org.mozilla.jss.ssl
Class SSLCertificateApprovalCallback.ValidityStatus
public static
class
SSLCertificateApprovalCallback.ValidityStatus
extends Object
This class holds details about the errors for each cert in
the chain that the server presented
To use this class, getReasons(), then iterate over the enumeration
public static final int BAD_CERT_DOMAIN
this indicates common-name mismatch
public static final int BAD_KEY
public static final int BAD_SIGNATURE
public static final int CA_CERT_INVALID
public static final int CERT_BAD_ACCESS_LOCATION
public static final int CERT_NOT_IN_NAME_SPACE
public static final int CERT_STATUS_SERVER_ERROR
public static final int EXPIRED_CERTIFICATE
public static final int EXPIRED_ISSUER_CERTIFICATE
public static final int INADEQUATE_CERT_TYPE
public static final int INADEQUATE_KEY_USAGE
public static final int INVALID_TIME
public static final int OCSP_BAD_HTTP_RESPONSE
public static final int OCSP_FUTURE_RESPONSE
public static final int OCSP_MALFORMED_REQUEST
public static final int OCSP_MALFORMED_RESPONSE
public static final int OCSP_NOT_ENABLED
public static final int OCSP_NO_DEFAULT_RESPONDER
public static final int OCSP_OLD_RESPONSE
public static final int OCSP_REQUEST_NEEDS_SIG
public static final int OCSP_SERVER_ERROR
public static final int OCSP_TRY_SERVER_LATER
public static final int OCSP_UNAUTHORIZED_REQUEST
public static final int OCSP_UNAUTHORIZED_RESPONSE
public static final int OCSP_UNKNOWN_CERT
public static final int OCSP_UNKNOWN_RESPONSE_STATUS
public static final int OCSP_UNKNOWN_RESPONSE_TYPE
public static final int PATH_LEN_CONSTRAINT_INVALID
public static final int REVOKED_CERTIFICATE
public static final int SEC_ERROR_CRL_BAD_SIGNATURE
public static final int SEC_ERROR_CRL_EXPIRED
public static final int SEC_ERROR_CRL_INVALID
public static final int UNKNOWN_ISSUER
public static final int UNKNOWN_SIGNER
public static final int UNTRUSTED_CERT
public static final int UNTRUSTED_ISSUER
public void addReason(int newReason,
PK11Cert cert, int depth)
add a new failure reason to this enumeration. This is called from the
native code callback when it does a verify on the cert chain
Parameters: newReason sslerr.h error code - see constants defined above; cert a reference to the cert - so you can see the subject name, etc depth the index of this cert in the chain. 0 is the server cert.
public Enumeration getReasons()
returns an enumeration. The elements in the enumeration are
all of type 'ValidityItem'