iSaSiLk 6.1, (c) 2002 IAIK, (c) 2003 - 2015 SICpublic class TLS13Certificate extends SSLCertificate
A Certificate message may be sent from the server to the client if the server authenticating with a certificate or from the client to the server if the server has requested authentication of the client.
For each certificate of the client/server certificate chain the TLS 1.3 certificate message contains a CertificateEntry element holding of a raw public key or X.509 certificate and an optional list of extensions (OCSP Status and the SignedCertificateTimestamp), see RFC 8446:
enum {
X509(0),
RawPublicKey(2),
(255)
} CertificateType;
struct {
select (certificate_type) {
case RawPublicKey:
// From RFC 7250 ASN.1_subjectPublicKeyInfo
opaque ASN1_subjectPublicKeyInfo<1..2^24-1>;
case X509:
opaque cert_data<1..2^24-1>;
};
Extension extensions<0..2^16-1>;
} CertificateEntry;
struct {
opaque certificate_request_context<0..2^8-1>;
CertificateEntry certificate_list<0..2^24-1>;
} Certificate;
| Modifier and Type | Class and Description |
|---|---|
static class |
TLS13Certificate.CertificateEntry
TLS 1.3 CertificateEntry.
|
static class |
TLS13Certificate.X509CertificateEntry
TLS 1.3 X.509 CertificateEntry.
|
| Modifier and Type | Method and Description |
|---|---|
java.security.cert.X509Certificate[] |
getCertificateChain()
Returns the certificate list within this Certificate.
|
TLS13Certificate.CertificateEntry[] |
getCertificateEntries()
Returns the certificate entries.
|
byte[] |
getCertificateRequestContext()
Gets the certificate_request_context.
|
java.lang.String |
toString()
Returns a string representation of this SSLCertificate.
|
public byte[] getCertificateRequestContext()
public TLS13Certificate.CertificateEntry[] getCertificateEntries()
public java.security.cert.X509Certificate[] getCertificateChain()
getCertificateChain in class SSLCertificatepublic java.lang.String toString()
toString in class SSLCertificate