public abstract class SignatureSpi
extends java.lang.Object
Signature
class, which is used
to provide the functionality of a digital signature algorithm. Digital signatures are used for authentication and
integrity assurance of digital data. .
All the abstract methods in this class must be implemented by each cryptographic service provider who wishes to supply the implementation of a particular signature algorithm.
Signature
Modifier and Type | Field and Description |
---|---|
protected SecureRandom |
appRandom
Application-specified source of randomness.
|
Constructor and Description |
---|
SignatureSpi() |
Modifier and Type | Method and Description |
---|---|
java.lang.Object |
clone()
Returns a clone if the implementation is cloneable.
|
protected abstract void |
engineInitSign(PrivateKey privateKey)
Initializes this signature object with the specified private key for signing operations.
|
protected void |
engineInitSign(PrivateKey privateKey,
SecureRandom random)
Initializes this signature object with the specified private key and source of randomness for signing operations.
|
protected abstract void |
engineInitVerify(PublicKey publicKey)
Initializes this signature object with the specified public key for verification operations.
|
protected void |
engineSetParameter(AlgorithmParameterSpec params)
This method is overridden by providers to initialize this signature engine with the specified parameter set.
|
protected abstract byte[] |
engineSign()
Returns the signature bytes of all the data updated so far.
|
protected int |
engineSign(byte[] outbuf,
int offset,
int len)
Finishes this signature operation and stores the resulting signature bytes in the provided buffer
outbuf ,
starting at offset . |
protected abstract void |
engineUpdate(byte b)
Updates the data to be signed or verified using the specified byte.
|
protected abstract void |
engineUpdate(byte[] b,
int off,
int len)
Updates the data to be signed or verified, using the specified array of bytes, starting at the specified offset.
|
protected abstract boolean |
engineVerify(byte[] sigBytes)
Verifies the passed-in signature.
|
protected boolean |
engineVerify(byte[] sigBytes,
int offset,
int length)
Verifies the passed-in signature in the specified array of bytes, starting at the specified offset.
|
@Nullable protected SecureRandom appRandom
protected abstract void engineInitVerify(PublicKey publicKey) throws InvalidKeyException
publicKey
- the public key of the identity whose signature is going to be verified.InvalidKeyException
- if the key is improperly encoded, parameters are missing, and so on.protected abstract void engineInitSign(PrivateKey privateKey) throws InvalidKeyException
privateKey
- the private key of the identity whose signature will be generated.InvalidKeyException
- if the key is improperly encoded, parameters are missing, and so on.protected void engineInitSign(PrivateKey privateKey, SecureRandom random) throws InvalidKeyException
This concrete method has been added to this previously-defined abstract class. (For backwards compatibility, it cannot be abstract.)
privateKey
- the private key of the identity whose signature will be generated.random
- the source of randomnessInvalidKeyException
- if the key is improperly encoded, parameters are missing, and so on.protected abstract void engineUpdate(byte b) throws SignatureException
b
- the byte to use for the update.SignatureException
- if the engine is not initialized properly.protected abstract void engineUpdate(byte[] b, int off, int len) throws SignatureException
b
- the array of bytesoff
- the offset to start from in the array of byteslen
- the number of bytes to use, starting at offsetSignatureException
- if the engine is not initialized properlyprotected abstract byte[] engineSign() throws SignatureException
SignatureException
- if the engine is not initialized properly or if this signature algorithm is unable to process the
input data provided.protected int engineSign(byte[] outbuf, int offset, int len) throws SignatureException
outbuf
,
starting at offset
. The format of the signature depends on the underlying signature scheme.
The signature implementation is reset to its initial state (the state it was in after a call to one of the
engineInitSign
methods) and can be reused to generate further signatures with the same private key.
This method should be abstract, but we leave it concrete for binary compatibility. Knowledgeable providers should
override this method.
outbuf
- buffer for the signature result.offset
- offset into outbuf
where the signature is stored.len
- number of bytes within outbuf
allotted for the signature. Both this default implementation and
the SUN provider do not return partial digests. If the value of this parameter is less than the actual
signature length, this method will throw a SignatureException. This parameter is ignored if its value
is greater than or equal to the actual signature length.outbuf
SignatureException
- if the engine is not initialized properly, if this signature algorithm is unable to process the
input data provided, or if len
is less than the actual signature length.protected abstract boolean engineVerify(byte[] sigBytes) throws SignatureException
sigBytes
- the signature bytes to be verified.SignatureException
- if the engine is not initialized properly, the passed-in signature is improperly encoded or of the
wrong type, if this signature algorithm is unable to process the input data provided, etc.protected boolean engineVerify(byte[] sigBytes, int offset, int length) throws SignatureException
Note: Subclasses should overwrite the default implementation.
sigBytes
- the signature bytes to be verified.offset
- the offset to start from in the array of bytes.length
- the number of bytes to use, starting at offset.SignatureException
- if the engine is not initialized properly, the passed-in signature is improperly encoded or of the
wrong type, if this signature algorithm is unable to process the input data provided, etc.protected void engineSetParameter(AlgorithmParameterSpec params) throws InvalidAlgorithmParameterException
This method is overridden by providers to initialize this signature engine with the specified parameter set.
params
- the parametersjava.lang.UnsupportedOperationException
- if this method is not overridden by a providerInvalidAlgorithmParameterException
- if this method is overridden by a provider and the given parameters are inappropriate for this
signature enginepublic java.lang.Object clone() throws java.lang.CloneNotSupportedException
clone
in class java.lang.Object
java.lang.CloneNotSupportedException
- if this is called on an implementation that does not support Cloneable
.