sop / x509

lib/X509/Certificate/Extension/Extension.php

Indentation +258 added lines, -258 removed lines

@@ -18,277 +18,277 @@
  */
 abstract class Extension
 {
-    // OID's from standard certificate extensions
-    const OID_OBSOLETE_AUTHORITY_KEY_IDENTIFIER = '2.5.29.1';
-    const OID_OBSOLETE_KEY_ATTRIBUTES = '2.5.29.2';
-    const OID_OBSOLETE_CERTIFICATE_POLICIES = '2.5.29.3';
-    const OID_OBSOLETE_KEY_USAGE_RESTRICTION = '2.5.29.4';
-    const OID_OBSOLETE_POLICY_MAPPING = '2.5.29.5';
-    const OID_OBSOLETE_SUBTREES_CONSTRAINT = '2.5.29.6';
-    const OID_OBSOLETE_SUBJECT_ALT_NAME = '2.5.29.7';
-    const OID_OBSOLETE_ISSUER_ALT_NAME = '2.5.29.8';
-    const OID_SUBJECT_DIRECTORY_ATTRIBUTES = '2.5.29.9';
-    const OID_OBSOLETE_BASIC_CONSTRAINTS = '2.5.29.10';
-    const OID_SUBJECT_KEY_IDENTIFIER = '2.5.29.14';
-    const OID_KEY_USAGE = '2.5.29.15';
-    const OID_PRIVATE_KEY_USAGE_PERIOD = '2.5.29.16';
-    const OID_SUBJECT_ALT_NAME = '2.5.29.17';
-    const OID_ISSUER_ALT_NAME = '2.5.29.18';
-    const OID_BASIC_CONSTRAINTS = '2.5.29.19';
-    const OID_CRL_NUMBER = '2.5.29.20';
-    const OID_REASON_CODE = '2.5.29.21';
-    const OID_OBSOLETE_EXPIRATION_DATE = '2.5.29.22';
-    const OID_INSTRUCTION_CODE = '2.5.29.23';
-    const OID_INVALIDITY_DATE = '2.5.29.24';
-    const OID_OBSOLETE_CRL_DISTRIBUTION_POINTS = '2.5.29.25';
-    const OID_OBSOLETE_ISSUING_DISTRIBUTION_POINT = '2.5.29.26';
-    const OID_DELTA_CRL_INDICATOR = '2.5.29.27';
-    const OID_ISSUING_DISTRIBUTION_POINT = '2.5.29.28';
-    const OID_CERTIFICATE_ISSUER = '2.5.29.29';
-    const OID_NAME_CONSTRAINTS = '2.5.29.30';
-    const OID_CRL_DISTRIBUTION_POINTS = '2.5.29.31';
-    const OID_CERTIFICATE_POLICIES = '2.5.29.32';
-    const OID_POLICY_MAPPINGS = '2.5.29.33';
-    const OID_OBSOLETE_POLICY_CONSTRAINTS = '2.5.29.34';
-    const OID_AUTHORITY_KEY_IDENTIFIER = '2.5.29.35';
-    const OID_POLICY_CONSTRAINTS = '2.5.29.36';
-    const OID_EXT_KEY_USAGE = '2.5.29.37';
-    const OID_AUTHORITY_ATTRIBUTE_IDENTIFIER = '2.5.29.38';
-    const OID_ROLE_SPEC_CERT_IDENTIFIER = '2.5.29.39';
-    const OID_CRL_STREAM_IDENTIFIER = '2.5.29.40';
-    const OID_BASIC_ATT_CONSTRAINTS = '2.5.29.41';
-    const OID_DELEGATED_NAME_CONSTRAINTS = '2.5.29.42';
-    const OID_TIME_SPECIFICATION = '2.5.29.43';
-    const OID_CRL_SCOPE = '2.5.29.44';
-    const OID_STATUS_REFERRALS = '2.5.29.45';
-    const OID_FRESHEST_CRL = '2.5.29.46';
-    const OID_ORDERED_LIST = '2.5.29.47';
-    const OID_ATTRIBUTE_DESCRIPTOR = '2.5.29.48';
-    const OID_USER_NOTICE = '2.5.29.49';
-    const OID_SOA_IDENTIFIER = '2.5.29.50';
-    const OID_BASE_UPDATE_TIME = '2.5.29.51';
-    const OID_ACCEPTABLE_CERT_POLICIES = '2.5.29.52';
-    const OID_DELTA_INFO = '2.5.29.53';
-    const OID_INHIBIT_ANY_POLICY = '2.5.29.54';
-    const OID_TARGET_INFORMATION = '2.5.29.55';
-    const OID_NO_REV_AVAIL = '2.5.29.56';
-    const OID_ACCEPTABLE_PRIVILEGE_POLICIES = '2.5.29.57';
-    const OID_TO_BE_REVOKED = '2.5.29.58';
-    const OID_REVOKED_GROUPS = '2.5.29.59';
-    const OID_EXPIRED_CERTS_ON_CRL = '2.5.29.60';
-    const OID_INDIRECT_ISSUER = '2.5.29.61';
-    const OID_NO_ASSERTION = '2.5.29.62';
-    const OID_AA_ISSUING_DISTRIBUTION_POINT = '2.5.29.63';
-    const OID_ISSUED_ON_BEHALF_OF = '2.5.29.64';
-    const OID_SINGLE_USE = '2.5.29.65';
-    const OID_GROUP_AC = '2.5.29.66';
-    const OID_ALLOWED_ATT_ASS = '2.5.29.67';
-    const OID_ATTRIBUTE_MAPPINGS = '2.5.29.68';
-    const OID_HOLDER_NAME_CONSTRAINTS = '2.5.29.69';
+	// OID's from standard certificate extensions
+	const OID_OBSOLETE_AUTHORITY_KEY_IDENTIFIER = '2.5.29.1';
+	const OID_OBSOLETE_KEY_ATTRIBUTES = '2.5.29.2';
+	const OID_OBSOLETE_CERTIFICATE_POLICIES = '2.5.29.3';
+	const OID_OBSOLETE_KEY_USAGE_RESTRICTION = '2.5.29.4';
+	const OID_OBSOLETE_POLICY_MAPPING = '2.5.29.5';
+	const OID_OBSOLETE_SUBTREES_CONSTRAINT = '2.5.29.6';
+	const OID_OBSOLETE_SUBJECT_ALT_NAME = '2.5.29.7';
+	const OID_OBSOLETE_ISSUER_ALT_NAME = '2.5.29.8';
+	const OID_SUBJECT_DIRECTORY_ATTRIBUTES = '2.5.29.9';
+	const OID_OBSOLETE_BASIC_CONSTRAINTS = '2.5.29.10';
+	const OID_SUBJECT_KEY_IDENTIFIER = '2.5.29.14';
+	const OID_KEY_USAGE = '2.5.29.15';
+	const OID_PRIVATE_KEY_USAGE_PERIOD = '2.5.29.16';
+	const OID_SUBJECT_ALT_NAME = '2.5.29.17';
+	const OID_ISSUER_ALT_NAME = '2.5.29.18';
+	const OID_BASIC_CONSTRAINTS = '2.5.29.19';
+	const OID_CRL_NUMBER = '2.5.29.20';
+	const OID_REASON_CODE = '2.5.29.21';
+	const OID_OBSOLETE_EXPIRATION_DATE = '2.5.29.22';
+	const OID_INSTRUCTION_CODE = '2.5.29.23';
+	const OID_INVALIDITY_DATE = '2.5.29.24';
+	const OID_OBSOLETE_CRL_DISTRIBUTION_POINTS = '2.5.29.25';
+	const OID_OBSOLETE_ISSUING_DISTRIBUTION_POINT = '2.5.29.26';
+	const OID_DELTA_CRL_INDICATOR = '2.5.29.27';
+	const OID_ISSUING_DISTRIBUTION_POINT = '2.5.29.28';
+	const OID_CERTIFICATE_ISSUER = '2.5.29.29';
+	const OID_NAME_CONSTRAINTS = '2.5.29.30';
+	const OID_CRL_DISTRIBUTION_POINTS = '2.5.29.31';
+	const OID_CERTIFICATE_POLICIES = '2.5.29.32';
+	const OID_POLICY_MAPPINGS = '2.5.29.33';
+	const OID_OBSOLETE_POLICY_CONSTRAINTS = '2.5.29.34';
+	const OID_AUTHORITY_KEY_IDENTIFIER = '2.5.29.35';
+	const OID_POLICY_CONSTRAINTS = '2.5.29.36';
+	const OID_EXT_KEY_USAGE = '2.5.29.37';
+	const OID_AUTHORITY_ATTRIBUTE_IDENTIFIER = '2.5.29.38';
+	const OID_ROLE_SPEC_CERT_IDENTIFIER = '2.5.29.39';
+	const OID_CRL_STREAM_IDENTIFIER = '2.5.29.40';
+	const OID_BASIC_ATT_CONSTRAINTS = '2.5.29.41';
+	const OID_DELEGATED_NAME_CONSTRAINTS = '2.5.29.42';
+	const OID_TIME_SPECIFICATION = '2.5.29.43';
+	const OID_CRL_SCOPE = '2.5.29.44';
+	const OID_STATUS_REFERRALS = '2.5.29.45';
+	const OID_FRESHEST_CRL = '2.5.29.46';
+	const OID_ORDERED_LIST = '2.5.29.47';
+	const OID_ATTRIBUTE_DESCRIPTOR = '2.5.29.48';
+	const OID_USER_NOTICE = '2.5.29.49';
+	const OID_SOA_IDENTIFIER = '2.5.29.50';
+	const OID_BASE_UPDATE_TIME = '2.5.29.51';
+	const OID_ACCEPTABLE_CERT_POLICIES = '2.5.29.52';
+	const OID_DELTA_INFO = '2.5.29.53';
+	const OID_INHIBIT_ANY_POLICY = '2.5.29.54';
+	const OID_TARGET_INFORMATION = '2.5.29.55';
+	const OID_NO_REV_AVAIL = '2.5.29.56';
+	const OID_ACCEPTABLE_PRIVILEGE_POLICIES = '2.5.29.57';
+	const OID_TO_BE_REVOKED = '2.5.29.58';
+	const OID_REVOKED_GROUPS = '2.5.29.59';
+	const OID_EXPIRED_CERTS_ON_CRL = '2.5.29.60';
+	const OID_INDIRECT_ISSUER = '2.5.29.61';
+	const OID_NO_ASSERTION = '2.5.29.62';
+	const OID_AA_ISSUING_DISTRIBUTION_POINT = '2.5.29.63';
+	const OID_ISSUED_ON_BEHALF_OF = '2.5.29.64';
+	const OID_SINGLE_USE = '2.5.29.65';
+	const OID_GROUP_AC = '2.5.29.66';
+	const OID_ALLOWED_ATT_ASS = '2.5.29.67';
+	const OID_ATTRIBUTE_MAPPINGS = '2.5.29.68';
+	const OID_HOLDER_NAME_CONSTRAINTS = '2.5.29.69';
 
-    // OID's from private certificate extensions arc
-    const OID_AUTHORITY_INFORMATION_ACCESS = '1.3.6.1.5.5.7.1.1';
-    const OID_AA_CONTROLS = '1.3.6.1.5.5.7.1.6';
-    const OID_SUBJECT_INFORMATION_ACCESS = '1.3.6.1.5.5.7.1.11';
-    const OID_LOGOTYPE = '1.3.6.1.5.5.7.1.12';
+	// OID's from private certificate extensions arc
+	const OID_AUTHORITY_INFORMATION_ACCESS = '1.3.6.1.5.5.7.1.1';
+	const OID_AA_CONTROLS = '1.3.6.1.5.5.7.1.6';
+	const OID_SUBJECT_INFORMATION_ACCESS = '1.3.6.1.5.5.7.1.11';
+	const OID_LOGOTYPE = '1.3.6.1.5.5.7.1.12';
 
-    /**
-     * Mapping from extension ID to implementation class name.
-     *
-     * @internal
-     *
-     * @var array
-     */
-    const MAP_OID_TO_CLASS = [
-        self::OID_AUTHORITY_KEY_IDENTIFIER => AuthorityKeyIdentifierExtension::class,
-        self::OID_SUBJECT_KEY_IDENTIFIER => SubjectKeyIdentifierExtension::class,
-        self::OID_KEY_USAGE => KeyUsageExtension::class,
-        self::OID_CERTIFICATE_POLICIES => CertificatePoliciesExtension::class,
-        self::OID_POLICY_MAPPINGS => PolicyMappingsExtension::class,
-        self::OID_SUBJECT_ALT_NAME => SubjectAlternativeNameExtension::class,
-        self::OID_ISSUER_ALT_NAME => IssuerAlternativeNameExtension::class,
-        self::OID_SUBJECT_DIRECTORY_ATTRIBUTES => SubjectDirectoryAttributesExtension::class,
-        self::OID_BASIC_CONSTRAINTS => BasicConstraintsExtension::class,
-        self::OID_NAME_CONSTRAINTS => NameConstraintsExtension::class,
-        self::OID_POLICY_CONSTRAINTS => PolicyConstraintsExtension::class,
-        self::OID_EXT_KEY_USAGE => ExtendedKeyUsageExtension::class,
-        self::OID_CRL_DISTRIBUTION_POINTS => CRLDistributionPointsExtension::class,
-        self::OID_INHIBIT_ANY_POLICY => InhibitAnyPolicyExtension::class,
-        self::OID_FRESHEST_CRL => FreshestCRLExtension::class,
-        self::OID_NO_REV_AVAIL => NoRevocationAvailableExtension::class,
-        self::OID_TARGET_INFORMATION => TargetInformationExtension::class,
-        self::OID_AUTHORITY_INFORMATION_ACCESS => AuthorityInformationAccessExtension::class,
-        self::OID_AA_CONTROLS => AAControlsExtension::class,
-        self::OID_SUBJECT_INFORMATION_ACCESS => SubjectInformationAccessExtension::class,
-    ];
+	/**
+	 * Mapping from extension ID to implementation class name.
+	 *
+	 * @internal
+	 *
+	 * @var array
+	 */
+	const MAP_OID_TO_CLASS = [
+		self::OID_AUTHORITY_KEY_IDENTIFIER => AuthorityKeyIdentifierExtension::class,
+		self::OID_SUBJECT_KEY_IDENTIFIER => SubjectKeyIdentifierExtension::class,
+		self::OID_KEY_USAGE => KeyUsageExtension::class,
+		self::OID_CERTIFICATE_POLICIES => CertificatePoliciesExtension::class,
+		self::OID_POLICY_MAPPINGS => PolicyMappingsExtension::class,
+		self::OID_SUBJECT_ALT_NAME => SubjectAlternativeNameExtension::class,
+		self::OID_ISSUER_ALT_NAME => IssuerAlternativeNameExtension::class,
+		self::OID_SUBJECT_DIRECTORY_ATTRIBUTES => SubjectDirectoryAttributesExtension::class,
+		self::OID_BASIC_CONSTRAINTS => BasicConstraintsExtension::class,
+		self::OID_NAME_CONSTRAINTS => NameConstraintsExtension::class,
+		self::OID_POLICY_CONSTRAINTS => PolicyConstraintsExtension::class,
+		self::OID_EXT_KEY_USAGE => ExtendedKeyUsageExtension::class,
+		self::OID_CRL_DISTRIBUTION_POINTS => CRLDistributionPointsExtension::class,
+		self::OID_INHIBIT_ANY_POLICY => InhibitAnyPolicyExtension::class,
+		self::OID_FRESHEST_CRL => FreshestCRLExtension::class,
+		self::OID_NO_REV_AVAIL => NoRevocationAvailableExtension::class,
+		self::OID_TARGET_INFORMATION => TargetInformationExtension::class,
+		self::OID_AUTHORITY_INFORMATION_ACCESS => AuthorityInformationAccessExtension::class,
+		self::OID_AA_CONTROLS => AAControlsExtension::class,
+		self::OID_SUBJECT_INFORMATION_ACCESS => SubjectInformationAccessExtension::class,
+	];
 
-    /**
-     * Mapping from extensions ID to short name.
-     *
-     * @internal
-     *
-     * @var array
-     */
-    const MAP_OID_TO_NAME = [
-        self::OID_AUTHORITY_KEY_IDENTIFIER => 'authorityKeyIdentifier',
-        self::OID_SUBJECT_KEY_IDENTIFIER => 'subjectKeyIdentifier',
-        self::OID_KEY_USAGE => 'keyUsage',
-        self::OID_PRIVATE_KEY_USAGE_PERIOD => 'privateKeyUsagePeriod',
-        self::OID_CERTIFICATE_POLICIES => 'certificatePolicies',
-        self::OID_POLICY_MAPPINGS => 'policyMappings',
-        self::OID_SUBJECT_ALT_NAME => 'subjectAltName',
-        self::OID_ISSUER_ALT_NAME => 'issuerAltName',
-        self::OID_SUBJECT_DIRECTORY_ATTRIBUTES => 'subjectDirectoryAttributes',
-        self::OID_BASIC_CONSTRAINTS => 'basicConstraints',
-        self::OID_NAME_CONSTRAINTS => 'nameConstraints',
-        self::OID_POLICY_CONSTRAINTS => 'policyConstraints',
-        self::OID_EXT_KEY_USAGE => 'extKeyUsage',
-        self::OID_CRL_DISTRIBUTION_POINTS => 'cRLDistributionPoints',
-        self::OID_INHIBIT_ANY_POLICY => 'inhibitAnyPolicy',
-        self::OID_FRESHEST_CRL => 'freshestCRL',
-        self::OID_NO_REV_AVAIL => 'noRevAvail',
-        self::OID_TARGET_INFORMATION => 'targetInformation',
-        self::OID_AUTHORITY_INFORMATION_ACCESS => 'authorityInfoAccess',
-        self::OID_AA_CONTROLS => 'aaControls',
-        self::OID_SUBJECT_INFORMATION_ACCESS => 'subjectInfoAccess',
-        self::OID_LOGOTYPE => 'logotype',
-    ];
+	/**
+	 * Mapping from extensions ID to short name.
+	 *
+	 * @internal
+	 *
+	 * @var array
+	 */
+	const MAP_OID_TO_NAME = [
+		self::OID_AUTHORITY_KEY_IDENTIFIER => 'authorityKeyIdentifier',
+		self::OID_SUBJECT_KEY_IDENTIFIER => 'subjectKeyIdentifier',
+		self::OID_KEY_USAGE => 'keyUsage',
+		self::OID_PRIVATE_KEY_USAGE_PERIOD => 'privateKeyUsagePeriod',
+		self::OID_CERTIFICATE_POLICIES => 'certificatePolicies',
+		self::OID_POLICY_MAPPINGS => 'policyMappings',
+		self::OID_SUBJECT_ALT_NAME => 'subjectAltName',
+		self::OID_ISSUER_ALT_NAME => 'issuerAltName',
+		self::OID_SUBJECT_DIRECTORY_ATTRIBUTES => 'subjectDirectoryAttributes',
+		self::OID_BASIC_CONSTRAINTS => 'basicConstraints',
+		self::OID_NAME_CONSTRAINTS => 'nameConstraints',
+		self::OID_POLICY_CONSTRAINTS => 'policyConstraints',
+		self::OID_EXT_KEY_USAGE => 'extKeyUsage',
+		self::OID_CRL_DISTRIBUTION_POINTS => 'cRLDistributionPoints',
+		self::OID_INHIBIT_ANY_POLICY => 'inhibitAnyPolicy',
+		self::OID_FRESHEST_CRL => 'freshestCRL',
+		self::OID_NO_REV_AVAIL => 'noRevAvail',
+		self::OID_TARGET_INFORMATION => 'targetInformation',
+		self::OID_AUTHORITY_INFORMATION_ACCESS => 'authorityInfoAccess',
+		self::OID_AA_CONTROLS => 'aaControls',
+		self::OID_SUBJECT_INFORMATION_ACCESS => 'subjectInfoAccess',
+		self::OID_LOGOTYPE => 'logotype',
+	];
 
-    /**
-     * Extension's OID.
-     *
-     * @var string
-     */
-    protected $_oid;
+	/**
+	 * Extension's OID.
+	 *
+	 * @var string
+	 */
+	protected $_oid;
 
-    /**
-     * Whether extension is critical.
-     *
-     * @var bool
-     */
-    protected $_critical;
+	/**
+	 * Whether extension is critical.
+	 *
+	 * @var bool
+	 */
+	protected $_critical;
 
-    /**
-     * Constructor.
-     *
-     * @param string $oid      Extension OID
-     * @param bool   $critical Whether extension is critical
-     */
-    public function __construct(string $oid, bool $critical)
-    {
-        $this->_oid = $oid;
-        $this->_critical = $critical;
-    }
+	/**
+	 * Constructor.
+	 *
+	 * @param string $oid      Extension OID
+	 * @param bool   $critical Whether extension is critical
+	 */
+	public function __construct(string $oid, bool $critical)
+	{
+		$this->_oid = $oid;
+		$this->_critical = $critical;
+	}
 
-    /**
-     * @return string
-     */
-    public function __toString(): string
-    {
-        return $this->extensionName();
-    }
+	/**
+	 * @return string
+	 */
+	public function __toString(): string
+	{
+		return $this->extensionName();
+	}
 
-    /**
-     * Initialize from ASN.1.
-     *
-     * @param Sequence $seq
-     *
-     * @return self
-     */
-    public static function fromASN1(Sequence $seq): Extension
-    {
-        $idx = 0;
-        $extnID = $seq->at($idx++)->asObjectIdentifier()->oid();
-        $critical = false;
-        if ($seq->has($idx, Element::TYPE_BOOLEAN)) {
-            $critical = $seq->at($idx++)->asBoolean()->value();
-        }
-        $data = $seq->at($idx)->asOctetString()->string();
-        if (array_key_exists($extnID, self::MAP_OID_TO_CLASS)) {
-            $cls = self::MAP_OID_TO_CLASS[$extnID];
-            return $cls::_fromDER($data, $critical);
-        }
-        return UnknownExtension::fromRawString($extnID, $critical, $data);
-    }
+	/**
+	 * Initialize from ASN.1.
+	 *
+	 * @param Sequence $seq
+	 *
+	 * @return self
+	 */
+	public static function fromASN1(Sequence $seq): Extension
+	{
+		$idx = 0;
+		$extnID = $seq->at($idx++)->asObjectIdentifier()->oid();
+		$critical = false;
+		if ($seq->has($idx, Element::TYPE_BOOLEAN)) {
+			$critical = $seq->at($idx++)->asBoolean()->value();
+		}
+		$data = $seq->at($idx)->asOctetString()->string();
+		if (array_key_exists($extnID, self::MAP_OID_TO_CLASS)) {
+			$cls = self::MAP_OID_TO_CLASS[$extnID];
+			return $cls::_fromDER($data, $critical);
+		}
+		return UnknownExtension::fromRawString($extnID, $critical, $data);
+	}
 
-    /**
-     * Get extension OID.
-     *
-     * @return string
-     */
-    public function oid(): string
-    {
-        return $this->_oid;
-    }
+	/**
+	 * Get extension OID.
+	 *
+	 * @return string
+	 */
+	public function oid(): string
+	{
+		return $this->_oid;
+	}
 
-    /**
-     * Check whether extension is critical.
-     *
-     * @return bool
-     */
-    public function isCritical(): bool
-    {
-        return $this->_critical;
-    }
+	/**
+	 * Check whether extension is critical.
+	 *
+	 * @return bool
+	 */
+	public function isCritical(): bool
+	{
+		return $this->_critical;
+	}
 
-    /**
-     * Generate ASN.1 structure.
-     *
-     * @return Sequence
-     */
-    public function toASN1(): Sequence
-    {
-        $elements = [new ObjectIdentifier($this->_oid)];
-        if ($this->_critical) {
-            $elements[] = new Boolean(true);
-        }
-        $elements[] = $this->_extnValue();
-        return new Sequence(...$elements);
-    }
+	/**
+	 * Generate ASN.1 structure.
+	 *
+	 * @return Sequence
+	 */
+	public function toASN1(): Sequence
+	{
+		$elements = [new ObjectIdentifier($this->_oid)];
+		if ($this->_critical) {
+			$elements[] = new Boolean(true);
+		}
+		$elements[] = $this->_extnValue();
+		return new Sequence(...$elements);
+	}
 
-    /**
-     * Get short name of the extension.
-     *
-     * @return string
-     */
-    public function extensionName(): string
-    {
-        if (array_key_exists($this->_oid, self::MAP_OID_TO_NAME)) {
-            return self::MAP_OID_TO_NAME[$this->_oid];
-        }
-        return $this->oid();
-    }
+	/**
+	 * Get short name of the extension.
+	 *
+	 * @return string
+	 */
+	public function extensionName(): string
+	{
+		if (array_key_exists($this->_oid, self::MAP_OID_TO_NAME)) {
+			return self::MAP_OID_TO_NAME[$this->_oid];
+		}
+		return $this->oid();
+	}
 
-    /**
-     * Get ASN.1 structure of the extension value.
-     *
-     * @return Element
-     */
-    abstract protected function _valueASN1(): Element;
+	/**
+	 * Get ASN.1 structure of the extension value.
+	 *
+	 * @return Element
+	 */
+	abstract protected function _valueASN1(): Element;
 
-    /**
-     * Parse extension value from DER.
-     *
-     * @param string $data     DER data
-     * @param bool   $critical Whether extension is critical
-     *
-     * @throws \BadMethodCallException
-     *
-     * @return self
-     */
-    protected static function _fromDER(string $data, bool $critical): Extension
-    {
-        throw new \BadMethodCallException(
-            __FUNCTION__ . ' must be implemented in derived class.');
-    }
+	/**
+	 * Parse extension value from DER.
+	 *
+	 * @param string $data     DER data
+	 * @param bool   $critical Whether extension is critical
+	 *
+	 * @throws \BadMethodCallException
+	 *
+	 * @return self
+	 */
+	protected static function _fromDER(string $data, bool $critical): Extension
+	{
+		throw new \BadMethodCallException(
+			__FUNCTION__ . ' must be implemented in derived class.');
+	}
 
-    /**
-     * Get the extnValue element.
-     *
-     * @return OctetString
-     */
-    protected function _extnValue(): OctetString
-    {
-        return new OctetString($this->_valueASN1()->toDER());
-    }
+	/**
+	 * Get the extnValue element.
+	 *
+	 * @return OctetString
+	 */
+	protected function _extnValue(): OctetString
+	{
+		return new OctetString($this->_valueASN1()->toDER());
+	}
 }

lib/X509/Certificate/Extension/CRLDistributionPointsExtension.php

Indentation +79 added lines, -79 removed lines

@@ -16,89 +16,89 @@
  */
 class CRLDistributionPointsExtension extends Extension implements \Countable, \IteratorAggregate
 {
-    /**
-     * Distribution points.
-     *
-     * @var DistributionPoint[]
-     */
-    protected $_distributionPoints;
+	/**
+	 * Distribution points.
+	 *
+	 * @var DistributionPoint[]
+	 */
+	protected $_distributionPoints;
 
-    /**
-     * Constructor.
-     *
-     * @param bool              $critical
-     * @param DistributionPoint ...$distribution_points
-     */
-    public function __construct(bool $critical,
-        DistributionPoint ...$distribution_points)
-    {
-        parent::__construct(self::OID_CRL_DISTRIBUTION_POINTS, $critical);
-        $this->_distributionPoints = $distribution_points;
-    }
+	/**
+	 * Constructor.
+	 *
+	 * @param bool              $critical
+	 * @param DistributionPoint ...$distribution_points
+	 */
+	public function __construct(bool $critical,
+		DistributionPoint ...$distribution_points)
+	{
+		parent::__construct(self::OID_CRL_DISTRIBUTION_POINTS, $critical);
+		$this->_distributionPoints = $distribution_points;
+	}
 
-    /**
-     * Get distribution points.
-     *
-     * @return DistributionPoint[]
-     */
-    public function distributionPoints(): array
-    {
-        return $this->_distributionPoints;
-    }
+	/**
+	 * Get distribution points.
+	 *
+	 * @return DistributionPoint[]
+	 */
+	public function distributionPoints(): array
+	{
+		return $this->_distributionPoints;
+	}
 
-    /**
-     * Get the number of distribution points.
-     *
-     * @see \Countable::count()
-     *
-     * @return int
-     */
-    public function count(): int
-    {
-        return count($this->_distributionPoints);
-    }
+	/**
+	 * Get the number of distribution points.
+	 *
+	 * @see \Countable::count()
+	 *
+	 * @return int
+	 */
+	public function count(): int
+	{
+		return count($this->_distributionPoints);
+	}
 
-    /**
-     * Get iterator for distribution points.
-     *
-     * @see \IteratorAggregate::getIterator()
-     *
-     * @return \ArrayIterator
-     */
-    public function getIterator(): \ArrayIterator
-    {
-        return new \ArrayIterator($this->_distributionPoints);
-    }
+	/**
+	 * Get iterator for distribution points.
+	 *
+	 * @see \IteratorAggregate::getIterator()
+	 *
+	 * @return \ArrayIterator
+	 */
+	public function getIterator(): \ArrayIterator
+	{
+		return new \ArrayIterator($this->_distributionPoints);
+	}
 
-    /**
-     * {@inheritdoc}
-     */
-    protected static function _fromDER(string $data, bool $critical): Extension
-    {
-        $dps = array_map(
-            function (UnspecifiedType $el) {
-                return DistributionPoint::fromASN1($el->asSequence());
-            }, UnspecifiedType::fromDER($data)->asSequence()->elements());
-        if (!count($dps)) {
-            throw new \UnexpectedValueException(
-                'CRLDistributionPoints must have at least one DistributionPoint.');
-        }
-        // late static bound, extended by Freshest CRL extension
-        return new static($critical, ...$dps);
-    }
+	/**
+	 * {@inheritdoc}
+	 */
+	protected static function _fromDER(string $data, bool $critical): Extension
+	{
+		$dps = array_map(
+			function (UnspecifiedType $el) {
+				return DistributionPoint::fromASN1($el->asSequence());
+			}, UnspecifiedType::fromDER($data)->asSequence()->elements());
+		if (!count($dps)) {
+			throw new \UnexpectedValueException(
+				'CRLDistributionPoints must have at least one DistributionPoint.');
+		}
+		// late static bound, extended by Freshest CRL extension
+		return new static($critical, ...$dps);
+	}
 
-    /**
-     * {@inheritdoc}
-     */
-    protected function _valueASN1(): Element
-    {
-        if (!count($this->_distributionPoints)) {
-            throw new \LogicException('No distribution points.');
-        }
-        $elements = array_map(
-            function (DistributionPoint $dp) {
-                return $dp->toASN1();
-            }, $this->_distributionPoints);
-        return new Sequence(...$elements);
-    }
+	/**
+	 * {@inheritdoc}
+	 */
+	protected function _valueASN1(): Element
+	{
+		if (!count($this->_distributionPoints)) {
+			throw new \LogicException('No distribution points.');
+		}
+		$elements = array_map(
+			function (DistributionPoint $dp) {
+				return $dp->toASN1();
+			}, $this->_distributionPoints);
+		return new Sequence(...$elements);
+	}
 }

lib/X509/Certificate/Extension/SubjectKeyIdentifierExtension.php

Indentation +45 added lines, -45 removed lines

@@ -15,49 +15,49 @@
  */
 class SubjectKeyIdentifierExtension extends Extension
 {
-    /**
-     * Key identifier.
-     *
-     * @var string
-     */
-    protected $_keyIdentifier;
-
-    /**
-     * Constructor.
-     *
-     * @param bool   $critical
-     * @param string $keyIdentifier
-     */
-    public function __construct(bool $critical, string $keyIdentifier)
-    {
-        parent::__construct(self::OID_SUBJECT_KEY_IDENTIFIER, $critical);
-        $this->_keyIdentifier = $keyIdentifier;
-    }
-
-    /**
-     * Get key identifier.
-     *
-     * @return string
-     */
-    public function keyIdentifier(): string
-    {
-        return $this->_keyIdentifier;
-    }
-
-    /**
-     * {@inheritdoc}
-     */
-    protected static function _fromDER(string $data, bool $critical): Extension
-    {
-        return new self($critical,
-            UnspecifiedType::fromDER($data)->asOctetString()->string());
-    }
-
-    /**
-     * {@inheritdoc}
-     */
-    protected function _valueASN1(): Element
-    {
-        return new OctetString($this->_keyIdentifier);
-    }
+	/**
+	 * Key identifier.
+	 *
+	 * @var string
+	 */
+	protected $_keyIdentifier;
+
+	/**
+	 * Constructor.
+	 *
+	 * @param bool   $critical
+	 * @param string $keyIdentifier
+	 */
+	public function __construct(bool $critical, string $keyIdentifier)
+	{
+		parent::__construct(self::OID_SUBJECT_KEY_IDENTIFIER, $critical);
+		$this->_keyIdentifier = $keyIdentifier;
+	}
+
+	/**
+	 * Get key identifier.
+	 *
+	 * @return string
+	 */
+	public function keyIdentifier(): string
+	{
+		return $this->_keyIdentifier;
+	}
+
+	/**
+	 * {@inheritdoc}
+	 */
+	protected static function _fromDER(string $data, bool $critical): Extension
+	{
+		return new self($critical,
+			UnspecifiedType::fromDER($data)->asOctetString()->string());
+	}
+
+	/**
+	 * {@inheritdoc}
+	 */
+	protected function _valueASN1(): Element
+	{
+		return new OctetString($this->_keyIdentifier);
+	}
 }

lib/X509/Certificate/Extension/PolicyMappings/PolicyMapping.php

Indentation +64 added lines, -64 removed lines

@@ -15,74 +15,74 @@
  */
 class PolicyMapping
 {
-    /**
-     * OID of the issuer policy.
-     *
-     * @var string
-     */
-    protected $_issuerDomainPolicy;
+	/**
+	 * OID of the issuer policy.
+	 *
+	 * @var string
+	 */
+	protected $_issuerDomainPolicy;
 
-    /**
-     * OID of the subject policy.
-     *
-     * @var string
-     */
-    protected $_subjectDomainPolicy;
+	/**
+	 * OID of the subject policy.
+	 *
+	 * @var string
+	 */
+	protected $_subjectDomainPolicy;
 
-    /**
-     * Constructor.
-     *
-     * @param string $issuer_policy  OID of the issuer policy
-     * @param string $subject_policy OID of the subject policy
-     */
-    public function __construct(string $issuer_policy, string $subject_policy)
-    {
-        $this->_issuerDomainPolicy = $issuer_policy;
-        $this->_subjectDomainPolicy = $subject_policy;
-    }
+	/**
+	 * Constructor.
+	 *
+	 * @param string $issuer_policy  OID of the issuer policy
+	 * @param string $subject_policy OID of the subject policy
+	 */
+	public function __construct(string $issuer_policy, string $subject_policy)
+	{
+		$this->_issuerDomainPolicy = $issuer_policy;
+		$this->_subjectDomainPolicy = $subject_policy;
+	}
 
-    /**
-     * Initialize from ASN.1.
-     *
-     * @param Sequence $seq
-     *
-     * @return self
-     */
-    public static function fromASN1(Sequence $seq): self
-    {
-        $issuer_policy = $seq->at(0)->asObjectIdentifier()->oid();
-        $subject_policy = $seq->at(1)->asObjectIdentifier()->oid();
-        return new self($issuer_policy, $subject_policy);
-    }
+	/**
+	 * Initialize from ASN.1.
+	 *
+	 * @param Sequence $seq
+	 *
+	 * @return self
+	 */
+	public static function fromASN1(Sequence $seq): self
+	{
+		$issuer_policy = $seq->at(0)->asObjectIdentifier()->oid();
+		$subject_policy = $seq->at(1)->asObjectIdentifier()->oid();
+		return new self($issuer_policy, $subject_policy);
+	}
 
-    /**
-     * Get issuer domain policy.
-     *
-     * @return string OID in dotted format
-     */
-    public function issuerDomainPolicy(): string
-    {
-        return $this->_issuerDomainPolicy;
-    }
+	/**
+	 * Get issuer domain policy.
+	 *
+	 * @return string OID in dotted format
+	 */
+	public function issuerDomainPolicy(): string
+	{
+		return $this->_issuerDomainPolicy;
+	}
 
-    /**
-     * Get subject domain policy.
-     *
-     * @return string OID in dotted format
-     */
-    public function subjectDomainPolicy(): string
-    {
-        return $this->_subjectDomainPolicy;
-    }
+	/**
+	 * Get subject domain policy.
+	 *
+	 * @return string OID in dotted format
+	 */
+	public function subjectDomainPolicy(): string
+	{
+		return $this->_subjectDomainPolicy;
+	}
 
-    /**
-     * Generate ASN.1 structure.
-     *
-     * @return Sequence
-     */
-    public function toASN1(): Sequence
-    {
-        return new Sequence(new ObjectIdentifier($this->_issuerDomainPolicy),
-            new ObjectIdentifier($this->_subjectDomainPolicy));
-    }
+	/**
+	 * Generate ASN.1 structure.
+	 *
+	 * @return Sequence
+	 */
+	public function toASN1(): Sequence
+	{
+		return new Sequence(new ObjectIdentifier($this->_issuerDomainPolicy),
+			new ObjectIdentifier($this->_subjectDomainPolicy));
+	}
 }

lib/X509/Certificate/Extension/NameConstraints/GeneralSubtree.php

Indentation +78 added lines, -78 removed lines

@@ -18,88 +18,88 @@
  */
 class GeneralSubtree
 {
-    /**
-     * Constraint.
-     *
-     * @var GeneralName
-     */
-    protected $_base;
+	/**
+	 * Constraint.
+	 *
+	 * @var GeneralName
+	 */
+	protected $_base;
 
-    /**
-     * Not used, must be zero.
-     *
-     * @var int
-     */
-    protected $_min;
+	/**
+	 * Not used, must be zero.
+	 *
+	 * @var int
+	 */
+	protected $_min;
 
-    /**
-     * Not used, must be null.
-     *
-     * @var null|int
-     */
-    protected $_max;
+	/**
+	 * Not used, must be null.
+	 *
+	 * @var null|int
+	 */
+	protected $_max;
 
-    /**
-     * Constructor.
-     *
-     * @param GeneralName $base
-     * @param int         $min
-     * @param null|int    $max
-     */
-    public function __construct(GeneralName $base, int $min = 0, ?int $max = null)
-    {
-        $this->_base = $base;
-        $this->_min = $min;
-        $this->_max = $max;
-    }
+	/**
+	 * Constructor.
+	 *
+	 * @param GeneralName $base
+	 * @param int         $min
+	 * @param null|int    $max
+	 */
+	public function __construct(GeneralName $base, int $min = 0, ?int $max = null)
+	{
+		$this->_base = $base;
+		$this->_min = $min;
+		$this->_max = $max;
+	}
 
-    /**
-     * Initialize from ASN.1.
-     *
-     * @param Sequence $seq
-     *
-     * @return self
-     */
-    public static function fromASN1(Sequence $seq): self
-    {
-        $base = GeneralName::fromASN1($seq->at(0)->asTagged());
-        $min = 0;
-        $max = null;
-        if ($seq->hasTagged(0)) {
-            $min = $seq->getTagged(0)->asImplicit(Element::TYPE_INTEGER)
-                ->asInteger()->intNumber();
-        }
-        if ($seq->hasTagged(1)) {
-            $max = $seq->getTagged(1)->asImplicit(Element::TYPE_INTEGER)
-                ->asInteger()->intNumber();
-        }
-        return new self($base, $min, $max);
-    }
+	/**
+	 * Initialize from ASN.1.
+	 *
+	 * @param Sequence $seq
+	 *
+	 * @return self
+	 */
+	public static function fromASN1(Sequence $seq): self
+	{
+		$base = GeneralName::fromASN1($seq->at(0)->asTagged());
+		$min = 0;
+		$max = null;
+		if ($seq->hasTagged(0)) {
+			$min = $seq->getTagged(0)->asImplicit(Element::TYPE_INTEGER)
+				->asInteger()->intNumber();
+		}
+		if ($seq->hasTagged(1)) {
+			$max = $seq->getTagged(1)->asImplicit(Element::TYPE_INTEGER)
+				->asInteger()->intNumber();
+		}
+		return new self($base, $min, $max);
+	}
 
-    /**
-     * Get constraint.
-     *
-     * @return GeneralName
-     */
-    public function base(): GeneralName
-    {
-        return $this->_base;
-    }
+	/**
+	 * Get constraint.
+	 *
+	 * @return GeneralName
+	 */
+	public function base(): GeneralName
+	{
+		return $this->_base;
+	}
 
-    /**
-     * Generate ASN.1 structure.
-     *
-     * @return Sequence
-     */
-    public function toASN1(): Sequence
-    {
-        $elements = [$this->_base->toASN1()];
-        if (isset($this->_min) && 0 !== $this->_min) {
-            $elements[] = new ImplicitlyTaggedType(0, new Integer($this->_min));
-        }
-        if (isset($this->_max)) {
-            $elements[] = new ImplicitlyTaggedType(1, new Integer($this->_max));
-        }
-        return new Sequence(...$elements);
-    }
+	/**
+	 * Generate ASN.1 structure.
+	 *
+	 * @return Sequence
+	 */
+	public function toASN1(): Sequence
+	{
+		$elements = [$this->_base->toASN1()];
+		if (isset($this->_min) && 0 !== $this->_min) {
+			$elements[] = new ImplicitlyTaggedType(0, new Integer($this->_min));
+		}
+		if (isset($this->_max)) {
+			$elements[] = new ImplicitlyTaggedType(1, new Integer($this->_max));
+		}
+		return new Sequence(...$elements);
+	}
 }

lib/X509/Certificate/Extension/NameConstraints/GeneralSubtrees.php

Indentation +79 added lines, -79 removed lines

@@ -15,89 +15,89 @@
  */
 class GeneralSubtrees implements \Countable, \IteratorAggregate
 {
-    /**
-     * Subtrees.
-     *
-     * @var GeneralSubtree[]
-     */
-    protected $_subtrees;
+	/**
+	 * Subtrees.
+	 *
+	 * @var GeneralSubtree[]
+	 */
+	protected $_subtrees;
 
-    /**
-     * Constructor.
-     *
-     * @param GeneralSubtree ...$subtrees
-     */
-    public function __construct(GeneralSubtree ...$subtrees)
-    {
-        $this->_subtrees = $subtrees;
-    }
+	/**
+	 * Constructor.
+	 *
+	 * @param GeneralSubtree ...$subtrees
+	 */
+	public function __construct(GeneralSubtree ...$subtrees)
+	{
+		$this->_subtrees = $subtrees;
+	}
 
-    /**
-     * Initialize from ASN.1.
-     *
-     * @param Sequence $seq
-     *
-     * @return self
-     */
-    public static function fromASN1(Sequence $seq): self
-    {
-        $subtrees = array_map(
-            function (UnspecifiedType $el) {
-                return GeneralSubtree::fromASN1($el->asSequence());
-            }, $seq->elements());
-        if (!count($subtrees)) {
-            throw new \UnexpectedValueException(
-                'GeneralSubtrees must contain at least one GeneralSubtree.');
-        }
-        return new self(...$subtrees);
-    }
+	/**
+	 * Initialize from ASN.1.
+	 *
+	 * @param Sequence $seq
+	 *
+	 * @return self
+	 */
+	public static function fromASN1(Sequence $seq): self
+	{
+		$subtrees = array_map(
+			function (UnspecifiedType $el) {
+				return GeneralSubtree::fromASN1($el->asSequence());
+			}, $seq->elements());
+		if (!count($subtrees)) {
+			throw new \UnexpectedValueException(
+				'GeneralSubtrees must contain at least one GeneralSubtree.');
+		}
+		return new self(...$subtrees);
+	}
 
-    /**
-     * Get all subtrees.
-     *
-     * @return GeneralSubtree[]
-     */
-    public function all(): array
-    {
-        return $this->_subtrees;
-    }
+	/**
+	 * Get all subtrees.
+	 *
+	 * @return GeneralSubtree[]
+	 */
+	public function all(): array
+	{
+		return $this->_subtrees;
+	}
 
-    /**
-     * Generate ASN.1 structure.
-     *
-     * @return Sequence
-     */
-    public function toASN1(): Sequence
-    {
-        if (!count($this->_subtrees)) {
-            throw new \LogicException('No subtrees.');
-        }
-        $elements = array_map(
-            function (GeneralSubtree $gs) {
-                return $gs->toASN1();
-            }, $this->_subtrees);
-        return new Sequence(...$elements);
-    }
+	/**
+	 * Generate ASN.1 structure.
+	 *
+	 * @return Sequence
+	 */
+	public function toASN1(): Sequence
+	{
+		if (!count($this->_subtrees)) {
+			throw new \LogicException('No subtrees.');
+		}
+		$elements = array_map(
+			function (GeneralSubtree $gs) {
+				return $gs->toASN1();
+			}, $this->_subtrees);
+		return new Sequence(...$elements);
+	}
 
-    /**
-     * @see \Countable::count()
-     *
-     * @return int
-     */
-    public function count(): int
-    {
-        return count($this->_subtrees);
-    }
+	/**
+	 * @see \Countable::count()
+	 *
+	 * @return int
+	 */
+	public function count(): int
+	{
+		return count($this->_subtrees);
+	}
 
-    /**
-     * Get iterator for subtrees.
-     *
-     * @see \IteratorAggregate::getIterator()
-     *
-     * @return \ArrayIterator
-     */
-    public function getIterator(): \ArrayIterator
-    {
-        return new \ArrayIterator($this->_subtrees);
-    }
+	/**
+	 * Get iterator for subtrees.
+	 *
+	 * @see \IteratorAggregate::getIterator()
+	 *
+	 * @return \ArrayIterator
+	 */
+	public function getIterator(): \ArrayIterator
+	{
+		return new \ArrayIterator($this->_subtrees);
+	}
 }

lib/X509/Certificate/Extension/UnknownExtension.php

Indentation +68 added lines, -68 removed lines

@@ -12,78 +12,78 @@
  */
 class UnknownExtension extends Extension
 {
-    /**
-     * Decoded extension value.
-     *
-     * @var null|Element
-     */
-    protected $_element;
+	/**
+	 * Decoded extension value.
+	 *
+	 * @var null|Element
+	 */
+	protected $_element;
 
-    /**
-     * Raw extension value.
-     *
-     * @var string
-     */
-    protected $_data;
+	/**
+	 * Raw extension value.
+	 *
+	 * @var string
+	 */
+	protected $_data;
 
-    /**
-     * Constructor.
-     *
-     * @param string  $oid
-     * @param bool    $critical
-     * @param Element $element
-     */
-    public function __construct(string $oid, bool $critical, Element $element)
-    {
-        parent::__construct($oid, $critical);
-        $this->_element = $element;
-        $this->_data = $element->toDER();
-    }
+	/**
+	 * Constructor.
+	 *
+	 * @param string  $oid
+	 * @param bool    $critical
+	 * @param Element $element
+	 */
+	public function __construct(string $oid, bool $critical, Element $element)
+	{
+		parent::__construct($oid, $critical);
+		$this->_element = $element;
+		$this->_data = $element->toDER();
+	}
 
-    /**
-     * Create instance from a raw encoded extension value.
-     *
-     * @param string $oid
-     * @param bool   $critical
-     * @param string $data
-     *
-     * @return self
-     */
-    public static function fromRawString(string $oid, bool $critical,
-        string $data): self
-    {
-        $obj = new self($oid, $critical, new OctetString(''));
-        $obj->_element = null;
-        $obj->_data = $data;
-        return $obj;
-    }
+	/**
+	 * Create instance from a raw encoded extension value.
+	 *
+	 * @param string $oid
+	 * @param bool   $critical
+	 * @param string $data
+	 *
+	 * @return self
+	 */
+	public static function fromRawString(string $oid, bool $critical,
+		string $data): self
+	{
+		$obj = new self($oid, $critical, new OctetString(''));
+		$obj->_element = null;
+		$obj->_data = $data;
+		return $obj;
+	}
 
-    /**
-     * Get the encoded extension value.
-     *
-     * @return string
-     */
-    public function extensionValue(): string
-    {
-        return $this->_data;
-    }
+	/**
+	 * Get the encoded extension value.
+	 *
+	 * @return string
+	 */
+	public function extensionValue(): string
+	{
+		return $this->_data;
+	}
 
-    /**
-     * {@inheritdoc}
-     */
-    protected function _extnValue(): OctetString
-    {
-        return new OctetString($this->_data);
-    }
+	/**
+	 * {@inheritdoc}
+	 */
+	protected function _extnValue(): OctetString
+	{
+		return new OctetString($this->_data);
+	}
 
-    /**
-     * {@inheritdoc}
-     */
-    protected function _valueASN1(): Element
-    {
-        if (!isset($this->_element)) {
-            throw new \RuntimeException('Extension value is not DER encoded.');
-        }
-        return $this->_element;
-    }
+	/**
+	 * {@inheritdoc}
+	 */
+	protected function _valueASN1(): Element
+	{
+		if (!isset($this->_element)) {
+			throw new \RuntimeException('Extension value is not DER encoded.');
+		}
+		return $this->_element;
+	}
 }

lib/X509/Certificate/Extension/AccessDescription/AuthorityAccessDescription.php

Indentation +25 added lines, -25 removed lines

@@ -9,31 +9,31 @@
  */
 class AuthorityAccessDescription extends AccessDescription
 {
-    /**
-     * Access method OID's.
-     *
-     * @var string
-     */
-    const OID_METHOD_OSCP = '1.3.6.1.5.5.7.48.1';
-    const OID_METHOD_CA_ISSUERS = '1.3.6.1.5.5.7.48.2';
+	/**
+	 * Access method OID's.
+	 *
+	 * @var string
+	 */
+	const OID_METHOD_OSCP = '1.3.6.1.5.5.7.48.1';
+	const OID_METHOD_CA_ISSUERS = '1.3.6.1.5.5.7.48.2';
 
-    /**
-     * Check whether access method is OSCP.
-     *
-     * @return bool
-     */
-    public function isOSCPMethod(): bool
-    {
-        return self::OID_METHOD_OSCP === $this->_accessMethod;
-    }
+	/**
+	 * Check whether access method is OSCP.
+	 *
+	 * @return bool
+	 */
+	public function isOSCPMethod(): bool
+	{
+		return self::OID_METHOD_OSCP === $this->_accessMethod;
+	}
 
-    /**
-     * Check whether access method is CA issuers.
-     *
-     * @return bool
-     */
-    public function isCAIssuersMethod(): bool
-    {
-        return self::OID_METHOD_CA_ISSUERS === $this->_accessMethod;
-    }
+	/**
+	 * Check whether access method is CA issuers.
+	 *
+	 * @return bool
+	 */
+	public function isCAIssuersMethod(): bool
+	{
+		return self::OID_METHOD_CA_ISSUERS === $this->_accessMethod;
+	}
 }

lib/X509/Certificate/Extension/AccessDescription/SubjectAccessDescription.php

Indentation +25 added lines, -25 removed lines

@@ -9,31 +9,31 @@
  */
 class SubjectAccessDescription extends AccessDescription
 {
-    /**
-     * Access method OID's.
-     *
-     * @var string
-     */
-    const OID_METHOD_TIME_STAMPING = '1.3.6.1.5.5.7.48.3';
-    const OID_METHOD_CA_REPOSITORY = '1.3.6.1.5.5.7.48.5';
+	/**
+	 * Access method OID's.
+	 *
+	 * @var string
+	 */
+	const OID_METHOD_TIME_STAMPING = '1.3.6.1.5.5.7.48.3';
+	const OID_METHOD_CA_REPOSITORY = '1.3.6.1.5.5.7.48.5';
 
-    /**
-     * Check whether access method is time stamping.
-     *
-     * @return bool
-     */
-    public function isTimeStampingMethod(): bool
-    {
-        return self::OID_METHOD_TIME_STAMPING === $this->_accessMethod;
-    }
+	/**
+	 * Check whether access method is time stamping.
+	 *
+	 * @return bool
+	 */
+	public function isTimeStampingMethod(): bool
+	{
+		return self::OID_METHOD_TIME_STAMPING === $this->_accessMethod;
+	}
 
-    /**
-     * Check whether access method is CA repository.
-     *
-     * @return bool
-     */
-    public function isCARepositoryMethod(): bool
-    {
-        return self::OID_METHOD_CA_REPOSITORY === $this->_accessMethod;
-    }
+	/**
+	 * Check whether access method is CA repository.
+	 *
+	 * @return bool
+	 */
+	public function isCARepositoryMethod(): bool
+	{
+		return self::OID_METHOD_CA_REPOSITORY === $this->_accessMethod;
+	}
 }