RFR: 8292177: InitialSecurityProperty JFR event [v2]

Sean Mullan mullan at openjdk.org
Wed Sep 28 12:30:23 UTC 2022

On Wed, 28 Sep 2022 10:06:54 GMT, Sean Coffey <coffeys at openjdk.org> wrote:

>> src/jdk.jfr/share/conf/jfr/default.jfc line 713:
>>> 711: 
>>> 712:     <event name="jdk.InitialSecurityProperty">
>>> 713:       <setting name="enabled">true</setting>
>> The other security related events are not enabled by default. Is this one enabled because it is only generated once? It seems it may still have some startup overhead because AFAIU it forces a load of security properties even if they are never accessed? Perhaps I don't fully understand how this event works though.
> Yes - the thinking here is that since this is a one time event, we can have it enabled. It's similar to the InitialSystemProperty event. 
> We won't force loading of Security properties/class. We shouldn't at least. If no security properties are read in at time of JFR event commit, then we should have no InitialSecurityProperty events. See below/next comment.

Ok, just so I understand, you want to make sure that if JFR is started after the security properties have already been read, then they are still recorded, right?


PR: https://git.openjdk.org/jdk/pull/10394

More information about the security-dev mailing list