addSubjectAlternativeName

okhttp/src/jvmTest/kotlin/okhttp3/internal/tls/ClientAuthTest.kt

        .certificateAuthority(1)
        .commonName("root")
        .addSubjectAlternativeName("root_ca.com")
        .build()
    serverIntermediateCa =
      HeldCertificate
        .Builder()
        .signedBy(serverRootCa)
        .certificateAuthority(0)
        .serialNumber(2L)
        .commonName("intermediate_ca")
        .addSubjectAlternativeName("intermediate_ca.com")
        .build()
    serverCert =

Created: Fri Apr 03 11:42:14 GMT 2026

- Last Modified: Tue Jan 27 09:00:39 GMT 2026

- 13K bytes

- Click Count (0)

github.com/square/okhttp

okhttp-tls/README.md

[builder][held_certificate_builder] to create a self-signed certificate that a test server can use
for HTTPS:

```java
HeldCertificate localhostCertificate = new HeldCertificate.Builder()
    .addSubjectAlternativeName("localhost")
    .build();
```

[`HandshakeCertificates`][handshake_certificates] keeps the certificates for a TLS handshake.

Created: Fri Apr 03 11:42:14 GMT 2026

- Last Modified: Sun Mar 15 09:01:42 GMT 2026

- 9.1K bytes

- Click Count (0)

github.com/square/okhttp

okhttp/src/jvmTest/kotlin/okhttp3/internal/tls/CertificatePinnerChainValidationTest.kt

        .commonName("attacker")
        .addSubjectAlternativeName("attacker.com")
        .signedBy(pinnedIntermediate)
        .build()
    val phonyVictim =
      HeldCertificate
        .Builder()
        .serialNumber(6L)
        .signedBy(attackerSwitch)
        .addSubjectAlternativeName("victim.com")
        .commonName("victim")
        .build()

Created: Fri Apr 03 11:42:14 GMT 2026

- Last Modified: Tue Jan 27 09:00:39 GMT 2026

- 24.4K bytes

- Click Count (2)

github.com/square/okhttp

okhttp-tls/src/main/kotlin/okhttp3/tls/HeldCertificate.kt

     * extension will be omitted.
     */
    fun addSubjectAlternativeName(altName: String) =
      apply {
        altNames += altName
      }

    /**
     * Set this certificate's common name (CN). Historically this held the hostname of TLS
     * certificate, but that practice was deprecated by [RFC 2818][rfc_2818] and replaced with
     * [addSubjectAlternativeName]. If unset a random string will be used.
     *

Created: Fri Apr 03 11:42:14 GMT 2026

- Last Modified: Tue Jan 27 09:00:39 GMT 2026

- 21.6K bytes

- Click Count (0)

github.com/square/okhttp

okhttp/src/jvmTest/kotlin/okhttp3/SocketChannelTest.kt

    run {
      // Generate a self-signed cert for the server to serve and the client to trust.
      val heldCertificate =
        HeldCertificate
          .Builder()
          .commonName(hostname)
          .addSubjectAlternativeName(hostname)
          .build()
      HandshakeCertificates
        .Builder()
        .heldCertificate(heldCertificate)
        .addTrustedCertificate(heldCertificate.certificate)
        .build()
    }

Created: Fri Apr 03 11:42:14 GMT 2026

- Last Modified: Sat Nov 01 12:18:11 GMT 2025

- 7.9K bytes

- Click Count (0)

github.com/square/okhttp

okhttp-testing-support/src/main/kotlin/okhttp3/testing/PlatformRule.kt

        val heldCertificate =
          HeldCertificate
            .Builder()
            .commonName("localhost")
            .addSubjectAlternativeName("localhost")
            .rsa2048()
            .build()
        return@lazy HandshakeCertificates
          .Builder()
          .heldCertificate(heldCertificate)

Created: Fri Apr 03 11:42:14 GMT 2026

- Last Modified: Tue Jan 27 09:00:39 GMT 2026

- 15.5K bytes

- Click Count (1)

github.com/square/okhttp

mockwebserver-deprecated/src/test/java/okhttp3/mockwebserver/MockWebServerTest.kt

      HeldCertificate
        .Builder()
        .certificateAuthority(0)
        .build()
    val serverCertificate =
      HeldCertificate
        .Builder()
        .signedBy(serverCa)
        .addSubjectAlternativeName(server.hostName)
        .build()
    val serverHandshakeCertificates =
      HandshakeCertificates
        .Builder()
        .addTrustedCertificate(clientCa.certificate)

Created: Fri Apr 03 11:42:14 GMT 2026

- Last Modified: Thu Jul 03 13:16:34 GMT 2025

- 22.3K bytes

- Click Count (0)

github.com/square/okhttp

mockwebserver/src/test/java/mockwebserver3/MockWebServerTest.kt

      HeldCertificate
        .Builder()
        .certificateAuthority(0)
        .build()
    val serverCertificate =
      HeldCertificate
        .Builder()
        .signedBy(serverCa)
        .addSubjectAlternativeName(server.hostName)
        .build()
    val serverHandshakeCertificates =
      HandshakeCertificates
        .Builder()
        .addTrustedCertificate(clientCa.certificate)

Created: Fri Apr 03 11:42:14 GMT 2026

- Last Modified: Sun Aug 03 22:38:00 GMT 2025

- 28K bytes

- Click Count (0)

github.com/square/okhttp

okhttp/src/jvmTest/kotlin/okhttp3/CallTest.kt

    server.enqueue(MockResponse())
    val serverCertificate =
      HeldCertificate
        .Builder()
        .commonName("localhost") // Unusued for hostname verification.
        .addSubjectAlternativeName("wronghostname")
        .build()
    val serverCertificates =
      HandshakeCertificates
        .Builder()
        .heldCertificate(serverCertificate)
        .build()

Created: Fri Apr 03 11:42:14 GMT 2026

- Last Modified: Sun Mar 15 09:02:18 GMT 2026

- 146.5K bytes

- Click Count (0)

github.com/square/okhttp

okhttp/src/jvmTest/kotlin/okhttp3/KotlinSourceModernTest.kt

    var builder: HeldCertificate.Builder = HeldCertificate.Builder()
    builder = builder.validityInterval(0L, 0L)
    builder = builder.duration(0L, TimeUnit.SECONDS)
    builder = builder.addSubjectAlternativeName("")
    builder = builder.commonName("")
    builder = builder.organizationalUnit("")
    builder = builder.serialNumber(BigInteger.ZERO)
    builder = builder.serialNumber(0L)

Created: Fri Apr 03 11:42:14 GMT 2026

- Last Modified: Tue Mar 10 21:47:20 GMT 2026

- 49.7K bytes

- Click Count (0)

Search Options