Are Jenkins certificate credentials always X509 / PKCS12-encoded?

[Chris Kilding]

Hello,

I’m adding certificate credentials support to my plugin, and am wondering whether Jenkins always expects certificate creds to be PKCS12-encoded.

The direct certificate uploader source and the “file on Jenkins master” source seem to insist on PKCS format internally.

But the StandardCertificateCredentials interface produces a KeyStore object, which can hold multiple credential types (not just X509 certificates), and can be constructed from many input formats (PKCS, PEM, CRT etc).

Will Jenkins handle the certificate credential if it contains any valid KeyStore object? Or must it always be an X509 cert in PKCS format?

Chris