Class JSSNativeTrustManager
java.lang.Object
org.mozilla.jss.provider.javax.crypto.JSSNativeTrustManager
- All Implemented Interfaces:
TrustManager
,X509TrustManager
JSSNativeTrustManager is a JSSEngine TrustManager utilizing existing native
certificate checking functionality of NSS and JSS, compatible with the old
SSLSocket checks.
Note: This class isn't compatible with external (non-JSS) SSLEngines.
The only configuration possible is in CryptoManager's OCSP Policy, which
this obeys. No other configuration is possible. This is more performant
than other TrustManagers, because it saves a JNI call and handles the NSS
callback directly.
-
Field Summary
Fields -
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionvoid
checkClientTrusted
(X509Certificate[] certChain, String authType) void
checkServerTrusted
(X509Certificate[] certChain, String authType)
-
Field Details
-
error_msg
-
-
Constructor Details
-
JSSNativeTrustManager
public JSSNativeTrustManager()
-
-
Method Details
-
checkClientTrusted
public void checkClientTrusted(X509Certificate[] certChain, String authType) throws CertificateException - Specified by:
checkClientTrusted
in interfaceX509TrustManager
- Throws:
CertificateException
-
checkServerTrusted
public void checkServerTrusted(X509Certificate[] certChain, String authType) throws CertificateException - Specified by:
checkServerTrusted
in interfaceX509TrustManager
- Throws:
CertificateException
-
getAcceptedIssuers
- Specified by:
getAcceptedIssuers
in interfaceX509TrustManager
-