public abstract class CertPathValidatorSpi extends Object
CertPathValidator class. All
 CertPathValidator implementations must include a class (the
 SPI class) that extends this class (CertPathValidatorSpi)
 and implements all of its methods. In general, instances of this class
 should only be accessed through the CertPathValidator class.
 For details, see the Java Cryptography Architecture.
 Concurrent Access
 Instances of this class need not be protected against concurrent
 access from multiple threads. Threads that need to access a single
 CertPathValidatorSpi instance concurrently should synchronize
 amongst themselves and provide the necessary locking before calling the
 wrapping CertPathValidator object.
 
 However, implementations of CertPathValidatorSpi may still
 encounter concurrency issues, since multiple threads each
 manipulating a different CertPathValidatorSpi instance need not
 synchronize.
| Constructor and Description | 
|---|
| CertPathValidatorSpi()The default constructor. | 
| Modifier and Type | Method and Description | 
|---|---|
| CertPathChecker | engineGetRevocationChecker()Returns a  CertPathCheckerthat this implementation uses to
 check the revocation status of certificates. | 
| abstract CertPathValidatorResult | engineValidate(CertPath certPath,
              CertPathParameters params)Validates the specified certification path using the specified
 algorithm parameter set. | 
public abstract CertPathValidatorResult engineValidate(CertPath certPath, CertPathParameters params) throws CertPathValidatorException, InvalidAlgorithmParameterException
 The CertPath specified must be of a type that is
 supported by the validation algorithm, otherwise an
 InvalidAlgorithmParameterException will be thrown. For
 example, a CertPathValidator that implements the PKIX
 algorithm validates CertPath objects of type X.509.
certPath - the CertPath to be validatedparams - the algorithm parametersCertPathValidatorException - if the CertPath
 does not validateInvalidAlgorithmParameterException - if the specified
 parameters or the type of the specified CertPath are
 inappropriate for this CertPathValidatorpublic CertPathChecker engineGetRevocationChecker()
CertPathChecker that this implementation uses to
 check the revocation status of certificates. A PKIX implementation
 returns objects of type PKIXRevocationChecker.
 The primary purpose of this method is to allow callers to specify
 additional input parameters and options specific to revocation checking.
 See the class description of CertPathValidator for an example.
 
This method was added to version 1.8 of the Java Platform Standard
 Edition. In order to maintain backwards compatibility with existing
 service providers, this method cannot be abstract and by default throws
 an UnsupportedOperationException.
CertPathChecker that this implementation uses to
 check the revocation status of certificatesUnsupportedOperationException - if this method is not supported Submit a bug or feature 
For further API reference and developer documentation, see Java SE Documentation. That documentation contains more detailed, developer-targeted descriptions, with conceptual overviews, definitions of terms, workarounds, and working code examples.
 Copyright © 1993, 2025, Oracle and/or its affiliates.  All rights reserved. Use is subject to license terms. Also see the documentation redistribution policy.