RFR 8214719: Deprecate -Xverify:none option
Harold Seigel
harold.seigel at oracle.com
Tue Feb 19 20:53:22 UTC 2019
Hi Bernd,
Thanks for your input.
I hope that alternatives to -Xverify:none that were mentioned in
previous emails for this review thread will help resolve the issues you
mention below once -Xverify:none is deprecated.
Thanks, Harold
On 2/7/2019 3:35 PM, Bernd Eckenfels wrote:
> BTW, just want to mention, we had quite some work to do to remove -verify:none from a complex application Server due to class Validation fail when the classpath (especially in OSGi) was incomplete.
>
> Verifying a class seems to fail if types used in the signature of the class are missing. This new requirement of validating classes is not present when verifyer is turned off – which means those unused but needed classes can creep into your deployment. So it is not trivial to fix and therefore a deprecation Messages (as opposed to doc) should exist to give people a heads up.
>
> Besides I would agree that with less and less sandbox Java applications and with a plan to downsize the security Manager having the non-verifyer optimization removed seems contraproductive (especially as Long as CDS is not mature).
>
> Gruss
> Bernd
More information about the hotspot-dev
mailing list