Package org.conscrypt
Class TrustManagerImpl.ExtendedKeyUsagePKIXCertPathChecker
java.lang.Object
java.security.cert.PKIXCertPathChecker
org.conscrypt.TrustManagerImpl.ExtendedKeyUsagePKIXCertPathChecker
- All Implemented Interfaces:
Cloneable,CertPathChecker
- Enclosing class:
TrustManagerImpl
private static class TrustManagerImpl.ExtendedKeyUsagePKIXCertPathChecker
extends PKIXCertPathChecker
If an EKU extension is present in the end-entity certificate,
it MUST contain an appropriate key usage. For servers, this
includes anyExtendedKeyUsage, serverAuth, or the historical
Server Gated Cryptography options of nsSGC or msSGC. For
clients, this includes anyExtendedKeyUsage and clientAuth.
-
Field Summary
Fields -
Constructor Summary
ConstructorsModifierConstructorDescriptionprivateExtendedKeyUsagePKIXCertPathChecker(boolean clientAuth, X509Certificate leaf) -
Method Summary
Modifier and TypeMethodDescriptionvoidcheck(Certificate c, Collection<String> unresolvedCritExts) voidinit(boolean forward) booleanMethods inherited from class java.security.cert.PKIXCertPathChecker
check, clone
-
Field Details
-
EKU_OID
- See Also:
-
EKU_anyExtendedKeyUsage
- See Also:
-
EKU_clientAuth
- See Also:
-
EKU_serverAuth
- See Also:
-
EKU_nsSGC
- See Also:
-
EKU_msSGC
- See Also:
-
SUPPORTED_EXTENSIONS
-
clientAuth
private final boolean clientAuth -
leaf
-
-
Constructor Details
-
ExtendedKeyUsagePKIXCertPathChecker
-
-
Method Details
-
init
- Specified by:
initin interfaceCertPathChecker- Specified by:
initin classPKIXCertPathChecker- Throws:
CertPathValidatorException
-
isForwardCheckingSupported
public boolean isForwardCheckingSupported()- Specified by:
isForwardCheckingSupportedin interfaceCertPathChecker- Specified by:
isForwardCheckingSupportedin classPKIXCertPathChecker
-
getSupportedExtensions
- Specified by:
getSupportedExtensionsin classPKIXCertPathChecker
-
check
public void check(Certificate c, Collection<String> unresolvedCritExts) throws CertPathValidatorException - Specified by:
checkin classPKIXCertPathChecker- Throws:
CertPathValidatorException
-