RFR: 8344289: SM cleanup in jdk.internal.util [v2]
Roger Riggs
rriggs at openjdk.org
Fri Nov 15 18:29:51 UTC 2024
On Fri, 15 Nov 2024 18:12:31 GMT, Raffaello Giulietti <rgiulietti at openjdk.org> wrote:
>> Eirik Bjørsnøs has updated the pull request incrementally with one additional commit since the last revision:
>>
>> Remove redundant suppression
>
> src/java.base/share/classes/jdk/internal/util/random/RandomSupport.java line 728:
>
>> 726: // The following decides which of two strategies initialSeed() will use.
>> 727: private static boolean secureRandomSeedRequested() {
>> 728: return Boolean.getBoolean("java.util.secureRandomSeed");
>
> Not sure why access to this system property required privileges.
>
> It is documented in [SplittableRandom](https://docs.oracle.com/en/java/javase/23/docs/api/java.base/java/util/SplittableRandom.html#java.util.secureRandomSeed), so I guess it's OK to have unprivileged access.
Previously, all properties were enabled only if allowed by the security policy.
Any property could be denied. Though it could/would cause havoc if used indiscriminately.
-------------
PR Review Comment: https://git.openjdk.org/jdk/pull/22141#discussion_r1844297091
More information about the core-libs-dev
mailing list