From fbb4093562e7e265b93127764db4cb5ccc58f753 Mon Sep 17 00:00:00 2001 From: Joe Darcy Date: Wed, 9 Oct 2019 09:57:41 -0700 Subject: [PATCH] 8231262: Suppress warnings on non-serializable instance fields in security libs serializable classes Reviewed-by: mullan, chegar --- .../share/classes/java/security/GuardedObject.java | 2 ++ src/java.base/share/classes/java/security/SecureRandom.java | 1 + .../share/classes/javax/crypto/CryptoPermission.java | 1 + .../javax/security/auth/PrivateCredentialPermission.java | 1 + .../share/classes/javax/security/auth/Subject.java | 1 + .../auth/callback/UnsupportedCallbackException.java | 1 + .../sun/security/internal/spec/TlsKeyMaterialSpec.java | 6 +++++- .../share/classes/sun/security/provider/PolicyParser.java | 2 ++ .../classes/sun/security/provider/SubjectCodeSource.java | 1 + .../sun/security/provider/certpath/X509CertPath.java | 1 + .../classes/sun/security/rsa/RSAPrivateCrtKeyImpl.java | 1 + .../share/classes/sun/security/rsa/RSAPrivateKeyImpl.java | 1 + .../share/classes/sun/security/rsa/RSAPublicKeyImpl.java | 1 + .../share/classes/sun/security/util/ObjectIdentifier.java | 1 + .../classes/sun/security/validator/ValidatorException.java | 1 + .../share/classes/sun/security/x509/AlgorithmId.java | 2 ++ .../share/classes/sun/security/x509/X509CertImpl.java | 1 + src/java.base/share/classes/sun/security/x509/X509Key.java | 2 +- 18 files changed, 25 insertions(+), 2 deletions(-) diff --git a/src/java.base/share/classes/java/security/GuardedObject.java b/src/java.base/share/classes/java/security/GuardedObject.java index d0a4028b8ce..e5f0591a775 100644 --- a/src/java.base/share/classes/java/security/GuardedObject.java +++ b/src/java.base/share/classes/java/security/GuardedObject.java @@ -52,7 +52,9 @@ public class GuardedObject implements java.io.Serializable { @java.io.Serial private static final long serialVersionUID = -5240450096227834308L; + @SuppressWarnings("serial") // Not statically typed as Serializable private Object object; // the object we are guarding + @SuppressWarnings("serial") // Not statically typed as Serializable private Guard guard; // the guard /** diff --git a/src/java.base/share/classes/java/security/SecureRandom.java b/src/java.base/share/classes/java/security/SecureRandom.java index a688f1d100a..a454d47dd10 100644 --- a/src/java.base/share/classes/java/security/SecureRandom.java +++ b/src/java.base/share/classes/java/security/SecureRandom.java @@ -1043,6 +1043,7 @@ public class SecureRandom extends java.util.Random { /** * @serial */ + @SuppressWarnings("serial") // Not statically typed as Serializable private MessageDigest digest = null; /** * @serial diff --git a/src/java.base/share/classes/javax/crypto/CryptoPermission.java b/src/java.base/share/classes/javax/crypto/CryptoPermission.java index 4817ff45e8e..034720e6a2b 100644 --- a/src/java.base/share/classes/javax/crypto/CryptoPermission.java +++ b/src/java.base/share/classes/javax/crypto/CryptoPermission.java @@ -55,6 +55,7 @@ class CryptoPermission extends java.security.Permission { private String alg; private int maxKeySize = Integer.MAX_VALUE; // no restriction on maxKeySize private String exemptionMechanism = null; + @SuppressWarnings("serial") // Not statically typed as Serializable private AlgorithmParameterSpec algParamSpec = null; private boolean checkParam = false; // no restriction on param diff --git a/src/java.base/share/classes/javax/security/auth/PrivateCredentialPermission.java b/src/java.base/share/classes/javax/security/auth/PrivateCredentialPermission.java index 6806bb360f8..67e12f4b5a2 100644 --- a/src/java.base/share/classes/javax/security/auth/PrivateCredentialPermission.java +++ b/src/java.base/share/classes/javax/security/auth/PrivateCredentialPermission.java @@ -119,6 +119,7 @@ public final class PrivateCredentialPermission extends Permission { * The set contains elements of type, * {@code PrivateCredentialPermission.CredOwner}. */ + @SuppressWarnings("serial") // Not statically typed as Serializable private Set principals; // ignored - kept around for compatibility private transient CredOwner[] credOwners; diff --git a/src/java.base/share/classes/javax/security/auth/Subject.java b/src/java.base/share/classes/javax/security/auth/Subject.java index a73893045b1..e42692529fb 100644 --- a/src/java.base/share/classes/javax/security/auth/Subject.java +++ b/src/java.base/share/classes/javax/security/auth/Subject.java @@ -111,6 +111,7 @@ public final class Subject implements java.io.Serializable { * {@code java.security.Principal}. * The set is a {@code Subject.SecureSet}. */ + @SuppressWarnings("serial") // Not statically typed as Serializable Set principals; /** diff --git a/src/java.base/share/classes/javax/security/auth/callback/UnsupportedCallbackException.java b/src/java.base/share/classes/javax/security/auth/callback/UnsupportedCallbackException.java index 88b4f59f1e5..54e2c21229d 100644 --- a/src/java.base/share/classes/javax/security/auth/callback/UnsupportedCallbackException.java +++ b/src/java.base/share/classes/javax/security/auth/callback/UnsupportedCallbackException.java @@ -39,6 +39,7 @@ public class UnsupportedCallbackException extends Exception { /** * @serial */ + @SuppressWarnings("serial") // Not statically typed as Serializable private Callback callback; /** diff --git a/src/java.base/share/classes/sun/security/internal/spec/TlsKeyMaterialSpec.java b/src/java.base/share/classes/sun/security/internal/spec/TlsKeyMaterialSpec.java index 9945e660e60..b4a4ed75fc0 100644 --- a/src/java.base/share/classes/sun/security/internal/spec/TlsKeyMaterialSpec.java +++ b/src/java.base/share/classes/sun/security/internal/spec/TlsKeyMaterialSpec.java @@ -50,7 +50,11 @@ public class TlsKeyMaterialSpec implements KeySpec, SecretKey { private final SecretKey clientMacKey, serverMacKey; private final SecretKey clientCipherKey, serverCipherKey; - private final IvParameterSpec clientIv, serverIv; + + @SuppressWarnings("serial") // Not statically typed as Serializable + private final IvParameterSpec clientIv; + @SuppressWarnings("serial") // Not statically typed as Serializable + private final IvParameterSpec serverIv; /** * Constructs a new TlsKeymaterialSpec from the client and server MAC diff --git a/src/java.base/share/classes/sun/security/provider/PolicyParser.java b/src/java.base/share/classes/sun/security/provider/PolicyParser.java index 3147b4a4544..af6cc20da12 100644 --- a/src/java.base/share/classes/sun/security/provider/PolicyParser.java +++ b/src/java.base/share/classes/sun/security/provider/PolicyParser.java @@ -1315,7 +1315,9 @@ public class PolicyParser { private static final long serialVersionUID = -4330692689482574072L; private String i18nMessage; + @SuppressWarnings("serial") // Not statically typed as Serializable private LocalizedMessage localizedMsg; + @SuppressWarnings("serial") // Not statically typed as Serializable private Object[] source; /** diff --git a/src/java.base/share/classes/sun/security/provider/SubjectCodeSource.java b/src/java.base/share/classes/sun/security/provider/SubjectCodeSource.java index 988dd2b551e..d1066c6c0e2 100644 --- a/src/java.base/share/classes/sun/security/provider/SubjectCodeSource.java +++ b/src/java.base/share/classes/sun/security/provider/SubjectCodeSource.java @@ -54,6 +54,7 @@ class SubjectCodeSource extends CodeSource implements java.io.Serializable { private static final Class[] PARAMS = { String.class }; private static final sun.security.util.Debug debug = sun.security.util.Debug.getInstance("auth", "\t[Auth Access]"); + @SuppressWarnings("serial") // Not statically typed as Serializable private ClassLoader sysClassLoader; /** diff --git a/src/java.base/share/classes/sun/security/provider/certpath/X509CertPath.java b/src/java.base/share/classes/sun/security/provider/certpath/X509CertPath.java index 55365fc7880..e8e1e82be8b 100644 --- a/src/java.base/share/classes/sun/security/provider/certpath/X509CertPath.java +++ b/src/java.base/share/classes/sun/security/provider/certpath/X509CertPath.java @@ -69,6 +69,7 @@ public class X509CertPath extends CertPath { /** * List of certificates in this chain */ + @SuppressWarnings("serial") // Not statically typed as Serializable private List certs; /** diff --git a/src/java.base/share/classes/sun/security/rsa/RSAPrivateCrtKeyImpl.java b/src/java.base/share/classes/sun/security/rsa/RSAPrivateCrtKeyImpl.java index 13898a3cdb1..e32eae37485 100644 --- a/src/java.base/share/classes/sun/security/rsa/RSAPrivateCrtKeyImpl.java +++ b/src/java.base/share/classes/sun/security/rsa/RSAPrivateCrtKeyImpl.java @@ -70,6 +70,7 @@ public final class RSAPrivateCrtKeyImpl // Optional parameters associated with this RSA key // specified in the encoding of its AlgorithmId. // Must be null for "RSA" keys. + @SuppressWarnings("serial") // Not statically typed as Serializable private AlgorithmParameterSpec keyParams; /** diff --git a/src/java.base/share/classes/sun/security/rsa/RSAPrivateKeyImpl.java b/src/java.base/share/classes/sun/security/rsa/RSAPrivateKeyImpl.java index 0baff26ca5b..6ed10b7e768 100644 --- a/src/java.base/share/classes/sun/security/rsa/RSAPrivateKeyImpl.java +++ b/src/java.base/share/classes/sun/security/rsa/RSAPrivateKeyImpl.java @@ -61,6 +61,7 @@ public final class RSAPrivateKeyImpl extends PKCS8Key implements RSAPrivateKey { // optional parameters associated with this RSA key // specified in the encoding of its AlgorithmId. // must be null for "RSA" keys. + @SuppressWarnings("serial") // Not statically typed as Serializable private final AlgorithmParameterSpec keyParams; /** diff --git a/src/java.base/share/classes/sun/security/rsa/RSAPublicKeyImpl.java b/src/java.base/share/classes/sun/security/rsa/RSAPublicKeyImpl.java index 15932424c0f..8dcc2ca6608 100644 --- a/src/java.base/share/classes/sun/security/rsa/RSAPublicKeyImpl.java +++ b/src/java.base/share/classes/sun/security/rsa/RSAPublicKeyImpl.java @@ -62,6 +62,7 @@ public final class RSAPublicKeyImpl extends X509Key implements RSAPublicKey { // optional parameters associated with this RSA key // specified in the encoding of its AlgorithmId // must be null for "RSA" keys. + @SuppressWarnings("serial") // Not statically typed as Serializable private AlgorithmParameterSpec keyParams; /** diff --git a/src/java.base/share/classes/sun/security/util/ObjectIdentifier.java b/src/java.base/share/classes/sun/security/util/ObjectIdentifier.java index 426014fad0e..f28a02a9487 100644 --- a/src/java.base/share/classes/sun/security/util/ObjectIdentifier.java +++ b/src/java.base/share/classes/sun/security/util/ObjectIdentifier.java @@ -98,6 +98,7 @@ class ObjectIdentifier implements Serializable * Changed to Object * @serial */ + @SuppressWarnings("serial") // Not statically typed as Serializable private Object components = null; // path from root /** * @serial diff --git a/src/java.base/share/classes/sun/security/validator/ValidatorException.java b/src/java.base/share/classes/sun/security/validator/ValidatorException.java index 3cb22119ea3..044bbbb3513 100644 --- a/src/java.base/share/classes/sun/security/validator/ValidatorException.java +++ b/src/java.base/share/classes/sun/security/validator/ValidatorException.java @@ -62,6 +62,7 @@ public class ValidatorException extends CertificateException { public static final Object T_UNTRUSTED_CERT = "Untrusted certificate"; + @SuppressWarnings("serial") // Not statically typed as Serializable private Object type; private X509Certificate cert; diff --git a/src/java.base/share/classes/sun/security/x509/AlgorithmId.java b/src/java.base/share/classes/sun/security/x509/AlgorithmId.java index 6f40d85d654..d502b118263 100644 --- a/src/java.base/share/classes/sun/security/x509/AlgorithmId.java +++ b/src/java.base/share/classes/sun/security/x509/AlgorithmId.java @@ -72,6 +72,7 @@ public class AlgorithmId implements Serializable, DerEncoder { private ObjectIdentifier algid; // The (parsed) parameters + @SuppressWarnings("serial") // Not statically typed as Serializable private AlgorithmParameters algParams; private boolean constructedFromDer = true; @@ -80,6 +81,7 @@ public class AlgorithmId implements Serializable, DerEncoder { * DER-encoded form; subclasses can be made to automaticaly parse * them so there is fast access to these parameters. */ + @SuppressWarnings("serial") // Not statically typed as Serializable protected DerValue params; diff --git a/src/java.base/share/classes/sun/security/x509/X509CertImpl.java b/src/java.base/share/classes/sun/security/x509/X509CertImpl.java index bb4822f1269..40567533fe6 100644 --- a/src/java.base/share/classes/sun/security/x509/X509CertImpl.java +++ b/src/java.base/share/classes/sun/security/x509/X509CertImpl.java @@ -70,6 +70,7 @@ import sun.security.provider.X509Factory; * @author Hemma Prafullchandra * @see X509CertInfo */ +@SuppressWarnings("serial") // See writeReplace method in Certificate public class X509CertImpl extends X509Certificate implements DerEncoder { @java.io.Serial diff --git a/src/java.base/share/classes/sun/security/x509/X509Key.java b/src/java.base/share/classes/sun/security/x509/X509Key.java index 33d1b941367..faf7cfb927f 100644 --- a/src/java.base/share/classes/sun/security/x509/X509Key.java +++ b/src/java.base/share/classes/sun/security/x509/X509Key.java @@ -84,7 +84,7 @@ public class X509Key implements PublicKey { private int unusedBits = 0; /* BitArray form of key */ - private BitArray bitStringKey = null; + private transient BitArray bitStringKey = null; /* The encoding for the key. */ protected byte[] encodedKey;