-
Bug
-
Resolution: Fixed
-
P4
-
9
-
None
-
b123
SecureRandomSpi is serializable and DRBG saves quite a lot of fields in its serialized form. If the serialized data is corrupted, unexpected error will occur when it's deserialized or used.
We can make it simpler by only store the parameters in the serialized data. In fact, AbstractDrbg does not need to implement SecureRandomSpi at all.
We can make it simpler by only store the parameters in the serialized data. In fact, AbstractDrbg does not need to implement SecureRandomSpi at all.