RFR: 4337793: Mark non-serializable fields of java.security.cert.Certificate and CertPath [v2]

Valerie Peng valeriep at openjdk.java.net
Mon Nov 15 23:41:36 UTC 2021


On Mon, 15 Nov 2021 21:53:56 GMT, Sean Mullan <mullan at openjdk.org> wrote:

>> Please review this 20+ year old bug (!), which marks the non-serializable fields of Certificate and CertPath with the transient modifier. These classes use an alternate serialization mechanism by overriding the writeReplace method. However, the fields of each class were never marked as transient and as a result were incorrectly documented in the Serialized Form section of the javadoc.
>> 
>> CSR: https://bugs.openjdk.java.net/browse/JDK-8277128
>
> Sean Mullan has updated the pull request incrementally with one additional commit since the last revision:
> 
>   Improve writeReplace methods to better describe what object is returned.
>   Small wording improvements and use of {@code} in readResolve methods and CertPath serial fields.
>   Corrected typo in type param of CertPathRep ctor (should be "Certificate type" and not "CertPath type").

Marked as reviewed by valeriep (Reviewer).

-------------

PR: https://git.openjdk.java.net/jdk/pull/6392


More information about the security-dev mailing list