Java code weakness and repair - INT: Suspicious integer expression - Code World

Java code weakness and repair - INT: Suspicious integer expression

News 2023-08-26 05:18:49 views: null

Weakness description

"INT: Suspicious integer expression", suspicious integer expression. This type of vulnerability refers to code that uses inappropriate integer expressions.

This type of vulnerability warning appears in many scenarios, such as:

In a conditional statement, an inappropriate integer comparison operator is used, for example, in code such as if (i == true), a boolean comparison operator should be used instead of an integer comparison operator.
In a loop statement, an inappropriate integer counter is used, such as in code such as for (int i = 0; i < 10; i–) where the decrement of the loop counter i may cause an infinite loop or other unexpected results .
In an arithmetic expression, an inappropriate integer type or an overflow operation is used, for example, in a code such as int result = a * b, if the values of a and b are large, it may cause an integer overflow, resulting in a wrong result .

sample code

public class SuspiciousIntExpress {

	public void suspiciousIngegerExpression(List<String> list){
		if(list == null ||list.size()<0) {
			System.out.println("Hello.");
		}
		
	}
}

In the example here, the minimum number of elements in List is 0, and it is impossible to be smaller than 0. In Eclipse Spotbugh, it will prompt Bad comparison of nonnegative value with 0 (wrong comparison of nonnegative value with 0). The error message is as follows:

Guess you like

Origin blog.csdn.net/oscar999/article/details/131878053

Java code weakness and repair - INT: Suspicious integer expression

Database Suspicious Repair Tool

Checkstyle rule for suspicious integer division?

Java's int and Integer

java in the int vs Integer

suspicious

Java Integer int == comparison problem

java的int和Integer的区别

Conversion between Integer and int in Java

How to create a int[] or a Collection<Integer> with the value 0,1,2,...,N in one line in Java using lambda expression?

== Java learning> int and Integer differences and connections

Java basic training: the difference between Integer and int

java int数组转ArrayList＜Integer＞

java-Int和Integer的区别

Difference and comparison between int and Integer in java (==)

Java 8 way to convert int[][] to Integer[][]

java Set<int[]> vs Set<List<Integer>>

What is the difference between int and Integer based on Java

What is the difference between int and Integer based on Java

How to convert a scala Int to a java Integer?

Conversion between Integer and String and Int in java (graphic)

Java - summary of difference between int and Integer

Java code audit and security vulnerability repair

Integer and Int

And binary integer expression

postgresql string to integer int, integer

Java code weaknesses and fixes - Unintended regular expression (unexpected regular expression)

Conversion between String, Integer, and int in Java data types

How to store integer types (short int long) in java

In JNI, can you pass a C integer parameter to a Java primitive int?

Recommended

Ranking

#2019110700005

What materials and procedures are required for patent transfer

What is the blockchain Ethereum triplet state root transaction root receipt root

Front-end study notes 04 --- About the insertion of html pictures and videos

Documents required for the filing of WeChat Mini Programs in special industries, the filing process of WeChat Mini Programs in special industries, how to file WeChat Mini Programs in special industries

2017 Qingdao-site tournament I The Squared Mosquito Coil

[BZOJ3165][HEOI2013]Segment (line segment tree without marking)

Kettle series: KettleEasyExpand, an open source Kettle universal plugin by Ma Jinju

The latest tutorial on making framework for iOS

DAX Section 6: Statistical Functions

Daily

More

2024-05-14(9)

2024-05-13(8)

2024-05-12(28)

2024-05-11(32)

2024-05-10(34)

2024-05-09(32)

2024-05-08(18)

2024-05-07(34)

2024-05-06(6)

2024-05-05(0)