Fix #43 - Resolved compiler warnings (#44)

* Fixes #41 by removing javax.xml.bind.DatatypeConverter usage

* Suppressed deprecation warning

* Enabled all warnings when compiling.

* Enabled actually showing warnings.

* Changing commons codec dependency to test scope as it was originally intended.

* Resolved javac warnings

* Fixed error prone warnings

* Updated changelog

* Updated changelog

Author: dekobon

CHANGELOG.md

@@ -5,7 +5,8 @@ This project adheres to [Semantic Versioning](http://semver.org/).
 ## [4.0.5] - ?
 
 ### Fixed
- - [Removed use of javax.xml.bind.DatatypeConverter](https://github.com/joyent/java-http-signature/issues/41) 
+ - [Removed use of javax.xml.bind.DatatypeConverter](https://github.com/joyent/java-http-signature/issues/41)
+ - Resolved compiler warnings. 
 
 ## [4.0.4] - 2017-10-06
 

common/src/main/java/com/joyent/http/signature/CryptoException.java

@@ -14,6 +14,9 @@
  * @since 1.0.0
  */
 public class CryptoException extends HttpSignatureException {
+
+    private static final long serialVersionUID = -3558219358777167268L;
+
     /**
      * Creates a new exception.
      */

common/src/main/java/com/joyent/http/signature/HttpSignatureException.java

@@ -14,6 +14,9 @@
  * @since 1.0.0
  */
 public class HttpSignatureException extends RuntimeException {
+
+    private static final long serialVersionUID = 6548882825292310527L;
+
     /**
      * Creates a new exception.
      */

common/src/main/java/com/joyent/http/signature/KeyPairLoader.java

@@ -22,6 +22,7 @@
 import java.io.IOException;
 import java.io.InputStream;
 import java.io.InputStreamReader;
+import java.nio.charset.StandardCharsets;
 import java.nio.file.Files;
 import java.nio.file.Path;
 import java.security.KeyPair;
@@ -123,7 +124,7 @@ public static KeyPair getKeyPair(final Path keyPath, final char[] password) thro
      * @throws IOException If unable to read the private key from the string
      */
     public static KeyPair getKeyPair(final String privateKeyContent, final char[] password) throws IOException {
-        byte[] pKeyBytes = privateKeyContent.getBytes();
+        byte[] pKeyBytes = privateKeyContent.getBytes(StandardCharsets.US_ASCII);
 
         return getKeyPair(pKeyBytes, password);
     }
@@ -156,7 +157,7 @@ public static KeyPair getKeyPair(final byte[] pKeyBytes, final char[] password)
      */
     public static KeyPair getKeyPair(final InputStream is,
                               final char[] password) throws IOException {
-        try (InputStreamReader isr = new InputStreamReader(is);
+        try (InputStreamReader isr = new InputStreamReader(is, StandardCharsets.US_ASCII);
              BufferedReader br = new BufferedReader(isr);
              PEMParser pemParser = new PEMParser(br)) {
 

common/src/main/java/com/joyent/http/signature/Signer.java

@@ -13,6 +13,7 @@
 import java.io.IOException;
 import java.io.InputStream;
 import java.io.UnsupportedEncodingException;
+import java.nio.charset.StandardCharsets;
 import java.nio.file.Path;
 import java.security.InvalidKeyException;
 import java.security.KeyPair;
@@ -329,7 +330,7 @@ public String createAuthorizationHeader(final String login,
             final String fingerprint = KeyFingerprinter.md5Fingerprint(keyPair);
 
             return String.format(AUTHZ_HEADER, login, fingerprint, httpHeaderAlgorithm,
-                    new String(encodedSignedDate));
+                    new String(encodedSignedDate, StandardCharsets.US_ASCII));
         } catch (final InvalidKeyException e) {
             throw new CryptoException("invalid key", e);
         } catch (final SignatureException e) {
@@ -396,6 +397,7 @@ public byte[] sign(final String login,
      *
      * @deprecated The fingerprint is now calculated from the given key.
      */
+    @Deprecated
     public boolean verify(final String login,
                                  final String fingerprint,
                                  final KeyPair keyPair,
@@ -791,23 +793,32 @@ private static class RsaHelper extends SigningAlgorithmHelper {
                 System.setProperty("native.jnagmp", Objects.toString(JNAGMP_SUPPORTED));
             }
 
-
+            @Override
             public String getAlgorithm() {
                 return "RSA";
             }
+
+            @Override
             public String[] getSupportedHashes() {
                 return SUPPORTED_HASHES;
             }
+
+            @Override
             public String defaultHash() {
                 return "SHA256";
             }
+
+            @Override
             public String[] getSupportedProviderCodes() {
                 return SUPPORTED_PROVIDER_CODES;
             }
+
+            @Override
             public String defaultProviderCode() {
                 return "native.jnagmp";
             }
 
+            @Override
             public String providerPrefix(final Provider provider) {
                 if (provider != null) {
                     return "Native";
@@ -840,18 +851,26 @@ private static class DsaHelper extends SigningAlgorithmHelper {
             private static final String[] SUPPORTED_HASHES = {"SHA1", "SHA256"};
             private static final String[] SUPPORTED_PROVIDER_CODES = {"stdlib"};
 
+            @Override
             public String getAlgorithm() {
                 return "DSA";
             }
+            @Override
             public String[] getSupportedHashes() {
                 return SUPPORTED_HASHES;
             }
+
+            @Override
             public String defaultHash() {
                 return "SHA256";
             }
+
+            @Override
             public String[] getSupportedProviderCodes() {
                 return SUPPORTED_PROVIDER_CODES;
             }
+
+            @Override
             public String defaultProviderCode() {
                 return "stdlib";
             }
@@ -865,18 +884,27 @@ private static class EcdsaHelper extends SigningAlgorithmHelper {
             private static final String[] SUPPORTED_HASHES = {"SHA256", "SHA384", "SHA512"};
             private static final String[] SUPPORTED_PROVIDER_CODES = {"stdlib"};
 
+            @Override
             public String getAlgorithm() {
                 return "ECDSA";
             }
+
+            @Override
             public String[] getSupportedHashes() {
                 return SUPPORTED_HASHES;
             }
+
+            @Override
             public String defaultHash() {
                 return "SHA256";
             }
+
+            @Override
             public String[] getSupportedProviderCodes() {
                 return SUPPORTED_PROVIDER_CODES;
             }
+
+            @Override
             public String defaultProviderCode() {
                 return "stdlib";
             }

common/src/main/java/com/joyent/http/signature/ThreadLocalClearException.java

@@ -13,6 +13,9 @@
  * @author <a href="https://github.com/dekobon">Elijah Zupancic</a>
  */
 public class ThreadLocalClearException extends RuntimeException {
+
+    private static final long serialVersionUID = 4658889695319509040L;
+
     /**
      * Constructs a new runtime exception with the specified cause and a
      * detail message of <tt>(cause==null ? null : cause.toString())</tt>

common/src/main/java/com/joyent/http/signature/crypto/NativeRSABlindedEngine.java

@@ -73,6 +73,7 @@ public class NativeRSABlindedEngine extends RSABlindedEngine {
      * @param forEncryption true if we are encrypting, false otherwise.
      * @param param the necessary RSA key parameters.
      */
+    @Override
     public void init(final boolean forEncryption, final CipherParameters param) {
         core.init(forEncryption, param);
 
@@ -94,6 +95,7 @@ public void init(final boolean forEncryption, final CipherParameters param) {
      *
      * @return maximum size for an input block.
      */
+    @Override
     public int getInputBlockSize() {
         return core.getInputBlockSize();
     }
@@ -105,6 +107,7 @@ public int getInputBlockSize() {
      *
      * @return maximum size for an output block.
      */
+    @Override
     public int getOutputBlockSize() {
         return core.getOutputBlockSize();
     }
@@ -118,6 +121,7 @@ public int getOutputBlockSize() {
      * @return the result of the RSA process.
      * @exception DataLengthException the input block is too large.
      */
+    @Override
     public byte[] processBlock(final byte[] in, final int inOff, final int inLen) {
         if (key == null) {
             throw new IllegalStateException("RSA engine not initialised");

common/src/main/java/com/joyent/http/signature/crypto/NativeRSAProvider.java

@@ -14,6 +14,9 @@
  * @author <a href="https://github.com/dekobon">Elijah Zupancic</a>
  */
 public class NativeRSAProvider extends Provider {
+
+    private static final long serialVersionUID = -8156926325751209127L;
+
     /**
      * Creates an instance of a JCE provider that supports native RSA via jnagmp.
      */

common/src/test/java/com/joyent/http/signature/KeyFingerprinterIntegrationCycle.java

@@ -13,6 +13,7 @@
 import java.io.File;
 import java.io.IOException;
 import java.io.InputStreamReader;
+import java.nio.charset.StandardCharsets;
 import java.nio.file.Files;
 import java.nio.file.Path;
 import java.nio.file.Paths;
@@ -60,7 +61,8 @@ public String readMd5Fingerprint(int iteration) throws IOException, InterruptedE
         if (p.waitFor() > 0) {
             throw new RuntimeException("check cmd failed: " + p);
         }
-        BufferedReader reader = new BufferedReader(new InputStreamReader(p.getInputStream()));
+        BufferedReader reader = new BufferedReader(new InputStreamReader(p.getInputStream(),
+                StandardCharsets.US_ASCII));
         String line = reader.readLine();
         return line.split(" ")[1];
     }

common/src/test/java/com/joyent/http/signature/KeyPairLoaderTest.java

@@ -97,7 +97,8 @@ private KeyPair generateKeyPair() throws NoSuchAlgorithmException {
     private byte[] serializePrivateKey(final KeyPair keyPair,
                                        final String passphrase) throws Exception {
         final ByteArrayOutputStream baos = new ByteArrayOutputStream();
-        final JcaPEMWriter jcaPEMWriter = new JcaPEMWriter(new OutputStreamWriter(baos));
+        final JcaPEMWriter jcaPEMWriter = new JcaPEMWriter(new OutputStreamWriter(baos,
+                StandardCharsets.US_ASCII));
 
         if (passphrase != null) {
             final PEMEncryptor pemEncryptor = new JcePEMEncryptorBuilder("AES-128-CBC").build(passphrase.toCharArray());