JDK-8046044 : Fix raw and unchecked lint warnings in XML Signature Impl
  • Type: Sub-task
  • Component: security-libs
  • Sub-Component: javax.xml.crypto
  • Affected Version: 9
  • Priority: P4
  • Status: Resolved
  • Resolution: Fixed
  • Submitted: 2014-06-05
  • Updated: 2020-01-16
  • Resolved: 2014-06-16
The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.

To download the current JDK release, click here.
JDK 9 Other
9 b20Fixed openjdk8u252Fixed
Related Reports
Relates :  
JDK-8149029 - Secure validation of XML based digital signature always enabled when checking wrapping attacks
Relates :  
JDK-8046949 - Generify the javax.xml.crypto API
Relates :  
JDK-8011547 - Update XML Signature implementation to Apache Santuario 1.5.4
Description
The classes in src/share/classes/org/jcp/xml/dsig/internal/dom/* have various raw and unchecked lint warnings; these should be fixed.
Comments
Elliot isn't a committer, so I'll sponsor and push.
16-01-2020
Fix Request (jdk8u) Requesting a jdk8u backport approval of this fix to help backporting JDK-8177334. The jdk9 changeset does not apply cleanly to jdk8u-dev and requires adjustments. The adjusted webrev below passes tier1 and the jdk_security tests. 8u Webrev: http://cr.openjdk.java.net/~ebaron/JDK-8046044/webrev.00/ 8u RFR: https://mail.openjdk.java.net/pipermail/jdk8u-dev/2019-November/010619.html (Review approved by phh)
20-11-2019
Note that some warnings still require the Suppressed annotation (see DOMXMLSignatureFactory, DOMKeyInfoFactory). These can eventually be removed when the javax.xml.crypto API is generified (see JDK-8046949).
16-06-2014