Package org.mozilla.jss.ssl
Class SSLCertificateApprovalCallback.ValidityStatus
java.lang.Object
org.mozilla.jss.ssl.SSLCertificateApprovalCallback.ValidityStatus
- Enclosing interface:
SSLCertificateApprovalCallback
This class holds details about the errors for each cert in
the chain that the server presented
To use this class, getReasons(), then iterate over the enumeration
-
Field Summary
FieldsModifier and TypeFieldDescriptionstatic final int
this indicates common-name mismatchstatic final int
static final int
static final int
static final int
static final int
static final int
static final int
static final int
static final int
static final int
static final int
static final int
static final int
static final int
static final int
static final int
static final int
static final int
static final int
static final int
static final int
static final int
static final int
static final int
static final int
static final int
static final int
static final int
static final int
static final int
static final int
static final int
static final int
static final int
static final int
-
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionvoid
add a new failure reason to this enumeration.returns an enumeration.
-
Field Details
-
EXPIRED_CERTIFICATE
public static final int EXPIRED_CERTIFICATE- See Also:
-
REVOKED_CERTIFICATE
public static final int REVOKED_CERTIFICATE- See Also:
-
INADEQUATE_KEY_USAGE
public static final int INADEQUATE_KEY_USAGE- See Also:
-
INADEQUATE_CERT_TYPE
public static final int INADEQUATE_CERT_TYPE- See Also:
-
UNTRUSTED_CERT
public static final int UNTRUSTED_CERT- See Also:
-
CERT_STATUS_SERVER_ERROR
public static final int CERT_STATUS_SERVER_ERROR- See Also:
-
UNKNOWN_ISSUER
public static final int UNKNOWN_ISSUER- See Also:
-
UNTRUSTED_ISSUER
public static final int UNTRUSTED_ISSUER- See Also:
-
CERT_NOT_IN_NAME_SPACE
public static final int CERT_NOT_IN_NAME_SPACE- See Also:
-
CA_CERT_INVALID
public static final int CA_CERT_INVALID- See Also:
-
PATH_LEN_CONSTRAINT_INVALID
public static final int PATH_LEN_CONSTRAINT_INVALID- See Also:
-
BAD_KEY
public static final int BAD_KEY- See Also:
-
BAD_SIGNATURE
public static final int BAD_SIGNATURE- See Also:
-
EXPIRED_ISSUER_CERTIFICATE
public static final int EXPIRED_ISSUER_CERTIFICATE- See Also:
-
INVALID_TIME
public static final int INVALID_TIME- See Also:
-
UNKNOWN_SIGNER
public static final int UNKNOWN_SIGNER- See Also:
-
SEC_ERROR_CRL_EXPIRED
public static final int SEC_ERROR_CRL_EXPIRED- See Also:
-
SEC_ERROR_CRL_BAD_SIGNATURE
public static final int SEC_ERROR_CRL_BAD_SIGNATURE- See Also:
-
SEC_ERROR_CRL_INVALID
public static final int SEC_ERROR_CRL_INVALID- See Also:
-
CERT_BAD_ACCESS_LOCATION
public static final int CERT_BAD_ACCESS_LOCATION- See Also:
-
OCSP_UNKNOWN_RESPONSE_TYPE
public static final int OCSP_UNKNOWN_RESPONSE_TYPE- See Also:
-
OCSP_BAD_HTTP_RESPONSE
public static final int OCSP_BAD_HTTP_RESPONSE- See Also:
-
OCSP_MALFORMED_REQUEST
public static final int OCSP_MALFORMED_REQUEST- See Also:
-
OCSP_SERVER_ERROR
public static final int OCSP_SERVER_ERROR- See Also:
-
OCSP_TRY_SERVER_LATER
public static final int OCSP_TRY_SERVER_LATER- See Also:
-
OCSP_REQUEST_NEEDS_SIG
public static final int OCSP_REQUEST_NEEDS_SIG- See Also:
-
OCSP_UNAUTHORIZED_REQUEST
public static final int OCSP_UNAUTHORIZED_REQUEST- See Also:
-
OCSP_UNKNOWN_RESPONSE_STATUS
public static final int OCSP_UNKNOWN_RESPONSE_STATUS- See Also:
-
OCSP_UNKNOWN_CERT
public static final int OCSP_UNKNOWN_CERT- See Also:
-
OCSP_NOT_ENABLED
public static final int OCSP_NOT_ENABLED- See Also:
-
OCSP_NO_DEFAULT_RESPONDER
public static final int OCSP_NO_DEFAULT_RESPONDER- See Also:
-
OCSP_MALFORMED_RESPONSE
public static final int OCSP_MALFORMED_RESPONSE- See Also:
-
OCSP_UNAUTHORIZED_RESPONSE
public static final int OCSP_UNAUTHORIZED_RESPONSE- See Also:
-
OCSP_FUTURE_RESPONSE
public static final int OCSP_FUTURE_RESPONSE- See Also:
-
OCSP_OLD_RESPONSE
public static final int OCSP_OLD_RESPONSE- See Also:
-
BAD_CERT_DOMAIN
public static final int BAD_CERT_DOMAINthis indicates common-name mismatch- See Also:
-
reasons
-
-
Constructor Details
-
ValidityStatus
public ValidityStatus()
-
-
Method Details
-
addReason
add a new failure reason to this enumeration. This is called from the native code callback when it does a verify on the cert chain- Parameters:
newReason
- sslerr.h error code - see constants defined above;cert
- a reference to the cert - so you can see the subject name, etcdepth
- the index of this cert in the chain. 0 is the server cert.
-
getReasons
returns an enumeration. The elements in the enumeration are all of type 'ValidityItem'
-