On Tue, 6 Sep 2022 01:26:34 GMT, Bradford Wetmore <wetm...@openjdk.org> wrote:
>> I remember the major problem was the auto-seeding before the first >> `nextBytes` is called, and it could read `/dev/random`. Not sure it's for >> SHA1PRNG or NativeRandom. > > SHA1PRNG, which is no longer the default on Linux. But some apps are still > asking for SHA1PRNG instead of using the default NativePRNG on Linux. FWIW, NativePRNGBlocking ignores java.security.egd and always uses `/dev/random`. I'd rather not clean up all references to EGD here. Filed [JDK-8293412](https://bugs.openjdk.org/browse/JDK-8293412) as a follow up. ------------- PR: https://git.openjdk.org/jdk/pull/10160
