Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Reasoning behind ArrayIsStoredDirectly rule of PMD

Tags:

java

security

code-analysis

pmd

PMD has a rule called ArrayIsStoredDirectly in the Sun Security ruleset:

Constructors and methods receiving arrays should clone objects and store the copy. This prevents that future changes from the user affect the internal functionality.

Here is their example:

public class Foo {
 private String [] x;
  public void foo (String [] param) {
      // Don't do this, make a copy of the array at least
      this.x=param;
  }
}

I don't think I completely understand the reasoning behind this rule. Is it because the values in the array passed can be altered somewhere else? Is there a difference between passing a Collection vs passing an array in regards to this?

like image 631
Wilhelm Kleu Avatar asked Jul 23 '10 05:07

Wilhelm Kleu

3 Answers

The problem is that the caller may keep a copy of the array argument that it passed, and can then change its contents. If the object is security critical and the call is made from untrusted code, you've got a security hole.

In this context, passing a collection and saving it without copying it would also be a potential security risk. (I don't know if there's a PMD rule to tell you this.)

In both cases, the way to address the risk (if it is real) is to set the attribute to a copy of the argument array or collection. On the other hand, if you know that the caller is always going to be trusted code, the copy is a waste of time, and a better solution would be to tell PMD to be quiet about that particular method.

like image 183
Stephen C Avatar answered Nov 13 '22 12:11

Stephen C

There is no differnce between passing a collection or an array: in both cases sender and receiver can modify the content of the datastructure. Here's an example:

// ... in some method
Foo myfoo = new Foo();
String[] array = {"One", "Two", "Three"};
myfoo.foo(array);     // now the Foo instance gets {"One", "Two", "Three"}

array[1] = "Changed"; // now the internal field x in myfoo is {"One", "Changed", "Three"}

If you do not want this behaviour, you have to, following this PMD rule, clone the array in Foo and store a reference to the clone. This way you make sure, that no other class holds a reference to your internal array (unless we forget about reflection for a moment and unless we don't return this internal array in another method...)

like image 38
Andreas Dolk Avatar answered Nov 13 '22 13:11

Andreas Dolk

I think the main problem with arrays is that you can not control acces to it.

But with a Object you hide members behind setters where you can control what will be set. I think the same applies to Collections because you need to call add() and toArray() returns a copy.

like image 1
n3utrino Avatar answered Nov 13 '22 12:11

n3utrino
Sign in to Comment

Related questions

JavaPOS Hello World in Java
Running Junit & PowerMock with Mockito through PowerMockRunner from maven
Is it possible to have a JMS server without an application server?
an EAR (Java EE) application which listen to a socket request
How to get cpu-id in java?
Build a natural language model that fixes misspellings
I want to improve performance of xslt
How to detect via Java whether a particular process is running under Windows?
maven project required sun.javadoc jar
Given a WSDL file, what are the steps to consume a web service over the internet?
What java version is needed for JUnit 4.8
java.io.FileNotFoundException for valid URL
Class accessing inner class privates?
Download dynamic file with GWT
How do I subtract a binding using a Guice module override?
Select non-entities with JPA?
swing syntax highlighter
Recursive function to match a string against a wildcard pattern
@EJB in @ViewScoped managed bean causes java.io.NotSerializableException
Non-serializable object error while working on Memcache

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!