ThreadLocalRandom clinit troubles
Sean Mullan
sean.mullan at oracle.com
Mon Jul 14 14:44:18 UTC 2014
I don't see a pointer to the webrev/patch -- did you forget to include it?
--Sean
On 07/11/2014 07:33 PM, Martin Buchholz wrote:
> Thanks to Peter for digging into the secure seed generator classes and
> coming up with a patch. Openjdk security folks, please review. I confess
> to getting lost whenever I try to orient myself in the twisty maze of seed
> generator implementation files.
>
> Anyways, it seems important to have prngs like ThreadLocalRandom be able to
> get a few bits of seed entropy without loading hundreds of classes and
> without occupying any file descriptors permanently. Perhaps at Google we
> will go back to writing some simple non-portable startup code to read
> /dev/urandom until openjdk security team comes up with a more principled
> solution (but one that doesn't drag in too much machinery).
>
More information about the security-dev
mailing list