FindBugs Bug Detector Report

The following document contains the results of FindBugs Report

FindBugs Version is 2.0.3

Threshold is medium

Effort is min

Summary

Classes Bugs Errors Missing Classes
30 12 0 0

Files

Class Bugs
gboat2.base.plugin.servlet.filter.GboatUserSessionFilter 1
gboat2.base.plugin.servlet.listener.SessionListener 1
gboat2.base.plugin.struts.convention.GboatPackageBasedActionConfigBuilder 1
gboat2.base.plugin.struts.dispatcher.GboatDispatcherResult 2
gboat2.base.plugin.struts.interceptor.DestopMetadataInterceptor 1
gboat2.base.plugin.struts.interceptor.GboatFileUploadInterceptor 5
gboat2.base.plugin.struts.interceptor.RequestIntervalCheckInterceptor 1

gboat2.base.plugin.servlet.filter.GboatUserSessionFilter

Bug Category Details Line Priority
HTTP parameter directly written to HTTP header output in gboat2.base.plugin.servlet.filter.GboatUserSessionFilter.doFilter(ServletRequest, ServletResponse, FilterChain) SECURITY HRS_REQUEST_PARAMETER_TO_HTTP_HEADER 100 Medium

gboat2.base.plugin.servlet.listener.SessionListener

Bug Category Details Line Priority
Synchronization performed on java.util.concurrent.ConcurrentHashMap in gboat2.base.plugin.servlet.listener.SessionListener.userLoginIdBinding2HttpSession(HttpSession, UserSession) MT_CORRECTNESS JLM_JSR166_UTILCONCURRENT_MONITORENTER 100 Medium

gboat2.base.plugin.struts.convention.GboatPackageBasedActionConfigBuilder

Bug Category Details Line Priority
gboat2.base.plugin.struts.convention.GboatPackageBasedActionConfigBuilder.buildUrlSet() is or uses a map or set of URLs, which can be a performance hog PERFORMANCE DMI_COLLECTION_OF_URLS 204 High

gboat2.base.plugin.struts.dispatcher.GboatDispatcherResult

Bug Category Details Line Priority
gboat2.base.plugin.struts.dispatcher.GboatDispatcherResult.osgiResourceOutDir should be package protected MALICIOUS_CODE MS_PKGPROTECT Medium
Write to static field gboat2.base.plugin.struts.dispatcher.GboatDispatcherResult.osgiResourceOutDir from instance method gboat2.base.plugin.struts.dispatcher.GboatDispatcherResult.setOsgiResourceOutDir(String) STYLE ST_WRITE_TO_STATIC_FROM_INSTANCE_METHOD 231 High

gboat2.base.plugin.struts.interceptor.DestopMetadataInterceptor

Bug Category Details Line Priority
Possible null pointer dereference of superClass in gboat2.base.plugin.struts.interceptor.DestopMetadataInterceptor.intercept(ActionInvocation) CORRECTNESS NP_NULL_ON_SOME_PATH 79 Medium

gboat2.base.plugin.struts.interceptor.GboatFileUploadInterceptor

Bug Category Details Line Priority
Boxing/unboxing to parse a primitive gboat2.base.plugin.struts.interceptor.GboatFileUploadInterceptor.intercept(ActionInvocation) PERFORMANCE DM_BOXED_PRIMITIVE_FOR_PARSING 235 High
Boxing/unboxing to parse a primitive gboat2.base.plugin.struts.interceptor.GboatFileUploadInterceptor.intercept(ActionInvocation) PERFORMANCE DM_BOXED_PRIMITIVE_FOR_PARSING 240 High
Nullcheck of tempdir at line 354 of value previously dereferenced in gboat2.base.plugin.struts.interceptor.GboatFileUploadInterceptor.getTempDir(ServletContext) CORRECTNESS RCN_REDUNDANT_NULLCHECK_WOULD_HAVE_BEEN_A_NPE 354 Medium
Exception is caught when Exception is not thrown in gboat2.base.plugin.struts.interceptor.GboatFileUploadInterceptor.intercept(ActionInvocation) STYLE REC_CATCH_EXCEPTION 246 Medium
Class gboat2.base.plugin.struts.interceptor.GboatFileUploadInterceptor defines non-transient non-serializable instance field servletContext BAD_PRACTICE SE_BAD_FIELD Medium

gboat2.base.plugin.struts.interceptor.RequestIntervalCheckInterceptor

Bug Category Details Line Priority
Write to static field gboat2.base.plugin.struts.interceptor.RequestIntervalCheckInterceptor.flag from instance method gboat2.base.plugin.struts.interceptor.RequestIntervalCheckInterceptor.intercept(ActionInvocation) STYLE ST_WRITE_TO_STATIC_FROM_INSTANCE_METHOD 93 Medium