
更新时间:2023-05-17 03:31:33 阅读: 评论:0

1、LI_LAZY_INIT_UPDATE_STATIC:Incorrect lazy initialization and update of static field
Thismethod contains an unsynchronized lazy initialization of a static field. Afterthe field is t, the object stored into that location is further updated oraccesd. The tting of the field is visible to other threads as soon as it ist. If the futher access in the method that t the field rve toinitialize the object, then you have a veryriousmultithreading bug, unless something el prevents any otherthread from accessing the stored object until it is fully initialized.
2、RR_NOT_CHECKED: Method ignores ad()
This method ignores the return value ofone of the variants of java.ad() which can returnmultiple bytes. If the return value is not checked, the caller will notbe able to correctly handle the ca where fewer bytes were read than thecaller requested. This is a particularly insidious kind of bug, becauin many programs, reads from input streams usually do read the full amount ofdata requested, causing the program to fail only sporadically.
解决⽅法:定义⼀个变量接收该⽅法返回值,如while((number = is.read(bs))!= -1) {}
3、RV_RETURN_VALUE_IGNORED_BAD_PRACTICE:Method ignores exceptional return value
This methodreturns a value that is not checked. The return value should be checked sinceit can indicate an unusual or unexpected function execution. For example, the File.delete() methodreturns fal if the file could not be successfully deleted (rather thanthrowing an Exception). If you don't check the result, you won't notice if themethod invocation signals unexpected behavior by returning an atypical returnvalue.
原代码:if (ists()) {今年春节祝福语
修改后的代码:try {
}catch(SecurityException e){
}catch(NullPointerException e){
4、SE_BAD_FIELD:Non-transient non-rializable instance field in rializable class
This Serializableclass defines a non-primitive instance field which is neither transient,Serializable, or java.lang.Object, and does not appear to implement theExternalizable interfaceor the readObject() and writeObject() methods. Objects of this class will not be derialized correctly if a non-Serializableobject is stored in this field.
5、NP_NULL_ON_SOME_PATH_EXCEPTION:Possible null pointer dereference in method on exception path
花的头像Areference value which is null on some exception control path is dereferencedhere. This may lead to a NullPointerException when the code ixecuted. Note that becau FindBugs currently does not prune infeasibleexception paths, this may be a fal warning. Alsonote that FindBugs considers the default ca of a switch statement to be anexception path, since the default ca is often infeasible.
6、NP_NULL_PARAM_DEREF:Method call pass null for nonnull parameter
Thismethod call pass a null value for a nonnull method parameter. Either theparameter is annotated as a parameter that should always be nonnull, oranalysis has shown that it will always be dereferenced
7、NP_NULL_ON_SOME_PATH:Possible null pointer dereference
Thereis a branch of statement that, if executed, guarantees that a nullvalue will be dereferenced, which would generate a NullPointerException whenthe code is executed. Of cour, the problem might be that the branch orstatement is infeasible and that the null pointer exception can't ever beexecuted; deciding that is beyond the ability of FindBugs
8、NP_UNWRITTEN_FIELD:Read of unwritten field
Theprogram is dereferencing a field that does not em to ever have a non-nullvalue written to it. Dereferencing this value will generate a null pointerexception.
9、DMI_INVOKING_TOSTRING_ON_ARRAY:Invocation of toString on an array
Thecode invokes toString on an array, which will generate a fairly uless resultsuch as [C@16f0472. Consider String to convert the array into areadable String that gives the contents of the array. See Programming Puzzlers,chapter 3, puzzle 12.
原因分析:该代码调⽤上数组的toString()⽅法,产⽣的结果形如[@ 16f0472并不能显⽰数组的真实内容。
解决⽅法:⽤String⽅法或者new String(X,“gbk”)来转换
10、UWF_UNWRITTEN_FIELD:Unwritten field
小学英文歌Thisfield is never written. All reads of it will return the default value.Check for errors (should it have been initialized?), or remove it if it isuless
11、RCN_REDUNDANT_NULLCHECK_OF_NONNULL_VALUE:Redundant nullcheck of value known to be non-null
Thismethod contains a redundant check of a known non-null value against theconstant null.
12、EI_EXPOSE_REP:May expo internal reprentation by returning reference to mutable object
Returninga reference to a mutable object value stored in one of the object's fieldxpos the internal reprentation of the object. If instances are accesd by untrusted code,and unchecked changes to the mutable object would compromi curity or otherimportant properties, you will need to do something different. Returning a newcopy of the object is better approach in many situations.
publicclass StudentBean
private Date addDate;
public Date getAddDate()
return addDate;
publicclass StudentBean
private Date addDate;
public Date getAddDate()
if (addDate == null)
return null;
return (Date)addDate.clone();
13、EI_EXPOSE_REP2:May expo internal reprentation by incorporating reference to mutable object
Thiscode stores a reference to an externally mutable object into the internalreprentation of the object. Ifinstances are accesd by untrusted code, and unchecked changes to the mutableobject would compromi curity or other important properties, you will needto do something different. Storing a copy of the object is better approach inmany situations.

本文发布于:2023-05-17 03:31:33,感谢您对本站的认可!



标签:对象   代码   字段   分析   原因   检查   没有
留言与评论(共有 0 条评论)
Copyright ©2019-2022 Comsenz Inc.Powered by © 专利检索| 网站地图