It says in this article that:
Making a class final because it is immutable is a good reason to do so.
I'm a bit puzzled by this... I understand that immutability is a good thing from the POV of thread-safety and simplicity, but it seems that these concerns are somewhat orthogonal to extensibility. So, why is immutability a good reason for making a class final?
So, why is immutability a good reason for making a class final?
As stated in oracle docs there are basically 4 steps to make a class immutable.
So one of the point states that
to make a class Immutable class should be marked as either final or have private constructor
Below are the 4 steps to make a class immutable (straight from the oracle docs)
Don't provide "setter" methods — methods that modify fields or objects referred to by fields.
Make all fields final and private.
Don't allow subclasses to override methods. The simplest way to do this is to declare the class as final. A more sophisticated approach is to make the constructor private and construct instances in factory methods.
If the instance fields include references to mutable objects, don't allow those objects to be changed:
Following the Liskov Substitution Principle a subclass can extend but never redefine the contract of its parent. If the base class is immutable then its hard to find examples of where its functionality could be usefully extended without breaking the contract.
Note that it is possible in principle to extend an immutable class and change the base fields e.g. if the base class contains a reference to an array the elements within the array cannot be declared final. Obviously the semantics of methods can also be changed via overriding.
I suppose you could declare all the fields as private and all the methods as final, but then what would be the use of inheriting?
The explanation for this is given in the book 'Effective Java'
Consider
BigDecimal
andBigInteger
classes in Java .It was not widely understood that immutable classes had to be effectively final when
BigInteger
andBigDecimal
were written, so all of their methods may be overridden. Unfortunately, this could not be corrected after the fact while preserving backward compatibility.If you write a class whose security depends on the immutability of a BigInteger or BigDecimal argument from an un-trusted client, you must check to see that the argument is a “real” BigInteger or BigDecimal, rather than an instance of an un trusted subclass. If it is the latter, you must defensively copy it under the assumption that it might be mutable.
If you allow sub classing, it might break the "purity" of the immutable object.
Its a good idea to make a class immutable for performance reasons too. Take Integer.valueOf for example. When you call this static method it does not have to return a new Integer instance. It can return a previously created instance safe in the knowledge that when it passed you a reference to that instance last time you didn't modify it (I guess this is also good reasoning from a security reason perspective too).
I agree with the standpoint taken in Effective Java on these matters -that you should either design your classes for extensibility or make them non-extensible. If its your intention to make something extensible perhaps consider an interface or abstract class.
Also, you don't have to make the class final. You can make the constructors private.
Because if the class is final you can't extend it and make it mutable.
Even if you make the fields final, that only means you cannot reassign the reference, it does not mean you cannot change the object that is referred to.
I don't see a lot of use in a design for an immutable class that also should be extended, so final helps keep the immutability intact.
Mainly security I'd think. For the same reason String is final, anything that any security-related code wants to treat as immutable must be final.
Suppose you have a class defined to be immutable, call it MyUrlClass, but you don't mark it final.
Now, somebody might be tempted to write security manager code like this;
And here's what they'd put in their DoRequest(MyUrlClass url) method:
But they can't do this, because you didn't make MyUrlClass final. The reason they can't do it is that if they did, code could avoid the security manager restrictions simply by overriding getDomain() to return "www.google.com" the first time it's called, and "www.evilhackers.org" the second, and passing an object of their class into DoRequest().
I have nothing against evilhackers.org, by the way, if it even exists...
In the absence of security concerns it's all about avoiding programming errors, and it is of course up to you how you do that. Subclasses have to keep their parent's contract, and immutability is just a part of the contract. But if instances of a class are supposed to be immutable, then making it final is one good way of making sure they really are all immutable (i.e. that there aren't mutable instances of subclasses kicking around, which can be used anywhere that the parent class is called for).
I don't think the article you referenced should be taken as an instruction that "all immutable classes must be final", especially if you have a positive reason to design your immutable class for inheritance. What it was saying is that protecting immutability is a valid reason for final, where imaginary performance concerns (which is what it's really talking about at that point) are not valid. Note that it gave "a complex class not designed for inheritance" as an equally valid reason. It can fairly be argued that failing to account for inheritance in your complex classes is something to avoid, just as failing to account for inheritance in your immutable classes is. But if you can't account for it, you can at least signal this fact by preventing it.