If you have ever implemented Serializable interface, you must encounter this warning message
The serializable class xxx does not declare a static final serialVersionUID field of type long
The serialVersionUID is used as a version control in a Serializable class. If you do not explicitly declare a serialVersionUID, JVM will do it for you automatically, based on various aspects of your Serializable class, as described in the Java(TM) Object Serialization Specification.
The above statement is a bit hard to understand at the beginning (at least I did), let start an example to understand how Serializable class use SerialVersionUID to implement version control.
A serializable class with a serialVersionUID of 1L.
import java.io.Serializable; public class Address implements Serializable { private static final long serialVersionUID = 1L; String street; String country; public void setStreet(String street) { this.street = street; } public void setCountry(String country) { this.country = country; } public String getStreet() { return this.street; } public String getCountry() { return this.country; } @Override public String toString() { return new StringBuffer(" Street : ").append(this.street).append( " Country : ").append(this.country).toString(); } }
A simple class to write / serialize the Address object into a file – “c:\\address.ser”.
import java.io.FileOutputStream; import java.io.ObjectOutputStream; public class WriteObject { public static void main(String args[]) { Address address = new Address(); address.setStreet("wall street"); address.setCountry("united states"); try { FileOutputStream fout = new FileOutputStream("c:\\address.ser"); ObjectOutputStream oos = new ObjectOutputStream(fout); oos.writeObject(address); oos.close(); System.out.println("Done"); } catch (Exception ex) { ex.printStackTrace(); } } }
A simple class to read / deserialize the Address object from file – “c:\\address.ser”.
import java.io.FileInputStream; import java.io.ObjectInputStream; public class ReadObject { public static void main(String args[]) { Address address; try { FileInputStream fin = new FileInputStream("c:\\address.ser"); ObjectInputStream ois = new ObjectInputStream(fin); address = (Address) ois.readObject(); ois.close(); System.out.println(address); } catch (Exception ex) { ex.printStackTrace(); } } }
Let do some testing to demonstrate the use of serialVersionUID.
Same serialVersionUID , there is no problem during the deserialization process
javac Address.java javac WriteObject.java javac ReadObject.java java WriteObject java ReadObject Street : wall street Country : united states
In Address.java, change the serialVersionUID to 2L (it was 1L), and compile it again.
javac Address.java java ReadObject java.io.InvalidClassException: Address; local class incompatible: stream classdesc serialVersionUID = 1, local class serialVersionUID = 2 ... at ReadObject.main(ReadObject.java:14)
The “InvalidClassException
” will raise, because you write a serialization class with serialVersionUID “1L” but try to retrieve it back with updated serialization class, serialVersionUID “2L”.
The serialVersionUID have to match during the serialization and deserialization process.
When should update your serialVersionUID?
When your serialization class is updated with some incompatible Java type changes to a serializable class, you have to update your serialVersionUID.
For detail about the compatible and incompatible Java type changes to a serializable class, see the Java Object Serialization Specification.
If no serialVersionUID is declared, JVM will use its own algorithm to generate a default SerialVersionUID, you can check the algorithm here.
The default serialVersionUID computation is highly sensitive to class details and may vary from different JVM implementation, and result in an unexpected InvalidClassExceptions during the deserialization process.
- Client is using SUN’s JVM in Windows.
- Server is using JRockit in Linux.
The client sends a serializable class with default generated serialVersionUID (e.g 123L) to the server over socket, the server may generate a different serialVersionUID (e.g 124L) during deserialization process, and raises an unexpected InvalidClassExceptions.
- App #1 is using SUN’s JVM in Windows.
- App #2 is using JRockit in Linux.
Serialization has allowed to save into a file or database. App #1 stores a serializable class into database by default generated serialVersionUID (e.g 123L), while App #2 may generate a different serialVersionUID (e.g 124L) during deserialization process, and raise an unexpected InvalidClassExceptions.
You can check here for the List of the JVM implementation.
You can use JDK “serialver
” or Eclipse IDE to generate serialVersionUID automatically, see detail.
SUN is highly recommended developers to declare the serialVersionUID in order to avoid the different JVM issue listed above, however I rather recommend you should understand what is serialization, how serialVersionUID implement version control and why your class need to use serialization. Understand the serialVersionUID concept is better than blindfold to any recommendation.
http://en.wikipedia.org/wiki/List_of_JVM_implementations
http://java.sun.com/javase/6/docs/platform/serialization/spec/class.html#4100
http://stackoverflow.com/questions/419796/explicit-serialversionuid-considered-harmful
http://en.wikipedia.org/wiki/Serialization#Java
http://www.javaworld.com/javaworld/jw-02-2006/jw-0227-control.html?page=1
http://www.javablogging.com/what-is-serialversionuid/
http://java.dzone.com/articles/dont-ignore-serialversionuid
http://www.java-forums.org/new-java/8196-serialversionuid.html