org.openeuler.sun.security.ssl

类 CertificateMessage.T12CertificateConsumer

java.lang.Object

org.openeuler.sun.security.ssl.CertificateMessage.T12CertificateConsumer

所有已实现的接口:

SSLConsumer

封闭类:

CertificateMessage

static final class CertificateMessage.T12CertificateConsumer
extends Object
implements SSLConsumer

The "Certificate" handshake message consumer for TLS 1.2 and previous SSL/TLS protocol versions.

构造器概要

构造器

限定符	构造器和说明
private	T12CertificateConsumer()

方法概要

限定符和类型	方法和说明
private static void	checkClientCerts(ServerHandshakeContext shc, X509Certificate[] certs)
(专用程序包) static void	checkServerCerts(ClientHandshakeContext chc, X509Certificate[] certs) Perform client-side checking of server certificates.
void	consume(ConnectionContext context, ByteBuffer message)
private static Alert	getCertificateAlert(ClientHandshakeContext chc, CertificateException cexc) When a failure happens during certificate checking from an X509TrustManager, determine what TLS alert description to use.
private static Collection<String>	getSubjectAltNames(Collection<List<?>> subjectAltNames, int type)
private static boolean	isEquivalent(Collection<String> thisSubAltNames, Collection<String> prevSubAltNames)
private static boolean	isIdentityEquivalent(X509Certificate thisCert, X509Certificate prevCert)
private void	onCertificate(ClientHandshakeContext chc, CertificateMessage.T12CertificateMessage certificateMessage)
private void	onCertificate(ServerHandshakeContext shc, CertificateMessage.T12CertificateMessage certificateMessage)

从类继承的方法 java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

构造器详细资料

T12CertificateConsumer

private T12CertificateConsumer()

方法详细资料

consume

public void consume(ConnectionContext context,
                    ByteBuffer message)
             throws IOException

指定者:

consume 在接口中 SSLConsumer

抛出:

IOException

onCertificate

private void onCertificate(ServerHandshakeContext shc,
                           CertificateMessage.T12CertificateMessage certificateMessage)
                    throws IOException

抛出:

IOException

onCertificate

private void onCertificate(ClientHandshakeContext chc,
                           CertificateMessage.T12CertificateMessage certificateMessage)
                    throws IOException

抛出:

IOException

isIdentityEquivalent

private static boolean isIdentityEquivalent(X509Certificate thisCert,
                                            X509Certificate prevCert)

getSubjectAltNames

private static Collection<String> getSubjectAltNames(Collection<List<?>> subjectAltNames,
                                                     int type)

isEquivalent

private static boolean isEquivalent(Collection<String> thisSubAltNames,
                                    Collection<String> prevSubAltNames)

checkServerCerts

static void checkServerCerts(ClientHandshakeContext chc,
                             X509Certificate[] certs)
                      throws IOException

Perform client-side checking of server certificates.

参数:

certs - an array of X509Certificate objects presented by the server in the ServerCertificate message.

抛出:

IOException - if a failure occurs during validation or the trust manager associated with the SSLContext is not an X509ExtendedTrustManager.

checkClientCerts

private static void checkClientCerts(ServerHandshakeContext shc,
                                     X509Certificate[] certs)
                              throws IOException

抛出:

IOException

getCertificateAlert

private static Alert getCertificateAlert(ClientHandshakeContext chc,
                                         CertificateException cexc)

When a failure happens during certificate checking from an X509TrustManager, determine what TLS alert description to use.

参数:

cexc - The exception thrown by the X509TrustManager

返回:

A byte value corresponding to a TLS alert description number.