Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

One NPE in dubbo/container/Main.java #8195

Closed
containerAnalyzer opened this issue Jul 1, 2021 · 6 comments
Closed

One NPE in dubbo/container/Main.java #8195

containerAnalyzer opened this issue Jul 1, 2021 · 6 comments
Labels
help wanted Everything needs help from contributors type/bug Bugs to being fixed

Comments

@containerAnalyzer
Copy link

Hello,
Our static analyzer found a following potential NPE. We have checked the feasibility of this execution trace. It is necessary to defend this vulnerability to improve the code quality.

  1. Return null to caller (Trace staring point)

    dubbo/dubbo-common/src/main/java/org/apache/dubbo/common/extension/ExtensionLoader.java

    Line 466 in f26ba91

    return null;

  2. Function getDefaultExtension executes, stores the return value to defaultextension (defaultextension can be null) and return defaultextension to caller, which can be null

    dubbo/dubbo-common/src/main/java/org/apache/dubbo/common/extension/ExtensionLoader.java

    Line 434 in f26ba91

    return getDefaultExtension();

  3. Return the return value of function getExtension to caller

    dubbo/dubbo-common/src/main/java/org/apache/dubbo/common/extension/ExtensionLoader.java

    Line 426 in f26ba91

    return getExtension(name, true);

  4. Function getExtension executes and stores the return value to extension (extension can be null)

    dubbo/dubbo-container/dubbo-container-api/src/main/java/org/apache/dubbo/container/Main.java

    Line 63 in f26ba91

    containers.add(LOADER.getExtension(args[i]));

  5. Function add executes and containers contains null as its elements.

    dubbo/dubbo-container/dubbo-container-api/src/main/java/org/apache/dubbo/container/Main.java

    Line 63 in f26ba91

    containers.add(LOADER.getExtension(args[i]));

  6. Function next executes and return null value

    dubbo/dubbo-container/dubbo-container-api/src/main/java/org/apache/dubbo/container/Main.java

    Line 89 in f26ba91

    for (Container container : containers) {

  7. The return value of function next is passed as the this pointer to function start (the return value of function next can be null), which will leak to null pointer dereference

    dubbo/dubbo-container/dubbo-container-api/src/main/java/org/apache/dubbo/container/Main.java

    Line 90 in f26ba91

    container.start();

Commit: f26ba91

ContainerAnalyzer
@howie-xu
Copy link
Contributor

howie-xu commented Jul 2, 2021

I will fix it.

howie-xu added a commit to howie-xu/dubbo that referenced this issue Jul 2, 2021
@howie-xu
Fix the NPE (apache#8195)
0c6a7d7
howie-xu added a commit to howie-xu/dubbo that referenced this issue Jul 3, 2021
@howie-xu
Throw IllegalArgumentException to tell user the args maybe wrong. (ap…
625bb0d 
…ache#8195)
howie-xu added a commit to howie-xu/dubbo that referenced this issue Jul 4, 2021
@howie-xu
update the message of Exception and reuse container. (apache#8195)
b15b217
@colin-ife-snyk
Copy link

Any update on this? Has it been fixed yet?

@CrazyHZM CrazyHZM added help wanted Everything needs help from contributors level/easy type/bug Bugs to being fixed labels Sep 24, 2021
@wangchengming666
Copy link
Member

I will fix it.

This was referenced Sep 25, 2021
Closed
Closed
@howie-xu
Copy link
Contributor

It has already been fixed by #8215

@wangchengming666
Copy link
Member

It has already been fixed by #8215

ok

@wangchengming666
Copy link
Member

@containerAnalyzer pls close issue

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
help wanted Everything needs help from contributors type/bug Bugs to being fixed
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
5 participants
@wangchengming666 @CrazyHZM @howie-xu @colin-ife-snyk @containerAnalyzer