RFR: 8293326: jdk/sun/security/tools/jarsigner/compatibility/SignTwice.java slow on Windows
Daniel Jeliński
djelinski at openjdk.org
Tue Sep 6 09:23:43 UTC 2022
On Tue, 6 Sep 2022 01:26:34 GMT, Bradford Wetmore <wetmore at openjdk.org> wrote:
>> I remember the major problem was the auto-seeding before the first `nextBytes` is called, and it could read `/dev/random`. Not sure it's for SHA1PRNG or NativeRandom.
>
> SHA1PRNG, which is no longer the default on Linux. But some apps are still asking for SHA1PRNG instead of using the default NativePRNG on Linux.
FWIW, NativePRNGBlocking ignores java.security.egd and always uses `/dev/random`.
I'd rather not clean up all references to EGD here. Filed [JDK-8293412](https://bugs.openjdk.org/browse/JDK-8293412) as a follow up.
-------------
PR: https://git.openjdk.org/jdk/pull/10160
More information about the security-dev
mailing list