RFR: 8267485: Remove the dependency on SecurityManager in JceSecurityManager.java [v8]

Sean Mullan mullan at openjdk.java.net
Tue Jul 27 13:20:31 UTC 2021


On Tue, 27 Jul 2021 05:43:53 GMT, Bradford Wetmore <wetmore at openjdk.org> wrote:

>> The JceSecurityManager is currently a subclass of java.security.SecurityManager.  Now that JEP 411 has been integrated, this class should be updated to no longer subclass SecurityManager.
>> 
>> The only reason for using SecurityManager to easily get the Class Context (call stack), but we can achieve the same effect by using the JDK 9 API java.lang.StackWalkeer.  None of the other SecurityManager API are used.
>> 
>> I have run mach5 tier1/tier2 plus --test jck:api/java_security,jck:api/javax_crypto,jck:api/javax_net,jck:api/javax_security,jck:api/org_ietf,jck:api/javax_xml/crypto with all green.
>
> Bradford Wetmore has updated the pull request incrementally with one additional commit since the last revision:
> 
>   More codereview comments

The JBS issue should have an applicable `noreg` label. Perhaps `noreg-other` with a comment about the existing tests that have been run.

-------------

PR: https://git.openjdk.java.net/jdk/pull/4150



More information about the security-dev mailing list