RFR: 8098581 SecureRandom.nextBytes() hurts performance with small size requests

Anthony Scarpino anthony.scarpino at oracle.com
Thu Dec 3 19:04:37 UTC 2015


Hi Sean,

Yes on both counts. There should be no problem backporting and 8058455 can be a duplicate. 

Tony

> On Dec 3, 2015, at 10:38 AM, Seán Coffey <sean.coffey at oracle.com> wrote:
> 
> Hey Tony,
> 
> looks like a fix that could come back to jdk8u-dev at some stage. Thanks for taking this one on.
> 
> Adding SecureRandom to the sunpkcs11-solaris.cfg file is a nice move. Would you agree that JDK-8058455 could be closed out as a duplicate ?
> 
> Regards,
> Sean.
> 
>> On 01/12/2015 23:44, Anthony Scarpino wrote:
>> Hi all,
>> 
>> I'd like a review of this change.  It improves nextBytes() performance by allowing the random buffer to grow and shrink as random data is needed and remove the high level synchronization. Also disable SecureRandom for Solaris PKCS11 as it's not as fast as native.
>> 
>> http://cr.openjdk.java.net/~ascarpino/8098581/webrev/
>> 
>> Thanks
>> 
>> Tony
> 


More information about the security-dev mailing list