Home | History | Annotate | Download | only in util 
      1 /*
      2  * Copyright (c) 2016, Oracle and/or its affiliates. All rights reserved.
      3  * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
      4  *
      5  * This code is free software; you can redistribute it and/or modify it
      6  * under the terms of the GNU General Public License version 2 only, as
      7  * published by the Free Software Foundation.  Oracle designates this
      8  * particular file as subject to the "Classpath" exception as provided
      9  * by Oracle in the LICENSE file that accompanied this code.
     10  *
     11  * This code is distributed in the hope that it will be useful, but WITHOUT
     12  * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
     13  * FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License
     14  * version 2 for more details (a copy is included in the LICENSE file that
     15  * accompanied this code).
     16  *
     17  * You should have received a copy of the GNU General Public License version
     18  * 2 along with this work; if not, write to the Free Software Foundation,
     19  * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
     20  *
     21  * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
     22  * or visit www.oracle.com if you need additional information or have any
     23  * questions.
     24  */
     25 
     26 package sun.security.util;
     27 
     28 import java.security.cert.X509Certificate;
     29 
     30 /**
     31  * This class is a wrapper for keeping state and passing objects between PKIX,
     32  * AlgorithmChecker, and DisabledAlgorithmConstraints.
     33  */
     34 public class CertConstraintParameters {
     35     // A certificate being passed to check against constraints.
     36     private final X509Certificate cert;
     37 
     38     // This is true if the trust anchor in the certificate chain matches a cert
     39     // in AnchorCertificates
     40     private final boolean trustedMatch;
     41 
     42     public CertConstraintParameters(X509Certificate c, boolean match) {
     43         cert = c;
     44         trustedMatch = match;
     45     }
     46 
     47     public CertConstraintParameters(X509Certificate c) {
     48         this(c, false);
     49     }
     50 
     51     // Returns if the trust anchor has a match if anchor checking is enabled.
     52     public boolean isTrustedMatch() {
     53         return trustedMatch;
     54     }
     55 
     56     public X509Certificate getCertificate() {
     57         return cert;
     58     }
     59 }
     60