rspec/rules/S4830/kotlin/how-to-fix-it/java-cryptographic-extension.adoc

== How to fix it in Java Cryptographic Extension

=== Code examples

include::../../common/fix/code-rationale.adoc[]

:cert_method_name: X509TrustManager

include::../../common/fix/code-rationale-override.adoc[]

==== Noncompliant code example

[source,kotlin]
----
val trustAllCerts = arrayOf<TrustManager>(object : X509TrustManager {
  @Throws(CertificateException::class)
  override fun checkClientTrusted(chain: Array<java.security.cert.X509Certificate>, authType: String) {
  } // Noncompliant

  @Throws(CertificateException::class)
  override fun checkServerTrusted(chain: Array<java.security.cert.X509Certificate>, authType: String) {
  } // Noncompliant

  override fun getAcceptedIssuers(): Array<java.security.cert.X509Certificate> {
   return arrayOf()
  } 
})
----

=== How does this work?

include::../../common/fix/validation.adoc[]

include::../../common/fix/keytool.adoc[]
Modify rule S4830: LaYC format (#2176) 2023-06-20 13:26:14 +02:00			`== How to fix it in Java Cryptographic Extension`

			`=== Code examples`

			`include::../../common/fix/code-rationale.adoc[]`

			`:cert_method_name: X509TrustManager`

			`include::../../common/fix/code-rationale-override.adoc[]`

			`==== Noncompliant code example`

			`[source,kotlin]`
			`----`
			`val trustAllCerts = arrayOf<TrustManager>(object : X509TrustManager {`
			`@Throws(CertificateException::class)`
			`override fun checkClientTrusted(chain: Array<java.security.cert.X509Certificate>, authType: String) {`
			`} // Noncompliant`

			`@Throws(CertificateException::class)`
			`override fun checkServerTrusted(chain: Array<java.security.cert.X509Certificate>, authType: String) {`
			`} // Noncompliant`

			`override fun getAcceptedIssuers(): Array<java.security.cert.X509Certificate> {`
			`return arrayOf()`
			`}`
			`})`
			`----`

			`=== How does this work?`

			`include::../../common/fix/validation.adoc[]`

			`include::../../common/fix/keytool.adoc[]`