Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update Security Libraries to New Codesnippet Tooling #25441

Merged
merged 1 commit into from
Nov 16, 2021
Merged

Update Security Libraries to New Codesnippet Tooling #25441

merged 1 commit into from
Nov 16, 2021

Conversation

alzimmermsft
Copy link
Member

Description

Fixes #7154
Fixes #23845
Fixes #24975
Fixes #24976
Fixes #24977
Fixes #24978
Fixes #24979

All SDK Contribution checklist:

  • The pull request does not introduce [breaking changes]
  • CHANGELOG is updated for new features, bug fixes or other significant changes.
  • I have read the contribution guidelines.

General Guidelines and Best Practices

  • Title of the pull request is clear and informative.
  • There are a small number of commits, each of which have an informative message. This means that previously merged commits do not appear in the history of the PR. For more information on cleaning up the commits in your PR, see this page.

Testing Guidelines

  • Pull request includes test coverage for the included changes.

@alzimmermsft alzimmermsft added the Client This issue points to a problem in the data-plane of the library. label Nov 16, 2021
@alzimmermsft alzimmermsft self-assigned this Nov 16, 2021
@ghost ghost added KeyVault azure-spring All azure-spring related issues labels Nov 16, 2021
srnagar
srnagar approved these changes Nov 16, 2021
View reviewed changes
sdk/attestation/azure-security-attestation/pom.xml
Comment on lines +43 to +44
<javadocDoclet></javadocDoclet>
<javadocDocletOptions></javadocDocletOptions>
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Having empty tags seems a bit odd and is done in almost all libraries. Can we invert this pattern where libraries having a non-empty value would override what's in parent pom? (Of course, this might be easier after majority of the libraries have migrated to the new tool)

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

These empty lines will go away once the codesnippet tooling transition is complete. They're empty as the configuration in the parent POM is to enable the previous codesnippet doclet and this empty configuration disables it.

...-security-keyvault-jca/src/main/java/com/azure/security/keyvault/jca/KeyVaultPrivateKey.java
Comment on lines +28 to +30
/**
* Algorithm.
*/
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Was this enforced by the javadoc plugin?

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yes, I believe something changed where all fields in a serializable class need to have Javadocs

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is a private field and requiring javadocs on private fields can become tedious. Is there a way to turn this off while generating javadocs?

...ult-jca/src/main/java/com/azure/security/keyvault/jca/implementation/JREKeyStoreFactory.java
@@ -85,7 +84,7 @@ private static Path getConfiguredKeyStorePath() {

@SuppressWarnings("removal")
private static String privilegedGetProperty(String theProp, String defaultVal) {
return AccessController.doPrivileged(
return java.security.AccessController.doPrivileged(
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Changes to this file can be reverted.

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

So, this is a compiler warning fix for Java 17. Apparently when you suppress warnings for removal, or anything, on the class it doesn't cover import statements and import statements can't be annotated with SuppressWarnings. Making the usage of the class fully-qualified allows for the method to suppress the warning and fix the compilation warning.

@alzimmermsft
Copy link
Member Author

/check-enforcer override

@alzimmermsft
Copy link
Member Author

Test was failing due to a known issue #25422

@alzimmermsft alzimmermsft merged commit 6df6a8e into Azure:main Nov 16, 2021
@alzimmermsft alzimmermsft deleted the AzSecurity_UpdateToNewCodesnippetTooling branch November 16, 2021 20:04
vcolin7
vcolin7 reviewed Nov 16, 2021
View reviewed changes
Copy link
Member

@vcolin7 vcolin7 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I see this is already merged, just left a couple comments :)

sdk/keyvault/azure-security-keyvault-administration/pom.xml
Comment on lines +43 to +44
<javadocDoclet></javadocDoclet>
<javadocDocletOptions></javadocDocletOptions>
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Any particular reason we add these empty properties?

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

These empty lines will go away once the codesnippet tooling transition is complete. They're empty as the configuration in the parent POM is to enable the previous codesnippet doclet and this empty configuration disables it.

sdk/keyvault/azure-security-keyvault-perf/pom.xml
Comment on lines +24 to +26
<codesnippet.skip>false</codesnippet.skip>
<javadocDoclet></javadocDoclet>
<javadocDocletOptions></javadocDocletOptions>
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Do we need this in this project or other perf projects if we are not going to make use of the codesnippets tool in it?

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Until the previous codesnippet tooling is replaced, yes as it will still attempt to run during Javadoc generation

XiaofeiCao pushed a commit to XiaofeiCao/azure-sdk-for-java that referenced this pull request Nov 18, 2021
@alzimmermsft @XiaofeiCao
Update Security Libraries to New Codesnippet Tooling (Azure#25441)
8ab8399
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@srnagar srnagar srnagar approved these changes

@vcolin7 vcolin7 vcolin7 left review comments

@ArthurMa1978 ArthurMa1978 Awaiting requested review from ArthurMa1978 ArthurMa1978 is a code owner

@backwind1233 backwind1233 Awaiting requested review from backwind1233

@chenrujun chenrujun Awaiting requested review from chenrujun

@g2vinay g2vinay Awaiting requested review from g2vinay g2vinay is a code owner

@haolingdong-msft haolingdong-msft Awaiting requested review from haolingdong-msft haolingdong-msft is a code owner

@hui1110 hui1110 Awaiting requested review from hui1110

@jialigit jialigit Awaiting requested review from jialigit

@LarryOsterman LarryOsterman Awaiting requested review from LarryOsterman LarryOsterman is a code owner

@moarychan moarychan Awaiting requested review from moarychan moarychan is a code owner

@samvaity samvaity Awaiting requested review from samvaity

@saragluna saragluna Awaiting requested review from saragluna saragluna is a code owner

@stliu stliu Awaiting requested review from stliu

@weidongxu-microsoft weidongxu-microsoft Awaiting requested review from weidongxu-microsoft weidongxu-microsoft is a code owner

@XiaofeiCao XiaofeiCao Awaiting requested review from XiaofeiCao XiaofeiCao is a code owner

@yiliuTo yiliuTo Awaiting requested review from yiliuTo

Assignees

@alzimmermsft alzimmermsft

Labels
azure-spring All azure-spring related issues Client This issue points to a problem in the data-plane of the library. KeyVault
Projects
None yet
Milestone
No milestone
3 participants
@alzimmermsft @vcolin7 @srnagar