Package org.conscrypt
Class TrustManagerImpl.ExtendedKeyUsagePKIXCertPathChecker
java.lang.Object
java.security.cert.PKIXCertPathChecker
org.conscrypt.TrustManagerImpl.ExtendedKeyUsagePKIXCertPathChecker
- All Implemented Interfaces:
Cloneable
,CertPathChecker
- Enclosing class:
TrustManagerImpl
private static class TrustManagerImpl.ExtendedKeyUsagePKIXCertPathChecker
extends PKIXCertPathChecker
If an EKU extension is present in the end-entity certificate,
it MUST contain an appropriate key usage. For servers, this
includes anyExtendedKeyUsage, serverAuth, or the historical
Server Gated Cryptography options of nsSGC or msSGC. For
clients, this includes anyExtendedKeyUsage and clientAuth.
-
Field Summary
Fields -
Constructor Summary
ConstructorsModifierConstructorDescriptionprivate
ExtendedKeyUsagePKIXCertPathChecker
(boolean clientAuth, X509Certificate leaf) -
Method Summary
Modifier and TypeMethodDescriptionvoid
check
(Certificate c, Collection<String> unresolvedCritExts) void
init
(boolean forward) boolean
Methods inherited from class java.security.cert.PKIXCertPathChecker
check, clone
-
Field Details
-
EKU_OID
- See Also:
-
EKU_anyExtendedKeyUsage
- See Also:
-
EKU_clientAuth
- See Also:
-
EKU_serverAuth
- See Also:
-
EKU_nsSGC
- See Also:
-
EKU_msSGC
- See Also:
-
SUPPORTED_EXTENSIONS
-
clientAuth
private final boolean clientAuth -
leaf
-
-
Constructor Details
-
ExtendedKeyUsagePKIXCertPathChecker
-
-
Method Details
-
init
- Specified by:
init
in interfaceCertPathChecker
- Specified by:
init
in classPKIXCertPathChecker
- Throws:
CertPathValidatorException
-
isForwardCheckingSupported
public boolean isForwardCheckingSupported()- Specified by:
isForwardCheckingSupported
in interfaceCertPathChecker
- Specified by:
isForwardCheckingSupported
in classPKIXCertPathChecker
-
getSupportedExtensions
- Specified by:
getSupportedExtensions
in classPKIXCertPathChecker
-
check
public void check(Certificate c, Collection<String> unresolvedCritExts) throws CertPathValidatorException - Specified by:
check
in classPKIXCertPathChecker
- Throws:
CertPathValidatorException
-