jdk-sandbox: comparison jdk/src/share/classes/sun/security/provider/certpath/ReverseState.java

equal deleted inserted replaced

-:d9558f046caa
+:bc9a25fff6c5
 /*
-* Copyright (c) 2000, 2012, Oracle and/or its affiliates. All rights reserved.
+* Copyright (c) 2000, 2013, Oracle and/or its affiliates. All rights reserved.
 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
 *
 * This code is free software; you can redistribute it and/or modify it
 * under the terms of the GNU General Public License version 2 only, as
 * published by the Free Software Foundation.  Oracle designates this
 import java.io.IOException;
 import java.security.PublicKey;
 import java.security.cert.CertificateException;
 import java.security.cert.CertPathValidatorException;
 import java.security.cert.PKIXCertPathChecker;
+import java.security.cert.PKIXRevocationChecker;
 import java.security.cert.TrustAnchor;
 import java.security.cert.X509Certificate;
 import java.util.ArrayList;
 import java.util.HashSet;
 import java.util.List;
 // able to set the trust anchor until now.
 boolean revCheckerAdded = false;
 for (PKIXCertPathChecker checker : userCheckers) {
 if (checker instanceof AlgorithmChecker) {
 ((AlgorithmChecker)checker).trySetTrustAnchor(anchor);
-} else if (checker instanceof RevocationChecker) {
+} else if (checker instanceof PKIXRevocationChecker) {
-((RevocationChecker)checker).init(anchor, buildParams);
+if (revCheckerAdded) {
-((RevocationChecker)checker).init(false);
+throw new CertPathValidatorException(
+"Only one PKIXRevocationChecker can be specified");
+}
+// if it's our own, initialize it
+if (checker instanceof RevocationChecker) {
+((RevocationChecker)checker).init(anchor, buildParams);
+}
+((PKIXRevocationChecker)checker).init(false);
 revCheckerAdded = true;
 }
 }
 // only create a RevocationChecker if revocation is enabled and

changeset 19045	bc9a25fff6c5
parent 13806	b18118646a65