On Fri, 15 Nov 2024 18:12:31 GMT, Raffaello Giulietti <rgiulie...@openjdk.org>
wrote:
>> Eirik Bjørsnøs has updated the pull request incrementally with one
>> additional commit since the last revision:
>>
>> Remove redundant suppression
>
> src/java.base/share/classes/jdk/internal/util/random/RandomSupport.java line
> 728:
>
>> 726: // The following decides which of two strategies initialSeed() will
>> use.
>> 727: private static boolean secureRandomSeedRequested() {
>> 728: return Boolean.getBoolean("java.util.secureRandomSeed");
>
> Not sure why access to this system property required privileges.
>
> It is documented in
> [SplittableRandom](https://docs.oracle.com/en/java/javase/23/docs/api/java.base/java/util/SplittableRandom.html#java.util.secureRandomSeed),
> so I guess it's OK to have unprivileged access.
Previously, all properties were enabled only if allowed by the security policy.
Any property could be denied. Though it could/would cause havoc if used
indiscriminately.
-------------
PR Review Comment: https://git.openjdk.org/jdk/pull/22141#discussion_r1844297091
