- java.lang.Object
-
- java.security.cert.CertPathValidatorSpi
-
public abstract class CertPathValidatorSpi extends Object
The Service Provider Interface (SPI) for theCertPathValidatorclass. AllCertPathValidatorimplementations must include a class (the SPI class) that extends this class (CertPathValidatorSpi) and implements all of its methods. In general, instances of this class should only be accessed through theCertPathValidatorclass. For details, see the Java Cryptography Architecture.Concurrent Access
Instances of this class need not be protected against concurrent access from multiple threads. Threads that need to access a single
CertPathValidatorSpiinstance concurrently should synchronize amongst themselves and provide the necessary locking before calling the wrappingCertPathValidatorobject.However, implementations of
CertPathValidatorSpimay still encounter concurrency issues, since multiple threads each manipulating a differentCertPathValidatorSpiinstance need not synchronize.- Since:
- 1.4
-
-
Constructor Summary
Constructors Constructor Description CertPathValidatorSpi()The default constructor.
-
Method Summary
All Methods Instance Methods Abstract Methods Concrete Methods Modifier and Type Method Description CertPathCheckerengineGetRevocationChecker()Returns aCertPathCheckerthat this implementation uses to check the revocation status of certificates.abstract CertPathValidatorResultengineValidate(CertPath certPath, CertPathParameters params)Validates the specified certification path using the specified algorithm parameter set.
-
-
-
Method Detail
-
engineValidate
public abstract CertPathValidatorResult engineValidate(CertPath certPath, CertPathParameters params) throws CertPathValidatorException, InvalidAlgorithmParameterException
Validates the specified certification path using the specified algorithm parameter set.The
CertPathspecified must be of a type that is supported by the validation algorithm, otherwise anInvalidAlgorithmParameterExceptionwill be thrown. For example, aCertPathValidatorthat implements the PKIX algorithm validatesCertPathobjects of type X.509.- Parameters:
certPath- theCertPathto be validatedparams- the algorithm parameters- Returns:
- the result of the validation algorithm
- Throws:
CertPathValidatorException- if theCertPathdoes not validateInvalidAlgorithmParameterException- if the specified parameters or the type of the specifiedCertPathare inappropriate for thisCertPathValidator
-
engineGetRevocationChecker
public CertPathChecker engineGetRevocationChecker()
Returns aCertPathCheckerthat this implementation uses to check the revocation status of certificates. A PKIX implementation returns objects of typePKIXRevocationChecker.The primary purpose of this method is to allow callers to specify additional input parameters and options specific to revocation checking. See the class description of
CertPathValidatorfor an example.This method was added to version 1.8 of the Java Platform Standard Edition. In order to maintain backwards compatibility with existing service providers, this method cannot be abstract and by default throws an
UnsupportedOperationException.- Returns:
- a
CertPathCheckerthat this implementation uses to check the revocation status of certificates - Throws:
UnsupportedOperationException- if this method is not supported- Since:
- 1.8
-
-