Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8214731

Deprecate -Xverify:none option

    Details

    • Subcomponent:
    • Compatibility Kind:
      behavioral
    • Compatibility Risk:
      medium
    • Interface Kind:
      add/remove/modify command line option

      Description

      Summary

      Deprecate the -Xverify:none option and its old alias -noverify. Running with these options enables execution of Java programs that violate the Java Virtual Machine Specification.

      Problem

      Providing users with documented options for disabling byte code verification can lead to multiple problems including running code that violates the JVM Spec, leaving their applications open to malicious code, and making it harder for them to find issues in their code.

      Solution

      Deprecate the -Xverify:none and -noverify options as the first step towards encouraging users to always run with the verifier enabled.

      Users will now get the following message when running: 'java -Xverify:none -version':

      Java HotSpot(TM) 64-Bit Server VM warning: Options -Xverify:none and -noverify were deprecated in version 13.0 and will likely be removed in a future release. ...

      The user's program will run as intended because, even after deprecation, -Xverify:none will continue to disable verification. The only change is the warning message.

      Specification

      Deprecate the -Xverify:none and -noverify options in JDK-13 and issue the above warning message when the options are used.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                hseigel Harold Seigel
                Reporter:
                hseigel Harold Seigel
                Reviewed By:
                Karen Kinnear (Inactive), Mikael Vidstedt
              • Votes:
                0 Vote for this issue
                Watchers:
                9 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: