class sun.security.provider.certpath.KeyChecker extends java.security.cert.PKIXCertPathChecker
minor version: 0
major version: 59
flags: flags: (0x0020) ACC_SUPER
this_class: sun.security.provider.certpath.KeyChecker
super_class: java.security.cert.PKIXCertPathChecker
{
private static final sun.security.util.Debug debug;
descriptor: Lsun/security/util/Debug;
flags: (0x001a) ACC_PRIVATE, ACC_STATIC, ACC_FINAL
private final int certPathLen;
descriptor: I
flags: (0x0012) ACC_PRIVATE, ACC_FINAL
private final java.security.cert.CertSelector targetConstraints;
descriptor: Ljava/security/cert/CertSelector;
flags: (0x0012) ACC_PRIVATE, ACC_FINAL
private int remainingCerts;
descriptor: I
flags: (0x0002) ACC_PRIVATE
private java.util.Set<java.lang.String> supportedExts;
descriptor: Ljava/util/Set;
flags: (0x0002) ACC_PRIVATE
Signature: Ljava/util/Set<Ljava/lang/String;>;
private static final int KEY_CERT_SIGN;
descriptor: I
flags: (0x001a) ACC_PRIVATE, ACC_STATIC, ACC_FINAL
ConstantValue: 5
static void <clinit>();
descriptor: ()V
flags: (0x0008) ACC_STATIC
Code:
stack=1, locals=0, args_size=0
0: ldc "certpath"
invokestatic sun.security.util.Debug.getInstance:(Ljava/lang/String;)Lsun/security/util/Debug;
putstatic sun.security.provider.certpath.KeyChecker.debug:Lsun/security/util/Debug;
1: return
LocalVariableTable:
Start End Slot Name Signature
void <init>(int, java.security.cert.CertSelector);
descriptor: (ILjava/security/cert/CertSelector;)V
flags: (0x0000)
Code:
stack=2, locals=3, args_size=3
start local 0 start local 1 start local 2 0: aload 0
invokespecial java.security.cert.PKIXCertPathChecker.<init>:()V
1: aload 0
iload 1
putfield sun.security.provider.certpath.KeyChecker.certPathLen:I
2: aload 0
aload 2
putfield sun.security.provider.certpath.KeyChecker.targetConstraints:Ljava/security/cert/CertSelector;
3: return
end local 2 end local 1 end local 0 LocalVariableTable:
Start End Slot Name Signature
0 4 0 this Lsun/security/provider/certpath/KeyChecker;
0 4 1 certPathLen I
0 4 2 targetCertSel Ljava/security/cert/CertSelector;
MethodParameters:
Name Flags
certPathLen
targetCertSel
public void init(boolean);
descriptor: (Z)V
flags: (0x0001) ACC_PUBLIC
Code:
stack=3, locals=2, args_size=2
start local 0 start local 1 0: iload 1
ifne 3
1: aload 0
aload 0
getfield sun.security.provider.certpath.KeyChecker.certPathLen:I
putfield sun.security.provider.certpath.KeyChecker.remainingCerts:I
2: goto 6
3: StackMap locals:
StackMap stack:
new java.security.cert.CertPathValidatorException
dup
4: ldc "forward checking not supported"
5: invokespecial java.security.cert.CertPathValidatorException.<init>:(Ljava/lang/String;)V
athrow
6: StackMap locals:
StackMap stack:
return
end local 1 end local 0 LocalVariableTable:
Start End Slot Name Signature
0 7 0 this Lsun/security/provider/certpath/KeyChecker;
0 7 1 forward Z
Exceptions:
throws java.security.cert.CertPathValidatorException
MethodParameters:
Name Flags
forward
public boolean isForwardCheckingSupported();
descriptor: ()Z
flags: (0x0001) ACC_PUBLIC
Code:
stack=1, locals=1, args_size=1
start local 0 0: iconst_0
ireturn
end local 0 LocalVariableTable:
Start End Slot Name Signature
0 1 0 this Lsun/security/provider/certpath/KeyChecker;
public java.util.Set<java.lang.String> getSupportedExtensions();
descriptor: ()Ljava/util/Set;
flags: (0x0001) ACC_PUBLIC
Code:
stack=4, locals=1, args_size=1
start local 0 0: aload 0
getfield sun.security.provider.certpath.KeyChecker.supportedExts:Ljava/util/Set;
ifnonnull 6
1: aload 0
new java.util.HashSet
dup
iconst_3
invokespecial java.util.HashSet.<init>:(I)V
putfield sun.security.provider.certpath.KeyChecker.supportedExts:Ljava/util/Set;
2: aload 0
getfield sun.security.provider.certpath.KeyChecker.supportedExts:Ljava/util/Set;
getstatic sun.security.x509.PKIXExtensions.KeyUsage_Id:Lsun/security/util/ObjectIdentifier;
invokevirtual sun.security.util.ObjectIdentifier.toString:()Ljava/lang/String;
invokeinterface java.util.Set.add:(Ljava/lang/Object;)Z
pop
3: aload 0
getfield sun.security.provider.certpath.KeyChecker.supportedExts:Ljava/util/Set;
getstatic sun.security.x509.PKIXExtensions.ExtendedKeyUsage_Id:Lsun/security/util/ObjectIdentifier;
invokevirtual sun.security.util.ObjectIdentifier.toString:()Ljava/lang/String;
invokeinterface java.util.Set.add:(Ljava/lang/Object;)Z
pop
4: aload 0
getfield sun.security.provider.certpath.KeyChecker.supportedExts:Ljava/util/Set;
getstatic sun.security.x509.PKIXExtensions.SubjectAlternativeName_Id:Lsun/security/util/ObjectIdentifier;
invokevirtual sun.security.util.ObjectIdentifier.toString:()Ljava/lang/String;
invokeinterface java.util.Set.add:(Ljava/lang/Object;)Z
pop
5: aload 0
aload 0
getfield sun.security.provider.certpath.KeyChecker.supportedExts:Ljava/util/Set;
invokestatic java.util.Collections.unmodifiableSet:(Ljava/util/Set;)Ljava/util/Set;
putfield sun.security.provider.certpath.KeyChecker.supportedExts:Ljava/util/Set;
6: StackMap locals:
StackMap stack:
aload 0
getfield sun.security.provider.certpath.KeyChecker.supportedExts:Ljava/util/Set;
areturn
end local 0 LocalVariableTable:
Start End Slot Name Signature
0 7 0 this Lsun/security/provider/certpath/KeyChecker;
Signature: ()Ljava/util/Set<Ljava/lang/String;>;
public void check(java.security.cert.Certificate, java.util.Collection<java.lang.String>);
descriptor: (Ljava/security/cert/Certificate;Ljava/util/Collection;)V
flags: (0x0001) ACC_PUBLIC
Code:
stack=3, locals=4, args_size=3
start local 0 start local 1 start local 2 0: aload 1
checkcast java.security.cert.X509Certificate
astore 3
start local 3 1: aload 0
dup
getfield sun.security.provider.certpath.KeyChecker.remainingCerts:I
iconst_1
isub
putfield sun.security.provider.certpath.KeyChecker.remainingCerts:I
2: aload 0
getfield sun.security.provider.certpath.KeyChecker.remainingCerts:I
ifne 6
3: aload 0
getfield sun.security.provider.certpath.KeyChecker.targetConstraints:Ljava/security/cert/CertSelector;
ifnull 7
4: aload 0
getfield sun.security.provider.certpath.KeyChecker.targetConstraints:Ljava/security/cert/CertSelector;
aload 3
invokeinterface java.security.cert.CertSelector.match:(Ljava/security/cert/Certificate;)Z
ifne 7
5: new java.security.cert.CertPathValidatorException
dup
ldc "target certificate constraints check failed"
invokespecial java.security.cert.CertPathValidatorException.<init>:(Ljava/lang/String;)V
athrow
6: StackMap locals: java.security.cert.X509Certificate
StackMap stack:
aload 3
invokestatic sun.security.provider.certpath.KeyChecker.verifyCAKeyUsage:(Ljava/security/cert/X509Certificate;)V
7: StackMap locals:
StackMap stack:
aload 2
ifnull 11
aload 2
invokeinterface java.util.Collection.isEmpty:()Z
ifne 11
8: aload 2
getstatic sun.security.x509.PKIXExtensions.KeyUsage_Id:Lsun/security/util/ObjectIdentifier;
invokevirtual sun.security.util.ObjectIdentifier.toString:()Ljava/lang/String;
invokeinterface java.util.Collection.remove:(Ljava/lang/Object;)Z
pop
9: aload 2
getstatic sun.security.x509.PKIXExtensions.ExtendedKeyUsage_Id:Lsun/security/util/ObjectIdentifier;
invokevirtual sun.security.util.ObjectIdentifier.toString:()Ljava/lang/String;
invokeinterface java.util.Collection.remove:(Ljava/lang/Object;)Z
pop
10: aload 2
getstatic sun.security.x509.PKIXExtensions.SubjectAlternativeName_Id:Lsun/security/util/ObjectIdentifier;
invokevirtual sun.security.util.ObjectIdentifier.toString:()Ljava/lang/String;
invokeinterface java.util.Collection.remove:(Ljava/lang/Object;)Z
pop
11: StackMap locals:
StackMap stack:
return
end local 3 end local 2 end local 1 end local 0 LocalVariableTable:
Start End Slot Name Signature
0 12 0 this Lsun/security/provider/certpath/KeyChecker;
0 12 1 cert Ljava/security/cert/Certificate;
0 12 2 unresCritExts Ljava/util/Collection<Ljava/lang/String;>;
1 12 3 currCert Ljava/security/cert/X509Certificate;
Exceptions:
throws java.security.cert.CertPathValidatorException
Signature: (Ljava/security/cert/Certificate;Ljava/util/Collection<Ljava/lang/String;>;)V
MethodParameters:
Name Flags
cert
unresCritExts
static void verifyCAKeyUsage(java.security.cert.X509Certificate);
descriptor: (Ljava/security/cert/X509Certificate;)V
flags: (0x0008) ACC_STATIC
Code:
stack=7, locals=3, args_size=1
start local 0 0: ldc "CA key usage"
astore 1
start local 1 1: getstatic sun.security.provider.certpath.KeyChecker.debug:Lsun/security/util/Debug;
ifnull 5
2: getstatic sun.security.provider.certpath.KeyChecker.debug:Lsun/security/util/Debug;
new java.lang.StringBuilder
dup
ldc "KeyChecker.verifyCAKeyUsage() ---checking "
invokespecial java.lang.StringBuilder.<init>:(Ljava/lang/String;)V
aload 1
invokevirtual java.lang.StringBuilder.append:(Ljava/lang/String;)Ljava/lang/StringBuilder;
3: ldc "..."
invokevirtual java.lang.StringBuilder.append:(Ljava/lang/String;)Ljava/lang/StringBuilder;
invokevirtual java.lang.StringBuilder.toString:()Ljava/lang/String;
4: invokevirtual sun.security.util.Debug.println:(Ljava/lang/String;)V
5: StackMap locals: java.lang.String
StackMap stack:
aload 0
invokevirtual java.security.cert.X509Certificate.getKeyUsage:()[Z
astore 2
start local 2 6: aload 2
ifnonnull 8
7: return
8: StackMap locals: boolean[]
StackMap stack:
aload 2
iconst_5
baload
ifne 13
9: new java.security.cert.CertPathValidatorException
dup
10: new java.lang.StringBuilder
dup
aload 1
invokestatic java.lang.String.valueOf:(Ljava/lang/Object;)Ljava/lang/String;
invokespecial java.lang.StringBuilder.<init>:(Ljava/lang/String;)V
ldc " check failed: keyCertSign bit is not set"
invokevirtual java.lang.StringBuilder.append:(Ljava/lang/String;)Ljava/lang/StringBuilder;
invokevirtual java.lang.StringBuilder.toString:()Ljava/lang/String;
aconst_null
11: aconst_null
iconst_m1
getstatic java.security.cert.PKIXReason.INVALID_KEY_USAGE:Ljava/security/cert/PKIXReason;
12: invokespecial java.security.cert.CertPathValidatorException.<init>:(Ljava/lang/String;Ljava/lang/Throwable;Ljava/security/cert/CertPath;ILjava/security/cert/CertPathValidatorException$Reason;)V
athrow
13: StackMap locals:
StackMap stack:
getstatic sun.security.provider.certpath.KeyChecker.debug:Lsun/security/util/Debug;
ifnull 17
14: getstatic sun.security.provider.certpath.KeyChecker.debug:Lsun/security/util/Debug;
new java.lang.StringBuilder
dup
ldc "KeyChecker.verifyCAKeyUsage() "
invokespecial java.lang.StringBuilder.<init>:(Ljava/lang/String;)V
aload 1
invokevirtual java.lang.StringBuilder.append:(Ljava/lang/String;)Ljava/lang/StringBuilder;
15: ldc " verified."
invokevirtual java.lang.StringBuilder.append:(Ljava/lang/String;)Ljava/lang/StringBuilder;
invokevirtual java.lang.StringBuilder.toString:()Ljava/lang/String;
16: invokevirtual sun.security.util.Debug.println:(Ljava/lang/String;)V
17: StackMap locals:
StackMap stack:
return
end local 2 end local 1 end local 0 LocalVariableTable:
Start End Slot Name Signature
0 18 0 cert Ljava/security/cert/X509Certificate;
1 18 1 msg Ljava/lang/String;
6 18 2 keyUsageBits [Z
Exceptions:
throws java.security.cert.CertPathValidatorException
MethodParameters:
Name Flags
cert
}
SourceFile: "KeyChecker.java"
InnerClasses:
public abstract Reason = java.security.cert.CertPathValidatorException$Reason of java.security.cert.CertPathValidatorException
