CertPathTrustManager
public interface TrustManager
Modifier and Type | Field | Description |
---|---|---|
static int |
ERR_CERT_CHAIN_INCOMPLETE |
An incomplete certificate chain is when a chain
|
static int |
ERR_CERT_CHAIN_INVALID |
An invalid certificate chain is when a certificate
|
static int |
ERR_CERT_CHAIN_UNTRUSTED |
None of the certificates in the chain can be found
|
static int |
ERR_CERT_EXPIRED |
|
static int |
ERR_NONE |
|
static int |
ERR_SIGNATURE_INVALID |
A certificate has an invalid signature when the
public key of the succeeding certificate does not
|
Modifier and Type | Method | Description |
---|---|---|
boolean |
certificateCallback(java.security.cert.X509Certificate[] chain,
int validateErr) |
Called by the SSL library when a peer presents a certificate
chain.
|
static final int ERR_NONE
static final int ERR_CERT_CHAIN_INVALID
static final int ERR_CERT_EXPIRED
static final int ERR_CERT_CHAIN_INCOMPLETE
static final int ERR_SIGNATURE_INVALID
static final int ERR_CERT_CHAIN_UNTRUSTED
boolean certificateCallback(java.security.cert.X509Certificate[] chain, int validateErr)
chain
- The peer certificate chainvalidateErr
- indicates the validation errors present
in the certificate chain. validateErr has the following properties:
ERR_CERT_CHAIN_INVALID bit is set if the certificate chain is invalid;
ERR_CERT_EXPIRED bit is set if any of the certificates are expired;
ERR_CERT_CHAIN_INCOMPLETE bit is set if the certificate chain is incomplete;
ERR_SIGNATURE_INVALID bit is set if any of the certificates have an invaid signature;
ERR_CERT_CHAIN_UNTRUSTED bit is set if the certificate chain is not trusted.