Update JSSTrustManager to support trusted peers

dogtagpki / jss

Network Security Services for Java is a Java interface to NSS

https://dogtagpki.github.io/jss

19 stars 30 forks source link

Update JSSTrustManager to support trusted peers #1017

Closed edewata closed 1 month ago

edewata commented 1 month ago

JSSTrustManager has been updated to mimic NSS cert validation which supports trusted peers. The checkCertChain() has been modified to check whether the cert chain has P,, trust flags, and if that's the case the cert chain is considered trusted so it's not necessary to check the cert issuer anymore.

sonarcloud[bot] commented 1 month ago

Quality Gate failed

Failed conditions
B Maintainability Rating on New Code (required ≥ A)

See analysis details on SonarCloud

Catch issues before they fail your Quality Gate with our IDE extension SonarLint

edewata commented 1 month ago

@fmarco76 Thanks!