36 import java.security.cert.*;
37 import java.security.cert.Certificate;
291                 // if possible, check the public key in the issuer cert
322      *     (i.e. a match with a cert that has appropriate key usage
505         CheckResult check(X509Certificate cert, Date date) {
513                 List<String> certEku = cert.getExtendedKeyUsage();
522                 boolean[] ku = cert.getKeyUsage();
524                     String algorithm = cert.getPublicKey().getAlgorithm();
566                 cert.checkValidity(date);
579         EXPIRED,                // extensions valid but cert expired
589      *  . the algorithm of the key in the EE cert doesn't match one of keyTypes
595      * cert and its expiration. Even if there is a mismatch, we include
598      * messages if the cert expires from one day to the next.
632             for (Certificate cert : chain) {
633                 if (cert instanceof X509Certificate == false) {
663                 for (Certificate cert : chain) {
664                     X509Certificate xcert = (X509Certificate)cert;
729             Certificate cert = chain[i];
732                 checker.check(cert, Collections.<String>emptySet());

Indexes created Tue Jul 24 14:28:13 CEST 2018