public interface AlgorithmConstraints
AlgorithmConstraints objects are immutable. An implementation of this interface should not provide methods that can change the state of an instance once it has been created.
Note that AlgorithmConstraints can be used to represent the restrictions described by the security properties jdk.certpath.disabledAlgorithms and jdk.tls.disabledAlgorithms, or could be used by a concrete PKIXCertPathChecker to check whether a specified certificate in the certification path contains the required algorithm constraints.
| Modifier and Type | Method and Description |
|---|---|
boolean |
permits(Set
Determines whether a key is granted permission for the specified cryptographic primitives.
|
boolean |
permits(Set
Determines whether an algorithm is granted permission for the specified cryptographic primitives.
|
boolean |
permits(Set
Determines whether an algorithm and the corresponding key are granted permission for the specified cryptographic primitives.
|
boolean permits(Set<CryptoPrimitive > primitives, String algorithm, AlgorithmParameters parameters)
primitives - a set of cryptographic primitives
algorithm - the algorithm name
parameters - the algorithm parameters, or null if no additional parameters
IllegalArgumentException - if primitives or algorithm is null or empty
boolean permits(Set<CryptoPrimitive > primitives, Key key)
This method is usually used to check key size and key usage.
primitives - a set of cryptographic primitives
key - the key
IllegalArgumentException - if primitives is null or empty, or the key is null
boolean permits(Set<CryptoPrimitive > primitives, String algorithm, Key key, AlgorithmParameters parameters)
primitives - a set of cryptographic primitives
algorithm - the algorithm name
key - the key
parameters - the algorithm parameters, or null if no additional parameters
IllegalArgumentException - if primitives or algorithm is null or empty, or the key is null