Search Options

Results per page
Sort
Preferred Languages
Advance

Results 1 - 10 of 40 for intermediates (0.11 sec)

  1. okhttp/src/test/java/okhttp3/internal/tls/CertificatePinnerChainValidationTest.kt

            .certificateAuthority(0)
            .commonName("compromised intermediate")
            .signedBy(pinnedRoot)
            .build()
        val attackerIntermediate =
          HeldCertificate.Builder()
            .keyPair(attackerCa.keyPair) // Share keys between compromised CA and intermediate!
            .serialNumber(4L)
            .certificateAuthority(0) // More intermediates than permitted by signer!
            .commonName("attacker intermediate")
    Registered: Fri Nov 01 11:42:11 UTC 2024
    - Last Modified: Mon Jan 08 01:13:22 UTC 2024
    - 23.8K bytes
    - Viewed (0)
  2. okhttp-tls/src/main/kotlin/okhttp3/tls/HandshakeCertificates.kt

          this.intermediates = arrayOf(*intermediates) // Defensive copy.
        }
    
        /**
         * Add a trusted root certificate to use when authenticating a peer. Peers must provide
         * a chain of certificates whose root is one of these.
         */
        fun addTrustedCertificate(certificate: X509Certificate) =
          apply {
            this.trustedCertificates += certificate
          }
    
        /**
    Registered: Fri Nov 01 11:42:11 UTC 2024
    - Last Modified: Mon Jan 08 01:13:22 UTC 2024
    - 8.5K bytes
    - Viewed (0)
  3. okhttp-tls/src/main/kotlin/okhttp3/tls/internal/TlsUtil.kt

        keyStoreType: String?,
        heldCertificate: HeldCertificate?,
        vararg intermediates: X509Certificate,
      ): X509KeyManager {
        val keyStore = newEmptyKeyStore(keyStoreType)
        if (heldCertificate != null) {
          val chain = arrayOfNulls<Certificate>(1 + intermediates.size)
          chain[0] = heldCertificate.certificate
          intermediates.copyInto(chain, 1)
    Registered: Fri Nov 01 11:42:11 UTC 2024
    - Last Modified: Mon Jan 08 01:13:22 UTC 2024
    - 4.1K bytes
    - Viewed (0)
  4. okhttp/src/main/kotlin/okhttp3/internal/tls/BasicCertificateChainCleaner.kt

      ): Boolean {
        if (toVerify.issuerDN != signingCert.subjectDN) {
          return false
        }
        if (signingCert.basicConstraints < minIntermediates) {
          return false // The signer can't have this many intermediates beneath it.
        }
        return try {
          toVerify.verify(signingCert.publicKey)
          true
        } catch (verifyFailed: GeneralSecurityException) {
          false
        }
      }
    
    Registered: Fri Nov 01 11:42:11 UTC 2024
    - Last Modified: Mon Jan 08 01:13:22 UTC 2024
    - 4.8K bytes
    - Viewed (0)
  5. okhttp-tls/src/main/kotlin/okhttp3/tls/HeldCertificate.kt

     *
     * In this example the HTTP client already knows and trusts the last certificate, "Entrust Root
     * Certification Authority - G2". That certificate is used to verify the signature of the
     * intermediate certificate, "Entrust Certification Authority - L1M". The intermediate certificate
     * is used to verify the signature of the "www.squareup.com" certificate.
     *
     * This roles are reversed for client authentication. In that case the client has a private key and
    Registered: Fri Nov 01 11:42:11 UTC 2024
    - Last Modified: Mon Jan 08 01:13:22 UTC 2024
    - 21.6K bytes
    - Viewed (0)
  6. okhttp/src/test/java/okhttp3/internal/tls/ClientAuthTest.kt

      }
    
      private fun buildClient(
        heldCertificate: HeldCertificate?,
        vararg intermediates: X509Certificate,
      ): OkHttpClient {
        val builder =
          HandshakeCertificates.Builder()
            .addTrustedCertificate(serverRootCa.certificate)
        if (heldCertificate != null) {
          builder.heldCertificate(heldCertificate, *intermediates)
        }
        val handshakeCertificates = builder.build()
    Registered: Fri Nov 01 11:42:11 UTC 2024
    - Last Modified: Sun Jan 14 10:20:09 UTC 2024
    - 12.5K bytes
    - Viewed (0)
  7. okhttp-tls/README.md

    representative of real-world HTTPS deployment. To get closer to that we can use `HeldCertificate`
    to generate a trusted root certificate, an intermediate certificate, and a server certificate.
    We use `certificateAuthority(int)` to create certificates that can sign other certificates. The
    int specifies how many intermediate certificates are allowed beneath it in the chain.
    
    ```java
    HeldCertificate rootCertificate = new HeldCertificate.Builder()
    Registered: Fri Nov 01 11:42:11 UTC 2024
    - Last Modified: Sun Dec 17 15:34:10 UTC 2023
    - 9.1K bytes
    - Viewed (0)
  8. CHANGELOG.md

     *  Fix: Don't crash loading the public suffix database resource in obfuscated builds.
     *  Fix: Don't silently ignore calls to `EventSource.cancel()` made from
        `EventSourceListener.onOpen()`.
     *  Fix: Enforce the max intermediates constraint when using pinned certificates with Conscrypt.
        This impacts Conscrypt when the server's presented certificates form both a trusted-but-unpinned
        chain and an untrusted-but-pinned chain.
    Registered: Fri Nov 01 11:42:11 UTC 2024
    - Last Modified: Thu Apr 18 01:31:39 UTC 2024
    - 21.4K bytes
    - Viewed (0)
  9. okhttp/src/test/java/okhttp3/CertificateChainCleanerTest.kt

          .isEqualTo(
            list(certificate, intermediateCa, trusted),
          )
        assertThat(cleaner.clean(list(certificate, intermediateCa, trusted), "hostname"))
          .isEqualTo(
            list(certificate, intermediateCa, trusted),
          )
      }
    
      @Test
      fun chainMaxLength() {
        val heldCertificates = chainOfLength(10)
    Registered: Fri Nov 01 11:42:11 UTC 2024
    - Last Modified: Mon Jan 08 01:13:22 UTC 2024
    - 9.3K bytes
    - Viewed (0)
  10. okhttp-tls/src/test/java/okhttp3/tls/HandshakeCertificatesTest.kt

        val root =
          HeldCertificate.Builder()
            .certificateAuthority(1)
            .build()
        val intermediate =
          HeldCertificate.Builder()
            .certificateAuthority(0)
            .signedBy(root)
            .build()
        val certificate =
          HeldCertificate.Builder()
            .signedBy(intermediate)
            .build()
        val handshakeCertificates =
          HandshakeCertificates.Builder()
    Registered: Fri Nov 01 11:42:11 UTC 2024
    - Last Modified: Thu Apr 11 22:09:35 UTC 2024
    - 7.1K bytes
    - Viewed (0)
Back to top