FindBugs Bug Detector Report

The following document contains the results of FindBugs Report

FindBugs Version is 1.3.9

Threshold is medium

Effort is min

Summary

ClassesBugsErrorsMissing Classes
993200

Files

ClassBugs
org.kuali.student.security.filter.ProxyTicketRetrieverFilterSTS3
org.kuali.student.security.policy.dto.PolicyReference2
org.kuali.student.security.trust.dto.AuthenticatorType2
org.kuali.student.security.trust.dto.BinarySecretType2
org.kuali.student.security.trust.service.SecurityTokenServiceImpl1
org.kuali.student.security.xmldsig.dto.DSAKeyValueType14
org.kuali.student.security.xmldsig.dto.RSAKeyValueType4
org.kuali.student.security.xmldsig.dto.ReferenceType2
org.kuali.student.security.xmldsig.dto.SignatureValueType2

org.kuali.student.security.filter.ProxyTicketRetrieverFilterSTS

BugCategoryDetailsLinePriority
Dead store to principal in org.kuali.student.security.filter.ProxyTicketRetrieverFilterSTS.doFilterHttp(HttpServletRequest, HttpServletResponse, FilterChain)STYLEDLS_DEAD_LOCAL_STORE78Medium
Possible null pointer dereference of rstr in org.kuali.student.security.filter.ProxyTicketRetrieverFilterSTS.doFilterHttp(HttpServletRequest, HttpServletResponse, FilterChain)CORRECTNESSNP_NULL_ON_SOME_PATH97Medium
Exception is caught when Exception is not thrown in org.kuali.student.security.filter.ProxyTicketRetrieverFilterSTS.doFilterHttp(HttpServletRequest, HttpServletResponse, FilterChain)STYLEREC_CATCH_EXCEPTION155Medium

org.kuali.student.security.policy.dto.PolicyReference

BugCategoryDetailsLinePriority
org.kuali.student.security.policy.dto.PolicyReference.getDigest() may expose internal representation by returning PolicyReference.digestMALICIOUS_CODEEI_EXPOSE_REP84Medium
org.kuali.student.security.policy.dto.PolicyReference.setDigest(byte[]) may expose internal representation by storing an externally mutable object into PolicyReference.digestMALICIOUS_CODEEI_EXPOSE_REP295Medium

org.kuali.student.security.trust.dto.AuthenticatorType

BugCategoryDetailsLinePriority
org.kuali.student.security.trust.dto.AuthenticatorType.getCombinedHash() may expose internal representation by returning AuthenticatorType.combinedHashMALICIOUS_CODEEI_EXPOSE_REP54Medium
org.kuali.student.security.trust.dto.AuthenticatorType.setCombinedHash(byte[]) may expose internal representation by storing an externally mutable object into AuthenticatorType.combinedHashMALICIOUS_CODEEI_EXPOSE_REP265Medium

org.kuali.student.security.trust.dto.BinarySecretType

BugCategoryDetailsLinePriority
org.kuali.student.security.trust.dto.BinarySecretType.getValue() may expose internal representation by returning BinarySecretType.valueMALICIOUS_CODEEI_EXPOSE_REP54Medium
org.kuali.student.security.trust.dto.BinarySecretType.setValue(byte[]) may expose internal representation by storing an externally mutable object into BinarySecretType.valueMALICIOUS_CODEEI_EXPOSE_REP265Medium

org.kuali.student.security.trust.service.SecurityTokenServiceImpl

BugCategoryDetailsLinePriority
org.kuali.student.security.trust.service.SecurityTokenServiceImpl.validateCasProxyTicket(String, String) may fail to close streamBAD_PRACTICEOS_OPEN_STREAM178Medium

org.kuali.student.security.xmldsig.dto.DSAKeyValueType

BugCategoryDetailsLinePriority
org.kuali.student.security.xmldsig.dto.DSAKeyValueType.getG() may expose internal representation by returning DSAKeyValueType.gMALICIOUS_CODEEI_EXPOSE_REP118Medium
org.kuali.student.security.xmldsig.dto.DSAKeyValueType.getJ() may expose internal representation by returning DSAKeyValueType.jMALICIOUS_CODEEI_EXPOSE_REP162Medium
org.kuali.student.security.xmldsig.dto.DSAKeyValueType.getP() may expose internal representation by returning DSAKeyValueType.pMALICIOUS_CODEEI_EXPOSE_REP74Medium
org.kuali.student.security.xmldsig.dto.DSAKeyValueType.getPgenCounter() may expose internal representation by returning DSAKeyValueType.pgenCounterMALICIOUS_CODEEI_EXPOSE_REP206Medium
org.kuali.student.security.xmldsig.dto.DSAKeyValueType.getQ() may expose internal representation by returning DSAKeyValueType.qMALICIOUS_CODEEI_EXPOSE_REP96Medium
org.kuali.student.security.xmldsig.dto.DSAKeyValueType.getSeed() may expose internal representation by returning DSAKeyValueType.seedMALICIOUS_CODEEI_EXPOSE_REP184Medium
org.kuali.student.security.xmldsig.dto.DSAKeyValueType.getY() may expose internal representation by returning DSAKeyValueType.yMALICIOUS_CODEEI_EXPOSE_REP140Medium
org.kuali.student.security.xmldsig.dto.DSAKeyValueType.setG(byte[]) may expose internal representation by storing an externally mutable object into DSAKeyValueType.gMALICIOUS_CODEEI_EXPOSE_REP2129Medium
org.kuali.student.security.xmldsig.dto.DSAKeyValueType.setJ(byte[]) may expose internal representation by storing an externally mutable object into DSAKeyValueType.jMALICIOUS_CODEEI_EXPOSE_REP2173Medium
org.kuali.student.security.xmldsig.dto.DSAKeyValueType.setP(byte[]) may expose internal representation by storing an externally mutable object into DSAKeyValueType.pMALICIOUS_CODEEI_EXPOSE_REP285Medium
org.kuali.student.security.xmldsig.dto.DSAKeyValueType.setPgenCounter(byte[]) may expose internal representation by storing an externally mutable object into DSAKeyValueType.pgenCounterMALICIOUS_CODEEI_EXPOSE_REP2217Medium
org.kuali.student.security.xmldsig.dto.DSAKeyValueType.setQ(byte[]) may expose internal representation by storing an externally mutable object into DSAKeyValueType.qMALICIOUS_CODEEI_EXPOSE_REP2107Medium
org.kuali.student.security.xmldsig.dto.DSAKeyValueType.setSeed(byte[]) may expose internal representation by storing an externally mutable object into DSAKeyValueType.seedMALICIOUS_CODEEI_EXPOSE_REP2195Medium
org.kuali.student.security.xmldsig.dto.DSAKeyValueType.setY(byte[]) may expose internal representation by storing an externally mutable object into DSAKeyValueType.yMALICIOUS_CODEEI_EXPOSE_REP2151Medium

org.kuali.student.security.xmldsig.dto.RSAKeyValueType

BugCategoryDetailsLinePriority
org.kuali.student.security.xmldsig.dto.RSAKeyValueType.getExponent() may expose internal representation by returning RSAKeyValueType.exponentMALICIOUS_CODEEI_EXPOSE_REP72Medium
org.kuali.student.security.xmldsig.dto.RSAKeyValueType.getModulus() may expose internal representation by returning RSAKeyValueType.modulusMALICIOUS_CODEEI_EXPOSE_REP50Medium
org.kuali.student.security.xmldsig.dto.RSAKeyValueType.setExponent(byte[]) may expose internal representation by storing an externally mutable object into RSAKeyValueType.exponentMALICIOUS_CODEEI_EXPOSE_REP283Medium
org.kuali.student.security.xmldsig.dto.RSAKeyValueType.setModulus(byte[]) may expose internal representation by storing an externally mutable object into RSAKeyValueType.modulusMALICIOUS_CODEEI_EXPOSE_REP261Medium

org.kuali.student.security.xmldsig.dto.ReferenceType

BugCategoryDetailsLinePriority
org.kuali.student.security.xmldsig.dto.ReferenceType.getDigestValue() may expose internal representation by returning ReferenceType.digestValueMALICIOUS_CODEEI_EXPOSE_REP121Medium
org.kuali.student.security.xmldsig.dto.ReferenceType.setDigestValue(byte[]) may expose internal representation by storing an externally mutable object into ReferenceType.digestValueMALICIOUS_CODEEI_EXPOSE_REP2132Medium

org.kuali.student.security.xmldsig.dto.SignatureValueType

BugCategoryDetailsLinePriority
org.kuali.student.security.xmldsig.dto.SignatureValueType.getValue() may expose internal representation by returning SignatureValueType.valueMALICIOUS_CODEEI_EXPOSE_REP54Medium
org.kuali.student.security.xmldsig.dto.SignatureValueType.setValue(byte[]) may expose internal representation by storing an externally mutable object into SignatureValueType.valueMALICIOUS_CODEEI_EXPOSE_REP265Medium