[
https://issues.apache.org/jira/browse/NUTCH-2812?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17882455#comment-17882455
]
Hudson commented on NUTCH-2812:
-------------------------------
SUCCESS: Integrated in Jenkins build Nutch ยป Nutch-trunk #169 (See
[https://ci-builds.apache.org/job/Nutch/job/Nutch-trunk/169/])
fix for NUTCH-2812 contributed by GabeHaegele (Gabe:
[https://github.com/apache/nutch/commit/0765367f67018a0a9b346dbc63ef4030dc106199])
* (edit) src/java/org/apache/nutch/fetcher/FetchNode.java
NUTCH-2812 Methods returning array may expose internal representation (snagel:
[https://github.com/apache/nutch/commit/d6f55b8ea6f5809cef5a31239e5760be23742c00])
* (edit) src/java/org/apache/nutch/fetcher/FetchNode.java
> Methods returning array may expose internal representation
> ----------------------------------------------------------
>
> Key: NUTCH-2812
> URL: https://issues.apache.org/jira/browse/NUTCH-2812
> Project: Nutch
> Issue Type: Sub-task
> Affects Versions: 1.17
> Reporter: Lewis John McGibbney
> Assignee: Lewis John McGibbney
> Priority: Major
> Fix For: 1.21
>
>
> Returning a reference to a mutable object value stored in one of the object's
> fields exposes the internal representation of the object. If instances are
> accessed by untrusted code, and unchecked changes to the mutable object would
> compromise security or other important properties, you will need to do
> something different. Returning a new copy of the object is better approach in
> many situations.
> For example org.apache.nutch.fetcher.FetchNode.getOutlinks() may expose
> internal representation by returning FetchNode.outlinks
> There are 11 such occurrences of this bug in the codebase.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
