public class X509RevocationChecker extends PKIXCertPathChecker
Modifier and Type | Class and Description |
---|---|
static class |
X509RevocationChecker.Builder |
Modifier and Type | Field and Description |
---|---|
static int |
CHAIN_VALIDITY_MODEL
This model uses the following validity model.
|
protected static String[] |
crlReasons |
static int |
PKIX_VALIDITY_MODEL
This is the default PKIX validity model.
|
Modifier and Type | Method and Description |
---|---|
void |
check(Certificate certificate,
Collection<String> collection) |
protected void |
checkCRLs(PKIXExtendedParameters pkixParams,
Date currentDate,
Date validityDate,
X509Certificate cert,
X509Certificate sign,
PublicKey workingPublicKey,
List certPathCerts,
JcaJceHelper helper)
Checks a certificate if it is revoked.
|
Object |
clone() |
Set<String> |
getSupportedExtensions() |
void |
init(boolean forward) |
boolean |
isForwardCheckingSupported() |
check
public static final int PKIX_VALIDITY_MODEL
PKIXParameters.setDate(Date)
method, so this
methods sets the Date when all certificates must have been
valid.public static final int CHAIN_VALIDITY_MODEL
PKIXParameters.setDate(Date)
method sets the time, when
the end certificate must have been valid. It is used e.g.
in the German signature law.protected static final String[] crlReasons
public void init(boolean forward) throws CertPathValidatorException
init
in interface CertPathChecker
init
in class PKIXCertPathChecker
CertPathValidatorException
public boolean isForwardCheckingSupported()
isForwardCheckingSupported
in interface CertPathChecker
isForwardCheckingSupported
in class PKIXCertPathChecker
public Set<String> getSupportedExtensions()
getSupportedExtensions
in class PKIXCertPathChecker
public void check(Certificate certificate, Collection<String> collection) throws CertPathValidatorException
check
in class PKIXCertPathChecker
CertPathValidatorException
protected void checkCRLs(PKIXExtendedParameters pkixParams, Date currentDate, Date validityDate, X509Certificate cert, X509Certificate sign, PublicKey workingPublicKey, List certPathCerts, JcaJceHelper helper) throws org.bouncycastle.pkix.jcajce.AnnotatedException, CertPathValidatorException
pkixParams
- PKIX parameters.cert
- Certificate to check if it is revoked.validDate
- The date when the certificate revocation status should be
checked.sign
- The issuer certificate of the certificate cert
.workingPublicKey
- The public key of the issuer certificate sign
.certPathCerts
- The certificates of the certification path.AnnotatedException
- if the certificate is revoked or the status cannot be checked
or some error occurs.CertPathValidatorException
public Object clone()
clone
in class PKIXCertPathChecker
Copyright © 2021 BouncyCastle.org. All rights reserved.