public interface TrustManager
Modifier and Type | Field and Description |
---|---|
static int |
ERR_CERT_CHAIN_INCOMPLETE
An incomplete certificate chain is when a chain
|
static int |
ERR_CERT_CHAIN_INVALID
An invalid certificate chain is when a certificate
|
static int |
ERR_CERT_CHAIN_UNTRUSTED
None of the certificates in the chain can be found
|
static int |
ERR_CERT_EXPIRED |
static int |
ERR_NONE |
static int |
ERR_SIGNATURE_INVALID
A certificate has an invalid signature when the
public key of the succeeding certificate does not
|
Modifier and Type | Method and Description |
---|---|
boolean |
certificateCallback(X509Certificate[] chain,
int validateErr)
Called by the SSL library when a peer presents a certificate
chain.
|
static final int ERR_NONE
static final int ERR_CERT_CHAIN_INVALID
static final int ERR_CERT_EXPIRED
static final int ERR_CERT_CHAIN_INCOMPLETE
static final int ERR_SIGNATURE_INVALID
static final int ERR_CERT_CHAIN_UNTRUSTED
boolean certificateCallback(X509Certificate[] chain, int validateErr)
chain
- The peer certificate chainvalidateErr
- indicates the validation errors present
in the certificate chain. validateErr has the following properties:
ERR_CERT_CHAIN_INVALID bit is set if the certificate chain is invalid;
ERR_CERT_EXPIRED bit is set if any of the certificates are expired;
ERR_CERT_CHAIN_INCOMPLETE bit is set if the certificate chain is incomplete;
ERR_SIGNATURE_INVALID bit is set if any of the certificates have an invaid signature;
ERR_CERT_CHAIN_UNTRUSTED bit is set if the certificate chain is not trusted.