首页 \ 问答 \ JDBC，Fortify和Try-With-Resource(JDBC, Fortify and Try-With-Resource)

JDBC，Fortify和Try-With-Resource(JDBC, Fortify and Try-With-Resource)

 我目前正在使用HP的Fortify SCA工具来解决代码库中的安全问题。 我在确定正确处理JDBC资源的最佳方法时遇到了一些问题。  
 我现在的代码看起来像这样;  
    try (Connection conn = new DatabaseService().getConnection();
            PreparedStatement ps = conn.prepareStatement(query);) {

        ps.setString(1, mString);

        try (ResultSet rs = ps.executeQuery();) {

            while (rs.next()) {
             ...Do logic...
            }

        } catch (SQLException e) {
            e.printStackTrace();
        }

    } catch (SQLException e){
        e.printStackTrace();
    }
}
 
 问题是Fortify将标记此代码，指出如果在嵌套的try语句中发生异常，则对conn和ps的引用将丢失，并且它们将无法正确关闭。 是强制正确标记这个还是假阳性？ 根据我的理解，try-with-resource 应该总是关闭他们的资源，但是当他们像这样嵌套时，这并不总是会发生。  
 我已经浏览了互联网上的其他相关问题和博客，但我还没有得到任何明确的证据。  
 在这种情况下始终安全的文档最多的解决方案是不使用try-with-resource并在更广泛的try-catch语句的catch和finally块中使用try-catch包装每个资源。 但是，我宁愿避免这种情况，因为它非常冗长。  
 提前致谢！  
 编辑：所以当我重新写入SO时，我意识到我已经从代码中遗漏了一些东西。 原始的catch块有一个System.exit(1); 他们的陈述（我知道的坏习惯）。 这意味着如果在嵌套的try-with-resource中抛出异常，那么Fortify就可以说conn和ps不会被正确关闭。  
 感谢回复，没有System.exit(1); 这种情况下的所有资源都将被正确关闭，我选择了答案表明。 

I'm currently working through a project that is using HP's Fortify SCA tool to catch security issues in the code base. I'm having a bit of issue determining the best approach to correctly handling JDBC resources.  
The code I have at the minute looks like this; 
    try (Connection conn = new DatabaseService().getConnection();
            PreparedStatement ps = conn.prepareStatement(query);) {

        ps.setString(1, mString);

        try (ResultSet rs = ps.executeQuery();) {

            while (rs.next()) {
             ...Do logic...
            }

        } catch (SQLException e) {
            e.printStackTrace();
        }

    } catch (SQLException e){
        e.printStackTrace();
    }
}
 
The problem is that Fortify will flag this code stating that if an exception were to happen in the nested try statement then the reference to conn and ps will be lost and they won't be properly closed. Is fortify correct to flag this or is it a false positive? From what I understand try-with-resource should always close their resource but perhaps this doesn't always happen when they're nested like this. 
I've scoured other related questions and blogs around the internet but I haven't been able to get any definitive proof on this.  
The most documented solution that's always safe in this situation is to not use try-with-resource and wrap each resource with a try-catch in both the catch and finally blocks of a broader try-catch statement. However, I'd rather avoid this because it's horribly verbose. 
Thanks in advance! 
Edit: So I realized I've left something out of the code when I was re-writing it into SO. The original catch blocks had a System.exit(1); statement in them (bad practice I know). That would mean that if an exception was thrown in the nested try-with-resource then Fortify would be correct to say the conn and ps would not be properly closed.  
Thanks for the replies, without the System.exit(1); all resources in this situation will be closed properly and I've selected the answer indicating that.

原文：https://stackoverflow.com/questions/34139717

更新时间：2023-12-12 13:12

最满意答案

 将您的4个Paths分组到一个Grid然后将该Grid放入一个应按您想要的方式缩放的Viewbox 。  
<Viewbox Stretch="Fill" HorizontalAlignment="Left" Height="125.96" VerticalAlignment="Top" Width="127">
        <Grid>
            <Path Fill="#ff221e1f" Data="F1 M 65.778,45.310 L 85.092,45.310 L 85.092,47.630 L 68.504,47.630 L 68.504,63.174 L 83.700,63.174 L 83.700,65.494 L 68.504,65.494 L 68.504,84.402 L 65.778,84.402 L 65.778,45.310 Z"/>
            <Path Fill="#ff221e1f" Data="F1 M 95.300,64.218 L 101.505,64.218 C 107.538,64.218 111.482,60.854 111.482,55.692 C 111.482,49.718 107.074,47.282 100.926,47.282 C 98.257,47.282 96.286,47.572 95.300,47.804 L 95.300,64.218 Z M 92.574,45.832 C 94.952,45.310 98.316,45.020 100.984,45.020 C 106.087,45.020 109.278,46.122 111.540,48.268 C 113.222,49.892 114.266,52.502 114.266,55.228 C 114.266,60.506 111.133,63.870 106.610,65.436 L 106.610,65.552 C 109.742,66.538 111.713,69.496 112.642,73.846 C 113.976,79.936 114.730,82.836 115.542,84.402 L 112.642,84.402 C 112.062,83.242 111.192,79.820 110.148,74.890 C 108.988,69.264 106.551,66.712 101.390,66.480 L 95.300,66.480 L 95.300,84.402 L 92.574,84.402 L 92.574,45.832 Z"/>
            <Path StrokeThickness="3.0" Stroke="#ff221e1f" StrokeStartLineCap="Round" StrokeEndLineCap="Round" StrokeLineJoin="Round" Data="F1 M 179.125,90.312 C 179.125,139.362 139.362,179.125 90.312,179.125 C 41.263,179.125 1.500,139.362 1.500,90.312 C 1.500,41.263 41.263,1.500 90.312,1.500 C 139.362,1.500 179.125,41.263 179.125,90.312 Z"/>
            <Path StrokeThickness="3.0" Stroke="#ff221e1f" StrokeStartLineCap="Round" StrokeEndLineCap="Round" StrokeLineJoin="Round" Data="F1 M 75.533,117.798 L 103.986,117.798"/>
        </Grid>
    </Viewbox>
 
 您可能希望在将Grid放入Viewbox之前，将Grid更接近路径的实际大小。  

Group your 4 Paths into a Grid then put that Grid into a Viewbox that should scale the way you want. 
<Viewbox Stretch="Fill" HorizontalAlignment="Left" Height="125.96" VerticalAlignment="Top" Width="127">
        <Grid>
            <Path Fill="#ff221e1f" Data="F1 M 65.778,45.310 L 85.092,45.310 L 85.092,47.630 L 68.504,47.630 L 68.504,63.174 L 83.700,63.174 L 83.700,65.494 L 68.504,65.494 L 68.504,84.402 L 65.778,84.402 L 65.778,45.310 Z"/>
            <Path Fill="#ff221e1f" Data="F1 M 95.300,64.218 L 101.505,64.218 C 107.538,64.218 111.482,60.854 111.482,55.692 C 111.482,49.718 107.074,47.282 100.926,47.282 C 98.257,47.282 96.286,47.572 95.300,47.804 L 95.300,64.218 Z M 92.574,45.832 C 94.952,45.310 98.316,45.020 100.984,45.020 C 106.087,45.020 109.278,46.122 111.540,48.268 C 113.222,49.892 114.266,52.502 114.266,55.228 C 114.266,60.506 111.133,63.870 106.610,65.436 L 106.610,65.552 C 109.742,66.538 111.713,69.496 112.642,73.846 C 113.976,79.936 114.730,82.836 115.542,84.402 L 112.642,84.402 C 112.062,83.242 111.192,79.820 110.148,74.890 C 108.988,69.264 106.551,66.712 101.390,66.480 L 95.300,66.480 L 95.300,84.402 L 92.574,84.402 L 92.574,45.832 Z"/>
            <Path StrokeThickness="3.0" Stroke="#ff221e1f" StrokeStartLineCap="Round" StrokeEndLineCap="Round" StrokeLineJoin="Round" Data="F1 M 179.125,90.312 C 179.125,139.362 139.362,179.125 90.312,179.125 C 41.263,179.125 1.500,139.362 1.500,90.312 C 1.500,41.263 41.263,1.500 90.312,1.500 C 139.362,1.500 179.125,41.263 179.125,90.312 Z"/>
            <Path StrokeThickness="3.0" Stroke="#ff221e1f" StrokeStartLineCap="Round" StrokeEndLineCap="Round" StrokeLineJoin="Round" Data="F1 M 75.533,117.798 L 103.986,117.798"/>
        </Grid>
    </Viewbox>
 
You might want to size the Grid down closer to your paths' real size before putting it in a Viewbox.

JDBC，Fortify和Try-With-Resource(JDBC, Fortify and Try-With-Resource)

最满意答案

相关问答

requirejs多个路径一个库(requirejs multiple paths one library)[2022-09-06]

均匀分布的数字在[-1,1]，[ - 2,2]等范围内(Uniformly distributed numbers within a range of [-1,1], [-2,2] and so on)[2022-02-16]

如何拉伸物体？(How to stretch an object?)[2023-04-11]

如何适当地拉伸与非细节带溢出(How to properly stretch with overflow for non-detail band [duplicate])[2023-11-10]

每个人的多个登录路径(Multiple login paths for everyauth)[2021-06-06]

如何在一行中添加多个SEARCH_PATHS？(How to add multiple SEARCH_PATHS in one line?)[2024-02-01]

matplotlib标记中的多种颜色填充(Multiple color fills in matplotlib markers)[2023-10-18]

打印统一的数字倍数的数字(Print numbers that are multiples of certain number uniformly)[2022-09-01]

多个剪辑路径(Multiple clip-paths)[2022-04-18]

使用dockpanel平等地拉伸所有孩子(Use dockpanel to stretch all children equally)[2022-07-03]

相关文章

最新问答