HostnameChecker (kona-pkix 1.0.7.1 API)

java.lang.Object
- com.tencent.kona.sun.security.util.HostnameChecker

```
public class HostnameChecker
extends java.lang.Object
```
Class to check hostnames against the names specified in a certificate as required for TLS and LDAP.

Field Summary

Fields
Modifier and Type Field and Description

static byte TYPE_LDAP

static byte TYPE_TLS

Fields
Modifier and Type	Field and Description
`static byte`	`TYPE_LDAP`
`static byte`	`TYPE_TLS`

Method Summary

All Methods Static Methods Instance Methods Concrete Methods
Modifier and Type	Method and Description
`static HostnameChecker`	`getInstance(byte checkType)` Get a HostnameChecker instance.
`static X500Name`	`getSubjectX500Name(java.security.cert.X509Certificate cert)` Return the subject of a certificate as X500Name, by reparsing if necessary.
`void`	`match(java.lang.String expectedName, java.security.cert.X509Certificate cert)`
`void`	`match(java.lang.String expectedName, java.security.cert.X509Certificate cert, boolean chainsToPublicCA)` Perform the check.

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

- Field Detail
  - TYPE_TLS
```
public static final byte TYPE_TLS
```
    See Also:
    
    Constant Field Values
  - TYPE_LDAP
```
public static final byte TYPE_LDAP
```
    See Also:
    
    Constant Field Values
- Method Detail
  - getInstance
```
public static HostnameChecker getInstance(byte checkType)
```
    Get a HostnameChecker instance. checkType should be one of the TYPE_* constants defined in this class.
  - match
```
public void match(java.lang.String expectedName,
                  java.security.cert.X509Certificate cert,
                  boolean chainsToPublicCA)
           throws java.security.cert.CertificateException
```
    Perform the check.
    
    Parameters:
    
    expectedName - the expected host name or ip address
    
    cert - the certificate to check against
    
    chainsToPublicCA - true if the certificate chains to a public root CA (as pre-installed in the cacerts file)
    
    Throws:
    
    java.security.cert.CertificateException - if the name does not match any of the names specified in the certificate
  - match
```
public void match(java.lang.String expectedName,
                  java.security.cert.X509Certificate cert)
           throws java.security.cert.CertificateException
```
    Throws:
    
    java.security.cert.CertificateException
  - getSubjectX500Name
```
public static X500Name getSubjectX500Name(java.security.cert.X509Certificate cert)
                                   throws java.security.cert.CertificateParsingException
```
    Return the subject of a certificate as X500Name, by reparsing if necessary. X500Name should only be used if access to name components is required, in other cases X500Principal is to be preferred. This method is currently used from within JSSE, do not remove.
    
    Throws:
    
    java.security.cert.CertificateParsingException

Class HostnameChecker

Field Summary

Method Summary

Methods inherited from class java.lang.Object

Field Detail

TYPE_TLS

TYPE_LDAP

Method Detail

getInstance

match

match

getSubjectX500Name