Eliminating the security overhead when not running with a securitymanager

Alan Bateman Alan.Bateman at oracle.com
Mon Nov 20 21:02:54 UTC 2017


On 20/11/2017 20:15, Bernd Eckenfels wrote:
> :
>
> One thing which might be a problem: when doPrivileged does no longer 
> execute the Code in a seperate stack this has implications to the 
> runtime. The stacks will get deeper (and might even overflow (more 
> often)). So maybe this „no seperate stack“ function should be opt-out 
> (if implemented).
>
>
Are you assuming that the execution of the privileged action is done on 
a different thread stack? The effect of doPrivileged is to set the top 
of the privileged stack on the current thread stack, it gets restored 
when the action completes. So I think there isn't anything to be 
concerned about here.

-Alan
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mail.openjdk.org/pipermail/security-dev/attachments/20171120/986a2213/attachment.htm>


More information about the security-dev mailing list