Package org.conscrypt

Class TrustManagerImpl.ExtendedKeyUsagePKIXCertPathChecker

java.lang.Object
java.security.cert.PKIXCertPathChecker
org.conscrypt.TrustManagerImpl.ExtendedKeyUsagePKIXCertPathChecker
All Implemented Interfaces:
Cloneable, CertPathChecker
Enclosing class:
TrustManagerImpl

private static class TrustManagerImpl.ExtendedKeyUsagePKIXCertPathChecker extends PKIXCertPathChecker
If an EKU extension is present in the end-entity certificate, it MUST contain an appropriate key usage. For servers, this includes anyExtendedKeyUsage, serverAuth, or the historical Server Gated Cryptography options of nsSGC or msSGC. For clients, this includes anyExtendedKeyUsage and clientAuth.