BJA-503 fixed email policy issue

dghgit · dghgit · commit 2f917f07c5bb · 2014-09-23T15:52:03.000+10:00
BJA-496 removed dependency on BC in JVM provider table
BJA-500/501 CMP/OCSP enhancements
reversed out PKCS10 check for attributes setting,
minor updates/refactoring
diff --git a/CONTRIBUTORS.html b/CONTRIBUTORS.html
@@ -363,6 +363,7 @@
 <li>KB Sriram&lt;mail_kb&#064yahoo.com&gt; testing for odd encodings for PGP User Attribute Subpackets.</li>
 <li>Marco Schulze&lt;marco&#064nightlabs.de&gt; Reported verification bug in GenericSigner.</li>
 <li>Martin Schaef&lt;https://github.com/martinschaef&gt; contributed a code-cleanup patch.</li>
+<li>Lijun Liao&lt;&jun.liao&#064gmail.comgt; addition of getSignatureAlgorithmID to BasicOCSPResp.</li>
 </ul>
 </body>
 </html>
diff --git a/bc-build.properties b/bc-build.properties
@@ -1,7 +1,7 @@
 
-release.suffix: 151
-release.name: 1.51
-release.version: 1.51.0
+release.suffix: 152b01
+release.name: 1.52b01
+release.version: 1.52.0.1
 release.debug: false
 
 mail.jar.home: /opt/javamail/mail.jar
diff --git a/core/src/main/java/org/bouncycastle/asn1/cmp/CMPCertificate.java b/core/src/main/java/org/bouncycastle/asn1/cmp/CMPCertificate.java
@@ -1,5 +1,7 @@
 package org.bouncycastle.asn1.cmp;
 
+import java.io.IOException;
+
 import org.bouncycastle.asn1.ASN1Choice;
 import org.bouncycastle.asn1.ASN1Object;
 import org.bouncycastle.asn1.ASN1Primitive;
@@ -14,14 +16,31 @@ public class CMPCertificate
     implements ASN1Choice
 {
     private Certificate x509v3PKCert;
-    private AttributeCertificate x509v2AttrCert;
+
+    private int        otherTagValue;
+    private ASN1Object otherCert;
 
     /**
-     * Note: the addition of attribute certificates is a BC extension.
+     * Note: the addition of attribute certificates is a BC extension. If you use this constructor they
+     * will be added with a tag value of 1.
+     * @deprecated use (type. otherCert) constructor
      */
     public CMPCertificate(AttributeCertificate x509v2AttrCert)
     {
-        this.x509v2AttrCert = x509v2AttrCert;
+        this(1, x509v2AttrCert);
+    }
+
+    /**
+     * Note: the addition of other certificates is a BC extension. If you use this constructor they
+     * will be added with an explicit tag value of type.
+     *
+     * @param type the type of the certificate (used as a tag value).
+     * @param otherCert the object representing the certificate
+     */
+    public CMPCertificate(int type, ASN1Object otherCert)
+    {
+        this.otherTagValue = type;
+        this.otherCert = otherCert;
     }
 
     public CMPCertificate(Certificate x509v3PKCert)
@@ -41,14 +60,28 @@ public static CMPCertificate getInstance(Object o)
             return (CMPCertificate)o;
         }
 
-        if (o instanceof ASN1Sequence || o instanceof byte[])
+        if (o instanceof byte[])
+        {
+            try
+            {
+                o = ASN1Primitive.fromByteArray((byte[])o);
+            }
+            catch (IOException e)
+            {
+                throw new IllegalArgumentException("Invalid encoding in CMPCertificate");
+            }
+        }
+
+        if (o instanceof ASN1Sequence)
         {
             return new CMPCertificate(Certificate.getInstance(o));
         }
 
         if (o instanceof ASN1TaggedObject)
         {
-            return new CMPCertificate(AttributeCertificate.getInstance(((ASN1TaggedObject)o).getObject()));
+            ASN1TaggedObject taggedObject = (ASN1TaggedObject)o;
+
+            return new CMPCertificate(taggedObject.getTagNo(), taggedObject.getObject());
         }
 
         throw new IllegalArgumentException("Invalid object: " + o.getClass().getName());
@@ -64,27 +97,43 @@ public Certificate getX509v3PKCert()
         return x509v3PKCert;
     }
 
+    /**
+     * Return an AttributeCertificate interpretation of otherCert.
+     * @deprecated use getOtherCert and getOtherTag to make sure message is really what it should be.
+     *
+     * @return  an AttributeCertificate
+     */
     public AttributeCertificate getX509v2AttrCert()
     {
-        return x509v2AttrCert;
+        return AttributeCertificate.getInstance(otherCert);
+    }
+
+    public int getOtherCertTag()
+    {
+        return otherTagValue;
+    }
+
+    public ASN1Object getOtherCert()
+    {
+        return otherCert;
     }
 
     /**
      * <pre>
      * CMPCertificate ::= CHOICE {
-     *            x509v3PKCert        Certificate
-     *            x509v2AttrCert      [1] AttributeCertificate
+     *            x509v3PKCert    Certificate
+     *            otherCert      [tag] EXPLICIT ANY DEFINED BY tag
      *  }
      * </pre>
-     * Note: the addition of attribute certificates is a BC extension.
+     * Note: the addition of the explicit tagging is a BC extension. We apologise for the warped syntax, but hopefully you get the idea.
      *
      * @return a basic ASN.1 object representation.
      */
     public ASN1Primitive toASN1Primitive()
     {
-        if (x509v2AttrCert != null)
+        if (otherCert != null)
         {        // explicit following CMP conventions
-            return new DERTaggedObject(true, 1, x509v2AttrCert);
+            return new DERTaggedObject(true, otherTagValue, otherCert);
         }
 
         return x509v3PKCert.toASN1Primitive();
diff --git a/core/src/main/java/org/bouncycastle/asn1/pkcs/CertificationRequestInfo.java b/core/src/main/java/org/bouncycastle/asn1/pkcs/CertificationRequestInfo.java
@@ -71,7 +71,7 @@ public CertificationRequestInfo(
         SubjectPublicKeyInfo    pkInfo,
         ASN1Set                 attributes)
     {
-        if ((subject == null) || (pkInfo == null) || (attributes == null))
+        if ((subject == null) || (pkInfo == null))
         {
             throw new IllegalArgumentException("Not all mandatory fields set in CertificationRequestInfo generator.");
         }
@@ -89,7 +89,7 @@ public CertificationRequestInfo(
         SubjectPublicKeyInfo    pkInfo,
         ASN1Set                 attributes)
     {
-        if ((subject == null) || (pkInfo == null) || (attributes == null))
+        if ((subject == null) || (pkInfo == null))
         {
             throw new IllegalArgumentException("Not all mandatory fields set in CertificationRequestInfo generator.");
         }
diff --git a/mail/src/main/java/org/bouncycastle/mail/smime/SMIMECompressedGenerator.java b/mail/src/main/java/org/bouncycastle/mail/smime/SMIMECompressedGenerator.java
@@ -38,20 +38,25 @@ public class SMIMECompressedGenerator
 
     static
     {
-        final MailcapCommandMap mc = (MailcapCommandMap)CommandMap.getDefaultCommandMap();
+        CommandMap commandMap = CommandMap.getDefaultCommandMap();
 
-        mc.addMailcap("application/pkcs7-mime;; x-java-content-handler=org.bouncycastle.mail.smime.handlers.pkcs7_mime");
-        mc.addMailcap("application/x-pkcs7-mime;; x-java-content-handler=org.bouncycastle.mail.smime.handlers.x_pkcs7_mime");
-
-        AccessController.doPrivileged(new PrivilegedAction()
+        if (commandMap instanceof MailcapCommandMap)
         {
-            public Object run()
+            final MailcapCommandMap mc = (MailcapCommandMap)commandMap;
+
+            mc.addMailcap("application/pkcs7-mime;; x-java-content-handler=org.bouncycastle.mail.smime.handlers.pkcs7_mime");
+            mc.addMailcap("application/x-pkcs7-mime;; x-java-content-handler=org.bouncycastle.mail.smime.handlers.x_pkcs7_mime");
+
+            AccessController.doPrivileged(new PrivilegedAction()
             {
-                CommandMap.setDefaultCommandMap(mc);
+                public Object run()
+                {
+                    CommandMap.setDefaultCommandMap(mc);
 
-                return null;
-            }
-        });
+                    return null;
+                }
+            });
+        }
     }
 
     /**
diff --git a/mail/src/main/java/org/bouncycastle/mail/smime/SMIMEEnvelopedGenerator.java b/mail/src/main/java/org/bouncycastle/mail/smime/SMIMEEnvelopedGenerator.java
@@ -76,17 +76,20 @@ public class SMIMEEnvelopedGenerator
         {
             public Object run()
             {
-                CommandMap.setDefaultCommandMap(addCommands(CommandMap.getDefaultCommandMap()));
+                CommandMap commandMap = CommandMap.getDefaultCommandMap();
+
+                if (commandMap instanceof MailcapCommandMap)
+                {
+                    CommandMap.setDefaultCommandMap(addCommands((MailcapCommandMap)commandMap));
+                }
 
                 return null;
             }
         });
     }
 
-    private static MailcapCommandMap addCommands(CommandMap cm)
+    private static MailcapCommandMap addCommands(MailcapCommandMap mc)
     {
-        MailcapCommandMap mc = (MailcapCommandMap)cm;
-
         mc.addMailcap("application/pkcs7-signature;; x-java-content-handler=org.bouncycastle.mail.smime.handlers.pkcs7_signature");
         mc.addMailcap("application/pkcs7-mime;; x-java-content-handler=org.bouncycastle.mail.smime.handlers.pkcs7_mime");
         mc.addMailcap("application/x-pkcs7-signature;; x-java-content-handler=org.bouncycastle.mail.smime.handlers.x_pkcs7_signature");
@@ -217,7 +220,12 @@ public void write(OutputStream out)
                     encrypted = fact.regenerate(out, _encryptor);
                 }
 
-                _content.getDataHandler().setCommandMap(addCommands(CommandMap.getDefaultCommandMap()));
+                CommandMap commandMap = CommandMap.getDefaultCommandMap();
+
+                if (commandMap instanceof MailcapCommandMap)
+                {
+                    _content.getDataHandler().setCommandMap(addCommands((MailcapCommandMap)commandMap));
+                }
 
                 _content.writeTo(encrypted);
 
diff --git a/mail/src/main/java/org/bouncycastle/mail/smime/SMIMESignedGenerator.java b/mail/src/main/java/org/bouncycastle/mail/smime/SMIMESignedGenerator.java
@@ -104,10 +104,8 @@ public class SMIMESignedGenerator
     public static final Map RFC5751_MICALGS;
     public static final Map STANDARD_MICALGS;
 
-    private static MailcapCommandMap addCommands(CommandMap cm)
+    private static MailcapCommandMap addCommands(MailcapCommandMap mc)
     {
-        MailcapCommandMap mc = (MailcapCommandMap)cm;
-
         mc.addMailcap("application/pkcs7-signature;; x-java-content-handler=org.bouncycastle.mail.smime.handlers.pkcs7_signature");
         mc.addMailcap("application/pkcs7-mime;; x-java-content-handler=org.bouncycastle.mail.smime.handlers.pkcs7_mime");
         mc.addMailcap("application/x-pkcs7-signature;; x-java-content-handler=org.bouncycastle.mail.smime.handlers.x_pkcs7_signature");
@@ -123,7 +121,12 @@ private static MailcapCommandMap addCommands(CommandMap cm)
         {
             public Object run()
             {
-                CommandMap.setDefaultCommandMap(addCommands(CommandMap.getDefaultCommandMap()));
+                CommandMap commandMap = CommandMap.getDefaultCommandMap();
+
+                if (commandMap instanceof MailcapCommandMap)
+                {
+                    CommandMap.setDefaultCommandMap(addCommands((MailcapCommandMap)commandMap));
+                }
 
                 return null;
             }
@@ -593,7 +596,12 @@ public void write(OutputStream out)
                     }
                     else
                     {
-                        content.getDataHandler().setCommandMap(addCommands(CommandMap.getDefaultCommandMap()));
+                        CommandMap commandMap = CommandMap.getDefaultCommandMap();
+
+                        if (commandMap instanceof MailcapCommandMap)
+                        {
+                            content.getDataHandler().setCommandMap(addCommands((MailcapCommandMap)commandMap));
+                        }
 
                         content.writeTo(signingStream);
                     }
diff --git a/mail/src/main/java/org/bouncycastle/mail/smime/SMIMESignedParser.java b/mail/src/main/java/org/bouncycastle/mail/smime/SMIMESignedParser.java
@@ -125,23 +125,28 @@ private static CMSTypedStream getSignedInputStream(
     
     static
     {
-        final MailcapCommandMap mc = (MailcapCommandMap)CommandMap.getDefaultCommandMap();
+        CommandMap commandMap = CommandMap.getDefaultCommandMap();
 
-        mc.addMailcap("application/pkcs7-signature;; x-java-content-handler=org.bouncycastle.mail.smime.handlers.pkcs7_signature");
-        mc.addMailcap("application/pkcs7-mime;; x-java-content-handler=org.bouncycastle.mail.smime.handlers.pkcs7_mime");
-        mc.addMailcap("application/x-pkcs7-signature;; x-java-content-handler=org.bouncycastle.mail.smime.handlers.x_pkcs7_signature");
-        mc.addMailcap("application/x-pkcs7-mime;; x-java-content-handler=org.bouncycastle.mail.smime.handlers.x_pkcs7_mime");
-        mc.addMailcap("multipart/signed;; x-java-content-handler=org.bouncycastle.mail.smime.handlers.multipart_signed");
-        
-        AccessController.doPrivileged(new PrivilegedAction()
+        if (commandMap instanceof MailcapCommandMap)
         {
-            public Object run()
+            final MailcapCommandMap mc = (MailcapCommandMap)commandMap;
+
+            mc.addMailcap("application/pkcs7-signature;; x-java-content-handler=org.bouncycastle.mail.smime.handlers.pkcs7_signature");
+            mc.addMailcap("application/pkcs7-mime;; x-java-content-handler=org.bouncycastle.mail.smime.handlers.pkcs7_mime");
+            mc.addMailcap("application/x-pkcs7-signature;; x-java-content-handler=org.bouncycastle.mail.smime.handlers.x_pkcs7_signature");
+            mc.addMailcap("application/x-pkcs7-mime;; x-java-content-handler=org.bouncycastle.mail.smime.handlers.x_pkcs7_mime");
+            mc.addMailcap("multipart/signed;; x-java-content-handler=org.bouncycastle.mail.smime.handlers.multipart_signed");
+
+            AccessController.doPrivileged(new PrivilegedAction()
             {
-                CommandMap.setDefaultCommandMap(mc);
+                public Object run()
+                {
+                    CommandMap.setDefaultCommandMap(mc);
 
-                return null;
-            }
-        });
+                    return null;
+                }
+            });
+        }
     }
 
     /**
diff --git a/pkix/src/main/java/org/bouncycastle/cert/ocsp/BasicOCSPResp.java b/pkix/src/main/java/org/bouncycastle/cert/ocsp/BasicOCSPResp.java
@@ -12,6 +12,7 @@
 import org.bouncycastle.asn1.ocsp.BasicOCSPResponse;
 import org.bouncycastle.asn1.ocsp.ResponseData;
 import org.bouncycastle.asn1.ocsp.SingleResponse;
+import org.bouncycastle.asn1.x509.AlgorithmIdentifier;
 import org.bouncycastle.asn1.x509.Certificate;
 import org.bouncycastle.asn1.x509.Extension;
 import org.bouncycastle.asn1.x509.Extensions;
@@ -58,6 +59,16 @@ public byte[] getTBSResponseData()
         }
     }
 
+    /**
+     * Return the algorithm identifier describing the signature used in the response.
+     *
+     * @return an AlgorithmIdentifier
+     */
+    public AlgorithmIdentifier getSignatureAlgorithmID()
+    {
+        return resp.getSignatureAlgorithm();
+    }
+
     public int getVersion()
     {
         return data.getVersion().getValue().intValue() + 1;
diff --git a/pkix/src/test/java/org/bouncycastle/cms/test/BcSignedDataTest.java b/pkix/src/test/java/org/bouncycastle/cms/test/BcSignedDataTest.java
@@ -38,6 +38,7 @@
 import org.bouncycastle.cert.jcajce.JcaCRLStore;
 import org.bouncycastle.cert.jcajce.JcaCertStore;
 import org.bouncycastle.cert.jcajce.JcaX509CRLHolder;
+import org.bouncycastle.cert.jcajce.JcaX509CertificateConverter;
 import org.bouncycastle.cert.jcajce.JcaX509CertificateHolder;
 import org.bouncycastle.cms.CMSAbsentContent;
 import org.bouncycastle.cms.CMSAlgorithm;
@@ -57,8 +58,11 @@
 import org.bouncycastle.cms.jcajce.JcaSignerInfoGeneratorBuilder;
 import org.bouncycastle.cms.jcajce.JcaSimpleSignerInfoGeneratorBuilder;
 import org.bouncycastle.cms.jcajce.JcaSimpleSignerInfoVerifierBuilder;
+import org.bouncycastle.crypto.digests.SHA1Digest;
 import org.bouncycastle.crypto.params.AsymmetricKeyParameter;
+import org.bouncycastle.crypto.signers.RSADigestSigner;
 import org.bouncycastle.crypto.util.PrivateKeyFactory;
+import org.bouncycastle.crypto.util.PublicKeyFactory;
 import org.bouncycastle.jcajce.provider.config.ConfigurableProvider;
 import org.bouncycastle.jce.provider.BouncyCastleProvider;
 import org.bouncycastle.operator.BufferingContentSigner;
@@ -1436,7 +1440,16 @@ public void testUnsortedAttributes()
             Iterator certIt = certCollection.iterator();
             X509CertificateHolder cert = (X509CertificateHolder)certIt.next();
 
-            assertEquals(true, signer.verify(new JcaSimpleSignerInfoVerifierBuilder().setProvider(BC).build(cert)));
+            assertEquals(false, signer.verify(new JcaSimpleSignerInfoVerifierBuilder().setProvider(BC).build(cert)));
+
+            RSADigestSigner sig = new RSADigestSigner(new SHA1Digest());
+
+            sig.init(false, PublicKeyFactory.createKey(cert.getSubjectPublicKeyInfo()));
+
+            byte[] encoded = signer.toASN1Structure().getAuthenticatedAttributes().getEncoded();
+            sig.update(encoded, 0, encoded.length);
+
+            assertEquals(true, sig.verifySignature(signer.getSignature()));
         }
     }
     
diff --git a/pkix/src/test/java/org/bouncycastle/cms/test/NewSignedDataTest.java b/pkix/src/test/java/org/bouncycastle/cms/test/NewSignedDataTest.java
diff --git a/prov/src/main/java/org/bouncycastle/jce/provider/PKIXCertPathBuilderSpi.java b/prov/src/main/java/org/bouncycastle/jce/provider/PKIXCertPathBuilderSpi.java
diff --git a/prov/src/main/java/org/bouncycastle/jce/provider/PKIXNameConstraintValidator.java b/prov/src/main/java/org/bouncycastle/jce/provider/PKIXNameConstraintValidator.java
diff --git a/prov/src/main/java/org/bouncycastle/jce/provider/RFC3280CertPathUtilities.java b/prov/src/main/java/org/bouncycastle/jce/provider/RFC3280CertPathUtilities.java
diff --git a/prov/src/test/java/org/bouncycastle/jce/provider/test/CertPathValidatorTest.java b/prov/src/test/java/org/bouncycastle/jce/provider/test/CertPathValidatorTest.java

Original file line number	Diff line number	Diff line change
`@@ -71,7 +71,7 @@ public CertificationRequestInfo(`
`71`	`71`	`SubjectPublicKeyInfo pkInfo,`
`72`	`72`	`ASN1Set attributes)`
`73`	`73`	`{`
`74`		`- if ((subject == null) \|\| (pkInfo == null) \|\| (attributes == null))`
	`74`	`+ if ((subject == null) \|\| (pkInfo == null))`
`75`	`75`	`{`
`76`	`76`	`throw new IllegalArgumentException("Not all mandatory fields set in CertificationRequestInfo generator.");`
`77`	`77`	`}`
`@@ -89,7 +89,7 @@ public CertificationRequestInfo(`
`89`	`89`	`SubjectPublicKeyInfo pkInfo,`
`90`	`90`	`ASN1Set attributes)`
`91`	`91`	`{`
`92`		`- if ((subject == null) \|\| (pkInfo == null) \|\| (attributes == null))`
	`92`	`+ if ((subject == null) \|\| (pkInfo == null))`
`93`	`93`	`{`
`94`	`94`	`throw new IllegalArgumentException("Not all mandatory fields set in CertificationRequestInfo generator.");`
`95`	`95`	`}`
Original file line number	Diff line number	Diff line change
`@@ -76,17 +76,20 @@ public class SMIMEEnvelopedGenerator`
`76`	`76`	`{`
`77`	`77`	`public Object run()`
`78`	`78`	`{`
`79`		`- CommandMap.setDefaultCommandMap(addCommands(CommandMap.getDefaultCommandMap()));`
	`79`	`+ CommandMap commandMap = CommandMap.getDefaultCommandMap();`
	`80`	`+`
	`81`	`+ if (commandMap instanceof MailcapCommandMap)`
	`82`	`+ {`
	`83`	`+ CommandMap.setDefaultCommandMap(addCommands((MailcapCommandMap)commandMap));`
	`84`	`+ }`
`80`	`85`
`81`	`86`	`return null;`
`82`	`87`	`}`
`83`	`88`	`});`
`84`	`89`	`}`
`85`	`90`
`86`		`- private static MailcapCommandMap addCommands(CommandMap cm)`
	`91`	`+ private static MailcapCommandMap addCommands(MailcapCommandMap mc)`
`87`	`92`	`{`
`88`		`- MailcapCommandMap mc = (MailcapCommandMap)cm;`
`89`		`-`
`90`	`93`	`mc.addMailcap("application/pkcs7-signature;; x-java-content-handler=org.bouncycastle.mail.smime.handlers.pkcs7_signature");`
`91`	`94`	`mc.addMailcap("application/pkcs7-mime;; x-java-content-handler=org.bouncycastle.mail.smime.handlers.pkcs7_mime");`
`92`	`95`	`mc.addMailcap("application/x-pkcs7-signature;; x-java-content-handler=org.bouncycastle.mail.smime.handlers.x_pkcs7_signature");`
`@@ -217,7 +220,12 @@ public void write(OutputStream out)`
`217`	`220`	`encrypted = fact.regenerate(out, _encryptor);`
`218`	`221`	`}`
`219`	`222`
`220`		`- _content.getDataHandler().setCommandMap(addCommands(CommandMap.getDefaultCommandMap()));`
	`223`	`+ CommandMap commandMap = CommandMap.getDefaultCommandMap();`
	`224`	`+`
	`225`	`+ if (commandMap instanceof MailcapCommandMap)`
	`226`	`+ {`
	`227`	`+ _content.getDataHandler().setCommandMap(addCommands((MailcapCommandMap)commandMap));`
	`228`	`+ }`
`221`	`229`
`222`	`230`	`_content.writeTo(encrypted);`
`223`	`231`
Original file line number	Diff line number	Diff line change
`@@ -104,10 +104,8 @@ public class SMIMESignedGenerator`
`104`	`104`	`public static final Map RFC5751_MICALGS;`
`105`	`105`	`public static final Map STANDARD_MICALGS;`
`106`	`106`
`107`		`- private static MailcapCommandMap addCommands(CommandMap cm)`
	`107`	`+ private static MailcapCommandMap addCommands(MailcapCommandMap mc)`
`108`	`108`	`{`
`109`		`- MailcapCommandMap mc = (MailcapCommandMap)cm;`
`110`		`-`
`111`	`109`	`mc.addMailcap("application/pkcs7-signature;; x-java-content-handler=org.bouncycastle.mail.smime.handlers.pkcs7_signature");`
`112`	`110`	`mc.addMailcap("application/pkcs7-mime;; x-java-content-handler=org.bouncycastle.mail.smime.handlers.pkcs7_mime");`
`113`	`111`	`mc.addMailcap("application/x-pkcs7-signature;; x-java-content-handler=org.bouncycastle.mail.smime.handlers.x_pkcs7_signature");`
`@@ -123,7 +121,12 @@ private static MailcapCommandMap addCommands(CommandMap cm)`
`123`	`121`	`{`
`124`	`122`	`public Object run()`
`125`	`123`	`{`
`126`		`- CommandMap.setDefaultCommandMap(addCommands(CommandMap.getDefaultCommandMap()));`
	`124`	`+ CommandMap commandMap = CommandMap.getDefaultCommandMap();`
	`125`	`+`
	`126`	`+ if (commandMap instanceof MailcapCommandMap)`
	`127`	`+ {`
	`128`	`+ CommandMap.setDefaultCommandMap(addCommands((MailcapCommandMap)commandMap));`
	`129`	`+ }`
`127`	`130`
`128`	`131`	`return null;`
`129`	`132`	`}`
`@@ -593,7 +596,12 @@ public void write(OutputStream out)`
`593`	`596`	`}`
`594`	`597`	`else`
`595`	`598`	`{`
`596`		`- content.getDataHandler().setCommandMap(addCommands(CommandMap.getDefaultCommandMap()));`
	`599`	`+ CommandMap commandMap = CommandMap.getDefaultCommandMap();`
	`600`	`+`
	`601`	`+ if (commandMap instanceof MailcapCommandMap)`
	`602`	`+ {`
	`603`	`+ content.getDataHandler().setCommandMap(addCommands((MailcapCommandMap)commandMap));`
	`604`	`+ }`
`597`	`605`
`598`	`606`	`content.writeTo(signingStream);`
`599`	`607`	`}`