public class CodeSource extends Object implements Serializable
This class extends the concept of a codebase to encapsulate not only the location (URL) but also the certificate chains that were used to verify signed code originating from that location.
public CodeSource(URL url, Certificate[] certs)
Constructs a CodeSource and associates it with the specified location and set of certificates.
url
- the location (URL).certs
- the certificate(s). It may be null. The contents of the array are copied to protect against subsequent modification.public CodeSource(URL url, CodeSigner[] signers)
Constructs a CodeSource and associates it with the specified location and set of code signers.
url
- the location (URL).signers
- the code signers. It may be null. The contents of the array are copied to protect against subsequent modification.public int hashCode()
Returns the hash code value for this object.
hashCode
in class Object
Object.equals(java.lang.Object)
, System.identityHashCode(java.lang.Object)
public boolean equals(Object obj)
Tests for equality between the specified object and this object. Two CodeSource objects are considered equal if their locations are of identical value and if their signer certificate chains are of identical value. It is not required that the certificate chains be in the same order.
equals
in class Object
obj
- the object to test for equality with this object.Object.hashCode()
, HashMap
public final URL getLocation()
Returns the location associated with this CodeSource.
public final Certificate[] getCertificates()
Returns the certificates associated with this CodeSource.
If this CodeSource object was created using the CodeSource(URL url, CodeSigner[] signers)
constructor then its certificate chains are extracted and used to create an array of Certificate objects. Each signer certificate is followed by its supporting certificate chain (which may be empty). Each signer certificate and its supporting certificate chain is ordered bottom-to-top (i.e., with the signer certificate first and the (root) certificate authority last).
public final CodeSigner[] getCodeSigners()
Returns the code signers associated with this CodeSource.
If this CodeSource object was created using the CodeSource(URL url, java.security.cert.Certificate[] certs)
constructor then its certificate chains are extracted and used to create an array of CodeSigner objects. Note that only X.509 certificates are examined - all other certificate types are ignored.
public boolean implies(CodeSource codesource)
Returns true if this CodeSource object "implies" the specified CodeSource.
More specifically, this method makes the following checks. If any fail, it returns false. If they all succeed, it returns true.
For example, the codesource objects with the following locations and null certificates all imply the codesource with the location "http://java.sun.com/classes/foo.jar" and null certificates:
http: http://*.sun.com/classes/* http://java.sun.com/classes/- http://java.sun.com/classes/foo.jarNote that if this CodeSource has a null location and a null certificate chain, then it implies every other CodeSource.
codesource
- CodeSource to compare against.public String toString()
Returns a string describing this CodeSource, telling its URL and certificates.
© 1993–2017, Oracle and/or its affiliates. All rights reserved.
Documentation extracted from Debian's OpenJDK Development Kit package.
Licensed under the GNU General Public License, version 2, with the Classpath Exception.
Various third party code in OpenJDK is licensed under different licenses (see Debian package).
Java and OpenJDK are trademarks or registered trademarks of Oracle and/or its affiliates.