Click on a warning row to see full context information.
| DE |
org.globus.wsrf.impl.security.descriptor.SecurityHelper.parse(String,org.apache.commons.digester.RuleSetBase,String) might ignore java.lang.Exception |
|
Bug type DE_MIGHT_IGNORE (click for details)
In class org.globus.wsrf.impl.security.descriptor.SecurityHelper
In method org.globus.wsrf.impl.security.descriptor.SecurityHelper.parse(String,org.apache.commons.digester.RuleSetBase,String)
Exception class java.lang.Exception
At SecurityHelper.java:[line 196]
|
| Dm |
org.globus.ant.AntLogger.buildFinished(org.apache.tools.ant.BuildEvent) invokes System.exit(...), which shuts down the entire virtual machine |
|
Bug type DM_EXIT (click for details)
In class org.globus.ant.AntLogger
In method org.globus.ant.AntLogger.buildFinished(org.apache.tools.ant.BuildEvent)
At AntLogger.java:[line 72]
|
| Dm |
org.globus.wsrf.client.BaseClient.parse(String[],java.util.Properties) invokes System.exit(...), which shuts down the entire virtual machine |
|
Bug type DM_EXIT (click for details)
In class org.globus.wsrf.client.BaseClient
In method org.globus.wsrf.client.BaseClient.parse(String[],java.util.Properties)
At BaseClient.java:[line 396]
|
| Dm |
org.globus.wsrf.client.EmbedAssertion.embedAssertion() invokes System.exit(...), which shuts down the entire virtual machine |
|
Bug type DM_EXIT (click for details)
In class org.globus.wsrf.client.EmbedAssertion
In method org.globus.wsrf.client.EmbedAssertion.embedAssertion()
At EmbedAssertion.java:[line 139]
At EmbedAssertion.java:[line 150]
At EmbedAssertion.java:[line 153]
At EmbedAssertion.java:[line 172]
|
| Dm |
org.globus.wsrf.client.EmbedAssertion.parse(String[]) invokes System.exit(...), which shuts down the entire virtual machine |
|
Bug type DM_EXIT (click for details)
In class org.globus.wsrf.client.EmbedAssertion
In method org.globus.wsrf.client.EmbedAssertion.parse(String[])
At EmbedAssertion.java:[line 88]
At EmbedAssertion.java:[line 96]
At EmbedAssertion.java:[line 110]
|
| Dm |
org.globus.wsrf.container.ShutdownService$1.run() invokes System.exit(...), which shuts down the entire virtual machine |
|
Bug type DM_EXIT (click for details)
In class org.globus.wsrf.container.ShutdownService$1
In method org.globus.wsrf.container.ShutdownService$1.run()
At ShutdownService.java:[line 38]
|
| DP |
org.globus.wsrf.container.ServiceDispatcher.createServiceClassLoader() creates a org.globus.bootstrap.JarClassLoader classloader, which should be performed within a doPrivileged block |
|
Bug type DP_CREATE_CLASSLOADER_INSIDE_DO_PRIVILEDGED (click for details)
In class org.globus.wsrf.container.ServiceDispatcher
In method org.globus.wsrf.container.ServiceDispatcher.createServiceClassLoader()
In class org.globus.bootstrap.JarClassLoader
At ServiceDispatcher.java:[line 202]
|
| NP |
Possible null pointer dereference in org.globus.wsrf.jndi.JNDIUtils.initializeFile(org.apache.axis.MessageContext) |
|
Bug type NP_NULL_ON_SOME_PATH (click for details)
In class org.globus.wsrf.jndi.JNDIUtils
In method org.globus.wsrf.jndi.JNDIUtils.initializeFile(org.apache.axis.MessageContext)
At JNDIUtils.java:[line 540]
|
| RCN |
Nullcheck at AuthorizationHandler.java:[line 128] of value previously dereferenced at org.globus.wsrf.impl.security.authorization.AuthorizationHandler.invoke(org.apache.axis.MessageContext) |
|
Bug type RCN_REDUNDANT_NULLCHECK_WOULD_HAVE_BEEN_A_NPE (click for details)
In class org.globus.wsrf.impl.security.authorization.AuthorizationHandler
In method org.globus.wsrf.impl.security.authorization.AuthorizationHandler.invoke(org.apache.axis.MessageContext)
At AuthorizationHandler.java:[line 128]
Redundant null check at AuthorizationHandler.java:[line 159]
|
| RCN |
Nullcheck at JNDIUtils.java:[line 360] of value previously dereferenced at org.globus.wsrf.jndi.JNDIUtils.lookup(javax.naming.Context,String,Class) |
|
Bug type RCN_REDUNDANT_NULLCHECK_WOULD_HAVE_BEEN_A_NPE (click for details)
In class org.globus.wsrf.jndi.JNDIUtils
In method org.globus.wsrf.jndi.JNDIUtils.lookup(javax.naming.Context,String,Class)
At JNDIUtils.java:[line 360]
Redundant null check at JNDIUtils.java:[line 366]
|
| RCN |
Nullcheck at XmlPersistenceHelper.java:[line 234] of value previously dereferenced at org.globus.wsrf.utils.XmlPersistenceHelper.store(Object,Object,javax.xml.namespace.QName) |
|
Bug type RCN_REDUNDANT_NULLCHECK_WOULD_HAVE_BEEN_A_NPE (click for details)
In class org.globus.wsrf.utils.XmlPersistenceHelper
In method org.globus.wsrf.utils.XmlPersistenceHelper.store(Object,Object,javax.xml.namespace.QName)
At XmlPersistenceHelper.java:[line 234]
Redundant null check at XmlPersistenceHelper.java:[line 235]
|
| Se |
Class org.globus.wsrf.impl.security.authorization.AccessControlListPDP defines non-transient non-serializable instance field org.globus.wsrf.impl.security.authorization.AccessControlListPDP.accessList |
|
Bug type SE_BAD_FIELD (click for details)
In class org.globus.wsrf.impl.security.authorization.AccessControlListPDP
Field org.globus.wsrf.impl.security.authorization.AccessControlListPDP.accessList
In AccessControlListPDP.java
|
| Se |
Class org.globus.wsrf.impl.security.authorization.AccessControlListPDP defines non-transient non-serializable instance field org.globus.wsrf.impl.security.authorization.AccessControlListPDP.adminList |
|
Bug type SE_BAD_FIELD (click for details)
In class org.globus.wsrf.impl.security.authorization.AccessControlListPDP
Field org.globus.wsrf.impl.security.authorization.AccessControlListPDP.adminList
In AccessControlListPDP.java
|
| Se |
Class org.globus.wsrf.impl.security.authorization.ContainerChainConfig defines non-transient non-serializable instance field org.globus.wsrf.impl.security.authorization.ContainerChainConfig.msgCtx |
|
Bug type SE_BAD_FIELD (click for details)
In class org.globus.wsrf.impl.security.authorization.ContainerChainConfig
Field org.globus.wsrf.impl.security.authorization.ContainerChainConfig.msgCtx
In ContainerChainConfig.java
|
| Se |
Class org.globus.wsrf.impl.security.authorization.ContainerPIP defines non-transient non-serializable instance field org.globus.wsrf.impl.security.authorization.ContainerPIP.context |
|
Bug type SE_BAD_FIELD (click for details)
In class org.globus.wsrf.impl.security.authorization.ContainerPIP
Field org.globus.wsrf.impl.security.authorization.ContainerPIP.context
In ContainerPIP.java
|
| Se |
Class org.globus.wsrf.impl.security.authorization.HostAuthorization defines non-transient non-serializable instance field org.globus.wsrf.impl.security.authorization.HostAuthorization.expected |
|
Bug type SE_BAD_FIELD (click for details)
In class org.globus.wsrf.impl.security.authorization.HostAuthorization
Field org.globus.wsrf.impl.security.authorization.HostAuthorization.expected
In HostAuthorization.java
|
| Se |
Class org.globus.wsrf.impl.security.authorization.ResourcePropertiesPDP defines non-transient non-serializable instance field org.globus.wsrf.impl.security.authorization.ResourcePropertiesPDP.getRPAccessConfig |
|
Bug type SE_BAD_FIELD (click for details)
In class org.globus.wsrf.impl.security.authorization.ResourcePropertiesPDP
Field org.globus.wsrf.impl.security.authorization.ResourcePropertiesPDP.getRPAccessConfig
In ResourcePropertiesPDP.java
|
| Se |
Class org.globus.wsrf.impl.security.authorization.ResourcePropertiesPDP defines non-transient non-serializable instance field org.globus.wsrf.impl.security.authorization.ResourcePropertiesPDP.setRPAccessConfig |
|
Bug type SE_BAD_FIELD (click for details)
In class org.globus.wsrf.impl.security.authorization.ResourcePropertiesPDP
Field org.globus.wsrf.impl.security.authorization.ResourcePropertiesPDP.setRPAccessConfig
In ResourcePropertiesPDP.java
|
| Se |
Class org.globus.wsrf.impl.security.authorization.SAMLAuthorizationCallout defines non-transient non-serializable instance field org.globus.wsrf.impl.security.authorization.SAMLAuthorizationCallout.authzPort |
|
Bug type SE_BAD_FIELD (click for details)
In class org.globus.wsrf.impl.security.authorization.SAMLAuthorizationCallout
Field org.globus.wsrf.impl.security.authorization.SAMLAuthorizationCallout.authzPort
In SAMLAuthorizationCallout.java
|
| Se |
Class org.globus.wsrf.impl.security.authorization.ServicePropertiesChainConfig defines non-transient non-serializable instance field org.globus.wsrf.impl.security.authorization.ServicePropertiesChainConfig.msgCtx |
|
Bug type SE_BAD_FIELD (click for details)
In class org.globus.wsrf.impl.security.authorization.ServicePropertiesChainConfig
Field org.globus.wsrf.impl.security.authorization.ServicePropertiesChainConfig.msgCtx
In ServicePropertiesChainConfig.java
|
| Se |
The method writeObject(java.io.ObjectOutputStream) must be private to be invoked in serialization/deserialization of org.globus.wsrf.impl.security.descriptor.ClientSecurityDescriptor |
|
Bug type SE_METHOD_MUST_BE_PRIVATE (click for details)
In class org.globus.wsrf.impl.security.descriptor.ClientSecurityDescriptor
In method org.globus.wsrf.impl.security.descriptor.ClientSecurityDescriptor.writeObject(java.io.ObjectOutputStream)
At ClientSecurityDescriptor.java:[lines 513-518]
|
| SnVI |
org.globus.axis.providers.RPCProvider is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.axis.providers.RPCProvider
In RPCProvider.java
|
| SnVI |
org.globus.ws.enumeration.IndexedObjectFileEnumIterator is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.ws.enumeration.IndexedObjectFileEnumIterator
In IndexedObjectFileEnumIterator.java
|
| SnVI |
org.globus.wsrf.container.AxisServlet is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.container.AxisServlet
In AxisServlet.java
|
| SnVI |
org.globus.wsrf.encoding.AnyDeserializerFactory is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.encoding.AnyDeserializerFactory
In AnyDeserializerFactory.java
|
| SnVI |
org.globus.wsrf.encoding.AnyListDeserializer is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.encoding.AnyListDeserializer
In AnyListDeserializer.java
|
| SnVI |
org.globus.wsrf.encoding.AnyListDeserializerFactory is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.encoding.AnyListDeserializerFactory
In AnyListDeserializerFactory.java
|
| SnVI |
org.globus.wsrf.encoding.AnyListSerializer is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.encoding.AnyListSerializer
In AnyListSerializer.java
|
| SnVI |
org.globus.wsrf.encoding.AnyListSerializerFactory is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.encoding.AnyListSerializerFactory
In AnyListSerializerFactory.java
|
| SnVI |
org.globus.wsrf.encoding.AnySerializer is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.encoding.AnySerializer
In AnySerializer.java
|
| SnVI |
org.globus.wsrf.encoding.AnySerializerFactory is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.encoding.AnySerializerFactory
In AnySerializerFactory.java
|
| SnVI |
org.globus.wsrf.encoding.QueryExpressionDeserializer is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.encoding.QueryExpressionDeserializer
In QueryExpressionDeserializer.java
|
| SnVI |
org.globus.wsrf.encoding.QueryExpressionDeserializerFactory is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.encoding.QueryExpressionDeserializerFactory
In QueryExpressionDeserializerFactory.java
|
| SnVI |
org.globus.wsrf.encoding.QueryExpressionSerializer is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.encoding.QueryExpressionSerializer
In QueryExpressionSerializer.java
|
| SnVI |
org.globus.wsrf.encoding.QueryExpressionSerializerFactory is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.encoding.QueryExpressionSerializerFactory
In QueryExpressionSerializerFactory.java
|
| SnVI |
org.globus.wsrf.encoding.TopicExpressionDeserializer is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.encoding.TopicExpressionDeserializer
In TopicExpressionDeserializer.java
|
| SnVI |
org.globus.wsrf.encoding.TopicExpressionDeserializerFactory is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.encoding.TopicExpressionDeserializerFactory
In TopicExpressionDeserializerFactory.java
|
| SnVI |
org.globus.wsrf.encoding.TopicExpressionSerializer is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.encoding.TopicExpressionSerializer
In TopicExpressionSerializer.java
|
| SnVI |
org.globus.wsrf.encoding.TopicExpressionSerializerFactory is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.encoding.TopicExpressionSerializerFactory
In TopicExpressionSerializerFactory.java
|
| SnVI |
org.globus.wsrf.handlers.FaultHandler is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.handlers.FaultHandler
In FaultHandler.java
|
| SnVI |
org.globus.wsrf.handlers.MessageLoggingHandler is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.handlers.MessageLoggingHandler
In MessageLoggingHandler.java
|
| SnVI |
org.globus.wsrf.impl.notification.PersistentSubscription is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.impl.notification.PersistentSubscription
In PersistentSubscription.java
|
| SnVI |
org.globus.wsrf.impl.notification.SimpleSubscription is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.impl.notification.SimpleSubscription
In SimpleSubscription.java
|
| SnVI |
org.globus.wsrf.impl.security.authentication.AuthHandler is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.impl.security.authentication.AuthHandler
In AuthHandler.java
|
| SnVI |
org.globus.wsrf.impl.security.authentication.ClientPropertiesHandler is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.impl.security.authentication.ClientPropertiesHandler
In ClientPropertiesHandler.java
|
| SnVI |
org.globus.wsrf.impl.security.authentication.RunAsHandler is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.impl.security.authentication.RunAsHandler
In RunAsHandler.java
|
| SnVI |
org.globus.wsrf.impl.security.authentication.secureconv.service.AuthenticationServiceHandler is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.impl.security.authentication.secureconv.service.AuthenticationServiceHandler
In AuthenticationServiceHandler.java
|
| SnVI |
org.globus.wsrf.impl.security.authentication.transport.AJPTransportSecurityHandler is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.impl.security.authentication.transport.AJPTransportSecurityHandler
In AJPTransportSecurityHandler.java
|
| SnVI |
org.globus.wsrf.impl.security.authentication.transport.TomcatTransportSecurityHandler is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.impl.security.authentication.transport.TomcatTransportSecurityHandler
In TomcatTransportSecurityHandler.java
|
| SnVI |
org.globus.wsrf.impl.security.authorization.AccessControlListPDP is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.impl.security.authorization.AccessControlListPDP
In AccessControlListPDP.java
|
| SnVI |
org.globus.wsrf.impl.security.authorization.AuthorizationEngine is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.impl.security.authorization.AuthorizationEngine
In AuthorizationEngine.java
|
| SnVI |
org.globus.wsrf.impl.security.authorization.AuthorizationHandler is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.impl.security.authorization.AuthorizationHandler
In AuthorizationHandler.java
|
| SnVI |
org.globus.wsrf.impl.security.authorization.ContainerPIP is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.impl.security.authorization.ContainerPIP
In ContainerPIP.java
|
| SnVI |
org.globus.wsrf.impl.security.authorization.GridMapAuthorization is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.impl.security.authorization.GridMapAuthorization
In GridMapAuthorization.java
|
| SnVI |
org.globus.wsrf.impl.security.authorization.HostAuthorization is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.impl.security.authorization.HostAuthorization
In HostAuthorization.java
|
| SnVI |
org.globus.wsrf.impl.security.authorization.HostOrSelfAuthorization is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.impl.security.authorization.HostOrSelfAuthorization
In HostOrSelfAuthorization.java
|
| SnVI |
org.globus.wsrf.impl.security.authorization.IdentityAuthorization is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.impl.security.authorization.IdentityAuthorization
In IdentityAuthorization.java
|
| SnVI |
org.globus.wsrf.impl.security.authorization.NoAuthorization is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.impl.security.authorization.NoAuthorization
In NoAuthorization.java
|
| SnVI |
org.globus.wsrf.impl.security.authorization.ParameterPIP is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.impl.security.authorization.ParameterPIP
In ParameterPIP.java
|
| SnVI |
org.globus.wsrf.impl.security.authorization.ResourcePropertiesPDP is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.impl.security.authorization.ResourcePropertiesPDP
In ResourcePropertiesPDP.java
|
| SnVI |
org.globus.wsrf.impl.security.authorization.SAMLAuthorizationCallout is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.impl.security.authorization.SAMLAuthorizationCallout
In SAMLAuthorizationCallout.java
|
| SnVI |
org.globus.wsrf.impl.security.authorization.SAMLAuthzAssertionPDP is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.impl.security.authorization.SAMLAuthzAssertionPDP
In SAMLAuthzAssertionPDP.java
|
| SnVI |
org.globus.wsrf.impl.security.authorization.SAMLAuthzAssertionPIP is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.impl.security.authorization.SAMLAuthzAssertionPIP
In SAMLAuthzAssertionPIP.java
|
| SnVI |
org.globus.wsrf.impl.security.authorization.SelfAuthorization is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.impl.security.authorization.SelfAuthorization
In SelfAuthorization.java
|
| SnVI |
org.globus.wsrf.impl.security.authorization.ServicePropertiesChainConfig is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.impl.security.authorization.ServicePropertiesChainConfig
In ServicePropertiesChainConfig.java
|
| SnVI |
org.globus.wsrf.impl.security.authorization.UsernameAuthorization is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.impl.security.authorization.UsernameAuthorization
In UsernameAuthorization.java
|
| SnVI |
org.globus.wsrf.impl.security.authorization.X509BootstrapPIP is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.impl.security.authorization.X509BootstrapPIP
In X509BootstrapPIP.java
|
| SnVI |
org.globus.wsrf.impl.security.descriptor.ContainerSecurityDescriptor is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.impl.security.descriptor.ContainerSecurityDescriptor
In ContainerSecurityDescriptor.java
|
| SnVI |
org.globus.wsrf.impl.security.descriptor.ServiceSecurityDescriptor is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.impl.security.descriptor.ServiceSecurityDescriptor
In ServiceSecurityDescriptor.java
|
| SnVI |
org.globus.wsrf.impl.SimpleResourceKey is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.impl.SimpleResourceKey
In SimpleResourceKey.java
|
| SnVI |
org.globus.wsrf.impl.SimpleSubscriptionTopicListener is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.impl.SimpleSubscriptionTopicListener
In SimpleSubscriptionTopicListener.java
|
| SnVI |
org.globus.wsrf.security.authorization.AuthorizationProvider is Serializable; consider declaring a serialVersionUID |
|
Bug type SE_NO_SERIALVERSIONID (click for details)
In class org.globus.wsrf.security.authorization.AuthorizationProvider
In AuthorizationProvider.java
|
| DC |
Possible doublecheck on org.globus.wsrf.impl.security.authentication.wssec.GSSConfig.alreadyInitialized in org.globus.wsrf.impl.security.authentication.wssec.GSSConfig.init() |
|
Bug type DC_DOUBLECHECK (click for details)
In class org.globus.wsrf.impl.security.authentication.wssec.GSSConfig
In method org.globus.wsrf.impl.security.authentication.wssec.GSSConfig.init()
On field org.globus.wsrf.impl.security.authentication.wssec.GSSConfig.alreadyInitialized
At GSSConfig.java:[lines 39-41]
|
| IS2 |
Inconsistent synchronization of org.globus.wsrf.impl.notification.PersistentSubscription.consumerReference; locked 50% of time |
|
Bug type IS2_INCONSISTENT_SYNC (click for details)
In class org.globus.wsrf.impl.notification.PersistentSubscription
Field org.globus.wsrf.impl.notification.PersistentSubscription.consumerReference
Synchronized 50% of the time
Unsynchronized access at PersistentSubscription.java:[line 93]
Synchronized access at PersistentSubscription.java:[line 145]
|
| IS2 |
Inconsistent synchronization of org.globus.wsrf.impl.notification.PersistentSubscription.creationTime; locked 50% of time |
|
Bug type IS2_INCONSISTENT_SYNC (click for details)
In class org.globus.wsrf.impl.notification.PersistentSubscription
Field org.globus.wsrf.impl.notification.PersistentSubscription.creationTime
Synchronized 50% of the time
Unsynchronized access at PersistentSubscription.java:[line 104]
Unsynchronized access at PersistentSubscription.java:[line 109]
Synchronized access at PersistentSubscription.java:[line 156]
Synchronized access at PersistentSubscription.java:[line 159]
|
| IS2 |
Inconsistent synchronization of org.globus.wsrf.impl.notification.PersistentSubscription.id; locked 83% of time |
|
Bug type IS2_INCONSISTENT_SYNC (click for details)
In class org.globus.wsrf.impl.notification.PersistentSubscription
Field org.globus.wsrf.impl.notification.PersistentSubscription.id
Synchronized 83% of the time
Unsynchronized access at PersistentSubscription.java:[line 110]
Synchronized access at PersistentSubscription.java:[line 140]
Synchronized access at PersistentSubscription.java:[line 160]
Synchronized access at PersistentSubscription.java:[line 185]
Synchronized access at PersistentSubscription.java:[line 219]
Synchronized access at PersistentSubscription.java:[line 220]
|
| IS2 |
Inconsistent synchronization of org.globus.wsrf.impl.notification.PersistentSubscription.isPaused; locked 50% of time |
|
Bug type IS2_INCONSISTENT_SYNC (click for details)
In class org.globus.wsrf.impl.notification.PersistentSubscription
Field org.globus.wsrf.impl.notification.PersistentSubscription.isPaused
Synchronized 50% of the time
Unsynchronized access at PersistentSubscription.java:[line 101]
Synchronized access at PersistentSubscription.java:[line 153]
|
| IS2 |
Inconsistent synchronization of org.globus.wsrf.impl.notification.PersistentSubscription.policy; locked 50% of time |
|
Bug type IS2_INCONSISTENT_SYNC (click for details)
In class org.globus.wsrf.impl.notification.PersistentSubscription
Field org.globus.wsrf.impl.notification.PersistentSubscription.policy
Synchronized 50% of the time
Unsynchronized access at PersistentSubscription.java:[line 95]
Synchronized access at PersistentSubscription.java:[line 147]
|
| IS2 |
Inconsistent synchronization of org.globus.wsrf.impl.notification.PersistentSubscription.precondition; locked 50% of time |
|
Bug type IS2_INCONSISTENT_SYNC (click for details)
In class org.globus.wsrf.impl.notification.PersistentSubscription
Field org.globus.wsrf.impl.notification.PersistentSubscription.precondition
Synchronized 50% of the time
Unsynchronized access at PersistentSubscription.java:[line 96]
Synchronized access at PersistentSubscription.java:[line 148]
|
| IS2 |
Inconsistent synchronization of org.globus.wsrf.impl.notification.PersistentSubscription.producerHomeLocation; locked 50% of time |
|
Bug type IS2_INCONSISTENT_SYNC (click for details)
In class org.globus.wsrf.impl.notification.PersistentSubscription
Field org.globus.wsrf.impl.notification.PersistentSubscription.producerHomeLocation
Synchronized 50% of the time
Unsynchronized access at PersistentSubscription.java:[line 99]
Synchronized access at PersistentSubscription.java:[line 151]
|
| IS2 |
Inconsistent synchronization of org.globus.wsrf.impl.notification.PersistentSubscription.producerKey; locked 50% of time |
|
Bug type IS2_INCONSISTENT_SYNC (click for details)
In class org.globus.wsrf.impl.notification.PersistentSubscription
Field org.globus.wsrf.impl.notification.PersistentSubscription.producerKey
Synchronized 50% of the time
Unsynchronized access at PersistentSubscription.java:[line 98]
Synchronized access at PersistentSubscription.java:[line 150]
|
| IS2 |
Inconsistent synchronization of org.globus.wsrf.impl.notification.PersistentSubscription.producerReference; locked 50% of time |
|
Bug type IS2_INCONSISTENT_SYNC (click for details)
In class org.globus.wsrf.impl.notification.PersistentSubscription
Field org.globus.wsrf.impl.notification.PersistentSubscription.producerReference
Synchronized 50% of the time
Unsynchronized access at PersistentSubscription.java:[line 94]
Synchronized access at PersistentSubscription.java:[line 146]
|
| IS2 |
Inconsistent synchronization of org.globus.wsrf.impl.notification.PersistentSubscription.resourceSecurityDescriptor; locked 50% of time |
|
Bug type IS2_INCONSISTENT_SYNC (click for details)
In class org.globus.wsrf.impl.notification.PersistentSubscription
Field org.globus.wsrf.impl.notification.PersistentSubscription.resourceSecurityDescriptor
Synchronized 50% of the time
Unsynchronized access at PersistentSubscription.java:[line 107]
Synchronized access at PersistentSubscription.java:[line 158]
|
| IS2 |
Inconsistent synchronization of org.globus.wsrf.impl.notification.PersistentSubscription.securityDescriptor; locked 50% of time |
|
Bug type IS2_INCONSISTENT_SYNC (click for details)
In class org.globus.wsrf.impl.notification.PersistentSubscription
Field org.globus.wsrf.impl.notification.PersistentSubscription.securityDescriptor
Synchronized 50% of the time
Unsynchronized access at PersistentSubscription.java:[line 105]
Synchronized access at PersistentSubscription.java:[line 157]
|
| IS2 |
Inconsistent synchronization of org.globus.wsrf.impl.notification.PersistentSubscription.selector; locked 50% of time |
|
Bug type IS2_INCONSISTENT_SYNC (click for details)
In class org.globus.wsrf.impl.notification.PersistentSubscription
Field org.globus.wsrf.impl.notification.PersistentSubscription.selector
Synchronized 50% of the time
Unsynchronized access at PersistentSubscription.java:[line 97]
Synchronized access at PersistentSubscription.java:[line 149]
|
| IS2 |
Inconsistent synchronization of org.globus.wsrf.impl.notification.PersistentSubscription.terminationTime; locked 50% of time |
|
Bug type IS2_INCONSISTENT_SYNC (click for details)
In class org.globus.wsrf.impl.notification.PersistentSubscription
Field org.globus.wsrf.impl.notification.PersistentSubscription.terminationTime
Synchronized 50% of the time
Unsynchronized access at PersistentSubscription.java:[line 103]
Synchronized access at PersistentSubscription.java:[line 155]
|
| IS2 |
Inconsistent synchronization of org.globus.wsrf.impl.notification.PersistentSubscription.topicExpression; locked 50% of time |
|
Bug type IS2_INCONSISTENT_SYNC (click for details)
In class org.globus.wsrf.impl.notification.PersistentSubscription
Field org.globus.wsrf.impl.notification.PersistentSubscription.topicExpression
Synchronized 50% of the time
Unsynchronized access at PersistentSubscription.java:[line 100]
Synchronized access at PersistentSubscription.java:[line 152]
|
| IS2 |
Inconsistent synchronization of org.globus.wsrf.impl.notification.PersistentSubscription.useNotify; locked 50% of time |
|
Bug type IS2_INCONSISTENT_SYNC (click for details)
In class org.globus.wsrf.impl.notification.PersistentSubscription
Field org.globus.wsrf.impl.notification.PersistentSubscription.useNotify
Synchronized 50% of the time
Unsynchronized access at PersistentSubscription.java:[line 102]
Synchronized access at PersistentSubscription.java:[line 154]
|
| IS2 |
Inconsistent synchronization of org.globus.wsrf.impl.query.QueryMetricsData.successfulQueries; locked 60% of time |
|
Bug type IS2_INCONSISTENT_SYNC (click for details)
In class org.globus.wsrf.impl.query.QueryMetricsData
Field org.globus.wsrf.impl.query.QueryMetricsData.successfulQueries
Synchronized 60% of the time
Unsynchronized access at QueryMetricsData.java:[line 36]
Unsynchronized access at QueryMetricsData.java:[line 32]
Synchronized access at QueryMetricsData.java:[line 53]
Synchronized access at QueryMetricsData.java:[line 48]
Synchronized access at QueryMetricsData.java:[line 48]
|
| IS2 |
Inconsistent synchronization of org.globus.wsrf.impl.query.QueryMetricsData.totalQueries; locked 60% of time |
|
Bug type IS2_INCONSISTENT_SYNC (click for details)
In class org.globus.wsrf.impl.query.QueryMetricsData
Field org.globus.wsrf.impl.query.QueryMetricsData.totalQueries
Synchronized 60% of the time
Unsynchronized access at QueryMetricsData.java:[line 40]
Unsynchronized access at QueryMetricsData.java:[line 32]
Synchronized access at QueryMetricsData.java:[line 52]
Synchronized access at QueryMetricsData.java:[line 44]
Synchronized access at QueryMetricsData.java:[line 44]
|
| IS2 |
Inconsistent synchronization of org.globus.wsrf.impl.security.authorization.AccessControlListPDP$AccessControlList.lastModified; locked 50% of time |
|
Bug type IS2_INCONSISTENT_SYNC (click for details)
In class org.globus.wsrf.impl.security.authorization.AccessControlListPDP$AccessControlList
Field org.globus.wsrf.impl.security.authorization.AccessControlListPDP$AccessControlList.lastModified
Synchronized 50% of the time
Unsynchronized access at AccessControlListPDP.java:[line 339]
Synchronized access at AccessControlListPDP.java:[line 282]
|
| IS2 |
Inconsistent synchronization of org.globus.wsrf.impl.security.authorization.ResourcePropertiesPDP$AccessConfiguration.lastModified; locked 50% of time |
|
Bug type IS2_INCONSISTENT_SYNC (click for details)
In class org.globus.wsrf.impl.security.authorization.ResourcePropertiesPDP$AccessConfiguration
Field org.globus.wsrf.impl.security.authorization.ResourcePropertiesPDP$AccessConfiguration.lastModified
Synchronized 50% of the time
Unsynchronized access at ResourcePropertiesPDP.java:[line 478]
Synchronized access at ResourcePropertiesPDP.java:[line 464]
|
| IS2 |
Inconsistent synchronization of org.globus.wsrf.impl.security.descriptor.ContainerSecurityDescriptor.usingDefaultCredential; locked 50% of time |
|
Bug type IS2_INCONSISTENT_SYNC (click for details)
In class org.globus.wsrf.impl.security.descriptor.ContainerSecurityDescriptor
Field org.globus.wsrf.impl.security.descriptor.ContainerSecurityDescriptor.usingDefaultCredential
Synchronized 50% of the time
Unsynchronized access at ContainerSecurityDescriptor.java:[line 521]
Unsynchronized access at ContainerSecurityDescriptor.java:[line 526]
Synchronized access at ContainerSecurityDescriptor.java:[line 650]
Synchronized access at ContainerSecurityDescriptor.java:[line 380]
|
| IS2 |
Inconsistent synchronization of org.globus.wsrf.impl.SingletonResourceHome.singleResource; locked 75% of time |
|
Bug type IS2_INCONSISTENT_SYNC (click for details)
In class org.globus.wsrf.impl.SingletonResourceHome
Field org.globus.wsrf.impl.SingletonResourceHome.singleResource
Synchronized 75% of the time
Unsynchronized access at SingletonResourceHome.java:[line 60]
Synchronized access at SingletonResourceHome.java:[line 51]
Synchronized access at SingletonResourceHome.java:[line 54]
Synchronized access at SingletonResourceHome.java:[line 55]
|
| IS2 |
Inconsistent synchronization of org.globus.wsrf.utils.cache.LinkedNodeList.head; locked 66% of time |
|
Bug type IS2_INCONSISTENT_SYNC (click for details)
In class org.globus.wsrf.utils.cache.LinkedNodeList
Field org.globus.wsrf.utils.cache.LinkedNodeList.head
Synchronized 66% of the time
Unsynchronized access at LinkedNodeList.java:[line 118]
Unsynchronized access at LinkedNodeList.java:[line 118]
Unsynchronized access at LinkedNodeList.java:[line 72]
Unsynchronized access at LinkedNodeList.java:[line 51]
Unsynchronized access at LinkedNodeList.java:[line 80]
Synchronized access at LinkedNodeList.java:[line 76]
Synchronized access at LinkedNodeList.java:[line 168]
Synchronized access at LinkedNodeList.java:[line 160]
Synchronized access at LinkedNodeList.java:[line 163]
Synchronized access at LinkedNodeList.java:[line 172]
Synchronized access at LinkedNodeList.java:[line 92]
Synchronized access at LinkedNodeList.java:[line 95]
Synchronized access at LinkedNodeList.java:[line 132]
Synchronized access at LinkedNodeList.java:[line 135]
Synchronized access at LinkedNodeList.java:[line 136]
|
| IS2 |
Inconsistent synchronization of org.globus.wsrf.utils.cache.LinkedNodeList.tail; locked 82% of time |
|
Bug type IS2_INCONSISTENT_SYNC (click for details)
In class org.globus.wsrf.utils.cache.LinkedNodeList
Field org.globus.wsrf.utils.cache.LinkedNodeList.tail
Synchronized 82% of the time
Unsynchronized access at LinkedNodeList.java:[line 63]
Unsynchronized access at LinkedNodeList.java:[line 125]
Unsynchronized access at LinkedNodeList.java:[line 125]
Synchronized access at LinkedNodeList.java:[line 76]
Synchronized access at LinkedNodeList.java:[line 160]
Synchronized access at LinkedNodeList.java:[line 174]
Synchronized access at LinkedNodeList.java:[line 163]
Synchronized access at LinkedNodeList.java:[line 178]
Synchronized access at LinkedNodeList.java:[line 91]
Synchronized access at LinkedNodeList.java:[line 98]
Synchronized access at LinkedNodeList.java:[line 101]
Synchronized access at LinkedNodeList.java:[line 95]
Synchronized access at LinkedNodeList.java:[line 109]
Synchronized access at LinkedNodeList.java:[line 43]
Synchronized access at LinkedNodeList.java:[line 144]
Synchronized access at LinkedNodeList.java:[line 147]
Synchronized access at LinkedNodeList.java:[line 148]
|
| IS2 |
Inconsistent synchronization of org.globus.wsrf.utils.cache.LRUCache.timer; locked 75% of time |
|
Bug type IS2_INCONSISTENT_SYNC (click for details)
In class org.globus.wsrf.utils.cache.LRUCache
Field org.globus.wsrf.utils.cache.LRUCache.timer
Synchronized 75% of the time
Unsynchronized access at LRUCache.java:[line 154]
Synchronized access at LRUCache.java:[line 122]
Synchronized access at LRUCache.java:[line 126]
Synchronized access at LRUCache.java:[line 127]
|
| NN |
Naked notify in org.globus.wsrf.impl.work.WorkManagerImpl.processEvent(commonj.work.WorkEvent) |
|
Bug type NN_NAKED_NOTIFY (click for details)
In class org.globus.wsrf.impl.work.WorkManagerImpl
In method org.globus.wsrf.impl.work.WorkManagerImpl.processEvent(commonj.work.WorkEvent)
At WorkManagerImpl.java:[line 331]
|
| UW |
Unconditional wait in org.globus.wsrf.client.Subscribe.main(String[]) |
|
Bug type UW_UNCOND_WAIT (click for details)
In class org.globus.wsrf.client.Subscribe
In method org.globus.wsrf.client.Subscribe.main(String[])
At Subscribe.java:[line 162]
|
| Wa |
Wait not in loop in org.globus.wsrf.client.Subscribe.main(String[]) |
|
Bug type WA_NOT_IN_LOOP (click for details)
In class org.globus.wsrf.client.Subscribe
In method org.globus.wsrf.client.Subscribe.main(String[])
At Subscribe.java:[line 162]
|
| EI |
org.globus.axis.description.Resources.getContents() may expose internal representation by returning org.globus.axis.description.Resources.contents |
|
Bug type EI_EXPOSE_REP (click for details)
In class org.globus.axis.description.Resources
In method org.globus.axis.description.Resources.getContents()
Field org.globus.axis.description.Resources.contents
At Resources.java:[line 27]
|
| EI |
org.globus.ws.enumeration.IterationResult.getItems() may expose internal representation by returning org.globus.ws.enumeration.IterationResult.items |
|
Bug type EI_EXPOSE_REP (click for details)
In class org.globus.ws.enumeration.IterationResult
In method org.globus.ws.enumeration.IterationResult.getItems()
Field org.globus.ws.enumeration.IterationResult.items
At IterationResult.java:[line 73]
|
| EI |
org.globus.wsrf.impl.query.QueryMetricsData.getMetrics() may expose internal representation by returning org.globus.wsrf.impl.query.QueryMetricsData.METRICS |
|
Bug type EI_EXPOSE_REP (click for details)
In class org.globus.wsrf.impl.query.QueryMetricsData
In method org.globus.wsrf.impl.query.QueryMetricsData.getMetrics()
Field org.globus.wsrf.impl.query.QueryMetricsData.METRICS
At QueryMetricsData.java:[line 57]
|
| EI |
org.globus.wsrf.impl.security.authentication.ContextCrypto.getAliasesForDN(String) may expose internal representation by returning org.globus.wsrf.impl.security.authentication.ContextCrypto.ALIASES |
|
Bug type EI_EXPOSE_REP (click for details)
In class org.globus.wsrf.impl.security.authentication.ContextCrypto
In method org.globus.wsrf.impl.security.authentication.ContextCrypto.getAliasesForDN(String)
Field org.globus.wsrf.impl.security.authentication.ContextCrypto.ALIASES
At ContextCrypto.java:[line 217]
|
| EI |
org.globus.wsrf.impl.security.authentication.encryption.EncryptionCredentials.getCertificates() may expose internal representation by returning org.globus.wsrf.impl.security.authentication.encryption.EncryptionCredentials.certs |
|
Bug type EI_EXPOSE_REP (click for details)
In class org.globus.wsrf.impl.security.authentication.encryption.EncryptionCredentials
In method org.globus.wsrf.impl.security.authentication.encryption.EncryptionCredentials.getCertificates()
Field org.globus.wsrf.impl.security.authentication.encryption.EncryptionCredentials.certs
At EncryptionCredentials.java:[line 35]
|
| EI |
org.globus.wsrf.impl.security.authentication.wssec.WSSecurityBasicHandler.getHeaders() may expose internal representation by returning org.globus.wsrf.impl.security.authentication.wssec.WSSecurityBasicHandler.HEADERS |
|
Bug type EI_EXPOSE_REP (click for details)
In class org.globus.wsrf.impl.security.authentication.wssec.WSSecurityBasicHandler
In method org.globus.wsrf.impl.security.authentication.wssec.WSSecurityBasicHandler.getHeaders()
Field org.globus.wsrf.impl.security.authentication.wssec.WSSecurityBasicHandler.HEADERS
At WSSecurityBasicHandler.java:[line 72]
|
| EI |
org.globus.wsrf.impl.SimpleTopicExpressionEvaluator.getDialects() may expose internal representation by returning org.globus.wsrf.impl.SimpleTopicExpressionEvaluator.dialects |
|
Bug type EI_EXPOSE_REP (click for details)
In class org.globus.wsrf.impl.SimpleTopicExpressionEvaluator
In method org.globus.wsrf.impl.SimpleTopicExpressionEvaluator.getDialects()
Field org.globus.wsrf.impl.SimpleTopicExpressionEvaluator.dialects
At SimpleTopicExpressionEvaluator.java:[line 82]
|
| EI |
org.globus.wsrf.impl.XPathExpressionEvaluator.getDialects() may expose internal representation by returning org.globus.wsrf.impl.XPathExpressionEvaluator.DIALECTS |
|
Bug type EI_EXPOSE_REP (click for details)
In class org.globus.wsrf.impl.XPathExpressionEvaluator
In method org.globus.wsrf.impl.XPathExpressionEvaluator.getDialects()
Field org.globus.wsrf.impl.XPathExpressionEvaluator.DIALECTS
At XPathExpressionEvaluator.java:[line 61]
|
| EI |
org.globus.wsrf.query.targetedXPath.BaseTargetedXPathExpressionEvaluator.getDialects() may expose internal representation by returning org.globus.wsrf.query.targetedXPath.BaseTargetedXPathExpressionEvaluator.DIALECTS |
|
Bug type EI_EXPOSE_REP (click for details)
In class org.globus.wsrf.query.targetedXPath.BaseTargetedXPathExpressionEvaluator
In method org.globus.wsrf.query.targetedXPath.BaseTargetedXPathExpressionEvaluator.getDialects()
Field org.globus.wsrf.query.targetedXPath.BaseTargetedXPathExpressionEvaluator.DIALECTS
At BaseTargetedXPathExpressionEvaluator.java:[line 107]
|
| EI |
org.globus.wsrf.security.authorization.SOAPParameter.getParmeterPath() may expose internal representation by returning org.globus.wsrf.security.authorization.SOAPParameter.parameterPath |
|
Bug type EI_EXPOSE_REP (click for details)
In class org.globus.wsrf.security.authorization.SOAPParameter
In method org.globus.wsrf.security.authorization.SOAPParameter.getParmeterPath()
Field org.globus.wsrf.security.authorization.SOAPParameter.parameterPath
At SOAPParameter.java:[line 97]
|
| EI |
org.globus.wsrf.utils.Resources.getContents() may expose internal representation by returning org.globus.wsrf.utils.Resources.contents |
|
Bug type EI_EXPOSE_REP (click for details)
In class org.globus.wsrf.utils.Resources
In method org.globus.wsrf.utils.Resources.getContents()
Field org.globus.wsrf.utils.Resources.contents
At Resources.java:[line 27]
|
| EI2 |
org.globus.ws.enumeration.IterationResult.<init>(javax.xml.soap.SOAPElement[],boolean) may expose internal representation by storing an externally mutable object into org.globus.ws.enumeration.IterationResult.items |
|
Bug type EI_EXPOSE_REP2 (click for details)
In class org.globus.ws.enumeration.IterationResult
In method org.globus.ws.enumeration.IterationResult.<init>(javax.xml.soap.SOAPElement[],boolean)
Field org.globus.ws.enumeration.IterationResult.items
At IterationResult.java:[line 54]
|
| EI2 |
org.globus.wsrf.impl.security.authentication.encryption.EncryptionCredentials.<init>(java.security.cert.X509Certificate[]) may expose internal representation by storing an externally mutable object into org.globus.wsrf.impl.security.authentication.encryption.EncryptionCredentials.certs |
|
Bug type EI_EXPOSE_REP2 (click for details)
In class org.globus.wsrf.impl.security.authentication.encryption.EncryptionCredentials
In method org.globus.wsrf.impl.security.authentication.encryption.EncryptionCredentials.<init>(java.security.cert.X509Certificate[])
Field org.globus.wsrf.impl.security.authentication.encryption.EncryptionCredentials.certs
At EncryptionCredentials.java:[line 31]
|
| EI2 |
org.globus.wsrf.impl.security.authentication.secureconv.SecureConversationMessage.<init>(org.apache.axis.message.MessageElement[]) may expose internal representation by storing an externally mutable object into org.globus.wsrf.impl.security.authentication.secureconv.SecureConversationMessage.anyContent |
|
Bug type EI_EXPOSE_REP2 (click for details)
In class org.globus.wsrf.impl.security.authentication.secureconv.SecureConversationMessage
In method org.globus.wsrf.impl.security.authentication.secureconv.SecureConversationMessage.<init>(org.apache.axis.message.MessageElement[])
Field org.globus.wsrf.impl.security.authentication.secureconv.SecureConversationMessage.anyContent
At SecureConversationMessage.java:[line 104]
|
| EI2 |
org.globus.wsrf.security.authorization.SOAPParameter.<init>(String,String,javax.xml.namespace.QName[]) may expose internal representation by storing an externally mutable object into org.globus.wsrf.security.authorization.SOAPParameter.parameterPath |
|
Bug type EI_EXPOSE_REP2 (click for details)
In class org.globus.wsrf.security.authorization.SOAPParameter
In method org.globus.wsrf.security.authorization.SOAPParameter.<init>(String,String,javax.xml.namespace.QName[])
Field org.globus.wsrf.security.authorization.SOAPParameter.parameterPath
At SOAPParameter.java:[line 82]
|
| MS |
org.globus.axis.configuration.EngineConfigurationFactoryServlet.log isn't final but should be |
|
Bug type MS_SHOULD_BE_FINAL (click for details)
In class org.globus.axis.configuration.EngineConfigurationFactoryServlet
Field org.globus.axis.configuration.EngineConfigurationFactoryServlet.log
At EngineConfigurationFactoryServlet.java:[line 39]
|
| MS |
org.globus.wsrf.container.BaseContainerConfig.baseDirectory should be package protected |
|
Bug type MS_PKGPROTECT (click for details)
In class org.globus.wsrf.container.BaseContainerConfig
Field org.globus.wsrf.container.BaseContainerConfig.baseDirectory
In BaseContainerConfig.java
|
| MS |
org.globus.wsrf.container.BaseContainerConfig.containerID should be package protected |
|
Bug type MS_PKGPROTECT (click for details)
In class org.globus.wsrf.container.BaseContainerConfig
Field org.globus.wsrf.container.BaseContainerConfig.containerID
In BaseContainerConfig.java
|
| MS |
org.globus.wsrf.container.BaseContainerConfig.schemaDirectory should be package protected |
|
Bug type MS_PKGPROTECT (click for details)
In class org.globus.wsrf.container.BaseContainerConfig
Field org.globus.wsrf.container.BaseContainerConfig.schemaDirectory
In BaseContainerConfig.java
|
| MS |
org.globus.wsrf.container.BaseContainerConfig.serverEngine should be package protected |
|
Bug type MS_PKGPROTECT (click for details)
In class org.globus.wsrf.container.BaseContainerConfig
Field org.globus.wsrf.container.BaseContainerConfig.serverEngine
In BaseContainerConfig.java
|
| MS |
org.globus.wsrf.container.ServiceContainer.containers should be both final and package protected |
|
Bug type MS_FINAL_PKGPROTECT (click for details)
In class org.globus.wsrf.container.ServiceContainer
Field org.globus.wsrf.container.ServiceContainer.containers
At ServiceContainer.java:[line 94]
|
| MS |
org.globus.wsrf.container.ServiceThread.CONTENT_LENGTH should be package protected |
|
Bug type MS_PKGPROTECT (click for details)
In class org.globus.wsrf.container.ServiceThread
Field org.globus.wsrf.container.ServiceThread.CONTENT_LENGTH
At ServiceThread.java:[line 150]
|
| MS |
org.globus.wsrf.container.ServiceThread.HTML_MIME_STUFF should be package protected |
|
Bug type MS_PKGPROTECT (click for details)
In class org.globus.wsrf.container.ServiceThread
Field org.globus.wsrf.container.ServiceThread.HTML_MIME_STUFF
At ServiceThread.java:[line 140]
|
| MS |
org.globus.wsrf.container.ServiceThread.HTTP_10 should be package protected |
|
Bug type MS_PKGPROTECT (click for details)
In class org.globus.wsrf.container.ServiceThread
Field org.globus.wsrf.container.ServiceThread.HTTP_10
At ServiceThread.java:[line 115]
|
| MS |
org.globus.wsrf.container.ServiceThread.HTTP_11 should be package protected |
|
Bug type MS_PKGPROTECT (click for details)
In class org.globus.wsrf.container.ServiceThread
Field org.globus.wsrf.container.ServiceThread.HTTP_11
At ServiceThread.java:[line 116]
|
| MS |
org.globus.wsrf.container.ServiceThread.JAR_MIME_STUFF should be package protected |
|
Bug type MS_PKGPROTECT (click for details)
In class org.globus.wsrf.container.ServiceThread
Field org.globus.wsrf.container.ServiceThread.JAR_MIME_STUFF
At ServiceThread.java:[line 144]
|
| MS |
org.globus.wsrf.container.ServiceThread.JNLP_MIME_STUFF should be package protected |
|
Bug type MS_PKGPROTECT (click for details)
In class org.globus.wsrf.container.ServiceThread
Field org.globus.wsrf.container.ServiceThread.JNLP_MIME_STUFF
At ServiceThread.java:[line 142]
|
| MS |
org.globus.wsrf.container.ServiceThread.SEPARATOR should be package protected |
|
Bug type MS_PKGPROTECT (click for details)
In class org.globus.wsrf.container.ServiceThread
Field org.globus.wsrf.container.ServiceThread.SEPARATOR
At ServiceThread.java:[line 163]
|
| MS |
org.globus.wsrf.container.ServiceThread.UNAUTH should be package protected |
|
Bug type MS_PKGPROTECT (click for details)
In class org.globus.wsrf.container.ServiceThread
Field org.globus.wsrf.container.ServiceThread.UNAUTH
At ServiceThread.java:[line 122]
|
| MS |
org.globus.wsrf.container.ServiceThread.XML_MIME_STUFF should be package protected |
|
Bug type MS_PKGPROTECT (click for details)
In class org.globus.wsrf.container.ServiceThread
Field org.globus.wsrf.container.ServiceThread.XML_MIME_STUFF
At ServiceThread.java:[line 136]
|
| MS |
org.globus.wsrf.impl.ResourceSweeper.logger isn't final but should be |
|
Bug type MS_SHOULD_BE_FINAL (click for details)
In class org.globus.wsrf.impl.ResourceSweeper
Field org.globus.wsrf.impl.ResourceSweeper.logger
At ResourceSweeper.java:[line 37]
|
| MS |
org.globus.wsrf.impl.security.authentication.encryption.GssEncryptedSOAPEnvelopeBuilder.crypto isn't final but should be |
|
Bug type MS_SHOULD_BE_FINAL (click for details)
In class org.globus.wsrf.impl.security.authentication.encryption.GssEncryptedSOAPEnvelopeBuilder
Field org.globus.wsrf.impl.security.authentication.encryption.GssEncryptedSOAPEnvelopeBuilder.crypto
At GssEncryptedSOAPEnvelopeBuilder.java:[line 64]
|
| MS |
org.globus.wsrf.impl.security.authentication.encryption.X509WSEncryptedSOAPEnvelopeBuilder.crypto isn't final but should be |
|
Bug type MS_SHOULD_BE_FINAL (click for details)
In class org.globus.wsrf.impl.security.authentication.encryption.X509WSEncryptedSOAPEnvelopeBuilder
Field org.globus.wsrf.impl.security.authentication.encryption.X509WSEncryptedSOAPEnvelopeBuilder.crypto
At X509WSEncryptedSOAPEnvelopeBuilder.java:[line 44]
|
| MS |
org.globus.wsrf.impl.security.authentication.secureconv.EncryptHandler.i18n isn't final but should be |
|
Bug type MS_SHOULD_BE_FINAL (click for details)
In class org.globus.wsrf.impl.security.authentication.secureconv.EncryptHandler
Field org.globus.wsrf.impl.security.authentication.secureconv.EncryptHandler.i18n
At EncryptHandler.java:[line 46]
|
| MS |
org.globus.wsrf.impl.security.authentication.secureconv.SecContextHandler.log isn't final but should be |
|
Bug type MS_SHOULD_BE_FINAL (click for details)
In class org.globus.wsrf.impl.security.authentication.secureconv.SecContextHandler
Field org.globus.wsrf.impl.security.authentication.secureconv.SecContextHandler.log
At SecContextHandler.java:[line 75]
|
| MS |
org.globus.wsrf.impl.security.authentication.secureconv.SignHandler.i18n isn't final but should be |
|
Bug type MS_SHOULD_BE_FINAL (click for details)
In class org.globus.wsrf.impl.security.authentication.secureconv.SignHandler
Field org.globus.wsrf.impl.security.authentication.secureconv.SignHandler.i18n
At SignHandler.java:[line 45]
|
| MS |
org.globus.wsrf.impl.security.authentication.secureconv.SignHandler.log isn't final but should be |
|
Bug type MS_SHOULD_BE_FINAL (click for details)
In class org.globus.wsrf.impl.security.authentication.secureconv.SignHandler
Field org.globus.wsrf.impl.security.authentication.secureconv.SignHandler.log
At SignHandler.java:[line 47]
|
| MS |
org.globus.wsrf.impl.security.authentication.securemsg.X509EncryptHandler.i18n isn't final but should be |
|
Bug type MS_SHOULD_BE_FINAL (click for details)
In class org.globus.wsrf.impl.security.authentication.securemsg.X509EncryptHandler
Field org.globus.wsrf.impl.security.authentication.securemsg.X509EncryptHandler.i18n
At X509EncryptHandler.java:[line 53]
|
| MS |
org.globus.wsrf.impl.security.authentication.securemsg.X509SignHandler.i18n isn't final but should be |
|
Bug type MS_SHOULD_BE_FINAL (click for details)
In class org.globus.wsrf.impl.security.authentication.securemsg.X509SignHandler
Field org.globus.wsrf.impl.security.authentication.securemsg.X509SignHandler.i18n
At X509SignHandler.java:[line 53]
|
| MS |
org.globus.wsrf.impl.security.authentication.SecurityPolicyHandler.i18n isn't final but should be |
|
Bug type MS_SHOULD_BE_FINAL (click for details)
In class org.globus.wsrf.impl.security.authentication.SecurityPolicyHandler
Field org.globus.wsrf.impl.security.authentication.SecurityPolicyHandler.i18n
At SecurityPolicyHandler.java:[line 45]
|
| MS |
org.globus.wsrf.impl.security.authentication.signature.X509WSSignedSOAPEnvelopeBuilder.i18n isn't final but should be |
|
Bug type MS_SHOULD_BE_FINAL (click for details)
In class org.globus.wsrf.impl.security.authentication.signature.X509WSSignedSOAPEnvelopeBuilder
Field org.globus.wsrf.impl.security.authentication.signature.X509WSSignedSOAPEnvelopeBuilder.i18n
At X509WSSignedSOAPEnvelopeBuilder.java:[line 60]
|
| MS |
org.globus.wsrf.impl.security.authentication.UsernameHandler.i18n isn't final but should be |
|
Bug type MS_SHOULD_BE_FINAL (click for details)
In class org.globus.wsrf.impl.security.authentication.UsernameHandler
Field org.globus.wsrf.impl.security.authentication.UsernameHandler.i18n
At UsernameHandler.java:[line 40]
|
| MS |
org.globus.wsrf.impl.security.authentication.wssec.ReplayAttackFilter.i18n isn't final but should be |
|
Bug type MS_SHOULD_BE_FINAL (click for details)
In class org.globus.wsrf.impl.security.authentication.wssec.ReplayAttackFilter
Field org.globus.wsrf.impl.security.authentication.wssec.ReplayAttackFilter.i18n
At ReplayAttackFilter.java:[line 42]
|
| MS |
org.globus.wsrf.impl.security.authentication.wssec.WSSecurityEngine.i18n isn't final but should be |
|
Bug type MS_SHOULD_BE_FINAL (click for details)
In class org.globus.wsrf.impl.security.authentication.wssec.WSSecurityEngine
Field org.globus.wsrf.impl.security.authentication.wssec.WSSecurityEngine.i18n
At WSSecurityEngine.java:[line 92]
|
| MS |
org.globus.wsrf.impl.security.authorization.ContainerPIP.MESSAGE_CTX isn't final but should be |
|
Bug type MS_SHOULD_BE_FINAL (click for details)
In class org.globus.wsrf.impl.security.authorization.ContainerPIP
Field org.globus.wsrf.impl.security.authorization.ContainerPIP.MESSAGE_CTX
At ContainerPIP.java:[line 58]
|
| MS |
org.globus.wsrf.impl.security.authorization.handlers.SAMLAuthzAssertionHandler.i18n isn't final but should be |
|
Bug type MS_SHOULD_BE_FINAL (click for details)
In class org.globus.wsrf.impl.security.authorization.handlers.SAMLAuthzAssertionHandler
Field org.globus.wsrf.impl.security.authorization.handlers.SAMLAuthzAssertionHandler.i18n
At SAMLAuthzAssertionHandler.java:[line 35]
|
| MS |
org.globus.wsrf.impl.security.authorization.UsernameTokenCallbackHandler.PROMPT_CREATED isn't final but should be |
|
Bug type MS_SHOULD_BE_FINAL (click for details)
In class org.globus.wsrf.impl.security.authorization.UsernameTokenCallbackHandler
Field org.globus.wsrf.impl.security.authorization.UsernameTokenCallbackHandler.PROMPT_CREATED
At UsernameTokenCallbackHandler.java:[line 40]
|
| MS |
org.globus.wsrf.impl.security.authorization.UsernameTokenCallbackHandler.PROMPT_DIGEST isn't final but should be |
|
Bug type MS_SHOULD_BE_FINAL (click for details)
In class org.globus.wsrf.impl.security.authorization.UsernameTokenCallbackHandler
Field org.globus.wsrf.impl.security.authorization.UsernameTokenCallbackHandler.PROMPT_DIGEST
At UsernameTokenCallbackHandler.java:[line 38]
|
| MS |
org.globus.wsrf.impl.security.authorization.UsernameTokenCallbackHandler.PROMPT_NONCE isn't final but should be |
|
Bug type MS_SHOULD_BE_FINAL (click for details)
In class org.globus.wsrf.impl.security.authorization.UsernameTokenCallbackHandler
Field org.globus.wsrf.impl.security.authorization.UsernameTokenCallbackHandler.PROMPT_NONCE
At UsernameTokenCallbackHandler.java:[line 39]
|
| MS |
org.globus.wsrf.impl.security.descriptor.ContainerSecurityDescriptor.i18n isn't final but should be |
|
Bug type MS_SHOULD_BE_FINAL (click for details)
In class org.globus.wsrf.impl.security.descriptor.ContainerSecurityDescriptor
Field org.globus.wsrf.impl.security.descriptor.ContainerSecurityDescriptor.i18n
At ContainerSecurityDescriptor.java:[line 114]
|
| MS |
org.globus.wsrf.impl.security.descriptor.SecurityDescriptor.i18n isn't final but should be |
|
Bug type MS_SHOULD_BE_FINAL (click for details)
In class org.globus.wsrf.impl.security.descriptor.SecurityDescriptor
Field org.globus.wsrf.impl.security.descriptor.SecurityDescriptor.i18n
At SecurityDescriptor.java:[line 43]
|
| MS |
org.globus.wsrf.impl.security.descriptor.SecurityHelper.i18n isn't final but should be |
|
Bug type MS_SHOULD_BE_FINAL (click for details)
In class org.globus.wsrf.impl.security.descriptor.SecurityHelper
Field org.globus.wsrf.impl.security.descriptor.SecurityHelper.i18n
At SecurityHelper.java:[line 65]
|
| MS |
org.globus.wsrf.jndi.BasicBeanFactory.i18n isn't final but should be |
|
Bug type MS_SHOULD_BE_FINAL (click for details)
In class org.globus.wsrf.jndi.BasicBeanFactory
Field org.globus.wsrf.jndi.BasicBeanFactory.i18n
At BasicBeanFactory.java:[line 29]
|
| MS |
org.globus.wsrf.tools.wsdl.WSDL2Java.options should be package protected |
|
Bug type MS_PKGPROTECT (click for details)
In class org.globus.wsrf.tools.wsdl.WSDL2Java
Field org.globus.wsrf.tools.wsdl.WSDL2Java.options
At WSDL2Java.java:[line 32]
|
| Dm |
org.globus.wsrf.container.ServiceThread.handleOutOfMemoryError() forces garbage collection; extremely dubious except in benchmarking code |
|
Bug type DM_GC (click for details)
In class org.globus.wsrf.container.ServiceThread
In method org.globus.wsrf.container.ServiceThread.handleOutOfMemoryError()
At ServiceThread.java:[line 433]
|
| Dm |
org.globus.wsrf.impl.security.authorization.SAMLAuthorizationCallout.initializeParam() invokes dubious Boolean constructor; use Boolean.valueOf(...) instead |
|
Bug type DM_BOOLEAN_CTOR (click for details)
In class org.globus.wsrf.impl.security.authorization.SAMLAuthorizationCallout
In method org.globus.wsrf.impl.security.authorization.SAMLAuthorizationCallout.initializeParam()
At SAMLAuthorizationCallout.java:[line 258]
|
| SBSC |
Method org.globus.wsrf.client.BaseClient.parse(String[],java.util.Properties) concatenates strings using + in a loop |
|
Bug type SBSC_USE_STRINGBUFFER_CONCATENATION (click for details)
In class org.globus.wsrf.client.BaseClient
In method org.globus.wsrf.client.BaseClient.parse(String[],java.util.Properties)
At BaseClient.java:[line 389]
|
| SBSC |
Method org.globus.wsrf.impl.security.authorization.SAMLAuthorizationCallout.getActions(org.globus.security.authorization.EntityAttributes,org.globus.security.authorization.EntityAttributes) concatenates strings using + in a loop |
|
Bug type SBSC_USE_STRINGBUFFER_CONCATENATION (click for details)
In class org.globus.wsrf.impl.security.authorization.SAMLAuthorizationCallout
In method org.globus.wsrf.impl.security.authorization.SAMLAuthorizationCallout.getActions(org.globus.security.authorization.EntityAttributes,org.globus.security.authorization.EntityAttributes)
At SAMLAuthorizationCallout.java:[line 865]
|
| SBSC |
Method org.globus.wsrf.security.authorization.SOAPParameter.toString() concatenates strings using + in a loop |
|
Bug type SBSC_USE_STRINGBUFFER_CONCATENATION (click for details)
In class org.globus.wsrf.security.authorization.SOAPParameter
In method org.globus.wsrf.security.authorization.SOAPParameter.toString()
At SOAPParameter.java:[line 113]
|
| SBSC |
Method org.globus.wsrf.tools.wsdd.WSDDEditor.fixEolError(String) concatenates strings using + in a loop |
|
Bug type SBSC_USE_STRINGBUFFER_CONCATENATION (click for details)
In class org.globus.wsrf.tools.wsdd.WSDDEditor
In method org.globus.wsrf.tools.wsdd.WSDDEditor.fixEolError(String)
At WSDDEditor.java:[line 366]
|
| SIC |
Should org.globus.wsrf.impl.security.descriptor.ServiceSecurityHelper$SecurityDescriptorData be a _static_ inner class? |
|
Bug type SIC_INNER_SHOULD_BE_STATIC (click for details)
In class org.globus.wsrf.impl.security.descriptor.ServiceSecurityHelper$SecurityDescriptorData
In ServiceSecurityHelper.java
|
| UrF |
Unread field: org.globus.wsrf.config.ContainerConfig.logger |
|
Bug type URF_UNREAD_FIELD (click for details)
In class org.globus.wsrf.config.ContainerConfig
Field org.globus.wsrf.config.ContainerConfig.logger
In ContainerConfig.java
|
| UrF |
Unread field: org.globus.wsrf.container.GSIServiceContainer.logger |
|
Bug type URF_UNREAD_FIELD (click for details)
In class org.globus.wsrf.container.GSIServiceContainer
Field org.globus.wsrf.container.GSIServiceContainer.logger
In GSIServiceContainer.java
|
| UrF |
Unread field: org.globus.wsrf.impl.notification.ClientNotificationConsumerManager.logger |
|
Bug type URF_UNREAD_FIELD (click for details)
In class org.globus.wsrf.impl.notification.ClientNotificationConsumerManager
Field org.globus.wsrf.impl.notification.ClientNotificationConsumerManager.logger
In ClientNotificationConsumerManager.java
|
| UrF |
Unread field: org.globus.wsrf.impl.notification.NotificationConsumerHome.logger |
|
Bug type URF_UNREAD_FIELD (click for details)
In class org.globus.wsrf.impl.notification.NotificationConsumerHome
Field org.globus.wsrf.impl.notification.NotificationConsumerHome.logger
In NotificationConsumerHome.java
|
| UrF |
Unread field: org.globus.wsrf.impl.notification.PauseSubscriptionProvider.logger |
|
Bug type URF_UNREAD_FIELD (click for details)
In class org.globus.wsrf.impl.notification.PauseSubscriptionProvider
Field org.globus.wsrf.impl.notification.PauseSubscriptionProvider.logger
In PauseSubscriptionProvider.java
|
| UrF |
Unread field: org.globus.wsrf.impl.notification.ResumeSubscriptionProvider.logger |
|
Bug type URF_UNREAD_FIELD (click for details)
In class org.globus.wsrf.impl.notification.ResumeSubscriptionProvider
Field org.globus.wsrf.impl.notification.ResumeSubscriptionProvider.logger
In ResumeSubscriptionProvider.java
|
| UrF |
Unread field: org.globus.wsrf.impl.notification.ServerNotificationConsumerManager.logger |
|
Bug type URF_UNREAD_FIELD (click for details)
In class org.globus.wsrf.impl.notification.ServerNotificationConsumerManager
Field org.globus.wsrf.impl.notification.ServerNotificationConsumerManager.logger
In ServerNotificationConsumerManager.java
|
| UrF |
Unread field: org.globus.wsrf.impl.notification.SubscribeProvider.logger |
|
Bug type URF_UNREAD_FIELD (click for details)
In class org.globus.wsrf.impl.notification.SubscribeProvider
Field org.globus.wsrf.impl.notification.SubscribeProvider.logger
In SubscribeProvider.java
|
| UrF |
Unread field: org.globus.wsrf.impl.properties.QueryResourcePropertiesProvider.logger |
|
Bug type URF_UNREAD_FIELD (click for details)
In class org.globus.wsrf.impl.properties.QueryResourcePropertiesProvider
Field org.globus.wsrf.impl.properties.QueryResourcePropertiesProvider.logger
In QueryResourcePropertiesProvider.java
|
| UrF |
Unread field: org.globus.wsrf.impl.properties.SetResourcePropertiesProvider.logger |
|
Bug type URF_UNREAD_FIELD (click for details)
In class org.globus.wsrf.impl.properties.SetResourcePropertiesProvider
Field org.globus.wsrf.impl.properties.SetResourcePropertiesProvider.logger
In SetResourcePropertiesProvider.java
|
| UrF |
Unread field: org.globus.wsrf.impl.ResourceHomeImpl.logger |
|
Bug type URF_UNREAD_FIELD (click for details)
In class org.globus.wsrf.impl.ResourceHomeImpl
Field org.globus.wsrf.impl.ResourceHomeImpl.logger
In ResourceHomeImpl.java
|
| UrF |
Unread field: org.globus.wsrf.impl.security.authentication.secureconv.Authenticator.logger |
|
Bug type URF_UNREAD_FIELD (click for details)
In class org.globus.wsrf.impl.security.authentication.secureconv.Authenticator
Field org.globus.wsrf.impl.security.authentication.secureconv.Authenticator.logger
In Authenticator.java
|
| UrF |
Unread field: org.globus.wsrf.query.targetedXPath.BaseTargetedXPathExpressionEvaluator.logger |
|
Bug type URF_UNREAD_FIELD (click for details)
In class org.globus.wsrf.query.targetedXPath.BaseTargetedXPathExpressionEvaluator
Field org.globus.wsrf.query.targetedXPath.BaseTargetedXPathExpressionEvaluator.logger
In BaseTargetedXPathExpressionEvaluator.java
|
| UrF |
Unread field: org.globus.wsrf.utils.AddressingUtils.logger |
|
Bug type URF_UNREAD_FIELD (click for details)
In class org.globus.wsrf.utils.AddressingUtils
Field org.globus.wsrf.utils.AddressingUtils.logger
In AddressingUtils.java
|
| UrF |
Unread field: org.globus.wsrf.utils.AnyHelper.logger |
|
Bug type URF_UNREAD_FIELD (click for details)
In class org.globus.wsrf.utils.AnyHelper
Field org.globus.wsrf.utils.AnyHelper.logger
In AnyHelper.java
|
| DB |
Method org.globus.ant.AntLogger.messageLogged(org.apache.tools.ant.BuildEvent) uses the same code for two branches |
|
Bug type DB_DUPLICATE_BRANCHES (click for details)
In class org.globus.ant.AntLogger
In method org.globus.ant.AntLogger.messageLogged(org.apache.tools.ant.BuildEvent)
At AntLogger.java:[line 93]
At AntLogger.java:[line 95]
|
| DB |
Method org.globus.wsrf.utils.FaultHelper.printStackTrace(Throwable) uses the same code for two branches |
|
Bug type DB_DUPLICATE_BRANCHES (click for details)
In class org.globus.wsrf.utils.FaultHelper
In method org.globus.wsrf.utils.FaultHelper.printStackTrace(Throwable)
At FaultHelper.java:[line 325]
At FaultHelper.java:[line 333]
|
| DLS |
Dead store to resource in method org.globus.ws.enumeration.EnumProvider.releaseOp(org.xmlsoap.schemas.ws._2004._09.enumeration.Release) |
|
Bug type DLS_DEAD_LOCAL_STORE (click for details)
In class org.globus.ws.enumeration.EnumProvider
In method org.globus.ws.enumeration.EnumProvider.releaseOp(org.xmlsoap.schemas.ws._2004._09.enumeration.Release)
Local variable named resource
At EnumProvider.java:[line 347]
|
| DLS |
Dead store to subject in method org.globus.wsrf.container.GSIServiceDispatcher.setupThreadPool() |
|
Bug type DLS_DEAD_LOCAL_STORE (click for details)
In class org.globus.wsrf.container.GSIServiceDispatcher
In method org.globus.wsrf.container.GSIServiceDispatcher.setupThreadPool()
Local variable named subject
At GSIServiceContainer.java:[line 62]
|
| DLS |
Dead store to $l7 in method org.globus.wsrf.impl.properties.SetResourcePropertiesProvider.setResourceProperties(org.oasis.wsrf.properties.SetResourceProperties_Element) |
|
Bug type DLS_DEAD_LOCAL_STORE (click for details)
In class org.globus.wsrf.impl.properties.SetResourcePropertiesProvider
In method org.globus.wsrf.impl.properties.SetResourcePropertiesProvider.setResourceProperties(org.oasis.wsrf.properties.SetResourceProperties_Element)
Local variable stored in JVM register 7
At SetResourcePropertiesProvider.java:[line 109]
|
| DLS |
Dead store to $l4 in method org.globus.wsrf.impl.security.authentication.wssec.WSSecurityEngine.handleUsernameElement(org.w3c.dom.Element,javax.xml.rpc.handler.MessageContext) |
|
Bug type DLS_DEAD_LOCAL_STORE (click for details)
In class org.globus.wsrf.impl.security.authentication.wssec.WSSecurityEngine
In method org.globus.wsrf.impl.security.authentication.wssec.WSSecurityEngine.handleUsernameElement(org.w3c.dom.Element,javax.xml.rpc.handler.MessageContext)
Local variable stored in JVM register 4
At WSSecurityEngine.java:[line 585]
|
| DLS |
Dead store to msg in method org.globus.wsrf.impl.security.authentication.wssec.WSSecurityException.getMessage(int,String,Object[]) |
|
Bug type DLS_DEAD_LOCAL_STORE (click for details)
In class org.globus.wsrf.impl.security.authentication.wssec.WSSecurityException
In method org.globus.wsrf.impl.security.authentication.wssec.WSSecurityException.getMessage(int,String,Object[])
Local variable named msg
At WSSecurityException.java:[line 93]
|
| DLS |
Dead store to $l12 in method org.globus.wsrf.impl.security.authorization.SAMLAuthorizationCallout.compareSubject(org.opensaml.SAMLSubject,org.opensaml.SAMLSubject) |
|
Bug type DLS_DEAD_LOCAL_STORE (click for details)
In class org.globus.wsrf.impl.security.authorization.SAMLAuthorizationCallout
In method org.globus.wsrf.impl.security.authorization.SAMLAuthorizationCallout.compareSubject(org.opensaml.SAMLSubject,org.opensaml.SAMLSubject)
Local variable stored in JVM register 12
At SAMLAuthorizationCallout.java:[line 542]
At SAMLAuthorizationCallout.java:[line 543]
|
| DLS |
Dead store to $l4 in method org.globus.wsrf.impl.security.descriptor.ContainerSecurityDescriptor.getContainerPrincipalAttribute(org.globus.security.authorization.EntityAttributes) |
|
Bug type DLS_DEAD_LOCAL_STORE (click for details)
In class org.globus.wsrf.impl.security.descriptor.ContainerSecurityDescriptor
In method org.globus.wsrf.impl.security.descriptor.ContainerSecurityDescriptor.getContainerPrincipalAttribute(org.globus.security.authorization.EntityAttributes)
Local variable stored in JVM register 4
At ContainerSecurityDescriptor.java:[line 194]
|
| Nm |
The class name org.globus.wsrf.jndi.javaURLContextFactory doesn't start with an upper case letter |
|
Bug type NM_CLASS_NAMING_CONVENTION (click for details)
In class org.globus.wsrf.jndi.javaURLContextFactory
In javaURLContextFactory.java
|
| NP |
Load of known null value in org.globus.wsrf.impl.ReflectionResourceProperty.toElementSimple() |
|
Bug type NP_LOAD_OF_KNOWN_NULL_VALUE (click for details)
In class org.globus.wsrf.impl.ReflectionResourceProperty
In method org.globus.wsrf.impl.ReflectionResourceProperty.toElementSimple()
At ReflectionResourceProperty.java:[line 511]
|
| NP |
Load of known null value in org.globus.wsrf.impl.ReflectionResourceProperty.toSOAPElementSimple() |
|
Bug type NP_LOAD_OF_KNOWN_NULL_VALUE (click for details)
In class org.globus.wsrf.impl.ReflectionResourceProperty
In method org.globus.wsrf.impl.ReflectionResourceProperty.toSOAPElementSimple()
At ReflectionResourceProperty.java:[line 489]
|
| PS |
Class org.globus.wsrf.container.Lock exposes synchronization and semaphores in its public interface. |
|
Bug type PS_PUBLIC_SEMAPHORES (click for details)
In class org.globus.wsrf.container.Lock
In method org.globus.wsrf.container.Lock.acquire(Thread,boolean)
At Lock.java:[line 60]
|
| PS |
Class org.globus.wsrf.container.Semaphore exposes synchronization and semaphores in its public interface. |
|
Bug type PS_PUBLIC_SEMAPHORES (click for details)
In class org.globus.wsrf.container.Semaphore
In method org.globus.wsrf.container.Semaphore.waitForSignal()
At Semaphore.java:[line 58]
|
| PS |
Class org.globus.wsrf.container.ServiceThread exposes synchronization and semaphores in its public interface. |
|
Bug type PS_PUBLIC_SEMAPHORES (click for details)
In class org.globus.wsrf.container.ServiceThread
In method org.globus.wsrf.container.ServiceThread.setProcessing(boolean)
At ServiceThread.java:[line 351]
|
| PS |
Class org.globus.wsrf.container.ServiceThreadPool exposes synchronization and semaphores in its public interface. |
|
Bug type PS_PUBLIC_SEMAPHORES (click for details)
In class org.globus.wsrf.container.ServiceThreadPool
In method org.globus.wsrf.container.ServiceThreadPool.removeThread(ServiceThread)
At ServiceThreadPool.java:[line 139]
|
| REC |
Method org.globus.ws.enumeration.client.Enumerate.main(String[]) catches Exception, but Exception is not thrown in the try block and RuntimeException is not explicitly caught |
|
Bug type REC_CATCH_EXCEPTION (click for details)
In class org.globus.ws.enumeration.client.Enumerate
In method org.globus.ws.enumeration.client.Enumerate.main(String[])
At Enumerate.java:[line 192]
|
| REC |
Method org.globus.wsrf.container.ServiceDispatcher.clearSoftCache(Class,String) catches Exception, but Exception is not thrown in the try block and RuntimeException is not explicitly caught |
|
Bug type REC_CATCH_EXCEPTION (click for details)
In class org.globus.wsrf.container.ServiceDispatcher
In method org.globus.wsrf.container.ServiceDispatcher.clearSoftCache(Class,String)
At ServiceDispatcher.java:[line 289]
|
| REC |
Method org.globus.wsrf.impl.security.authentication.secureconv.service.AuthenticationServiceImpl.requestSecurityToken(org.globus.ws.trust.RequestSecurityTokenType) catches Exception, but Exception is not thrown in the try block and RuntimeException is not explicitly caught |
|
Bug type REC_CATCH_EXCEPTION (click for details)
In class org.globus.wsrf.impl.security.authentication.secureconv.service.AuthenticationServiceImpl
In method org.globus.wsrf.impl.security.authentication.secureconv.service.AuthenticationServiceImpl.requestSecurityToken(org.globus.ws.trust.RequestSecurityTokenType)
At AuthenticationServiceImpl.java:[line 330]
|
| SF |
Switch statement found in org.globus.wsrf.container.ServiceThread.processReloadState() where one case falls thru to the next case |
|
Bug type SF_SWITCH_FALLTHROUGH (click for details)
In class org.globus.wsrf.container.ServiceThread
In method org.globus.wsrf.container.ServiceThread.processReloadState()
At ServiceThread.java:[lines 375-379]
|
| SF |
Switch statement found in org.globus.wsrf.tools.wsdd.WSDDEditor.processArguments(String[]) where one case falls thru to the next case |
|
Bug type SF_SWITCH_FALLTHROUGH (click for details)
In class org.globus.wsrf.tools.wsdd.WSDDEditor
In method org.globus.wsrf.tools.wsdd.WSDDEditor.processArguments(String[])
At WSDDEditor.java:[lines 540-545]
At WSDDEditor.java:[lines 564-568]
|
This method uses the same code to implement two branches of a conditional branch.
Check to ensure that this isn't a coding mistake.
This method might ignore an exception. In general, exceptions
should be handled or reported in some way, or they should be thrown
out of the method.
This instruction assigns a value to a local variable,
but the value is not read by any subsequent instruction.
Often, this indicates an error, because the value computed
is never used.
Note that Sun's javac compiler often generates dead stores for
final local variables. Because FindBugs is a bytecode-based tool,
there is no easy way to eliminate these false positives.
Code explicitly invokes garbage collection.
Except for specific use in benchmarking, this is very dubious.
In the past, situations where people have explicitly invoked
the garbage collector in routines such as close or finalize methods
has led to huge performance black holes. Garbage collection
can be expensive. Any situation that forces hundreds or thousands
of garbage collections will bring the machine to a crawl.
Invoking System.exit shuts down the entire Java virtual machine. This
should only been done when it is appropriate. Such calls make it
hard or impossible for your code to be invoked by other code.
Consider throwing a RuntimeException instead.
This code creates a classloader, which requires a security manager.
If this code will be granted security permissions, but might be invoked by code that does not
have security permissions, then the classloader creation needs to occur inside a doPrivileged block.
Returning a reference to a mutable object value stored in one of the object's fields
exposes the internal representation of the object.
If instances
are accessed by untrusted code, and unchecked changes to
the mutable object would compromise security or other
important properties, you will need to do something different.
Returning a new copy of the object is better approach in many situations.
This code stores a reference to an externally mutable object into the
internal representation of the object.
If instances
are accessed by untrusted code, and unchecked changes to
the mutable object would compromise security or other
important properties, you will need to do something different.
Storing a copy of the object is better approach in many situations.
The fields of this class appear to be accessed inconsistently with respect
to synchronization. This bug report indicates that the bug pattern detector
judged that
A typical bug matching this bug pattern is forgetting to synchronize
one of the methods in a class that is intended to be thread-safe.
You can select the nodes labeled "Unsynchronized access" to show the
code locations where the detector believed that a field was accessed
without synchronization.
Note that there are various sources of inaccuracy in this detector;
for example, the detector cannot statically detect all situations in which
a lock is held. Also, even when the detector is accurate in
distinguishing locked vs. unlocked accesses, the code in question may still
be correct.
This description refers to the "IS2" version of the pattern detector,
which has more accurate ways of detecting locked vs. unlocked accesses
than the older "IS" detector.
A mutable static field could be changed by malicious code or
by accident from another package.
The field could be made final to avoid
this vulnerability.
A mutable static field could be changed by malicious code or
by accident from another package.
The field could be made package protected and/or made final
to avoid
this vulnerability.
A mutable static field could be changed by malicious code or
by accident.
The field could be made package protected to avoid
this vulnerability.
Class names should be nouns, in mixed case with the first letter of each internal word capitalized. Try to keep your class names simple and descriptive. Use whole words-avoid acronyms and abbreviations (unless the abbreviation is much more widely used than the long form, such as URL or HTML).
This bug does not necessarily indicate an error, since the change to
mutable object state may have taken place in a method which then called
the method containing the notification.
The variable referenced at this point is known to be null due to an earlier
check against null. Although this is valid, it might be a mistake (perhaps you
intended to refer to a different variable, or perhaps the earlier check to see if the
variable is null should have been a check to see if it was nonnull.
A reference value dereferenced here might be null at runtime.
This may lead to a NullPointerException when the code is executed.
This class uses synchronization along with wait(), notify() or notifyAll() on itself (the this
reference). Client classes that use this class, may, in addition, use an instance of this class
as a synchronizing object. Because two classes are using the same object for synchronization,
Multithread correctness is suspect. You should not synchronize nor call semaphore methods on
a public reference. Consider using a internal private member variable to control synchronization.
A value is checked here to see whether it is null, but this value can't
be null because it was previously dereferenced and if it were null a null pointer
exception would have occurred at the earlier dereference.
Essentially, this code and the previous dereference
disagree as to whether this value is allowed to be null. Either the check is redundant
or the previous dereference is erroneous.
This method uses a try-catch block that catches Exception objects, but Exception is not
thrown within the try block, and RuntimeException is not explicitly caught. It is a common bug pattern to
say try { ... } catch (Exception e) { something } as a shorthand for catching a number of types of exception
each of whose catch blocks is identical, but this construct also accidentally catches RuntimeException as well,
masking potential bugs.
The method seems to be building a String using concatenation in a loop.
In each iteration, the String is converted to a StringBuffer/StringBuilder,
appended to, and converted back to a String.
This can lead to a cost quadratic in the number of iterations,
as the growing string is recopied in each iteration.
Better performance can be obtained by using
a StringBuffer (or StringBuilder in Java 1.5) explicitly.
This Serializable class defines a non-primitive instance field which is neither transient,
Serializable, or java.lang.Object, and does not appear to implement
the Externalizable interface or the
readObject() and writeObject() methods.
Objects of this class will not be deserialized correctly if a non-Serializable
object is stored in this field.
This method contains a switch statement where one case branch will fall thru to the next case.
Usually you need to end this case with a break or return.
This class is an inner class, but does not use its embedded reference
to the object which created it. This reference makes the instances
of the class larger, and may keep the reference to the creator object
alive longer than necessary. If possible, the class should be
be made static.
This field is never read. Consider removing it from the class.