool
-    {
-        return (bool) ($this->_keyUsage & $flag);
-    }
-
-    /**
-     * {@inheritdoc}
-     */
-    protected static function _fromDER(string $data, bool $critical): Extension
-    {
-        return new self($critical,
-            Flags::fromBitString(
-                UnspecifiedType::fromDER($data)->asBitString(), 9)->intNumber());
-    }
-
-    /**
-     * {@inheritdoc}
-     */
-    protected function _valueASN1(): Element
-    {
-        $flags = new Flags($this->_keyUsage, 9);
-        return $flags->bitString()->withoutTrailingZeroes();
-    }
+	const DIGITAL_SIGNATURE = 0x100;
+	const NON_REPUDIATION = 0x080;
+	const KEY_ENCIPHERMENT = 0x040;
+	const DATA_ENCIPHERMENT = 0x020;
+	const KEY_AGREEMENT = 0x010;
+	const KEY_CERT_SIGN = 0x008;
+	const CRL_SIGN = 0x004;
+	const ENCIPHER_ONLY = 0x002;
+	const DECIPHER_ONLY = 0x001;
+
+	/**
+	 * Key usage flags.
+	 *
+	 * @var int
+	 */
+	protected $_keyUsage;
+
+	/**
+	 * Constructor.
+	 *
+	 * @param bool $critical
+	 * @param int  $keyUsage
+	 */
+	public function __construct(bool $critical, int $keyUsage)
+	{
+		parent::__construct(self::OID_KEY_USAGE, $critical);
+		$this->_keyUsage = $keyUsage;
+	}
+
+	/**
+	 * Check whether digitalSignature flag is set.
+	 *
+	 * @return bool
+	 */
+	public function isDigitalSignature(): bool
+	{
+		return $this->_flagSet(self::DIGITAL_SIGNATURE);
+	}
+
+	/**
+	 * Check whether nonRepudiation/contentCommitment flag is set.
+	 *
+	 * @return bool
+	 */
+	public function isNonRepudiation(): bool
+	{
+		return $this->_flagSet(self::NON_REPUDIATION);
+	}
+
+	/**
+	 * Check whether keyEncipherment flag is set.
+	 *
+	 * @return bool
+	 */
+	public function isKeyEncipherment(): bool
+	{
+		return $this->_flagSet(self::KEY_ENCIPHERMENT);
+	}
+
+	/**
+	 * Check whether dataEncipherment flag is set.
+	 *
+	 * @return bool
+	 */
+	public function isDataEncipherment(): bool
+	{
+		return $this->_flagSet(self::DATA_ENCIPHERMENT);
+	}
+
+	/**
+	 * Check whether keyAgreement flag is set.
+	 *
+	 * @return bool
+	 */
+	public function isKeyAgreement(): bool
+	{
+		return $this->_flagSet(self::KEY_AGREEMENT);
+	}
+
+	/**
+	 * Check whether keyCertSign flag is set.
+	 *
+	 * @return bool
+	 */
+	public function isKeyCertSign(): bool
+	{
+		return $this->_flagSet(self::KEY_CERT_SIGN);
+	}
+
+	/**
+	 * Check whether cRLSign flag is set.
+	 *
+	 * @return bool
+	 */
+	public function isCRLSign(): bool
+	{
+		return $this->_flagSet(self::CRL_SIGN);
+	}
+
+	/**
+	 * Check whether encipherOnly flag is set.
+	 *
+	 * @return bool
+	 */
+	public function isEncipherOnly(): bool
+	{
+		return $this->_flagSet(self::ENCIPHER_ONLY);
+	}
+
+	/**
+	 * Check whether decipherOnly flag is set.
+	 *
+	 * @return bool
+	 */
+	public function isDecipherOnly(): bool
+	{
+		return $this->_flagSet(self::DECIPHER_ONLY);
+	}
+
+	/**
+	 * Check whether given flag is set.
+	 *
+	 * @param int $flag
+	 *
+	 * @return bool
+	 */
+	protected function _flagSet(int $flag): bool
+	{
+		return (bool) ($this->_keyUsage & $flag);
+	}
+
+	/**
+	 * {@inheritdoc}
+	 */
+	protected static function _fromDER(string $data, bool $critical): Extension
+	{
+		return new self($critical,
+			Flags::fromBitString(
+				UnspecifiedType::fromDER($data)->asBitString(), 9)->intNumber());
+	}
+
+	/**
+	 * {@inheritdoc}
+	 */
+	protected function _valueASN1(): Element
+	{
+		$flags = new Flags($this->_keyUsage, 9);
+		return $flags->bitString()->withoutTrailingZeroes();
+	}
 }

lib/X509/Certificate/Extension/NoRevocationAvailableExtension.php

Indentation +24 added lines, -24 removed lines

@@ -14,30 +14,30 @@
  */
 class NoRevocationAvailableExtension extends Extension
 {
-    /**
-     * Constructor.
-     *
-     * @param bool $critical
-     */
-    public function __construct(bool $critical)
-    {
-        parent::__construct(self::OID_NO_REV_AVAIL, $critical);
-    }
+	/**
+	 * Constructor.
+	 *
+	 * @param bool $critical
+	 */
+	public function __construct(bool $critical)
+	{
+		parent::__construct(self::OID_NO_REV_AVAIL, $critical);
+	}
 
-    /**
-     * {@inheritdoc}
-     */
-    protected static function _fromDER(string $data, bool $critical): Extension
-    {
-        NullType::fromDER($data);
-        return new self($critical);
-    }
+	/**
+	 * {@inheritdoc}
+	 */
+	protected static function _fromDER(string $data, bool $critical): Extension
+	{
+		NullType::fromDER($data);
+		return new self($critical);
+	}
 
-    /**
-     * {@inheritdoc}
-     */
-    protected function _valueASN1(): Element
-    {
-        return new NullType();
-    }
+	/**
+	 * {@inheritdoc}
+	 */
+	protected function _valueASN1(): Element
+	{
+		return new NullType();
+	}
 }

lib/X509/Certificate/Extension/DistributionPoint/RelativeName.php

Indentation +32 added lines, -32 removed lines

@@ -16,39 +16,39 @@
  */
 class RelativeName extends DistributionPointName
 {
-    /**
-     * Relative distinguished name.
-     *
-     * @var RDN
-     */
-    protected $_rdn;
+	/**
+	 * Relative distinguished name.
+	 *
+	 * @var RDN
+	 */
+	protected $_rdn;
 
-    /**
-     * Constructor.
-     *
-     * @param RDN $rdn
-     */
-    public function __construct(RDN $rdn)
-    {
-        $this->_tag = self::TAG_RDN;
-        $this->_rdn = $rdn;
-    }
+	/**
+	 * Constructor.
+	 *
+	 * @param RDN $rdn
+	 */
+	public function __construct(RDN $rdn)
+	{
+		$this->_tag = self::TAG_RDN;
+		$this->_rdn = $rdn;
+	}
 
-    /**
-     * Get RDN.
-     *
-     * @return RDN
-     */
-    public function rdn(): RDN
-    {
-        return $this->_rdn;
-    }
+	/**
+	 * Get RDN.
+	 *
+	 * @return RDN
+	 */
+	public function rdn(): RDN
+	{
+		return $this->_rdn;
+	}
 
-    /**
-     * {@inheritdoc}
-     */
-    protected function _valueASN1(): Element
-    {
-        return $this->_rdn->toASN1();
-    }
+	/**
+	 * {@inheritdoc}
+	 */
+	protected function _valueASN1(): Element
+	{
+		return $this->_rdn->toASN1();
+	}
 }

lib/X509/Certificate/Extension/DistributionPoint/ReasonFlags.php

Indentation +141 added lines, -141 removed lines

@@ -15,145 +15,145 @@
  */
 class ReasonFlags
 {
-    // const UNUSED = 0x100;
-    const KEY_COMPROMISE = 0x080;
-    const CA_COMPROMISE = 0x040;
-    const AFFILIATION_CHANGED = 0x020;
-    const SUPERSEDED = 0x010;
-    const CESSATION_OF_OPERATION = 0x008;
-    const CERTIFICATE_HOLD = 0x004;
-    const PRIVILEGE_WITHDRAWN = 0x002;
-    const AA_COMPROMISE = 0x001;
-
-    /**
-     * Flags.
-     *
-     * @var int
-     */
-    protected $_flags;
-
-    /**
-     * Constructor.
-     *
-     * @param int $flags
-     */
-    public function __construct(int $flags)
-    {
-        $this->_flags = $flags;
-    }
-
-    /**
-     * Initialize from ASN.1.
-     *
-     * @param BitString $bs
-     *
-     * @return self
-     */
-    public static function fromASN1(BitString $bs): self
-    {
-        return new self(Flags::fromBitString($bs, 9)->intNumber());
-    }
-
-    /**
-     * Check whether keyCompromise flag is set.
-     *
-     * @return bool
-     */
-    public function isKeyCompromise(): bool
-    {
-        return $this->_flagSet(self::KEY_COMPROMISE);
-    }
-
-    /**
-     * Check whether cACompromise flag is set.
-     *
-     * @return bool
-     */
-    public function isCACompromise(): bool
-    {
-        return $this->_flagSet(self::CA_COMPROMISE);
-    }
-
-    /**
-     * Check whether affiliationChanged flag is set.
-     *
-     * @return bool
-     */
-    public function isAffiliationChanged(): bool
-    {
-        return $this->_flagSet(self::AFFILIATION_CHANGED);
-    }
-
-    /**
-     * Check whether superseded flag is set.
-     *
-     * @return bool
-     */
-    public function isSuperseded(): bool
-    {
-        return $this->_flagSet(self::SUPERSEDED);
-    }
-
-    /**
-     * Check whether cessationOfOperation flag is set.
-     *
-     * @return bool
-     */
-    public function isCessationOfOperation(): bool
-    {
-        return $this->_flagSet(self::CESSATION_OF_OPERATION);
-    }
-
-    /**
-     * Check whether certificateHold flag is set.
-     *
-     * @return bool
-     */
-    public function isCertificateHold(): bool
-    {
-        return $this->_flagSet(self::CERTIFICATE_HOLD);
-    }
-
-    /**
-     * Check whether privilegeWithdrawn flag is set.
-     *
-     * @return bool
-     */
-    public function isPrivilegeWithdrawn(): bool
-    {
-        return $this->_flagSet(self::PRIVILEGE_WITHDRAWN);
-    }
-
-    /**
-     * Check whether aACompromise flag is set.
-     *
-     * @return bool
-     */
-    public function isAACompromise(): bool
-    {
-        return $this->_flagSet(self::AA_COMPROMISE);
-    }
-
-    /**
-     * Generate ASN.1 element.
-     *
-     * @return BitString
-     */
-    public function toASN1(): BitString
-    {
-        $flags = new Flags($this->_flags, 9);
-        return $flags->bitString()->withoutTrailingZeroes();
-    }
-
-    /**
-     * Check whether given flag is set.
-     *
-     * @param int $flag
-     *
-     * @return bool
-     */
-    protected function _flagSet(int $flag): bool
-    {
-        return (bool) ($this->_flags & $flag);
-    }
+	// const UNUSED = 0x100;
+	const KEY_COMPROMISE = 0x080;
+	const CA_COMPROMISE = 0x040;
+	const AFFILIATION_CHANGED = 0x020;
+	const SUPERSEDED = 0x010;
+	const CESSATION_OF_OPERATION = 0x008;
+	const CERTIFICATE_HOLD = 0x004;
+	const PRIVILEGE_WITHDRAWN = 0x002;
+	const AA_COMPROMISE = 0x001;
+
+	/**
+	 * Flags.
+	 *
+	 * @var int
+	 */
+	protected $_flags;
+
+	/**
+	 * Constructor.
+	 *
+	 * @param int $flags
+	 */
+	public function __construct(int $flags)
+	{
+		$this->_flags = $flags;
+	}
+
+	/**
+	 * Initialize from ASN.1.
+	 *
+	 * @param BitString $bs
+	 *
+	 * @return self
+	 */
+	public static function fromASN1(BitString $bs): self
+	{
+		return new self(Flags::fromBitString($bs, 9)->intNumber());
+	}
+
+	/**
+	 * Check whether keyCompromise flag is set.
+	 *
+	 * @return bool
+	 */
+	public function isKeyCompromise(): bool
+	{
+		return $this->_flagSet(self::KEY_COMPROMISE);
+	}
+
+	/**
+	 * Check whether cACompromise flag is set.
+	 *
+	 * @return bool
+	 */
+	public function isCACompromise(): bool
+	{
+		return $this->_flagSet(self::CA_COMPROMISE);
+	}
+
+	/**
+	 * Check whether affiliationChanged flag is set.
+	 *
+	 * @return bool
+	 */
+	public function isAffiliationChanged(): bool
+	{
+		return $this->_flagSet(self::AFFILIATION_CHANGED);
+	}
+
+	/**
+	 * Check whether superseded flag is set.
+	 *
+	 * @return bool
+	 */
+	public function isSuperseded(): bool
+	{
+		return $this->_flagSet(self::SUPERSEDED);
+	}
+
+	/**
+	 * Check whether cessationOfOperation flag is set.
+	 *
+	 * @return bool
+	 */
+	public function isCessationOfOperation(): bool
+	{
+		return $this->_flagSet(self::CESSATION_OF_OPERATION);
+	}
+
+	/**
+	 * Check whether certificateHold flag is set.
+	 *
+	 * @return bool
+	 */
+	public function isCertificateHold(): bool
+	{
+		return $this->_flagSet(self::CERTIFICATE_HOLD);
+	}
+
+	/**
+	 * Check whether privilegeWithdrawn flag is set.
+	 *
+	 * @return bool
+	 */
+	public function isPrivilegeWithdrawn(): bool
+	{
+		return $this->_flagSet(self::PRIVILEGE_WITHDRAWN);
+	}
+
+	/**
+	 * Check whether aACompromise flag is set.
+	 *
+	 * @return bool
+	 */
+	public function isAACompromise(): bool
+	{
+		return $this->_flagSet(self::AA_COMPROMISE);
+	}
+
+	/**
+	 * Generate ASN.1 element.
+	 *
+	 * @return BitString
+	 */
+	public function toASN1(): BitString
+	{
+		$flags = new Flags($this->_flags, 9);
+		return $flags->bitString()->withoutTrailingZeroes();
+	}
+
+	/**
+	 * Check whether given flag is set.
+	 *
+	 * @param int $flag
+	 *
+	 * @return bool
+	 */
+	protected function _flagSet(int $flag): bool
+	{
+		return (bool) ($this->_flags & $flag);
+	}
 }

lib/X509/Certificate/Extension/DistributionPoint/FullName.php

Indentation +43 added lines, -43 removed lines

@@ -16,51 +16,51 @@
  */
 class FullName extends DistributionPointName
 {
-    /**
-     * Names.
-     *
-     * @var GeneralNames
-     */
-    protected $_names;
+	/**
+	 * Names.
+	 *
+	 * @var GeneralNames
+	 */
+	protected $_names;
 
-    /**
-     * Constructor.
-     *
-     * @param GeneralNames $names
-     */
-    public function __construct(GeneralNames $names)
-    {
-        $this->_tag = self::TAG_FULL_NAME;
-        $this->_names = $names;
-    }
+	/**
+	 * Constructor.
+	 *
+	 * @param GeneralNames $names
+	 */
+	public function __construct(GeneralNames $names)
+	{
+		$this->_tag = self::TAG_FULL_NAME;
+		$this->_names = $names;
+	}
 
-    /**
-     * Initialize with a single URI.
-     *
-     * @param string $uri
-     *
-     * @return self
-     */
-    public static function fromURI(string $uri): self
-    {
-        return new self(new GeneralNames(new UniformResourceIdentifier($uri)));
-    }
+	/**
+	 * Initialize with a single URI.
+	 *
+	 * @param string $uri
+	 *
+	 * @return self
+	 */
+	public static function fromURI(string $uri): self
+	{
+		return new self(new GeneralNames(new UniformResourceIdentifier($uri)));
+	}
 
-    /**
-     * Get names.
-     *
-     * @return GeneralNames
-     */
-    public function names(): GeneralNames
-    {
-        return $this->_names;
-    }
+	/**
+	 * Get names.
+	 *
+	 * @return GeneralNames
+	 */
+	public function names(): GeneralNames
+	{
+		return $this->_names;
+	}
 
-    /**
-     * {@inheritdoc}
-     */
-    protected function _valueASN1(): Element
-    {
-        return $this->_names->toASN1();
-    }
+	/**
+	 * {@inheritdoc}
+	 */
+	protected function _valueASN1(): Element
+	{
+		return $this->_names->toASN1();
+	}
 }

lib/X509/Certificate/Extension/DistributionPoint/DistributionPointName.php

Indentation +56 added lines, -56 removed lines

@@ -18,65 +18,65 @@
  */
 abstract class DistributionPointName
 {
-    const TAG_FULL_NAME = 0;
-    const TAG_RDN = 1;
+	const TAG_FULL_NAME = 0;
+	const TAG_RDN = 1;
 
-    /**
-     * Type.
-     *
-     * @var int
-     */
-    protected $_tag;
+	/**
+	 * Type.
+	 *
+	 * @var int
+	 */
+	protected $_tag;
 
-    /**
-     * Initialize from TaggedType.
-     *
-     * @param TaggedType $el
-     *
-     * @throws \UnexpectedValueException
-     *
-     * @return self
-     */
-    public static function fromTaggedType(TaggedType $el): self
-    {
-        switch ($el->tag()) {
-            case self::TAG_FULL_NAME:
-                return new FullName(
-                    GeneralNames::fromASN1(
-                        $el->asImplicit(Element::TYPE_SEQUENCE)->asSequence()));
-            case self::TAG_RDN:
-                return new RelativeName(
-                    RDN::fromASN1($el->asImplicit(Element::TYPE_SET)->asSet()));
-            default:
-                throw new \UnexpectedValueException(
-                    'DistributionPointName tag ' . $el->tag() . ' not supported.');
-        }
-    }
+	/**
+	 * Initialize from TaggedType.
+	 *
+	 * @param TaggedType $el
+	 *
+	 * @throws \UnexpectedValueException
+	 *
+	 * @return self
+	 */
+	public static function fromTaggedType(TaggedType $el): self
+	{
+		switch ($el->tag()) {
+			case self::TAG_FULL_NAME:
+				return new FullName(
+					GeneralNames::fromASN1(
+						$el->asImplicit(Element::TYPE_SEQUENCE)->asSequence()));
+			case self::TAG_RDN:
+				return new RelativeName(
+					RDN::fromASN1($el->asImplicit(Element::TYPE_SET)->asSet()));
+			default:
+				throw new \UnexpectedValueException(
+					'DistributionPointName tag ' . $el->tag() . ' not supported.');
+		}
+	}
 
-    /**
-     * Get type tag.
-     *
-     * @return int
-     */
-    public function tag(): int
-    {
-        return $this->_tag;
-    }
+	/**
+	 * Get type tag.
+	 *
+	 * @return int
+	 */
+	public function tag(): int
+	{
+		return $this->_tag;
+	}
 
-    /**
-     * Generate ASN.1 structure.
-     *
-     * @return ImplicitlyTaggedType
-     */
-    public function toASN1(): ImplicitlyTaggedType
-    {
-        return new ImplicitlyTaggedType($this->_tag, $this->_valueASN1());
-    }
+	/**
+	 * Generate ASN.1 structure.
+	 *
+	 * @return ImplicitlyTaggedType
+	 */
+	public function toASN1(): ImplicitlyTaggedType
+	{
+		return new ImplicitlyTaggedType($this->_tag, $this->_valueASN1());
+	}
 
-    /**
-     * Generate ASN.1 element.
-     *
-     * @return Element
-     */
-    abstract protected function _valueASN1(): Element;
+	/**
+	 * Generate ASN.1 element.
+	 *
+	 * @return Element
+	 */
+	abstract protected function _valueASN1(): Element;
 }

lib/X509/Certificate/Extension/DistributionPoint/DistributionPoint.php

Indentation +213 added lines, -213 removed lines

@@ -18,217 +18,217 @@
  */
 class DistributionPoint
 {
-    /**
-     * Distribution point name.
-     *
-     * @var null|DistributionPointName
-     */
-    protected $_distributionPoint;
-
-    /**
-     * Revocation reason.
-     *
-     * @var null|ReasonFlags
-     */
-    protected $_reasons;
-
-    /**
-     * CRL issuer.
-     *
-     * @var null|GeneralNames
-     */
-    protected $_issuer;
-
-    /**
-     * Constructor.
-     *
-     * @param null|DistributionPointName $name
-     * @param null|ReasonFlags           $reasons
-     * @param null|GeneralNames          $issuer
-     */
-    public function __construct(?DistributionPointName $name = null,
-        ?ReasonFlags $reasons = null, ?GeneralNames $issuer = null)
-    {
-        $this->_distributionPoint = $name;
-        $this->_reasons = $reasons;
-        $this->_issuer = $issuer;
-    }
-
-    /**
-     * Initialize from ASN.1.
-     *
-     * @param Sequence $seq
-     *
-     * @return self
-     */
-    public static function fromASN1(Sequence $seq): self
-    {
-        $name = null;
-        $reasons = null;
-        $issuer = null;
-        if ($seq->hasTagged(0)) {
-            // promoted to explicit tagging because underlying type is CHOICE
-            $name = DistributionPointName::fromTaggedType(
-                $seq->getTagged(0)->asExplicit()->asTagged());
-        }
-        if ($seq->hasTagged(1)) {
-            $reasons = ReasonFlags::fromASN1(
-                $seq->getTagged(1)->asImplicit(Element::TYPE_BIT_STRING)
-                    ->asBitString());
-        }
-        if ($seq->hasTagged(2)) {
-            $issuer = GeneralNames::fromASN1(
-                $seq->getTagged(2)->asImplicit(Element::TYPE_SEQUENCE)
-                    ->asSequence());
-        }
-        return new self($name, $reasons, $issuer);
-    }
-
-    /**
-     * Check whether distribution point name is set.
-     *
-     * @return bool
-     */
-    public function hasDistributionPointName(): bool
-    {
-        return isset($this->_distributionPoint);
-    }
-
-    /**
-     * Get distribution point name.
-     *
-     * @throws \LogicException If not set
-     *
-     * @return DistributionPointName
-     */
-    public function distributionPointName(): DistributionPointName
-    {
-        if (!$this->hasDistributionPointName()) {
-            throw new \LogicException('distributionPoint not set.');
-        }
-        return $this->_distributionPoint;
-    }
-
-    /**
-     * Check whether distribution point name is set and it's a full name.
-     *
-     * @return bool
-     */
-    public function hasFullName(): bool
-    {
-        return DistributionPointName::TAG_FULL_NAME ===
-             $this->distributionPointName()->tag();
-    }
-
-    /**
-     * Get full distribution point name.
-     *
-     * @throws \LogicException If not set
-     *
-     * @return FullName
-     */
-    public function fullName(): FullName
-    {
-        if (!$this->hasFullName()) {
-            throw new \LogicException('fullName not set.');
-        }
-        return $this->_distributionPoint;
-    }
-
-    /**
-     * Check whether distribution point name is set and it's a relative name.
-     *
-     * @return bool
-     */
-    public function hasRelativeName(): bool
-    {
-        return DistributionPointName::TAG_RDN ===
-             $this->distributionPointName()->tag();
-    }
-
-    /**
-     * Get relative distribution point name.
-     *
-     * @throws \LogicException If not set
-     *
-     * @return RelativeName
-     */
-    public function relativeName(): RelativeName
-    {
-        if (!$this->hasRelativeName()) {
-            throw new \LogicException('nameRelativeToCRLIssuer not set.');
-        }
-        return $this->_distributionPoint;
-    }
-
-    /**
-     * Check whether reasons flags is set.
-     *
-     * @return bool
-     */
-    public function hasReasons(): bool
-    {
-        return isset($this->_reasons);
-    }
-
-    /**
-     * Get revocation reason flags.
-     *
-     * @throws \LogicException If not set
-     *
-     * @return ReasonFlags
-     */
-    public function reasons(): ReasonFlags
-    {
-        if (!$this->hasReasons()) {
-            throw new \LogicException('reasons not set.');
-        }
-        return $this->_reasons;
-    }
-
-    /**
-     * Check whether cRLIssuer is set.
-     *
-     * @return bool
-     */
-    public function hasCRLIssuer(): bool
-    {
-        return isset($this->_issuer);
-    }
-
-    /**
-     * Get CRL issuer.
-     *
-     * @throws \LogicException If not set
-     *
-     * @return GeneralNames
-     */
-    public function crlIssuer(): GeneralNames
-    {
-        if (!$this->hasCRLIssuer()) {
-            throw new \LogicException('crlIssuer not set.');
-        }
-        return $this->_issuer;
-    }
-
-    /**
-     * Generate ASN.1 structure.
-     *
-     * @return Sequence
-     */
-    public function toASN1(): Sequence
-    {
-        $elements = [];
-        if (isset($this->_distributionPoint)) {
-            $elements[] = new ExplicitlyTaggedType(0,
-                $this->_distributionPoint->toASN1());
-        }
-        if (isset($this->_reasons)) {
-            $elements[] = new ImplicitlyTaggedType(1, $this->_reasons->toASN1());
-        }
-        if (isset($this->_issuer)) {
-            $elements[] = new ImplicitlyTaggedType(2, $this->_issuer->toASN1());
-        }
-        return new Sequence(...$elements);
-    }
+	/**
+	 * Distribution point name.
+	 *
+	 * @var null|DistributionPointName
+	 */
+	protected $_distributionPoint;
+
+	/**
+	 * Revocation reason.
+	 *
+	 * @var null|ReasonFlags
+	 */
+	protected $_reasons;
+
+	/**
+	 * CRL issuer.
+	 *
+	 * @var null|GeneralNames
+	 */
+	protected $_issuer;
+
+	/**
+	 * Constructor.
+	 *
+	 * @param null|DistributionPointName $name
+	 * @param null|ReasonFlags           $reasons
+	 * @param null|GeneralNames          $issuer
+	 */
+	public function __construct(?DistributionPointName $name = null,
+		?ReasonFlags $reasons = null, ?GeneralNames $issuer = null)
+	{
+		$this->_distributionPoint = $name;
+		$this->_reasons = $reasons;
+		$this->_issuer = $issuer;
+	}
+
+	/**
+	 * Initialize from ASN.1.
+	 *
+	 * @param Sequence $seq
+	 *
+	 * @return self
+	 */
+	public static function fromASN1(Sequence $seq): self
+	{
+		$name = null;
+		$reasons = null;
+		$issuer = null;
+		if ($seq->hasTagged(0)) {
+			// promoted to explicit tagging because underlying type is CHOICE
+			$name = DistributionPointName::fromTaggedType(
+				$seq->getTagged(0)->asExplicit()->asTagged());
+		}
+		if ($seq->hasTagged(1)) {
+			$reasons = ReasonFlags::fromASN1(
+				$seq->getTagged(1)->asImplicit(Element::TYPE_BIT_STRING)
+					->asBitString());
+		}
+		if ($seq->hasTagged(2)) {
+			$issuer = GeneralNames::fromASN1(
+				$seq->getTagged(2)->asImplicit(Element::TYPE_SEQUENCE)
+					->asSequence());
+		}
+		return new self($name, $reasons, $issuer);
+	}
+
+	/**
+	 * Check whether distribution point name is set.
+	 *
+	 * @return bool
+	 */
+	public function hasDistributionPointName(): bool
+	{
+		return isset($this->_distributionPoint);
+	}
+
+	/**
+	 * Get distribution point name.
+	 *
+	 * @throws \LogicException If not set
+	 *
+	 * @return DistributionPointName
+	 */
+	public function distributionPointName(): DistributionPointName
+	{
+		if (!$this->hasDistributionPointName()) {
+			throw new \LogicException('distributionPoint not set.');
+		}
+		return $this->_distributionPoint;
+	}
+
+	/**
+	 * Check whether distribution point name is set and it's a full name.
+	 *
+	 * @return bool
+	 */
+	public function hasFullName(): bool
+	{
+		return DistributionPointName::TAG_FULL_NAME ===
+			 $this->distributionPointName()->tag();
+	}
+
+	/**
+	 * Get full distribution point name.
+	 *
+	 * @throws \LogicException If not set
+	 *
+	 * @return FullName
+	 */
+	public function fullName(): FullName
+	{
+		if (!$this->hasFullName()) {
+			throw new \LogicException('fullName not set.');
+		}
+		return $this->_distributionPoint;
+	}
+
+	/**
+	 * Check whether distribution point name is set and it's a relative name.
+	 *
+	 * @return bool
+	 */
+	public function hasRelativeName(): bool
+	{
+		return DistributionPointName::TAG_RDN ===
+			 $this->distributionPointName()->tag();
+	}
+
+	/**
+	 * Get relative distribution point name.
+	 *
+	 * @throws \LogicException If not set
+	 *
+	 * @return RelativeName
+	 */
+	public function relativeName(): RelativeName
+	{
+		if (!$this->hasRelativeName()) {
+			throw new \LogicException('nameRelativeToCRLIssuer not set.');
+		}
+		return $this->_distributionPoint;
+	}
+
+	/**
+	 * Check whether reasons flags is set.
+	 *
+	 * @return bool
+	 */
+	public function hasReasons(): bool
+	{
+		return isset($this->_reasons);
+	}
+
+	/**
+	 * Get revocation reason flags.
+	 *
+	 * @throws \LogicException If not set
+	 *
+	 * @return ReasonFlags
+	 */
+	public function reasons(): ReasonFlags
+	{
+		if (!$this->hasReasons()) {
+			throw new \LogicException('reasons not set.');
+		}
+		return $this->_reasons;
+	}
+
+	/**
+	 * Check whether cRLIssuer is set.
+	 *
+	 * @return bool
+	 */
+	public function hasCRLIssuer(): bool
+	{
+		return isset($this->_issuer);
+	}
+
+	/**
+	 * Get CRL issuer.
+	 *
+	 * @throws \LogicException If not set
+	 *
+	 * @return GeneralNames
+	 */
+	public function crlIssuer(): GeneralNames
+	{
+		if (!$this->hasCRLIssuer()) {
+			throw new \LogicException('crlIssuer not set.');
+		}
+		return $this->_issuer;
+	}
+
+	/**
+	 * Generate ASN.1 structure.
+	 *
+	 * @return Sequence
+	 */
+	public function toASN1(): Sequence
+	{
+		$elements = [];
+		if (isset($this->_distributionPoint)) {
+			$elements[] = new ExplicitlyTaggedType(0,
+				$this->_distributionPoint->toASN1());
+		}
+		if (isset($this->_reasons)) {
+			$elements[] = new ImplicitlyTaggedType(1, $this->_reasons->toASN1());
+		}
+		if (isset($this->_issuer)) {
+			$elements[] = new ImplicitlyTaggedType(2, $this->_issuer->toASN1());
+		}
+		return new Sequence(...$elements);
+	}
 }