public class CRLVerifier extends RootStoreVerifier
Modifier and Type | Field | Description |
---|---|---|
protected static Logger |
LOGGER |
The Logger instance
|
onlineCheckingAllowed, verifier
rootStore
Constructor | Description |
---|---|
CRLVerifier(CertificateVerifier verifier,
java.util.List<java.security.cert.X509CRL> crls) |
Creates a CRLVerifier instance.
|
Modifier and Type | Method | Description |
---|---|---|
java.security.cert.X509CRL |
getCRL(java.security.cert.X509Certificate signCert,
java.security.cert.X509Certificate issuerCert) |
Fetches a CRL for a specific certificate online (without further checking).
|
boolean |
isSignatureValid(java.security.cert.X509CRL crl,
java.security.cert.X509Certificate crlIssuer) |
Checks if a CRL verifies against the issuer certificate or a trusted anchor.
|
java.util.List<VerificationOK> |
verify(java.security.cert.X509Certificate signCert,
java.security.cert.X509Certificate issuerCert,
java.util.Date signDate) |
Verifies if a a valid CRL is found for the certificate.
|
boolean |
verify(java.security.cert.X509CRL crl,
java.security.cert.X509Certificate signCert,
java.security.cert.X509Certificate issuerCert,
java.util.Date signDate) |
Verifies a certificate against a single CRL.
|
setOnlineCheckingAllowed
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
setRootStore
protected static final Logger LOGGER
public CRLVerifier(CertificateVerifier verifier, java.util.List<java.security.cert.X509CRL> crls)
verifier
- the next verifier in the chaincrls
- a list of CRLspublic java.util.List<VerificationOK> verify(java.security.cert.X509Certificate signCert, java.security.cert.X509Certificate issuerCert, java.util.Date signDate) throws java.security.GeneralSecurityException, java.io.IOException
verify
in class RootStoreVerifier
signCert
- the certificate that needs to be checkedissuerCert
- its issuersignDate
- the date the certificate needs to be validVerificationOK
objects.
The list will be empty if the certificate couldn't be verified.java.security.GeneralSecurityException
java.io.IOException
RootStoreVerifier.verify(java.security.cert.X509Certificate, java.security.cert.X509Certificate, java.util.Date)
public boolean verify(java.security.cert.X509CRL crl, java.security.cert.X509Certificate signCert, java.security.cert.X509Certificate issuerCert, java.util.Date signDate) throws java.security.GeneralSecurityException
crl
- the Certificate Revocation ListsignCert
- a certificate that needs to be verifiedissuerCert
- its issuersignDate
- the sign datejava.security.GeneralSecurityException
public java.security.cert.X509CRL getCRL(java.security.cert.X509Certificate signCert, java.security.cert.X509Certificate issuerCert)
signCert
- the certificateissuerCert
- its issuerpublic boolean isSignatureValid(java.security.cert.X509CRL crl, java.security.cert.X509Certificate crlIssuer)
crl
- the CRLcrlIssuer
- the trusted anchorCopyright © 1998–2018. All rights reserved.