Home/ Questions/Q 6610343
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-25T19:49:43+00:00

I have the problem that Tomcat 7 is terribly slow on startup. I found

  • 0

I have the problem that Tomcat 7 is terribly slow on startup. I found this in the log file:

INFO: Creation of SecureRandom instance for session ID generation using [SHA1PRNG] took [12,367] milliseconds.

Security is important, sure, but not on my development machine. I could perfectly live with a standard fast random number generator. So I don’t need this ridiculously slow SecureRandom implementation.

Question is: How can I disable it? Is searched for a solution but only found some deprecated info about a randomClass attribute which can be set to java.util.Random. I also found out that this attribute seems to be named secureRandomClass now in Tomcat 7. I tried to set it to java.util.Random but this fails because Tomcat 7 casts the object to java.util.SecureRandom (And it’s also documented that the specified class must extend java.util.SecureRandom, so it’s no longer possible to use java.util.Random instead.)

So how can I get rid of this terribly slow random number generator startup so my development tomcat starts/restarts as fast as possible?

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    You probably need to patch Tomcat.

    Though as a hack, you could always try extending java.util.SecureRandom with something that wraps a standard java.util.Random instance……. this would get past the cast problem at least.

    One other thought…. could the slowdown be due to an exhausted entropy pool? You might want to try getting more entropy into the pool, this might make it go really fast.

    • 0