Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-4337793

Mark non-serializable fields of java.security.cert.Certificate and CertPath

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Fixed
    • Icon: P4 P4
    • 18
    • None
    • security-libs
    • b25
    • generic
    • generic



      Name: ooR10001 Date: 05/12/2000


      java.security.cert.Certificate spec says that this class implements
      java.io.Serializable. However, this class has a writeReplace() method.
      Moreover, writeReplace() is used to create an object which is actually
      written to the stream and this object is different from
      java.security.cert.Certificate.

      This is a feature of Replaceable interface and in this case the
      class must implement Replaceable.

      The serialized form doc says:
      -------------
      Class java.security.cert.Certificate implements Serializable

      Serialized Fields

      type
      String type
      -------------

      This serialized form structure is not correct because in fact
      java.security.cert.Certificate.CertificateRep is written to the
      stream due to the writeReplace() method, so it should specify
      fields of java.security.cert.Certificate.CertificateRep.

      The serialized form doc should also specify the writeReplace()
      method for java.security.cert.Certificate.

      The serialized form doc needs to be fixed and the java.security.cert.Certificate
      should implement Replaceable interface.

      ======================================================================

            mullan Sean Mullan
            oovsunw Oov Oov (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

              Created:
              Updated:
              Resolved:
              Imported:
              Indexed: