On Thu, 21 Nov 2024 18:29:24 GMT, Sean Mullan <mul...@openjdk.org> wrote:
> Now that JEP 486 has been integrated, the `javax.net.ssl` and > `sun.security.ssl` package implementation dependencies on > `System.getSecurityManager`, `AccessController.doPrivileged` and > `AccessControlContext` can be removed. > > Most of the changes are straightforward: removal of code calling > `System.getSecurityManager()` and unwrapping of code inside > `AccessController.doPrivileged`. However, two changes involved slightly more > complicated work: > > 1. `sun.security.ssl.SSLConfiguration` no longer needs to capture the access > control context of `javax.net.ssl.HandshakeCompletedListener` objects, which > means it can store the listeners in a `HashSet` instead of a `HashMap`. > 2. `sun.security.ssl.SSLSessionImpl` (which implements > `javax.net.ssl.SSLSession`) does not need to store attributes based on access > control contexts anymore, which means it can store the keys as Strings > instead of one that combines the key and the access control context. > 3. `sun.security.ssl.TransportContext` does not need to capture the access > control context anymore. This pull request has now been integrated. Changeset: ddc8a9d5 Author: Sean Mullan <mul...@openjdk.org> URL: https://git.openjdk.org/jdk/commit/ddc8a9d5da28f67071a0d6bed981ab4ad70337be Stats: 462 lines in 26 files changed: 19 ins; 312 del; 131 mod 8344366: Remove Security Manager dependencies from javax.net.ssl and sun.security.ssl packages Reviewed-by: coffeys, ascarpino, hchao ------------- PR: https://git.openjdk.org/jdk/pull/22301
