8231262: Suppress warnings on non-serializable instance fields in security libs serializable classes

Reviewed-by: mullan, chegar

src/java.base/share/classes/javax/crypto/CryptoPermission.java

@@ -55,6 +55,7 @@ class CryptoPermission extends java.security.Permission {
     private String alg;
     private int maxKeySize = Integer.MAX_VALUE; // no restriction on maxKeySize
     private String exemptionMechanism = null;
+    @SuppressWarnings("serial") // Not statically typed as Serializable
     private AlgorithmParameterSpec algParamSpec = null;
     private boolean checkParam = false; // no restriction on param
 

src/java.base/share/classes/javax/security/auth/PrivateCredentialPermission.java

@@ -119,6 +119,7 @@ public final class PrivateCredentialPermission extends Permission {
      *          The set contains elements of type,
      *          {@code PrivateCredentialPermission.CredOwner}.
      */
+    @SuppressWarnings("serial") // Not statically typed as Serializable
     private Set<Principal> principals;  // ignored - kept around for compatibility
     private transient CredOwner[] credOwners;
 

src/java.base/share/classes/javax/security/auth/Subject.java

@@ -111,6 +111,7 @@ public final class Subject implements java.io.Serializable {
      *          {@code java.security.Principal}.
      *          The set is a {@code Subject.SecureSet}.
      */
+    @SuppressWarnings("serial") // Not statically typed as Serializable
     Set<Principal> principals;
 
     /**

src/java.base/share/classes/javax/security/auth/callback/UnsupportedCallbackException.java

@@ -39,6 +39,7 @@ public class UnsupportedCallbackException extends Exception {
     /**
      * @serial
      */
+    @SuppressWarnings("serial") // Not statically typed as Serializable
     private Callback callback;
 
     /**