de.mtg.jzlint.lints.rfc.ExtSanNotCriticalWithoutSubject

All Implemented Interfaces:: JavaLint

public class ExtSanNotCriticalWithoutSubject extends Object implements JavaLint

RFC 5280: 4.2.1.6 Further, if the only subject identity included in the certificate is an alternative name form (e.g., an electronic mail address), then the subject distinguished name MUST be empty (an empty sequence), and the subjectAltName extension MUST be present. If the subject field contains an empty sequence, then the issuing CA MUST include a subjectAltName extension that is marked as critical. When including the subjectAltName extension in a certificate that has a non-empty subject distinguished name, conforming CAs SHOULD mark the subjectAltName extension as non-critical.

Constructor Summary

Constructors

Constructor

Description

ExtSanNotCriticalWithoutSubject()
Method Summary

Modifier and Type

Method

Description

boolean

checkApplies(X509Certificate certificate)

LintResult

execute(X509Certificate certificate)

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details
- ExtSanNotCriticalWithoutSubject
  
  public ExtSanNotCriticalWithoutSubject()
Method Details
- execute
  
  public LintResult execute(X509Certificate certificate)
  
  Specified by:
  
  execute in interface JavaLint
- checkApplies
  
  public boolean checkApplies(X509Certificate certificate)
  
  Specified by:
  
  checkApplies in interface JavaLint

Class ExtSanNotCriticalWithoutSubject

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Constructor Details

ExtSanNotCriticalWithoutSubject

Method Details

execute

checkApplies