Module java.base
Package java.security

Class SecureRandomSpi

  • All Implemented Interfaces:
    Serializable

    public abstract class SecureRandomSpi
    extends Object
    implements Serializable
    This class defines the Service Provider Interface (SPI) for the SecureRandom class.

    All the abstract methods in this class must be implemented by each service provider who wishes to supply the implementation of a cryptographically strong pseudo-random number generator.

    Implementation Requirements:
    If the SecureRandomSpi(SecureRandomParameters) constructor is overridden in an implementation, it will always be called whenever a SecureRandom is instantiated. Precisely, if an object is instantiated with one of SecureRandom's getInstance methods without a SecureRandomParameters parameter, the constructor will be called with a null argument and the implementation is responsible for creating its own SecureRandomParameters parameter for use when engineGetParameters() is called. If an object is instantiated with one of SecureRandom's getInstance methods with a SecureRandomParameters argument, the constructor will be called with that argument. The engineGetParameters() method must not return null.

    Otherwise, if the SecureRandomSpi(SecureRandomParameters) constructor is not overridden in an implementation, the SecureRandomSpi() constructor must be overridden and it will be called if an object is instantiated with one of SecureRandom's getInstance methods without a SecureRandomParameters argument. Calling one of SecureRandom's getInstance methods with a SecureRandomParameters argument will never return an instance of this implementation. The engineGetParameters() method must return null.

    See SecureRandom for additional details on thread safety. By default, a SecureRandomSpi implementation is considered to be not safe for use by multiple concurrent threads and SecureRandom will synchronize access to each of the applicable engine methods (see SecureRandom for the list of methods). However, if a SecureRandomSpi implementation is thread-safe, the service provider attribute "ThreadSafe" should be set to "true" during its registration, as follows:

     put("SecureRandom.AlgName ThreadSafe", "true");
    or
     putService(new Service(this, "SecureRandom", "AlgName", className,
              null, Map.of("ThreadSafe", "true")));
    SecureRandom will call the applicable engine methods without any synchronization.

    Since:
    1.2
    See Also:
    Serialized Form
    • Constructor Detail

      • SecureRandomSpi

        public SecureRandomSpi()
        Constructor without a parameter.
    • Method Detail

      • engineSetSeed

        protected abstract void engineSetSeed​(byte[] seed)
        Reseeds this random object with the given seed. The seed supplements, rather than replaces, the existing seed. Thus, repeated calls are guaranteed never to reduce randomness.
        Parameters:
        seed - the seed.
      • engineNextBytes

        protected abstract void engineNextBytes​(byte[] bytes)
        Generates a user-specified number of random bytes.

        Some random number generators can only generate a limited amount of random bytes per invocation. If the size of bytes is greater than this limit, the implementation should invoke its generation process multiple times to completely fill the buffer before returning from this method.

        Parameters:
        bytes - the array to be filled in with random bytes.
      • engineNextBytes

        protected void engineNextBytes​(byte[] bytes,
                                       SecureRandomParameters params)
        Generates a user-specified number of random bytes with additional parameters.

        Some random number generators can only generate a limited amount of random bytes per invocation. If the size of bytes is greater than this limit, the implementation should invoke its generation process multiple times to completely fill the buffer before returning from this method.

        Implementation Requirements:
        The default implementation throws an UnsupportedOperationException.
        Parameters:
        bytes - the array to be filled in with random bytes
        params - additional parameters
        Throws:
        UnsupportedOperationException - if the implementation has not overridden this method
        IllegalArgumentException - if params is null, illegal or unsupported by this SecureRandom
        Since:
        9
      • engineGenerateSeed

        protected abstract byte[] engineGenerateSeed​(int numBytes)
        Returns the given number of seed bytes. This call may be used to seed other random number generators.
        Parameters:
        numBytes - the number of seed bytes to generate.
        Returns:
        the seed bytes.
      • engineReseed

        protected void engineReseed​(SecureRandomParameters params)
        Reseeds this random object with entropy input read from its entropy source with additional parameters.

        If this method is called by SecureRandom.reseed(), params will be null.

        Do not override this method if the implementation does not support reseeding.

        Implementation Requirements:
        The default implementation throws an UnsupportedOperationException.
        Parameters:
        params - extra parameters, can be null.
        Throws:
        UnsupportedOperationException - if the implementation has not overridden this method
        IllegalArgumentException - if params is illegal or unsupported by this SecureRandom
        Since:
        9
      • toString

        public String toString()
        Returns a Human-readable string representation of this SecureRandom.
        Overrides:
        toString in class Object
        Returns:
        the string representation