public abstract class CertPathValidatorSpi extends Object
CertPathValidator
class. All
CertPathValidator
implementations must include a class (the
SPI class) that extends this class (CertPathValidatorSpi
)
and implements all of its methods. In general, instances of this class
should only be accessed through the CertPathValidator
class.
For details, see the Java Cryptography Architecture.
Concurrent Access
Instances of this class need not be protected against concurrent
access from multiple threads. Threads that need to access a single
CertPathValidatorSpi
instance concurrently should synchronize
amongst themselves and provide the necessary locking before calling the
wrapping CertPathValidator
object.
However, implementations of CertPathValidatorSpi
may still
encounter concurrency issues, since multiple threads each
manipulating a different CertPathValidatorSpi
instance need not
synchronize.
Constructor and Description |
---|
CertPathValidatorSpi()
The default constructor.
|
Modifier and Type | Method and Description |
---|---|
CertPathChecker |
engineGetRevocationChecker()
Returns a
CertPathChecker that this implementation uses to
check the revocation status of certificates. |
abstract CertPathValidatorResult |
engineValidate(CertPath certPath,
CertPathParameters params)
Validates the specified certification path using the specified
algorithm parameter set.
|
public abstract CertPathValidatorResult engineValidate(CertPath certPath, CertPathParameters params) throws CertPathValidatorException, InvalidAlgorithmParameterException
The CertPath
specified must be of a type that is
supported by the validation algorithm, otherwise an
InvalidAlgorithmParameterException
will be thrown. For
example, a CertPathValidator
that implements the PKIX
algorithm validates CertPath
objects of type X.509.
certPath
- the CertPath
to be validatedparams
- the algorithm parametersCertPathValidatorException
- if the CertPath
does not validateInvalidAlgorithmParameterException
- if the specified
parameters or the type of the specified CertPath
are
inappropriate for this CertPathValidator
public CertPathChecker engineGetRevocationChecker()
CertPathChecker
that this implementation uses to
check the revocation status of certificates. A PKIX implementation
returns objects of type PKIXRevocationChecker
.
The primary purpose of this method is to allow callers to specify
additional input parameters and options specific to revocation checking.
See the class description of CertPathValidator
for an example.
This method was added to version 1.8 of the Java Platform Standard
Edition. In order to maintain backwards compatibility with existing
service providers, this method cannot be abstract and by default throws
an UnsupportedOperationException
.
CertPathChecker
that this implementation uses to
check the revocation status of certificatesUnsupportedOperationException
- if this method is not supported Submit a bug or feature
For further API reference and developer documentation, see Java SE Documentation. That documentation contains more detailed, developer-targeted descriptions, with conceptual overviews, definitions of terms, workarounds, and working code examples.
Copyright © 1993, 2022, Oracle and/or its affiliates. All rights reserved. Use is subject to license terms. Also see the documentation redistribution policy.