Eliminating the security overhead when not running with a securitymanager
Alan Bateman
Alan.Bateman at oracle.com
Mon Nov 20 21:02:54 UTC 2017
On 20/11/2017 20:15, Bernd Eckenfels wrote:
> :
>
> One thing which might be a problem: when doPrivileged does no longer
> execute the Code in a seperate stack this has implications to the
> runtime. The stacks will get deeper (and might even overflow (more
> often)). So maybe this „no seperate stack“ function should be opt-out
> (if implemented).
>
>
Are you assuming that the execution of the privileged action is done on
a different thread stack? The effect of doPrivileged is to set the top
of the privileged stack on the current thread stack, it gets restored
when the action completes. So I think there isn't anything to be
concerned about here.
-Alan
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mail.openjdk.org/pipermail/security-dev/attachments/20171120/986a2213/attachment.htm>
More information about the security-dev
mailing list