CERTIFICATE - Code Search

okhttp-tls/src/main/kotlin/okhttp3/tls/internal/TlsUtil.kt

  ): X509KeyManager {
    val keyStore = newEmptyKeyStore(keyStoreType)
    if (heldCertificate != null) {
      val chain = arrayOfNulls<Certificate>(1 + intermediates.size)
      chain[0] = heldCertificate.certificate
      intermediates.copyInto(chain, 1)
      keyStore.setKeyEntry("private", heldCertificate.keyPair.private, password, chain)
    }

    // https://github.com/bcgit/bc-java/issues/1160

Created: Fri Apr 03 11:42:14 GMT 2026

- Last Modified: Wed Mar 19 19:25:20 GMT 2025

- 4.3K bytes

- Click Count (1)

github.com/square/okhttp

docs/changelogs/changelog_4x.md


## Version 4.2.0

_2019-09-10_

 *  New: API to decode a certificate and private key to create a `HeldCertificate`. This accepts a
    string containing both a certificate and PKCS #8-encoded private key.

    ```kotlin
    val heldCertificate = HeldCertificate.decode("""
        |-----BEGIN CERTIFICATE-----
        |MIIBYTCCAQegAwIBAgIBKjAKBggqhkjOPQQDAjApMRQwEgYDVQQLEwtlbmdpbmVl

Created: Fri Apr 03 11:42:14 GMT 2026

- Last Modified: Wed Apr 17 13:25:31 GMT 2024

- 25.2K bytes

- Click Count (0)

github.com/square/okhttp

okhttp/src/jvmTest/kotlin/okhttp3/KotlinSourceModernTest.kt

    val certificate: X509Certificate = heldCertificate.certificate
    val certificatePinner: CertificatePinner = CertificatePinner.Builder().build()
    val certificates: List<Certificate> = listOf()
    certificatePinner.check("", listOf(certificate))
    certificatePinner.check("", arrayOf<Certificate>(certificate, certificate).toList())
    val pin: String = CertificatePinner.pin(certificate)

Created: Fri Apr 03 11:42:14 GMT 2026

- Last Modified: Tue Mar 10 21:47:20 GMT 2026

- 49.7K bytes

- Click Count (0)

github.com/square/okhttp

regression-test/src/androidTest/java/okhttp/regression/LetsEncryptTest.java

              "emyPxgcYxn/eR44/KJ4EBs+lVDR3veyJm+kXQ99b21/+jh5Xos1AnX5iItreGCc=\n" +
              "-----END CERTIFICATE-----";

      CertificateFactory cf = CertificateFactory.getInstance("X.509");
      Certificate isgCertificate = cf.generateCertificate(new ByteArrayInputStream(isgCert.getBytes("UTF-8")));

      HandshakeCertificates certificates = new HandshakeCertificates.Builder()

Created: Fri Apr 03 11:42:14 GMT 2026

- Last Modified: Tue Nov 17 07:40:31 GMT 2020

- 6.1K bytes

- Click Count (0)

github.com/square/okhttp

okhttp-tls/src/main/kotlin/okhttp3/tls/internal/InsecureAndroidTrustManager.kt

    authType: String,
    host: String,
  ): List<Certificate> {
    if (host in insecureHosts) return listOf()
    try {
      val method =
        checkServerTrustedMethod
          ?: throw CertificateException("Failed to call checkServerTrusted")
      return method.invoke(delegate, chain, authType, host) as List<Certificate>
    } catch (e: InvocationTargetException) {
      throw e.targetException
    }

Created: Fri Apr 03 11:42:14 GMT 2026

- Last Modified: Mon Jan 08 01:13:22 GMT 2024

- 2.4K bytes

- Click Count (0)

github.com/square/okhttp

okhttp/src/jvmTest/kotlin/okhttp3/ConnectionCoalescingTest.kt

  /** Can still coalesce when pinning is used if pins match.  */
  @Test
  fun coalescesWhenCertificatePinsMatch() {
    val pinner =
      CertificatePinner
        .Builder()
        .add("san.com", pin(certificate.certificate))
        .build()
    client = client.newBuilder().certificatePinner(pinner).build()
    server.enqueue(MockResponse())
    server.enqueue(MockResponse())

Created: Fri Apr 03 11:42:14 GMT 2026

- Last Modified: Thu Jun 19 11:44:16 GMT 2025

- 19.1K bytes

- Click Count (0)

github.com/square/okhttp

okhttp/src/jvmTest/kotlin/okhttp3/KotlinDeprecationErrorTest.kt

    builder = builder.heldCertificate(heldCertificate, heldCertificate.certificate())
    builder = builder.addTrustedCertificate(heldCertificate.certificate())
  }

  @Test @Disabled
  fun heldCertificate() {
    val heldCertificate: HeldCertificate = HeldCertificate.Builder().build()
    val certificate: X509Certificate = heldCertificate.certificate()
    val keyPair: KeyPair = heldCertificate.keyPair()
  }

Created: Fri Apr 03 11:42:14 GMT 2026

- Last Modified: Fri Dec 27 13:39:56 GMT 2024

- 13.3K bytes

- Click Count (0)

github.com/golang/go

misc/ios/README

However, further setup is required to run tests or programs directly on a device.

First make sure you have a valid developer certificate and have setup your device properly
to run apps signed by your developer certificate. Then install the libimobiledevice and
ideviceinstaller tools from https://www.libimobiledevice.org/. Use the HEAD versions from

Created: Tue Apr 07 11:13:11 GMT 2026

- Last Modified: Tue Dec 29 21:49:26 GMT 2020

- 2.7K bytes

- Click Count (0)

github.com/minio/minio

internal/config/certsinfo.go

		}
		buf.WriteString("\n")
	}
	return values
}

// CertificateText returns a human-readable string representation
// of the certificate cert. The format is similar to the OpenSSL
// way of printing certificates (not identical).
func CertificateText(cert *x509.Certificate) string {
	var buf strings.Builder

	buf.WriteString(color.Blue("\nCertificate:\n"))
	if cert.SignatureAlgorithm != x509.UnknownSignatureAlgorithm {

Created: Sun Apr 05 19:28:12 GMT 2026

- Last Modified: Tue Nov 16 17:28:29 GMT 2021

- 3.1K bytes

- Click Count (0)

github.com/minio/minio

internal/http/listener_test.go

	"github.com/minio/minio-go/v7/pkg/set"
)

var serverPort uint32 = 60000

var getCert = func(*tls.ClientHelloInfo) (*tls.Certificate, error) {
	certificate, err := getTLSCert()
	if err != nil {
		return nil, err
	}
	return &certificate, nil
}

func getTLSCert() (tls.Certificate, error) {
	keyPEMBlock := []byte(`-----BEGIN RSA PRIVATE KEY-----
MIIEpAIBAAKCAQEApEkbPrT6wzcWK1W5atQiGptvuBsRdf8MCg4u6SN10QbslA5k

Created: Sun Apr 05 19:28:12 GMT 2026

- Last Modified: Fri Aug 29 02:39:48 GMT 2025

- 11.8K bytes

- Click Count (0)

Search Options