github-mirrors/DependencyCheck
1
0
Fork 0
mirror of https://github.com/ysoftdevs/DependencyCheck.git synced 2026-03-28 11:52:15 +01:00
Code Issues Packages Projects Releases Wiki Activity

version 1.0.4

Browse Source
This commit is contained in:
Jeremy Long
2013-10-26 17:31:40 -04:00
parent acf4f26f96
commit d6ec751081
788 changed files with 9887 additions and 8151 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
dependency-check-core/xref/allclasses-frame.html
View File

@@ -268,6 +268,12 @@
</li>
<li>
<a href="org/owasp/dependencycheck/jaxb/pom/generated/Model.html" target="classFrame">Licenses</a>
</li>
<li>
<a href="org/owasp/dependencycheck/utils/LogFilter.html" target="classFrame">LogFilter</a>
</li>
<li>
<a href="org/owasp/dependencycheck/utils/LogUtils.html" target="classFrame">LogUtils</a>
</li>
<li>
<a href="org/owasp/dependencycheck/data/lucene/LuceneUtils.html" target="classFrame">LuceneUtils</a>

2
dependency-check-core/xref/index.html
View File

@@ -3,7 +3,7 @@
<html xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<title>Dependency-Check Core 1.0.3 Reference</title>
<title>Dependency-Check Core 1.0.4 Reference</title>
</head>
<frameset cols="20%,80%">
<frameset rows="30%,70%">

220
dependency-check-core/xref/org/owasp/dependencycheck/Engine.html
View File

@@ -292,113 +292,121 @@
<a class="jxr_linenumber" name="282" href="#282">282</a> <strong class="jxr_keyword">final</strong> List&lt;Analyzer&gt; analyzerList = analyzers.get(phase);
<a class="jxr_linenumber" name="283" href="#283">283</a> <strong class="jxr_keyword">for</strong> (Analyzer a : analyzerList) {
<a class="jxr_linenumber" name="284" href="#284">284</a> <strong class="jxr_keyword">try</strong> {
<a class="jxr_linenumber" name="285" href="#285">285</a> a.initialize();
<a class="jxr_linenumber" name="286" href="#286">286</a> } <strong class="jxr_keyword">catch</strong> (Exception ex) {
<a class="jxr_linenumber" name="287" href="#287">287</a> <strong class="jxr_keyword">final</strong> String msg = String.format(<span class="jxr_string">"\&quot;Exception occurred initializing \&quot;%s\&quot;.\&quot;"</span>, a.getName());
<a class="jxr_linenumber" name="288" href="#288">288</a> Logger.getLogger(Engine.<strong class="jxr_keyword">class</strong>.getName()).log(Level.SEVERE, msg);
<a class="jxr_linenumber" name="289" href="#289">289</a> Logger.getLogger(Engine.<strong class="jxr_keyword">class</strong>.getName()).log(Level.INFO, msg, ex);
<a class="jxr_linenumber" name="290" href="#290">290</a> <strong class="jxr_keyword">try</strong> {
<a class="jxr_linenumber" name="291" href="#291">291</a> a.close();
<a class="jxr_linenumber" name="292" href="#292">292</a> } <strong class="jxr_keyword">catch</strong> (Exception ex1) {
<a class="jxr_linenumber" name="293" href="#293">293</a> Logger.getLogger(Engine.<strong class="jxr_keyword">class</strong>.getName()).log(Level.FINEST, <strong class="jxr_keyword">null</strong>, ex1);
<a class="jxr_linenumber" name="294" href="#294">294</a> }
<a class="jxr_linenumber" name="295" href="#295">295</a> }
<a class="jxr_linenumber" name="296" href="#296">296</a> }
<a class="jxr_linenumber" name="297" href="#297">297</a> }
<a class="jxr_linenumber" name="298" href="#298">298</a>
<a class="jxr_linenumber" name="299" href="#299">299</a> <em class="jxr_comment">// analysis phases</em>
<a class="jxr_linenumber" name="300" href="#300">300</a> <strong class="jxr_keyword">for</strong> (AnalysisPhase phase : AnalysisPhase.values()) {
<a class="jxr_linenumber" name="301" href="#301">301</a> <strong class="jxr_keyword">final</strong> List&lt;Analyzer&gt; analyzerList = analyzers.get(phase);
<a class="jxr_linenumber" name="302" href="#302">302</a>
<a class="jxr_linenumber" name="303" href="#303">303</a> <strong class="jxr_keyword">for</strong> (Analyzer a : analyzerList) {
<a class="jxr_linenumber" name="304" href="#304">304</a> <em class="jxr_comment">/*<em class="jxr_comment"> need to create a copy of the collection because some of the</em></em>
<a class="jxr_linenumber" name="305" href="#305">305</a> <em class="jxr_comment"> * analyzers may modify it. This prevents ConcurrentModificationExceptions.</em>
<a class="jxr_linenumber" name="306" href="#306">306</a> <em class="jxr_comment"> * This is okay for adds/deletes because it happens per analyzer.</em>
<a class="jxr_linenumber" name="307" href="#307">307</a> <em class="jxr_comment"> */</em>
<a class="jxr_linenumber" name="308" href="#308">308</a> <strong class="jxr_keyword">final</strong> Set&lt;Dependency&gt; dependencySet = <strong class="jxr_keyword">new</strong> HashSet&lt;Dependency&gt;();
<a class="jxr_linenumber" name="309" href="#309">309</a> dependencySet.addAll(dependencies);
<a class="jxr_linenumber" name="310" href="#310">310</a> <strong class="jxr_keyword">for</strong> (Dependency d : dependencySet) {
<a class="jxr_linenumber" name="311" href="#311">311</a> <strong class="jxr_keyword">if</strong> (a.supportsExtension(d.getFileExtension())) {
<a class="jxr_linenumber" name="312" href="#312">312</a> <strong class="jxr_keyword">try</strong> {
<a class="jxr_linenumber" name="313" href="#313">313</a> a.analyze(d, <strong class="jxr_keyword">this</strong>);
<a class="jxr_linenumber" name="314" href="#314">314</a> } <strong class="jxr_keyword">catch</strong> (AnalysisException ex) {
<a class="jxr_linenumber" name="315" href="#315">315</a> d.addAnalysisException(ex);
<a class="jxr_linenumber" name="316" href="#316">316</a> }
<a class="jxr_linenumber" name="317" href="#317">317</a> }
<a class="jxr_linenumber" name="318" href="#318">318</a> }
<a class="jxr_linenumber" name="319" href="#319">319</a> }
<a class="jxr_linenumber" name="320" href="#320">320</a> }
<a class="jxr_linenumber" name="321" href="#321">321</a>
<a class="jxr_linenumber" name="322" href="#322">322</a> <em class="jxr_comment">//close/cleanup</em>
<a class="jxr_linenumber" name="323" href="#323">323</a> <strong class="jxr_keyword">for</strong> (AnalysisPhase phase : AnalysisPhase.values()) {
<a class="jxr_linenumber" name="324" href="#324">324</a> <strong class="jxr_keyword">final</strong> List&lt;Analyzer&gt; analyzerList = analyzers.get(phase);
<a class="jxr_linenumber" name="325" href="#325">325</a> <strong class="jxr_keyword">for</strong> (Analyzer a : analyzerList) {
<a class="jxr_linenumber" name="326" href="#326">326</a> <strong class="jxr_keyword">try</strong> {
<a class="jxr_linenumber" name="327" href="#327">327</a> a.close();
<a class="jxr_linenumber" name="328" href="#328">328</a> } <strong class="jxr_keyword">catch</strong> (Exception ex) {
<a class="jxr_linenumber" name="329" href="#329">329</a> Logger.getLogger(Engine.<strong class="jxr_keyword">class</strong>.getName()).log(Level.FINEST, <strong class="jxr_keyword">null</strong>, ex);
<a class="jxr_linenumber" name="330" href="#330">330</a> }
<a class="jxr_linenumber" name="331" href="#331">331</a> }
<a class="jxr_linenumber" name="332" href="#332">332</a> }
<a class="jxr_linenumber" name="333" href="#333">333</a> }
<a class="jxr_linenumber" name="334" href="#334">334</a>
<a class="jxr_linenumber" name="335" href="#335">335</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="336" href="#336">336</a> <em class="jxr_javadoccomment"> * Cycles through the cached web data sources and calls update on all of</em>
<a class="jxr_linenumber" name="337" href="#337">337</a> <em class="jxr_javadoccomment"> * them.</em>
<a class="jxr_linenumber" name="338" href="#338">338</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="339" href="#339">339</a> <strong class="jxr_keyword">private</strong> <strong class="jxr_keyword">void</strong> doUpdates() {
<a class="jxr_linenumber" name="340" href="#340">340</a> <strong class="jxr_keyword">final</strong> <a href="../../../org/owasp/dependencycheck/data/UpdateService.html">UpdateService</a> service = UpdateService.getInstance();
<a class="jxr_linenumber" name="341" href="#341">341</a> <strong class="jxr_keyword">final</strong> Iterator&lt;CachedWebDataSource&gt; iterator = service.getDataSources();
<a class="jxr_linenumber" name="342" href="#342">342</a> <strong class="jxr_keyword">while</strong> (iterator.hasNext()) {
<a class="jxr_linenumber" name="343" href="#343">343</a> <strong class="jxr_keyword">final</strong> <a href="../../../org/owasp/dependencycheck/data/CachedWebDataSource.html">CachedWebDataSource</a> source = iterator.next();
<a class="jxr_linenumber" name="344" href="#344">344</a> <strong class="jxr_keyword">try</strong> {
<a class="jxr_linenumber" name="345" href="#345">345</a> source.update();
<a class="jxr_linenumber" name="346" href="#346">346</a> } <strong class="jxr_keyword">catch</strong> (UpdateException ex) {
<a class="jxr_linenumber" name="347" href="#347">347</a> Logger.getLogger(Engine.<strong class="jxr_keyword">class</strong>.getName()).log(Level.WARNING,
<a class="jxr_linenumber" name="348" href="#348">348</a> <span class="jxr_string">"Unable to update Cached Web DataSource, using local data instead. Results may not include recent vulnerabilities."</span>);
<a class="jxr_linenumber" name="349" href="#349">349</a> Logger.getLogger(Engine.<strong class="jxr_keyword">class</strong>.getName()).log(Level.FINE,
<a class="jxr_linenumber" name="350" href="#350">350</a> String.format(<span class="jxr_string">"Unable to update details for %s"</span>, source.getClass().getName()), ex);
<a class="jxr_linenumber" name="351" href="#351">351</a> }
<a class="jxr_linenumber" name="352" href="#352">352</a> }
<a class="jxr_linenumber" name="353" href="#353">353</a> }
<a class="jxr_linenumber" name="354" href="#354">354</a>
<a class="jxr_linenumber" name="355" href="#355">355</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="356" href="#356">356</a> <em class="jxr_javadoccomment"> * Returns a full list of all of the analyzers. This is useful for reporting</em>
<a class="jxr_linenumber" name="357" href="#357">357</a> <em class="jxr_javadoccomment"> * which analyzers where used.</em>
<a class="jxr_linenumber" name="358" href="#358">358</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="359" href="#359">359</a> <em class="jxr_javadoccomment"> * @return a list of Analyzers</em>
<a class="jxr_linenumber" name="360" href="#360">360</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="361" href="#361">361</a> <strong class="jxr_keyword">public</strong> List&lt;Analyzer&gt; getAnalyzers() {
<a class="jxr_linenumber" name="362" href="#362">362</a> <strong class="jxr_keyword">final</strong> List&lt;Analyzer&gt; ret = <strong class="jxr_keyword">new</strong> ArrayList&lt;Analyzer&gt;();
<a class="jxr_linenumber" name="363" href="#363">363</a> <strong class="jxr_keyword">for</strong> (AnalysisPhase phase : AnalysisPhase.values()) {
<a class="jxr_linenumber" name="364" href="#364">364</a> <strong class="jxr_keyword">final</strong> List&lt;Analyzer&gt; analyzerList = analyzers.get(phase);
<a class="jxr_linenumber" name="365" href="#365">365</a> ret.addAll(analyzerList);
<a class="jxr_linenumber" name="366" href="#366">366</a> }
<a class="jxr_linenumber" name="367" href="#367">367</a> <strong class="jxr_keyword">return</strong> ret;
<a class="jxr_linenumber" name="368" href="#368">368</a> }
<a class="jxr_linenumber" name="369" href="#369">369</a>
<a class="jxr_linenumber" name="370" href="#370">370</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="371" href="#371">371</a> <em class="jxr_javadoccomment"> * Checks all analyzers to see if an extension is supported.</em>
<a class="jxr_linenumber" name="372" href="#372">372</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="373" href="#373">373</a> <em class="jxr_javadoccomment"> * @param ext a file extension</em>
<a class="jxr_linenumber" name="374" href="#374">374</a> <em class="jxr_javadoccomment"> * @return true or false depending on whether or not the file extension is</em>
<a class="jxr_linenumber" name="375" href="#375">375</a> <em class="jxr_javadoccomment"> * supported</em>
<a class="jxr_linenumber" name="376" href="#376">376</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="377" href="#377">377</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">boolean</strong> supportsExtension(String ext) {
<a class="jxr_linenumber" name="378" href="#378">378</a> <strong class="jxr_keyword">if</strong> (ext == <strong class="jxr_keyword">null</strong>) {
<a class="jxr_linenumber" name="379" href="#379">379</a> <strong class="jxr_keyword">return</strong> false;
<a class="jxr_linenumber" name="380" href="#380">380</a> }
<a class="jxr_linenumber" name="381" href="#381">381</a> <strong class="jxr_keyword">for</strong> (AnalysisPhase phase : AnalysisPhase.values()) {
<a class="jxr_linenumber" name="382" href="#382">382</a> <strong class="jxr_keyword">final</strong> List&lt;Analyzer&gt; analyzerList = analyzers.get(phase);
<a class="jxr_linenumber" name="383" href="#383">383</a> <strong class="jxr_keyword">for</strong> (Analyzer a : analyzerList) {
<a class="jxr_linenumber" name="384" href="#384">384</a> <strong class="jxr_keyword">if</strong> (a.getSupportedExtensions() != <strong class="jxr_keyword">null</strong> &amp;&amp; a.supportsExtension(ext)) {
<a class="jxr_linenumber" name="385" href="#385">385</a> <strong class="jxr_keyword">return</strong> <strong class="jxr_keyword">true</strong>;
<a class="jxr_linenumber" name="386" href="#386">386</a> }
<a class="jxr_linenumber" name="387" href="#387">387</a> }
<a class="jxr_linenumber" name="285" href="#285">285</a> <strong class="jxr_keyword">final</strong> String msg = String.format(<span class="jxr_string">"Initializing %s"</span>, a.getName());
<a class="jxr_linenumber" name="286" href="#286">286</a> Logger.getLogger(Engine.<strong class="jxr_keyword">class</strong>.getName()).log(Level.FINE, msg);
<a class="jxr_linenumber" name="287" href="#287">287</a> a.initialize();
<a class="jxr_linenumber" name="288" href="#288">288</a> } <strong class="jxr_keyword">catch</strong> (Exception ex) {
<a class="jxr_linenumber" name="289" href="#289">289</a> <strong class="jxr_keyword">final</strong> String msg = String.format(<span class="jxr_string">"Exception occurred initializing %s."</span>, a.getName());
<a class="jxr_linenumber" name="290" href="#290">290</a> Logger.getLogger(Engine.<strong class="jxr_keyword">class</strong>.getName()).log(Level.SEVERE, msg);
<a class="jxr_linenumber" name="291" href="#291">291</a> Logger.getLogger(Engine.<strong class="jxr_keyword">class</strong>.getName()).log(Level.INFO, <strong class="jxr_keyword">null</strong>, ex);
<a class="jxr_linenumber" name="292" href="#292">292</a> <strong class="jxr_keyword">try</strong> {
<a class="jxr_linenumber" name="293" href="#293">293</a> a.close();
<a class="jxr_linenumber" name="294" href="#294">294</a> } <strong class="jxr_keyword">catch</strong> (Exception ex1) {
<a class="jxr_linenumber" name="295" href="#295">295</a> Logger.getLogger(Engine.<strong class="jxr_keyword">class</strong>.getName()).log(Level.FINEST, <strong class="jxr_keyword">null</strong>, ex1);
<a class="jxr_linenumber" name="296" href="#296">296</a> }
<a class="jxr_linenumber" name="297" href="#297">297</a> }
<a class="jxr_linenumber" name="298" href="#298">298</a> }
<a class="jxr_linenumber" name="299" href="#299">299</a> }
<a class="jxr_linenumber" name="300" href="#300">300</a>
<a class="jxr_linenumber" name="301" href="#301">301</a> <em class="jxr_comment">// analysis phases</em>
<a class="jxr_linenumber" name="302" href="#302">302</a> <strong class="jxr_keyword">for</strong> (AnalysisPhase phase : AnalysisPhase.values()) {
<a class="jxr_linenumber" name="303" href="#303">303</a> <strong class="jxr_keyword">final</strong> List&lt;Analyzer&gt; analyzerList = analyzers.get(phase);
<a class="jxr_linenumber" name="304" href="#304">304</a>
<a class="jxr_linenumber" name="305" href="#305">305</a> <strong class="jxr_keyword">for</strong> (Analyzer a : analyzerList) {
<a class="jxr_linenumber" name="306" href="#306">306</a> <em class="jxr_comment">/*<em class="jxr_comment"> need to create a copy of the collection because some of the</em></em>
<a class="jxr_linenumber" name="307" href="#307">307</a> <em class="jxr_comment"> * analyzers may modify it. This prevents ConcurrentModificationExceptions.</em>
<a class="jxr_linenumber" name="308" href="#308">308</a> <em class="jxr_comment"> * This is okay for adds/deletes because it happens per analyzer.</em>
<a class="jxr_linenumber" name="309" href="#309">309</a> <em class="jxr_comment"> */</em>
<a class="jxr_linenumber" name="310" href="#310">310</a> <strong class="jxr_keyword">final</strong> String msg = String.format(<span class="jxr_string">"Begin Analyzer '%s'"</span>, a.getName());
<a class="jxr_linenumber" name="311" href="#311">311</a> Logger.getLogger(Engine.<strong class="jxr_keyword">class</strong>.getName()).log(Level.FINE, msg);
<a class="jxr_linenumber" name="312" href="#312">312</a> <strong class="jxr_keyword">final</strong> Set&lt;Dependency&gt; dependencySet = <strong class="jxr_keyword">new</strong> HashSet&lt;Dependency&gt;();
<a class="jxr_linenumber" name="313" href="#313">313</a> dependencySet.addAll(dependencies);
<a class="jxr_linenumber" name="314" href="#314">314</a> <strong class="jxr_keyword">for</strong> (Dependency d : dependencySet) {
<a class="jxr_linenumber" name="315" href="#315">315</a> <strong class="jxr_keyword">final</strong> String msgFile = String.format(<span class="jxr_string">"Begin Analysis of '%s'"</span>, d.getActualFilePath());
<a class="jxr_linenumber" name="316" href="#316">316</a> Logger.getLogger(Engine.<strong class="jxr_keyword">class</strong>.getName()).log(Level.FINE, msgFile);
<a class="jxr_linenumber" name="317" href="#317">317</a> <strong class="jxr_keyword">if</strong> (a.supportsExtension(d.getFileExtension())) {
<a class="jxr_linenumber" name="318" href="#318">318</a> <strong class="jxr_keyword">try</strong> {
<a class="jxr_linenumber" name="319" href="#319">319</a> a.analyze(d, <strong class="jxr_keyword">this</strong>);
<a class="jxr_linenumber" name="320" href="#320">320</a> } <strong class="jxr_keyword">catch</strong> (AnalysisException ex) {
<a class="jxr_linenumber" name="321" href="#321">321</a> d.addAnalysisException(ex);
<a class="jxr_linenumber" name="322" href="#322">322</a> }
<a class="jxr_linenumber" name="323" href="#323">323</a> }
<a class="jxr_linenumber" name="324" href="#324">324</a> }
<a class="jxr_linenumber" name="325" href="#325">325</a> }
<a class="jxr_linenumber" name="326" href="#326">326</a> }
<a class="jxr_linenumber" name="327" href="#327">327</a>
<a class="jxr_linenumber" name="328" href="#328">328</a> <em class="jxr_comment">//close/cleanup</em>
<a class="jxr_linenumber" name="329" href="#329">329</a> <strong class="jxr_keyword">for</strong> (AnalysisPhase phase : AnalysisPhase.values()) {
<a class="jxr_linenumber" name="330" href="#330">330</a> <strong class="jxr_keyword">final</strong> List&lt;Analyzer&gt; analyzerList = analyzers.get(phase);
<a class="jxr_linenumber" name="331" href="#331">331</a> <strong class="jxr_keyword">for</strong> (Analyzer a : analyzerList) {
<a class="jxr_linenumber" name="332" href="#332">332</a> <strong class="jxr_keyword">final</strong> String msg = String.format(<span class="jxr_string">"Closing Analyzer '%s'"</span>, a.getName());
<a class="jxr_linenumber" name="333" href="#333">333</a> Logger.getLogger(Engine.<strong class="jxr_keyword">class</strong>.getName()).log(Level.FINE, msg);
<a class="jxr_linenumber" name="334" href="#334">334</a> <strong class="jxr_keyword">try</strong> {
<a class="jxr_linenumber" name="335" href="#335">335</a> a.close();
<a class="jxr_linenumber" name="336" href="#336">336</a> } <strong class="jxr_keyword">catch</strong> (Exception ex) {
<a class="jxr_linenumber" name="337" href="#337">337</a> Logger.getLogger(Engine.<strong class="jxr_keyword">class</strong>.getName()).log(Level.FINEST, <strong class="jxr_keyword">null</strong>, ex);
<a class="jxr_linenumber" name="338" href="#338">338</a> }
<a class="jxr_linenumber" name="339" href="#339">339</a> }
<a class="jxr_linenumber" name="340" href="#340">340</a> }
<a class="jxr_linenumber" name="341" href="#341">341</a> }
<a class="jxr_linenumber" name="342" href="#342">342</a>
<a class="jxr_linenumber" name="343" href="#343">343</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="344" href="#344">344</a> <em class="jxr_javadoccomment"> * Cycles through the cached web data sources and calls update on all of</em>
<a class="jxr_linenumber" name="345" href="#345">345</a> <em class="jxr_javadoccomment"> * them.</em>
<a class="jxr_linenumber" name="346" href="#346">346</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="347" href="#347">347</a> <strong class="jxr_keyword">private</strong> <strong class="jxr_keyword">void</strong> doUpdates() {
<a class="jxr_linenumber" name="348" href="#348">348</a> <strong class="jxr_keyword">final</strong> <a href="../../../org/owasp/dependencycheck/data/UpdateService.html">UpdateService</a> service = UpdateService.getInstance();
<a class="jxr_linenumber" name="349" href="#349">349</a> <strong class="jxr_keyword">final</strong> Iterator&lt;CachedWebDataSource&gt; iterator = service.getDataSources();
<a class="jxr_linenumber" name="350" href="#350">350</a> <strong class="jxr_keyword">while</strong> (iterator.hasNext()) {
<a class="jxr_linenumber" name="351" href="#351">351</a> <strong class="jxr_keyword">final</strong> <a href="../../../org/owasp/dependencycheck/data/CachedWebDataSource.html">CachedWebDataSource</a> source = iterator.next();
<a class="jxr_linenumber" name="352" href="#352">352</a> <strong class="jxr_keyword">try</strong> {
<a class="jxr_linenumber" name="353" href="#353">353</a> source.update();
<a class="jxr_linenumber" name="354" href="#354">354</a> } <strong class="jxr_keyword">catch</strong> (UpdateException ex) {
<a class="jxr_linenumber" name="355" href="#355">355</a> Logger.getLogger(Engine.<strong class="jxr_keyword">class</strong>.getName()).log(Level.WARNING,
<a class="jxr_linenumber" name="356" href="#356">356</a> <span class="jxr_string">"Unable to update Cached Web DataSource, using local data instead. Results may not include recent vulnerabilities."</span>);
<a class="jxr_linenumber" name="357" href="#357">357</a> Logger.getLogger(Engine.<strong class="jxr_keyword">class</strong>.getName()).log(Level.FINE,
<a class="jxr_linenumber" name="358" href="#358">358</a> String.format(<span class="jxr_string">"Unable to update details for %s"</span>, source.getClass().getName()), ex);
<a class="jxr_linenumber" name="359" href="#359">359</a> }
<a class="jxr_linenumber" name="360" href="#360">360</a> }
<a class="jxr_linenumber" name="361" href="#361">361</a> }
<a class="jxr_linenumber" name="362" href="#362">362</a>
<a class="jxr_linenumber" name="363" href="#363">363</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="364" href="#364">364</a> <em class="jxr_javadoccomment"> * Returns a full list of all of the analyzers. This is useful for reporting</em>
<a class="jxr_linenumber" name="365" href="#365">365</a> <em class="jxr_javadoccomment"> * which analyzers where used.</em>
<a class="jxr_linenumber" name="366" href="#366">366</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="367" href="#367">367</a> <em class="jxr_javadoccomment"> * @return a list of Analyzers</em>
<a class="jxr_linenumber" name="368" href="#368">368</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="369" href="#369">369</a> <strong class="jxr_keyword">public</strong> List&lt;Analyzer&gt; getAnalyzers() {
<a class="jxr_linenumber" name="370" href="#370">370</a> <strong class="jxr_keyword">final</strong> List&lt;Analyzer&gt; ret = <strong class="jxr_keyword">new</strong> ArrayList&lt;Analyzer&gt;();
<a class="jxr_linenumber" name="371" href="#371">371</a> <strong class="jxr_keyword">for</strong> (AnalysisPhase phase : AnalysisPhase.values()) {
<a class="jxr_linenumber" name="372" href="#372">372</a> <strong class="jxr_keyword">final</strong> List&lt;Analyzer&gt; analyzerList = analyzers.get(phase);
<a class="jxr_linenumber" name="373" href="#373">373</a> ret.addAll(analyzerList);
<a class="jxr_linenumber" name="374" href="#374">374</a> }
<a class="jxr_linenumber" name="375" href="#375">375</a> <strong class="jxr_keyword">return</strong> ret;
<a class="jxr_linenumber" name="376" href="#376">376</a> }
<a class="jxr_linenumber" name="377" href="#377">377</a>
<a class="jxr_linenumber" name="378" href="#378">378</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="379" href="#379">379</a> <em class="jxr_javadoccomment"> * Checks all analyzers to see if an extension is supported.</em>
<a class="jxr_linenumber" name="380" href="#380">380</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="381" href="#381">381</a> <em class="jxr_javadoccomment"> * @param ext a file extension</em>
<a class="jxr_linenumber" name="382" href="#382">382</a> <em class="jxr_javadoccomment"> * @return true or false depending on whether or not the file extension is</em>
<a class="jxr_linenumber" name="383" href="#383">383</a> <em class="jxr_javadoccomment"> * supported</em>
<a class="jxr_linenumber" name="384" href="#384">384</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="385" href="#385">385</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">boolean</strong> supportsExtension(String ext) {
<a class="jxr_linenumber" name="386" href="#386">386</a> <strong class="jxr_keyword">if</strong> (ext == <strong class="jxr_keyword">null</strong>) {
<a class="jxr_linenumber" name="387" href="#387">387</a> <strong class="jxr_keyword">return</strong> false;
<a class="jxr_linenumber" name="388" href="#388">388</a> }
<a class="jxr_linenumber" name="389" href="#389">389</a> <strong class="jxr_keyword">return</strong> false;
<a class="jxr_linenumber" name="390" href="#390">390</a> }
<a class="jxr_linenumber" name="391" href="#391">391</a> }
<a class="jxr_linenumber" name="389" href="#389">389</a> <strong class="jxr_keyword">for</strong> (AnalysisPhase phase : AnalysisPhase.values()) {
<a class="jxr_linenumber" name="390" href="#390">390</a> <strong class="jxr_keyword">final</strong> List&lt;Analyzer&gt; analyzerList = analyzers.get(phase);
<a class="jxr_linenumber" name="391" href="#391">391</a> <strong class="jxr_keyword">for</strong> (Analyzer a : analyzerList) {
<a class="jxr_linenumber" name="392" href="#392">392</a> <strong class="jxr_keyword">if</strong> (a.getSupportedExtensions() != <strong class="jxr_keyword">null</strong> &amp;&amp; a.supportsExtension(ext)) {
<a class="jxr_linenumber" name="393" href="#393">393</a> <strong class="jxr_keyword">return</strong> <strong class="jxr_keyword">true</strong>;
<a class="jxr_linenumber" name="394" href="#394">394</a> }
<a class="jxr_linenumber" name="395" href="#395">395</a> }
<a class="jxr_linenumber" name="396" href="#396">396</a> }
<a class="jxr_linenumber" name="397" href="#397">397</a> <strong class="jxr_keyword">return</strong> false;
<a class="jxr_linenumber" name="398" href="#398">398</a> }
<a class="jxr_linenumber" name="399" href="#399">399</a> }
</pre>
<hr/><div id="footer">This page was automatically generated by <a href="http://maven.apache.org/">Maven</a></div></body>
</html>

347
dependency-check-core/xref/org/owasp/dependencycheck/analyzer/ArchiveAnalyzer.html
View File

@@ -155,180 +155,183 @@
<a class="jxr_linenumber" name="145" href="#145">145</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">void</strong> initialize() <strong class="jxr_keyword">throws</strong> Exception {
<a class="jxr_linenumber" name="146" href="#146">146</a> <strong class="jxr_keyword">final</strong> File baseDir = Settings.getTempDirectory();
<a class="jxr_linenumber" name="147" href="#147">147</a> <strong class="jxr_keyword">if</strong> (!baseDir.exists()) {
<a class="jxr_linenumber" name="148" href="#148">148</a> baseDir.mkdirs();
<a class="jxr_linenumber" name="149" href="#149">149</a> }
<a class="jxr_linenumber" name="150" href="#150">150</a> tempFileLocation = File.createTempFile(<span class="jxr_string">"check"</span>, <span class="jxr_string">"tmp"</span>, baseDir);
<a class="jxr_linenumber" name="151" href="#151">151</a> <strong class="jxr_keyword">if</strong> (!tempFileLocation.delete()) {
<a class="jxr_linenumber" name="152" href="#152">152</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/AnalysisException.html">AnalysisException</a>(<span class="jxr_string">"Unable to delete temporary file '"</span> + tempFileLocation.getAbsolutePath() + <span class="jxr_string">"'."</span>);
<a class="jxr_linenumber" name="153" href="#153">153</a> }
<a class="jxr_linenumber" name="154" href="#154">154</a> <strong class="jxr_keyword">if</strong> (!tempFileLocation.mkdirs()) {
<a class="jxr_linenumber" name="155" href="#155">155</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/AnalysisException.html">AnalysisException</a>(<span class="jxr_string">"Unable to create directory '"</span> + tempFileLocation.getAbsolutePath() + <span class="jxr_string">"'."</span>);
<a class="jxr_linenumber" name="148" href="#148">148</a> <strong class="jxr_keyword">if</strong> (!baseDir.mkdirs()) {
<a class="jxr_linenumber" name="149" href="#149">149</a> <strong class="jxr_keyword">final</strong> String msg = String.format(<span class="jxr_string">"Unable to make a temporary folder '%s'"</span>, baseDir.getPath());
<a class="jxr_linenumber" name="150" href="#150">150</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/AnalysisException.html">AnalysisException</a>(msg);
<a class="jxr_linenumber" name="151" href="#151">151</a> }
<a class="jxr_linenumber" name="152" href="#152">152</a> }
<a class="jxr_linenumber" name="153" href="#153">153</a> tempFileLocation = File.createTempFile(<span class="jxr_string">"check"</span>, <span class="jxr_string">"tmp"</span>, baseDir);
<a class="jxr_linenumber" name="154" href="#154">154</a> <strong class="jxr_keyword">if</strong> (!tempFileLocation.delete()) {
<a class="jxr_linenumber" name="155" href="#155">155</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/AnalysisException.html">AnalysisException</a>(<span class="jxr_string">"Unable to delete temporary file '"</span> + tempFileLocation.getAbsolutePath() + <span class="jxr_string">"'."</span>);
<a class="jxr_linenumber" name="156" href="#156">156</a> }
<a class="jxr_linenumber" name="157" href="#157">157</a> }
<a class="jxr_linenumber" name="158" href="#158">158</a>
<a class="jxr_linenumber" name="159" href="#159">159</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="160" href="#160">160</a> <em class="jxr_javadoccomment"> * The close method does nothing for this Analyzer.</em>
<a class="jxr_linenumber" name="161" href="#161">161</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="162" href="#162">162</a> <em class="jxr_javadoccomment"> * @throws Exception thrown if there is an exception deleting temporary</em>
<a class="jxr_linenumber" name="163" href="#163">163</a> <em class="jxr_javadoccomment"> * files</em>
<a class="jxr_linenumber" name="164" href="#164">164</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="165" href="#165">165</a> @Override
<a class="jxr_linenumber" name="166" href="#166">166</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">void</strong> close() <strong class="jxr_keyword">throws</strong> Exception {
<a class="jxr_linenumber" name="167" href="#167">167</a> <strong class="jxr_keyword">if</strong> (tempFileLocation != <strong class="jxr_keyword">null</strong> &amp;&amp; tempFileLocation.exists()) {
<a class="jxr_linenumber" name="168" href="#168">168</a> FileUtils.deleteRecursive(tempFileLocation.getAbsolutePath(), <strong class="jxr_keyword">true</strong>);
<a class="jxr_linenumber" name="169" href="#169">169</a> }
<a class="jxr_linenumber" name="170" href="#170">170</a> }
<a class="jxr_linenumber" name="171" href="#171">171</a>
<a class="jxr_linenumber" name="172" href="#172">172</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="173" href="#173">173</a> <em class="jxr_javadoccomment"> * Analyzes a given dependency. If the dependency is an archive, such as a</em>
<a class="jxr_linenumber" name="174" href="#174">174</a> <em class="jxr_javadoccomment"> * WAR or EAR, the contents are extracted, scanned, and added to the list of</em>
<a class="jxr_linenumber" name="175" href="#175">175</a> <em class="jxr_javadoccomment"> * dependencies within the engine.</em>
<a class="jxr_linenumber" name="176" href="#176">176</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="177" href="#177">177</a> <em class="jxr_javadoccomment"> * @param dependency the dependency to analyze</em>
<a class="jxr_linenumber" name="178" href="#178">178</a> <em class="jxr_javadoccomment"> * @param engine the engine scanning</em>
<a class="jxr_linenumber" name="179" href="#179">179</a> <em class="jxr_javadoccomment"> * @throws AnalysisException thrown if there is an analysis exception</em>
<a class="jxr_linenumber" name="180" href="#180">180</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="181" href="#181">181</a> @Override
<a class="jxr_linenumber" name="182" href="#182">182</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">void</strong> analyze(<a href="../../../../org/owasp/dependencycheck/dependency/Dependency.html">Dependency</a> dependency, <a href="../../../../org/owasp/dependencycheck/Engine.html">Engine</a> engine) <strong class="jxr_keyword">throws</strong> AnalysisException {
<a class="jxr_linenumber" name="183" href="#183">183</a> <strong class="jxr_keyword">final</strong> File f = <strong class="jxr_keyword">new</strong> File(dependency.getActualFilePath());
<a class="jxr_linenumber" name="184" href="#184">184</a> <strong class="jxr_keyword">final</strong> File tmpDir = getNextTempDirectory();
<a class="jxr_linenumber" name="185" href="#185">185</a> extractFiles(f, tmpDir, engine);
<a class="jxr_linenumber" name="186" href="#186">186</a>
<a class="jxr_linenumber" name="187" href="#187">187</a> <em class="jxr_comment">//make a copy</em>
<a class="jxr_linenumber" name="188" href="#188">188</a> <strong class="jxr_keyword">final</strong> List&lt;Dependency&gt; dependencies = <strong class="jxr_keyword">new</strong> ArrayList&lt;Dependency&gt;(engine.getDependencies());
<a class="jxr_linenumber" name="189" href="#189">189</a> engine.scan(tmpDir);
<a class="jxr_linenumber" name="190" href="#190">190</a> <strong class="jxr_keyword">final</strong> List&lt;Dependency&gt; newDependencies = engine.getDependencies();
<a class="jxr_linenumber" name="191" href="#191">191</a> <strong class="jxr_keyword">if</strong> (dependencies.size() != newDependencies.size()) {
<a class="jxr_linenumber" name="192" href="#192">192</a> <em class="jxr_comment">//get the new dependencies</em>
<a class="jxr_linenumber" name="193" href="#193">193</a> <strong class="jxr_keyword">final</strong> Set&lt;Dependency&gt; dependencySet = <strong class="jxr_keyword">new</strong> HashSet&lt;Dependency&gt;();
<a class="jxr_linenumber" name="194" href="#194">194</a> dependencySet.addAll(newDependencies);
<a class="jxr_linenumber" name="195" href="#195">195</a> dependencySet.removeAll(dependencies);
<a class="jxr_linenumber" name="196" href="#196">196</a>
<a class="jxr_linenumber" name="197" href="#197">197</a> <strong class="jxr_keyword">for</strong> (Dependency d : dependencySet) {
<a class="jxr_linenumber" name="198" href="#198">198</a> <em class="jxr_comment">//fix the dependency's display name and path</em>
<a class="jxr_linenumber" name="199" href="#199">199</a> <strong class="jxr_keyword">final</strong> String displayPath = String.format(<span class="jxr_string">"%s%s"</span>,
<a class="jxr_linenumber" name="200" href="#200">200</a> dependency.getFilePath(),
<a class="jxr_linenumber" name="201" href="#201">201</a> d.getActualFilePath().substring(tmpDir.getAbsolutePath().length()));
<a class="jxr_linenumber" name="202" href="#202">202</a> <strong class="jxr_keyword">final</strong> String displayName = String.format(<span class="jxr_string">"%s%s%s"</span>,
<a class="jxr_linenumber" name="203" href="#203">203</a> dependency.getFileName(),
<a class="jxr_linenumber" name="204" href="#204">204</a> File.separator,
<a class="jxr_linenumber" name="205" href="#205">205</a> d.getFileName());
<a class="jxr_linenumber" name="206" href="#206">206</a> d.setFilePath(displayPath);
<a class="jxr_linenumber" name="207" href="#207">207</a> d.setFileName(displayName);
<a class="jxr_linenumber" name="208" href="#208">208</a>
<a class="jxr_linenumber" name="209" href="#209">209</a> <em class="jxr_comment">//TODO - can we get more evidence from the parent? EAR contains module name, etc.</em>
<a class="jxr_linenumber" name="210" href="#210">210</a>
<a class="jxr_linenumber" name="211" href="#211">211</a> <em class="jxr_comment">//analyze the dependency (i.e. extract files) if it is a supported type.</em>
<a class="jxr_linenumber" name="212" href="#212">212</a> <strong class="jxr_keyword">if</strong> (<strong class="jxr_keyword">this</strong>.supportsExtension(d.getFileExtension()) &amp;&amp; scanDepth &lt; MAX_SCAN_DEPTH) {
<a class="jxr_linenumber" name="213" href="#213">213</a> scanDepth += 1;
<a class="jxr_linenumber" name="214" href="#214">214</a> analyze(d, engine);
<a class="jxr_linenumber" name="215" href="#215">215</a> scanDepth -= 1;
<a class="jxr_linenumber" name="216" href="#216">216</a> }
<a class="jxr_linenumber" name="217" href="#217">217</a> }
<a class="jxr_linenumber" name="218" href="#218">218</a> }
<a class="jxr_linenumber" name="219" href="#219">219</a> Collections.sort(engine.getDependencies());
<a class="jxr_linenumber" name="220" href="#220">220</a> }
<a class="jxr_linenumber" name="221" href="#221">221</a>
<a class="jxr_linenumber" name="222" href="#222">222</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="223" href="#223">223</a> <em class="jxr_javadoccomment"> * Retrieves the next temporary directory to extract an archive too.</em>
<a class="jxr_linenumber" name="224" href="#224">224</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="225" href="#225">225</a> <em class="jxr_javadoccomment"> * @return a directory</em>
<a class="jxr_linenumber" name="226" href="#226">226</a> <em class="jxr_javadoccomment"> * @throws AnalysisException thrown if unable to create temporary directory</em>
<a class="jxr_linenumber" name="227" href="#227">227</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="228" href="#228">228</a> <strong class="jxr_keyword">private</strong> File getNextTempDirectory() <strong class="jxr_keyword">throws</strong> AnalysisException {
<a class="jxr_linenumber" name="229" href="#229">229</a> dirCount += 1;
<a class="jxr_linenumber" name="230" href="#230">230</a> <strong class="jxr_keyword">final</strong> File directory = <strong class="jxr_keyword">new</strong> File(tempFileLocation, String.valueOf(dirCount));
<a class="jxr_linenumber" name="231" href="#231">231</a> <strong class="jxr_keyword">if</strong> (!directory.mkdirs()) {
<a class="jxr_linenumber" name="232" href="#232">232</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/AnalysisException.html">AnalysisException</a>(<span class="jxr_string">"Unable to create temp directory '"</span> + directory.getAbsolutePath() + <span class="jxr_string">"'."</span>);
<a class="jxr_linenumber" name="233" href="#233">233</a> }
<a class="jxr_linenumber" name="234" href="#234">234</a> <strong class="jxr_keyword">return</strong> directory;
<a class="jxr_linenumber" name="235" href="#235">235</a> }
<a class="jxr_linenumber" name="236" href="#236">236</a>
<a class="jxr_linenumber" name="237" href="#237">237</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="238" href="#238">238</a> <em class="jxr_javadoccomment"> * Extracts the contents of an archive into the specified directory.</em>
<a class="jxr_linenumber" name="239" href="#239">239</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="240" href="#240">240</a> <em class="jxr_javadoccomment"> * @param archive an archive file such as a WAR or EAR</em>
<a class="jxr_linenumber" name="241" href="#241">241</a> <em class="jxr_javadoccomment"> * @param extractTo a directory to extract the contents to</em>
<a class="jxr_linenumber" name="242" href="#242">242</a> <em class="jxr_javadoccomment"> * @param engine the scanning engine</em>
<a class="jxr_linenumber" name="243" href="#243">243</a> <em class="jxr_javadoccomment"> * @throws AnalysisException thrown if the archive is not found</em>
<a class="jxr_linenumber" name="244" href="#244">244</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="245" href="#245">245</a> <strong class="jxr_keyword">private</strong> <strong class="jxr_keyword">void</strong> extractFiles(File archive, File extractTo, <a href="../../../../org/owasp/dependencycheck/Engine.html">Engine</a> engine) <strong class="jxr_keyword">throws</strong> AnalysisException {
<a class="jxr_linenumber" name="246" href="#246">246</a> <strong class="jxr_keyword">if</strong> (archive == <strong class="jxr_keyword">null</strong> || extractTo == <strong class="jxr_keyword">null</strong>) {
<a class="jxr_linenumber" name="247" href="#247">247</a> <strong class="jxr_keyword">return</strong>;
<a class="jxr_linenumber" name="248" href="#248">248</a> }
<a class="jxr_linenumber" name="249" href="#249">249</a>
<a class="jxr_linenumber" name="250" href="#250">250</a> FileInputStream fis = <strong class="jxr_keyword">null</strong>;
<a class="jxr_linenumber" name="251" href="#251">251</a> <em class="jxr_comment">//ZipInputStream zis = null;</em>
<a class="jxr_linenumber" name="252" href="#252">252</a> ZipArchiveInputStream zis = <strong class="jxr_keyword">null</strong>;
<a class="jxr_linenumber" name="253" href="#253">253</a>
<a class="jxr_linenumber" name="254" href="#254">254</a> <strong class="jxr_keyword">try</strong> {
<a class="jxr_linenumber" name="255" href="#255">255</a> fis = <strong class="jxr_keyword">new</strong> FileInputStream(archive);
<a class="jxr_linenumber" name="256" href="#256">256</a> } <strong class="jxr_keyword">catch</strong> (FileNotFoundException ex) {
<a class="jxr_linenumber" name="257" href="#257">257</a> Logger.getLogger(ArchiveAnalyzer.<strong class="jxr_keyword">class</strong>.getName()).log(Level.INFO, <strong class="jxr_keyword">null</strong>, ex);
<a class="jxr_linenumber" name="258" href="#258">258</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/AnalysisException.html">AnalysisException</a>(<span class="jxr_string">"Archive file was not found."</span>, ex);
<a class="jxr_linenumber" name="259" href="#259">259</a> }
<a class="jxr_linenumber" name="260" href="#260">260</a> zis = <strong class="jxr_keyword">new</strong> ZipArchiveInputStream(<strong class="jxr_keyword">new</strong> BufferedInputStream(fis));
<a class="jxr_linenumber" name="261" href="#261">261</a> ZipArchiveEntry entry;
<a class="jxr_linenumber" name="262" href="#262">262</a>
<a class="jxr_linenumber" name="263" href="#263">263</a> <strong class="jxr_keyword">try</strong> {
<a class="jxr_linenumber" name="264" href="#264">264</a> <strong class="jxr_keyword">while</strong> ((entry = zis.getNextZipEntry()) != <strong class="jxr_keyword">null</strong>) {
<a class="jxr_linenumber" name="265" href="#265">265</a> <strong class="jxr_keyword">if</strong> (entry.isDirectory()) {
<a class="jxr_linenumber" name="266" href="#266">266</a> <strong class="jxr_keyword">final</strong> File d = <strong class="jxr_keyword">new</strong> File(extractTo, entry.getName());
<a class="jxr_linenumber" name="267" href="#267">267</a> <strong class="jxr_keyword">if</strong> (!d.mkdirs()) {
<a class="jxr_linenumber" name="268" href="#268">268</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/AnalysisException.html">AnalysisException</a>(<span class="jxr_string">"Unable to create '"</span> + d.getAbsolutePath() + <span class="jxr_string">"'."</span>);
<a class="jxr_linenumber" name="269" href="#269">269</a> }
<a class="jxr_linenumber" name="270" href="#270">270</a> } <strong class="jxr_keyword">else</strong> {
<a class="jxr_linenumber" name="271" href="#271">271</a> <strong class="jxr_keyword">final</strong> File file = <strong class="jxr_keyword">new</strong> File(extractTo, entry.getName());
<a class="jxr_linenumber" name="272" href="#272">272</a> <strong class="jxr_keyword">final</strong> String ext = org.owasp.dependencycheck.utils.FileUtils.getFileExtension(file.getName());
<a class="jxr_linenumber" name="273" href="#273">273</a> <strong class="jxr_keyword">if</strong> (engine.supportsExtension(ext)) {
<a class="jxr_linenumber" name="274" href="#274">274</a> BufferedOutputStream bos = <strong class="jxr_keyword">null</strong>;
<a class="jxr_linenumber" name="275" href="#275">275</a> FileOutputStream fos;
<a class="jxr_linenumber" name="276" href="#276">276</a> <strong class="jxr_keyword">try</strong> {
<a class="jxr_linenumber" name="277" href="#277">277</a> fos = <strong class="jxr_keyword">new</strong> FileOutputStream(file);
<a class="jxr_linenumber" name="278" href="#278">278</a> bos = <strong class="jxr_keyword">new</strong> BufferedOutputStream(fos, BUFFER_SIZE);
<a class="jxr_linenumber" name="279" href="#279">279</a> <strong class="jxr_keyword">int</strong> count;
<a class="jxr_linenumber" name="280" href="#280">280</a> <strong class="jxr_keyword">final</strong> byte data[] = <strong class="jxr_keyword">new</strong> byte[BUFFER_SIZE];
<a class="jxr_linenumber" name="281" href="#281">281</a> <strong class="jxr_keyword">while</strong> ((count = zis.read(data, 0, BUFFER_SIZE)) != -1) {
<a class="jxr_linenumber" name="282" href="#282">282</a> bos.write(data, 0, count);
<a class="jxr_linenumber" name="283" href="#283">283</a> }
<a class="jxr_linenumber" name="284" href="#284">284</a> bos.flush();
<a class="jxr_linenumber" name="285" href="#285">285</a> } <strong class="jxr_keyword">catch</strong> (FileNotFoundException ex) {
<a class="jxr_linenumber" name="286" href="#286">286</a> Logger.getLogger(ArchiveAnalyzer.<strong class="jxr_keyword">class</strong>.getName()).log(Level.FINE, <strong class="jxr_keyword">null</strong>, ex);
<a class="jxr_linenumber" name="287" href="#287">287</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/AnalysisException.html">AnalysisException</a>(<span class="jxr_string">"Unable to find file '"</span> + file.getName() + <span class="jxr_string">"'."</span>, ex);
<a class="jxr_linenumber" name="288" href="#288">288</a> } <strong class="jxr_keyword">catch</strong> (IOException ex) {
<a class="jxr_linenumber" name="157" href="#157">157</a> <strong class="jxr_keyword">if</strong> (!tempFileLocation.mkdirs()) {
<a class="jxr_linenumber" name="158" href="#158">158</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/AnalysisException.html">AnalysisException</a>(<span class="jxr_string">"Unable to create directory '"</span> + tempFileLocation.getAbsolutePath() + <span class="jxr_string">"'."</span>);
<a class="jxr_linenumber" name="159" href="#159">159</a> }
<a class="jxr_linenumber" name="160" href="#160">160</a> }
<a class="jxr_linenumber" name="161" href="#161">161</a>
<a class="jxr_linenumber" name="162" href="#162">162</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="163" href="#163">163</a> <em class="jxr_javadoccomment"> * The close method does nothing for this Analyzer.</em>
<a class="jxr_linenumber" name="164" href="#164">164</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="165" href="#165">165</a> <em class="jxr_javadoccomment"> * @throws Exception thrown if there is an exception deleting temporary</em>
<a class="jxr_linenumber" name="166" href="#166">166</a> <em class="jxr_javadoccomment"> * files</em>
<a class="jxr_linenumber" name="167" href="#167">167</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="168" href="#168">168</a> @Override
<a class="jxr_linenumber" name="169" href="#169">169</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">void</strong> close() <strong class="jxr_keyword">throws</strong> Exception {
<a class="jxr_linenumber" name="170" href="#170">170</a> <strong class="jxr_keyword">if</strong> (tempFileLocation != <strong class="jxr_keyword">null</strong> &amp;&amp; tempFileLocation.exists()) {
<a class="jxr_linenumber" name="171" href="#171">171</a> FileUtils.deleteRecursive(tempFileLocation.getAbsolutePath(), <strong class="jxr_keyword">true</strong>);
<a class="jxr_linenumber" name="172" href="#172">172</a> }
<a class="jxr_linenumber" name="173" href="#173">173</a> }
<a class="jxr_linenumber" name="174" href="#174">174</a>
<a class="jxr_linenumber" name="175" href="#175">175</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="176" href="#176">176</a> <em class="jxr_javadoccomment"> * Analyzes a given dependency. If the dependency is an archive, such as a</em>
<a class="jxr_linenumber" name="177" href="#177">177</a> <em class="jxr_javadoccomment"> * WAR or EAR, the contents are extracted, scanned, and added to the list of</em>
<a class="jxr_linenumber" name="178" href="#178">178</a> <em class="jxr_javadoccomment"> * dependencies within the engine.</em>
<a class="jxr_linenumber" name="179" href="#179">179</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="180" href="#180">180</a> <em class="jxr_javadoccomment"> * @param dependency the dependency to analyze</em>
<a class="jxr_linenumber" name="181" href="#181">181</a> <em class="jxr_javadoccomment"> * @param engine the engine scanning</em>
<a class="jxr_linenumber" name="182" href="#182">182</a> <em class="jxr_javadoccomment"> * @throws AnalysisException thrown if there is an analysis exception</em>
<a class="jxr_linenumber" name="183" href="#183">183</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="184" href="#184">184</a> @Override
<a class="jxr_linenumber" name="185" href="#185">185</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">void</strong> analyze(<a href="../../../../org/owasp/dependencycheck/dependency/Dependency.html">Dependency</a> dependency, <a href="../../../../org/owasp/dependencycheck/Engine.html">Engine</a> engine) <strong class="jxr_keyword">throws</strong> AnalysisException {
<a class="jxr_linenumber" name="186" href="#186">186</a> <strong class="jxr_keyword">final</strong> File f = <strong class="jxr_keyword">new</strong> File(dependency.getActualFilePath());
<a class="jxr_linenumber" name="187" href="#187">187</a> <strong class="jxr_keyword">final</strong> File tmpDir = getNextTempDirectory();
<a class="jxr_linenumber" name="188" href="#188">188</a> extractFiles(f, tmpDir, engine);
<a class="jxr_linenumber" name="189" href="#189">189</a>
<a class="jxr_linenumber" name="190" href="#190">190</a> <em class="jxr_comment">//make a copy</em>
<a class="jxr_linenumber" name="191" href="#191">191</a> <strong class="jxr_keyword">final</strong> List&lt;Dependency&gt; dependencies = <strong class="jxr_keyword">new</strong> ArrayList&lt;Dependency&gt;(engine.getDependencies());
<a class="jxr_linenumber" name="192" href="#192">192</a> engine.scan(tmpDir);
<a class="jxr_linenumber" name="193" href="#193">193</a> <strong class="jxr_keyword">final</strong> List&lt;Dependency&gt; newDependencies = engine.getDependencies();
<a class="jxr_linenumber" name="194" href="#194">194</a> <strong class="jxr_keyword">if</strong> (dependencies.size() != newDependencies.size()) {
<a class="jxr_linenumber" name="195" href="#195">195</a> <em class="jxr_comment">//get the new dependencies</em>
<a class="jxr_linenumber" name="196" href="#196">196</a> <strong class="jxr_keyword">final</strong> Set&lt;Dependency&gt; dependencySet = <strong class="jxr_keyword">new</strong> HashSet&lt;Dependency&gt;();
<a class="jxr_linenumber" name="197" href="#197">197</a> dependencySet.addAll(newDependencies);
<a class="jxr_linenumber" name="198" href="#198">198</a> dependencySet.removeAll(dependencies);
<a class="jxr_linenumber" name="199" href="#199">199</a>
<a class="jxr_linenumber" name="200" href="#200">200</a> <strong class="jxr_keyword">for</strong> (Dependency d : dependencySet) {
<a class="jxr_linenumber" name="201" href="#201">201</a> <em class="jxr_comment">//fix the dependency's display name and path</em>
<a class="jxr_linenumber" name="202" href="#202">202</a> <strong class="jxr_keyword">final</strong> String displayPath = String.format(<span class="jxr_string">"%s%s"</span>,
<a class="jxr_linenumber" name="203" href="#203">203</a> dependency.getFilePath(),
<a class="jxr_linenumber" name="204" href="#204">204</a> d.getActualFilePath().substring(tmpDir.getAbsolutePath().length()));
<a class="jxr_linenumber" name="205" href="#205">205</a> <strong class="jxr_keyword">final</strong> String displayName = String.format(<span class="jxr_string">"%s%s%s"</span>,
<a class="jxr_linenumber" name="206" href="#206">206</a> dependency.getFileName(),
<a class="jxr_linenumber" name="207" href="#207">207</a> File.separator,
<a class="jxr_linenumber" name="208" href="#208">208</a> d.getFileName());
<a class="jxr_linenumber" name="209" href="#209">209</a> d.setFilePath(displayPath);
<a class="jxr_linenumber" name="210" href="#210">210</a> d.setFileName(displayName);
<a class="jxr_linenumber" name="211" href="#211">211</a>
<a class="jxr_linenumber" name="212" href="#212">212</a> <em class="jxr_comment">//TODO - can we get more evidence from the parent? EAR contains module name, etc.</em>
<a class="jxr_linenumber" name="213" href="#213">213</a>
<a class="jxr_linenumber" name="214" href="#214">214</a> <em class="jxr_comment">//analyze the dependency (i.e. extract files) if it is a supported type.</em>
<a class="jxr_linenumber" name="215" href="#215">215</a> <strong class="jxr_keyword">if</strong> (<strong class="jxr_keyword">this</strong>.supportsExtension(d.getFileExtension()) &amp;&amp; scanDepth &lt; MAX_SCAN_DEPTH) {
<a class="jxr_linenumber" name="216" href="#216">216</a> scanDepth += 1;
<a class="jxr_linenumber" name="217" href="#217">217</a> analyze(d, engine);
<a class="jxr_linenumber" name="218" href="#218">218</a> scanDepth -= 1;
<a class="jxr_linenumber" name="219" href="#219">219</a> }
<a class="jxr_linenumber" name="220" href="#220">220</a> }
<a class="jxr_linenumber" name="221" href="#221">221</a> }
<a class="jxr_linenumber" name="222" href="#222">222</a> Collections.sort(engine.getDependencies());
<a class="jxr_linenumber" name="223" href="#223">223</a> }
<a class="jxr_linenumber" name="224" href="#224">224</a>
<a class="jxr_linenumber" name="225" href="#225">225</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="226" href="#226">226</a> <em class="jxr_javadoccomment"> * Retrieves the next temporary directory to extract an archive too.</em>
<a class="jxr_linenumber" name="227" href="#227">227</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="228" href="#228">228</a> <em class="jxr_javadoccomment"> * @return a directory</em>
<a class="jxr_linenumber" name="229" href="#229">229</a> <em class="jxr_javadoccomment"> * @throws AnalysisException thrown if unable to create temporary directory</em>
<a class="jxr_linenumber" name="230" href="#230">230</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="231" href="#231">231</a> <strong class="jxr_keyword">private</strong> File getNextTempDirectory() <strong class="jxr_keyword">throws</strong> AnalysisException {
<a class="jxr_linenumber" name="232" href="#232">232</a> dirCount += 1;
<a class="jxr_linenumber" name="233" href="#233">233</a> <strong class="jxr_keyword">final</strong> File directory = <strong class="jxr_keyword">new</strong> File(tempFileLocation, String.valueOf(dirCount));
<a class="jxr_linenumber" name="234" href="#234">234</a> <strong class="jxr_keyword">if</strong> (!directory.mkdirs()) {
<a class="jxr_linenumber" name="235" href="#235">235</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/AnalysisException.html">AnalysisException</a>(<span class="jxr_string">"Unable to create temp directory '"</span> + directory.getAbsolutePath() + <span class="jxr_string">"'."</span>);
<a class="jxr_linenumber" name="236" href="#236">236</a> }
<a class="jxr_linenumber" name="237" href="#237">237</a> <strong class="jxr_keyword">return</strong> directory;
<a class="jxr_linenumber" name="238" href="#238">238</a> }
<a class="jxr_linenumber" name="239" href="#239">239</a>
<a class="jxr_linenumber" name="240" href="#240">240</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="241" href="#241">241</a> <em class="jxr_javadoccomment"> * Extracts the contents of an archive into the specified directory.</em>
<a class="jxr_linenumber" name="242" href="#242">242</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="243" href="#243">243</a> <em class="jxr_javadoccomment"> * @param archive an archive file such as a WAR or EAR</em>
<a class="jxr_linenumber" name="244" href="#244">244</a> <em class="jxr_javadoccomment"> * @param extractTo a directory to extract the contents to</em>
<a class="jxr_linenumber" name="245" href="#245">245</a> <em class="jxr_javadoccomment"> * @param engine the scanning engine</em>
<a class="jxr_linenumber" name="246" href="#246">246</a> <em class="jxr_javadoccomment"> * @throws AnalysisException thrown if the archive is not found</em>
<a class="jxr_linenumber" name="247" href="#247">247</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="248" href="#248">248</a> <strong class="jxr_keyword">private</strong> <strong class="jxr_keyword">void</strong> extractFiles(File archive, File extractTo, <a href="../../../../org/owasp/dependencycheck/Engine.html">Engine</a> engine) <strong class="jxr_keyword">throws</strong> AnalysisException {
<a class="jxr_linenumber" name="249" href="#249">249</a> <strong class="jxr_keyword">if</strong> (archive == <strong class="jxr_keyword">null</strong> || extractTo == <strong class="jxr_keyword">null</strong>) {
<a class="jxr_linenumber" name="250" href="#250">250</a> <strong class="jxr_keyword">return</strong>;
<a class="jxr_linenumber" name="251" href="#251">251</a> }
<a class="jxr_linenumber" name="252" href="#252">252</a>
<a class="jxr_linenumber" name="253" href="#253">253</a> FileInputStream fis = <strong class="jxr_keyword">null</strong>;
<a class="jxr_linenumber" name="254" href="#254">254</a> <em class="jxr_comment">//ZipInputStream zis = null;</em>
<a class="jxr_linenumber" name="255" href="#255">255</a> ZipArchiveInputStream zis = <strong class="jxr_keyword">null</strong>;
<a class="jxr_linenumber" name="256" href="#256">256</a>
<a class="jxr_linenumber" name="257" href="#257">257</a> <strong class="jxr_keyword">try</strong> {
<a class="jxr_linenumber" name="258" href="#258">258</a> fis = <strong class="jxr_keyword">new</strong> FileInputStream(archive);
<a class="jxr_linenumber" name="259" href="#259">259</a> } <strong class="jxr_keyword">catch</strong> (FileNotFoundException ex) {
<a class="jxr_linenumber" name="260" href="#260">260</a> Logger.getLogger(ArchiveAnalyzer.<strong class="jxr_keyword">class</strong>.getName()).log(Level.INFO, <strong class="jxr_keyword">null</strong>, ex);
<a class="jxr_linenumber" name="261" href="#261">261</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/AnalysisException.html">AnalysisException</a>(<span class="jxr_string">"Archive file was not found."</span>, ex);
<a class="jxr_linenumber" name="262" href="#262">262</a> }
<a class="jxr_linenumber" name="263" href="#263">263</a> zis = <strong class="jxr_keyword">new</strong> ZipArchiveInputStream(<strong class="jxr_keyword">new</strong> BufferedInputStream(fis));
<a class="jxr_linenumber" name="264" href="#264">264</a> ZipArchiveEntry entry;
<a class="jxr_linenumber" name="265" href="#265">265</a>
<a class="jxr_linenumber" name="266" href="#266">266</a> <strong class="jxr_keyword">try</strong> {
<a class="jxr_linenumber" name="267" href="#267">267</a> <strong class="jxr_keyword">while</strong> ((entry = zis.getNextZipEntry()) != <strong class="jxr_keyword">null</strong>) {
<a class="jxr_linenumber" name="268" href="#268">268</a> <strong class="jxr_keyword">if</strong> (entry.isDirectory()) {
<a class="jxr_linenumber" name="269" href="#269">269</a> <strong class="jxr_keyword">final</strong> File d = <strong class="jxr_keyword">new</strong> File(extractTo, entry.getName());
<a class="jxr_linenumber" name="270" href="#270">270</a> <strong class="jxr_keyword">if</strong> (!d.mkdirs()) {
<a class="jxr_linenumber" name="271" href="#271">271</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/AnalysisException.html">AnalysisException</a>(<span class="jxr_string">"Unable to create '"</span> + d.getAbsolutePath() + <span class="jxr_string">"'."</span>);
<a class="jxr_linenumber" name="272" href="#272">272</a> }
<a class="jxr_linenumber" name="273" href="#273">273</a> } <strong class="jxr_keyword">else</strong> {
<a class="jxr_linenumber" name="274" href="#274">274</a> <strong class="jxr_keyword">final</strong> File file = <strong class="jxr_keyword">new</strong> File(extractTo, entry.getName());
<a class="jxr_linenumber" name="275" href="#275">275</a> <strong class="jxr_keyword">final</strong> String ext = org.owasp.dependencycheck.utils.FileUtils.getFileExtension(file.getName());
<a class="jxr_linenumber" name="276" href="#276">276</a> <strong class="jxr_keyword">if</strong> (engine.supportsExtension(ext)) {
<a class="jxr_linenumber" name="277" href="#277">277</a> BufferedOutputStream bos = <strong class="jxr_keyword">null</strong>;
<a class="jxr_linenumber" name="278" href="#278">278</a> FileOutputStream fos;
<a class="jxr_linenumber" name="279" href="#279">279</a> <strong class="jxr_keyword">try</strong> {
<a class="jxr_linenumber" name="280" href="#280">280</a> fos = <strong class="jxr_keyword">new</strong> FileOutputStream(file);
<a class="jxr_linenumber" name="281" href="#281">281</a> bos = <strong class="jxr_keyword">new</strong> BufferedOutputStream(fos, BUFFER_SIZE);
<a class="jxr_linenumber" name="282" href="#282">282</a> <strong class="jxr_keyword">int</strong> count;
<a class="jxr_linenumber" name="283" href="#283">283</a> <strong class="jxr_keyword">final</strong> byte data[] = <strong class="jxr_keyword">new</strong> byte[BUFFER_SIZE];
<a class="jxr_linenumber" name="284" href="#284">284</a> <strong class="jxr_keyword">while</strong> ((count = zis.read(data, 0, BUFFER_SIZE)) != -1) {
<a class="jxr_linenumber" name="285" href="#285">285</a> bos.write(data, 0, count);
<a class="jxr_linenumber" name="286" href="#286">286</a> }
<a class="jxr_linenumber" name="287" href="#287">287</a> bos.flush();
<a class="jxr_linenumber" name="288" href="#288">288</a> } <strong class="jxr_keyword">catch</strong> (FileNotFoundException ex) {
<a class="jxr_linenumber" name="289" href="#289">289</a> Logger.getLogger(ArchiveAnalyzer.<strong class="jxr_keyword">class</strong>.getName()).log(Level.FINE, <strong class="jxr_keyword">null</strong>, ex);
<a class="jxr_linenumber" name="290" href="#290">290</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/AnalysisException.html">AnalysisException</a>(<span class="jxr_string">"IO Exception while parsing file '"</span> + file.getName() + <span class="jxr_string">"'."</span>, ex);
<a class="jxr_linenumber" name="291" href="#291">291</a> } <strong class="jxr_keyword">finally</strong> {
<a class="jxr_linenumber" name="292" href="#292">292</a> <strong class="jxr_keyword">if</strong> (bos != <strong class="jxr_keyword">null</strong>) {
<a class="jxr_linenumber" name="293" href="#293">293</a> <strong class="jxr_keyword">try</strong> {
<a class="jxr_linenumber" name="294" href="#294">294</a> bos.close();
<a class="jxr_linenumber" name="295" href="#295">295</a> } <strong class="jxr_keyword">catch</strong> (IOException ex) {
<a class="jxr_linenumber" name="296" href="#296">296</a> Logger.getLogger(ArchiveAnalyzer.<strong class="jxr_keyword">class</strong>.getName()).log(Level.FINEST, <strong class="jxr_keyword">null</strong>, ex);
<a class="jxr_linenumber" name="297" href="#297">297</a> }
<a class="jxr_linenumber" name="298" href="#298">298</a> }
<a class="jxr_linenumber" name="299" href="#299">299</a> }
<a class="jxr_linenumber" name="300" href="#300">300</a> }
<a class="jxr_linenumber" name="301" href="#301">301</a> }
<a class="jxr_linenumber" name="302" href="#302">302</a> }
<a class="jxr_linenumber" name="303" href="#303">303</a> } <strong class="jxr_keyword">catch</strong> (IOException ex) {
<a class="jxr_linenumber" name="304" href="#304">304</a> <strong class="jxr_keyword">final</strong> String msg = String.format(<span class="jxr_string">"Exception reading archive '%s'."</span>, archive.getName());
<a class="jxr_linenumber" name="305" href="#305">305</a> Logger.getLogger(ArchiveAnalyzer.<strong class="jxr_keyword">class</strong>.getName()).log(Level.WARNING, msg);
<a class="jxr_linenumber" name="306" href="#306">306</a> Logger.getLogger(ArchiveAnalyzer.<strong class="jxr_keyword">class</strong>.getName()).log(Level.FINE, <strong class="jxr_keyword">null</strong>, ex);
<a class="jxr_linenumber" name="307" href="#307">307</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/AnalysisException.html">AnalysisException</a>(msg, ex);
<a class="jxr_linenumber" name="308" href="#308">308</a> } <strong class="jxr_keyword">catch</strong> (Throwable ex) {
<a class="jxr_linenumber" name="309" href="#309">309</a> <strong class="jxr_keyword">final</strong> String msg = String.format(<span class="jxr_string">"Exception reading archive '%s'."</span>, archive.getName());
<a class="jxr_linenumber" name="310" href="#310">310</a> Logger.getLogger(ArchiveAnalyzer.<strong class="jxr_keyword">class</strong>.getName()).log(Level.WARNING, msg);
<a class="jxr_linenumber" name="311" href="#311">311</a> Logger.getLogger(ArchiveAnalyzer.<strong class="jxr_keyword">class</strong>.getName()).log(Level.WARNING, <strong class="jxr_keyword">null</strong>, ex);
<a class="jxr_linenumber" name="312" href="#312">312</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/AnalysisException.html">AnalysisException</a>(msg, ex);
<a class="jxr_linenumber" name="313" href="#313">313</a> } <strong class="jxr_keyword">finally</strong> {
<a class="jxr_linenumber" name="314" href="#314">314</a> <strong class="jxr_keyword">try</strong> {
<a class="jxr_linenumber" name="315" href="#315">315</a> zis.close();
<a class="jxr_linenumber" name="316" href="#316">316</a> } <strong class="jxr_keyword">catch</strong> (IOException ex) {
<a class="jxr_linenumber" name="317" href="#317">317</a> Logger.getLogger(ArchiveAnalyzer.<strong class="jxr_keyword">class</strong>.getName()).log(Level.FINEST, <strong class="jxr_keyword">null</strong>, ex);
<a class="jxr_linenumber" name="318" href="#318">318</a> }
<a class="jxr_linenumber" name="319" href="#319">319</a> }
<a class="jxr_linenumber" name="320" href="#320">320</a> }
<a class="jxr_linenumber" name="321" href="#321">321</a> }
<a class="jxr_linenumber" name="290" href="#290">290</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/AnalysisException.html">AnalysisException</a>(<span class="jxr_string">"Unable to find file '"</span> + file.getName() + <span class="jxr_string">"'."</span>, ex);
<a class="jxr_linenumber" name="291" href="#291">291</a> } <strong class="jxr_keyword">catch</strong> (IOException ex) {
<a class="jxr_linenumber" name="292" href="#292">292</a> Logger.getLogger(ArchiveAnalyzer.<strong class="jxr_keyword">class</strong>.getName()).log(Level.FINE, <strong class="jxr_keyword">null</strong>, ex);
<a class="jxr_linenumber" name="293" href="#293">293</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/AnalysisException.html">AnalysisException</a>(<span class="jxr_string">"IO Exception while parsing file '"</span> + file.getName() + <span class="jxr_string">"'."</span>, ex);
<a class="jxr_linenumber" name="294" href="#294">294</a> } <strong class="jxr_keyword">finally</strong> {
<a class="jxr_linenumber" name="295" href="#295">295</a> <strong class="jxr_keyword">if</strong> (bos != <strong class="jxr_keyword">null</strong>) {
<a class="jxr_linenumber" name="296" href="#296">296</a> <strong class="jxr_keyword">try</strong> {
<a class="jxr_linenumber" name="297" href="#297">297</a> bos.close();
<a class="jxr_linenumber" name="298" href="#298">298</a> } <strong class="jxr_keyword">catch</strong> (IOException ex) {
<a class="jxr_linenumber" name="299" href="#299">299</a> Logger.getLogger(ArchiveAnalyzer.<strong class="jxr_keyword">class</strong>.getName()).log(Level.FINEST, <strong class="jxr_keyword">null</strong>, ex);
<a class="jxr_linenumber" name="300" href="#300">300</a> }
<a class="jxr_linenumber" name="301" href="#301">301</a> }
<a class="jxr_linenumber" name="302" href="#302">302</a> }
<a class="jxr_linenumber" name="303" href="#303">303</a> }
<a class="jxr_linenumber" name="304" href="#304">304</a> }
<a class="jxr_linenumber" name="305" href="#305">305</a> }
<a class="jxr_linenumber" name="306" href="#306">306</a> } <strong class="jxr_keyword">catch</strong> (IOException ex) {
<a class="jxr_linenumber" name="307" href="#307">307</a> <strong class="jxr_keyword">final</strong> String msg = String.format(<span class="jxr_string">"Exception reading archive '%s'."</span>, archive.getName());
<a class="jxr_linenumber" name="308" href="#308">308</a> Logger.getLogger(ArchiveAnalyzer.<strong class="jxr_keyword">class</strong>.getName()).log(Level.WARNING, msg);
<a class="jxr_linenumber" name="309" href="#309">309</a> Logger.getLogger(ArchiveAnalyzer.<strong class="jxr_keyword">class</strong>.getName()).log(Level.FINE, <strong class="jxr_keyword">null</strong>, ex);
<a class="jxr_linenumber" name="310" href="#310">310</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/AnalysisException.html">AnalysisException</a>(msg, ex);
<a class="jxr_linenumber" name="311" href="#311">311</a> } <strong class="jxr_keyword">catch</strong> (Throwable ex) {
<a class="jxr_linenumber" name="312" href="#312">312</a> <strong class="jxr_keyword">final</strong> String msg = String.format(<span class="jxr_string">"Exception reading archive '%s'."</span>, archive.getName());
<a class="jxr_linenumber" name="313" href="#313">313</a> Logger.getLogger(ArchiveAnalyzer.<strong class="jxr_keyword">class</strong>.getName()).log(Level.WARNING, msg);
<a class="jxr_linenumber" name="314" href="#314">314</a> Logger.getLogger(ArchiveAnalyzer.<strong class="jxr_keyword">class</strong>.getName()).log(Level.WARNING, <strong class="jxr_keyword">null</strong>, ex);
<a class="jxr_linenumber" name="315" href="#315">315</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/AnalysisException.html">AnalysisException</a>(msg, ex);
<a class="jxr_linenumber" name="316" href="#316">316</a> } <strong class="jxr_keyword">finally</strong> {
<a class="jxr_linenumber" name="317" href="#317">317</a> <strong class="jxr_keyword">try</strong> {
<a class="jxr_linenumber" name="318" href="#318">318</a> zis.close();
<a class="jxr_linenumber" name="319" href="#319">319</a> } <strong class="jxr_keyword">catch</strong> (IOException ex) {
<a class="jxr_linenumber" name="320" href="#320">320</a> Logger.getLogger(ArchiveAnalyzer.<strong class="jxr_keyword">class</strong>.getName()).log(Level.FINEST, <strong class="jxr_keyword">null</strong>, ex);
<a class="jxr_linenumber" name="321" href="#321">321</a> }
<a class="jxr_linenumber" name="322" href="#322">322</a> }
<a class="jxr_linenumber" name="323" href="#323">323</a> }
<a class="jxr_linenumber" name="324" href="#324">324</a> }
</pre>
<hr/><div id="footer">This page was automatically generated by <a href="http://maven.apache.org/">Maven</a></div></body>
</html>

699
dependency-check-core/xref/org/owasp/dependencycheck/analyzer/CPEAnalyzer.html
View File

@@ -454,360 +454,363 @@
<a class="jxr_linenumber" name="444" href="#444">444</a> <em class="jxr_comment">//&lt;/editor-fold&gt;</em>
<a class="jxr_linenumber" name="445" href="#445">445</a>
<a class="jxr_linenumber" name="446" href="#446">446</a> <em class="jxr_comment">//TODO - likely need to change the split... not sure if this will work for CPE with special chars</em>
<a class="jxr_linenumber" name="447" href="#447">447</a> <strong class="jxr_keyword">final</strong> String[] words = text.split(<span class="jxr_string">"[&#92;&#92;s_-]"</span>);
<a class="jxr_linenumber" name="448" href="#448">448</a> <strong class="jxr_keyword">final</strong> List&lt;String&gt; list = <strong class="jxr_keyword">new</strong> ArrayList&lt;String&gt;();
<a class="jxr_linenumber" name="449" href="#449">449</a> String tempWord = <strong class="jxr_keyword">null</strong>;
<a class="jxr_linenumber" name="450" href="#450">450</a> <strong class="jxr_keyword">for</strong> (String word : words) {
<a class="jxr_linenumber" name="451" href="#451">451</a> <em class="jxr_comment">//single letter words should be concatonated with the next word.</em>
<a class="jxr_linenumber" name="452" href="#452">452</a> <em class="jxr_comment">// so { "m", "core", "sample" } -&gt; { "mcore", "sample" }</em>
<a class="jxr_linenumber" name="453" href="#453">453</a> <strong class="jxr_keyword">if</strong> (tempWord != <strong class="jxr_keyword">null</strong>) {
<a class="jxr_linenumber" name="454" href="#454">454</a> list.add(tempWord + word);
<a class="jxr_linenumber" name="455" href="#455">455</a> tempWord = <strong class="jxr_keyword">null</strong>;
<a class="jxr_linenumber" name="456" href="#456">456</a> } <strong class="jxr_keyword">else</strong> <strong class="jxr_keyword">if</strong> (word.length() &lt;= 2) {
<a class="jxr_linenumber" name="457" href="#457">457</a> tempWord = word;
<a class="jxr_linenumber" name="458" href="#458">458</a> } <strong class="jxr_keyword">else</strong> {
<a class="jxr_linenumber" name="459" href="#459">459</a> list.add(word);
<a class="jxr_linenumber" name="460" href="#460">460</a> }
<a class="jxr_linenumber" name="461" href="#461">461</a> }
<a class="jxr_linenumber" name="462" href="#462">462</a> <strong class="jxr_keyword">if</strong> (tempWord != <strong class="jxr_keyword">null</strong> &amp;&amp; !list.isEmpty()) {
<a class="jxr_linenumber" name="463" href="#463">463</a> <strong class="jxr_keyword">final</strong> String tmp = list.get(list.size() - 1) + tempWord;
<a class="jxr_linenumber" name="464" href="#464">464</a> list.add(tmp);
<a class="jxr_linenumber" name="465" href="#465">465</a> }
<a class="jxr_linenumber" name="466" href="#466">466</a> <strong class="jxr_keyword">boolean</strong> contains = <strong class="jxr_keyword">true</strong>;
<a class="jxr_linenumber" name="467" href="#467">467</a> <strong class="jxr_keyword">for</strong> (String word : list) {
<a class="jxr_linenumber" name="468" href="#468">468</a> contains &amp;= ec.containsUsedString(word);
<a class="jxr_linenumber" name="469" href="#469">469</a> }
<a class="jxr_linenumber" name="470" href="#470">470</a> <strong class="jxr_keyword">return</strong> contains;
<a class="jxr_linenumber" name="471" href="#471">471</a> }
<a class="jxr_linenumber" name="472" href="#472">472</a>
<a class="jxr_linenumber" name="473" href="#473">473</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="474" href="#474">474</a> <em class="jxr_javadoccomment"> * Analyzes a dependency and attempts to determine if there are any CPE</em>
<a class="jxr_linenumber" name="475" href="#475">475</a> <em class="jxr_javadoccomment"> * identifiers for this dependency.</em>
<a class="jxr_linenumber" name="476" href="#476">476</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="477" href="#477">477</a> <em class="jxr_javadoccomment"> * @param dependency The Dependency to analyze.</em>
<a class="jxr_linenumber" name="478" href="#478">478</a> <em class="jxr_javadoccomment"> * @param engine The analysis engine</em>
<a class="jxr_linenumber" name="479" href="#479">479</a> <em class="jxr_javadoccomment"> * @throws AnalysisException is thrown if there is an issue analyzing the</em>
<a class="jxr_linenumber" name="480" href="#480">480</a> <em class="jxr_javadoccomment"> * dependency.</em>
<a class="jxr_linenumber" name="481" href="#481">481</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="482" href="#482">482</a> @Override
<a class="jxr_linenumber" name="483" href="#483">483</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">void</strong> analyze(<a href="../../../../org/owasp/dependencycheck/dependency/Dependency.html">Dependency</a> dependency, <a href="../../../../org/owasp/dependencycheck/Engine.html">Engine</a> engine) <strong class="jxr_keyword">throws</strong> AnalysisException {
<a class="jxr_linenumber" name="484" href="#484">484</a> <strong class="jxr_keyword">try</strong> {
<a class="jxr_linenumber" name="485" href="#485">485</a> determineCPE(dependency);
<a class="jxr_linenumber" name="486" href="#486">486</a> } <strong class="jxr_keyword">catch</strong> (CorruptIndexException ex) {
<a class="jxr_linenumber" name="487" href="#487">487</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/AnalysisException.html">AnalysisException</a>(<span class="jxr_string">"CPE Index is corrupt."</span>, ex);
<a class="jxr_linenumber" name="488" href="#488">488</a> } <strong class="jxr_keyword">catch</strong> (IOException ex) {
<a class="jxr_linenumber" name="489" href="#489">489</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/AnalysisException.html">AnalysisException</a>(<span class="jxr_string">"Failure opening the CPE Index."</span>, ex);
<a class="jxr_linenumber" name="490" href="#490">490</a> } <strong class="jxr_keyword">catch</strong> (ParseException ex) {
<a class="jxr_linenumber" name="491" href="#491">491</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/AnalysisException.html">AnalysisException</a>(<span class="jxr_string">"Unable to parse the generated Lucene query for this dependency."</span>, ex);
<a class="jxr_linenumber" name="492" href="#492">492</a> }
<a class="jxr_linenumber" name="493" href="#493">493</a> }
<a class="jxr_linenumber" name="494" href="#494">494</a>
<a class="jxr_linenumber" name="495" href="#495">495</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="496" href="#496">496</a> <em class="jxr_javadoccomment"> * Returns true because this analyzer supports all dependency types.</em>
<a class="jxr_linenumber" name="497" href="#497">497</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="498" href="#498">498</a> <em class="jxr_javadoccomment"> * @return true.</em>
<a class="jxr_linenumber" name="499" href="#499">499</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="500" href="#500">500</a> @Override
<a class="jxr_linenumber" name="501" href="#501">501</a> <strong class="jxr_keyword">public</strong> Set&lt;String&gt; getSupportedExtensions() {
<a class="jxr_linenumber" name="502" href="#502">502</a> <strong class="jxr_keyword">return</strong> <strong class="jxr_keyword">null</strong>;
<a class="jxr_linenumber" name="503" href="#503">503</a> }
<a class="jxr_linenumber" name="504" href="#504">504</a>
<a class="jxr_linenumber" name="505" href="#505">505</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="506" href="#506">506</a> <em class="jxr_javadoccomment"> * Returns the name of this analyzer.</em>
<a class="jxr_linenumber" name="507" href="#507">507</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="508" href="#508">508</a> <em class="jxr_javadoccomment"> * @return the name of this analyzer.</em>
<a class="jxr_linenumber" name="509" href="#509">509</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="510" href="#510">510</a> @Override
<a class="jxr_linenumber" name="511" href="#511">511</a> <strong class="jxr_keyword">public</strong> String getName() {
<a class="jxr_linenumber" name="512" href="#512">512</a> <strong class="jxr_keyword">return</strong> <span class="jxr_string">"CPE Analyzer"</span>;
<a class="jxr_linenumber" name="513" href="#513">513</a> }
<a class="jxr_linenumber" name="514" href="#514">514</a>
<a class="jxr_linenumber" name="515" href="#515">515</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="516" href="#516">516</a> <em class="jxr_javadoccomment"> * Returns true because this analyzer supports all dependency types.</em>
<a class="jxr_linenumber" name="517" href="#517">517</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="518" href="#518">518</a> <em class="jxr_javadoccomment"> * @param extension the file extension of the dependency being analyzed.</em>
<a class="jxr_linenumber" name="519" href="#519">519</a> <em class="jxr_javadoccomment"> * @return true.</em>
<a class="jxr_linenumber" name="520" href="#520">520</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="521" href="#521">521</a> @Override
<a class="jxr_linenumber" name="522" href="#522">522</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">boolean</strong> supportsExtension(String extension) {
<a class="jxr_linenumber" name="523" href="#523">523</a> <strong class="jxr_keyword">return</strong> <strong class="jxr_keyword">true</strong>;
<a class="jxr_linenumber" name="524" href="#524">524</a> }
<a class="jxr_linenumber" name="525" href="#525">525</a>
<a class="jxr_linenumber" name="526" href="#526">526</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="527" href="#527">527</a> <em class="jxr_javadoccomment"> * Returns the analysis phase that this analyzer should run in.</em>
<a class="jxr_linenumber" name="528" href="#528">528</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="529" href="#529">529</a> <em class="jxr_javadoccomment"> * @return the analysis phase that this analyzer should run in.</em>
<a class="jxr_linenumber" name="530" href="#530">530</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="531" href="#531">531</a> @Override
<a class="jxr_linenumber" name="532" href="#532">532</a> <strong class="jxr_keyword">public</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/AnalysisPhase.html">AnalysisPhase</a> getAnalysisPhase() {
<a class="jxr_linenumber" name="533" href="#533">533</a> <strong class="jxr_keyword">return</strong> AnalysisPhase.IDENTIFIER_ANALYSIS;
<a class="jxr_linenumber" name="534" href="#534">534</a> }
<a class="jxr_linenumber" name="535" href="#535">535</a>
<a class="jxr_linenumber" name="536" href="#536">536</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="537" href="#537">537</a> <em class="jxr_javadoccomment"> * Opens the CPE Lucene Index.</em>
<a class="jxr_linenumber" name="538" href="#538">538</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="539" href="#539">539</a> <em class="jxr_javadoccomment"> * @throws Exception is thrown if there is an issue opening the index.</em>
<a class="jxr_linenumber" name="540" href="#540">540</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="541" href="#541">541</a> @Override
<a class="jxr_linenumber" name="542" href="#542">542</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">void</strong> initialize() <strong class="jxr_keyword">throws</strong> Exception {
<a class="jxr_linenumber" name="543" href="#543">543</a> <strong class="jxr_keyword">this</strong>.open();
<a class="jxr_linenumber" name="544" href="#544">544</a> }
<a class="jxr_linenumber" name="545" href="#545">545</a>
<a class="jxr_linenumber" name="546" href="#546">546</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="547" href="#547">547</a> <em class="jxr_javadoccomment"> * Retrieves a list of CPE values from the CveDB based on the vendor and</em>
<a class="jxr_linenumber" name="548" href="#548">548</a> <em class="jxr_javadoccomment"> * product passed in. The list is then validated to find only CPEs that are</em>
<a class="jxr_linenumber" name="549" href="#549">549</a> <em class="jxr_javadoccomment"> * valid for the given dependency. It is possible that the CPE identified is</em>
<a class="jxr_linenumber" name="550" href="#550">550</a> <em class="jxr_javadoccomment"> * a best effort "guess" based on the vendor, product, and version</em>
<a class="jxr_linenumber" name="551" href="#551">551</a> <em class="jxr_javadoccomment"> * information.</em>
<a class="jxr_linenumber" name="552" href="#552">552</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="553" href="#553">553</a> <em class="jxr_javadoccomment"> * @param dependency the Dependency being analyzed</em>
<a class="jxr_linenumber" name="554" href="#554">554</a> <em class="jxr_javadoccomment"> * @param vendor the vendor for the CPE being analyzed</em>
<a class="jxr_linenumber" name="555" href="#555">555</a> <em class="jxr_javadoccomment"> * @param product the product for the CPE being analyzed</em>
<a class="jxr_linenumber" name="556" href="#556">556</a> <em class="jxr_javadoccomment"> * @throws UnsupportedEncodingException is thrown if UTF-8 is not supported</em>
<a class="jxr_linenumber" name="557" href="#557">557</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="558" href="#558">558</a> <strong class="jxr_keyword">private</strong> <strong class="jxr_keyword">void</strong> determineIdentifiers(<a href="../../../../org/owasp/dependencycheck/dependency/Dependency.html">Dependency</a> dependency, String vendor, String product) <strong class="jxr_keyword">throws</strong> UnsupportedEncodingException {
<a class="jxr_linenumber" name="559" href="#559">559</a> <strong class="jxr_keyword">final</strong> Set&lt;VulnerableSoftware&gt; cpes = cve.getCPEs(vendor, product);
<a class="jxr_linenumber" name="560" href="#560">560</a> <a href="../../../../org/owasp/dependencycheck/utils/DependencyVersion.html">DependencyVersion</a> bestGuess = <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/utils/DependencyVersion.html">DependencyVersion</a>(<span class="jxr_string">"-"</span>);
<a class="jxr_linenumber" name="561" href="#561">561</a> <a href="../../../../org/owasp/dependencycheck/dependency/Evidence.html">Confidence</a> bestGuessConf = <strong class="jxr_keyword">null</strong>;
<a class="jxr_linenumber" name="562" href="#562">562</a> <strong class="jxr_keyword">final</strong> List&lt;IdentifierMatch&gt; collected = <strong class="jxr_keyword">new</strong> ArrayList&lt;IdentifierMatch&gt;();
<a class="jxr_linenumber" name="563" href="#563">563</a> <strong class="jxr_keyword">for</strong> (Confidence conf : Confidence.values()) {
<a class="jxr_linenumber" name="564" href="#564">564</a> <strong class="jxr_keyword">for</strong> (Evidence evidence : dependency.getVersionEvidence().iterator(conf)) {
<a class="jxr_linenumber" name="565" href="#565">565</a> <strong class="jxr_keyword">final</strong> <a href="../../../../org/owasp/dependencycheck/utils/DependencyVersion.html">DependencyVersion</a> evVer = DependencyVersionUtil.parseVersion(evidence.getValue());
<a class="jxr_linenumber" name="566" href="#566">566</a> <strong class="jxr_keyword">if</strong> (evVer == <strong class="jxr_keyword">null</strong>) {
<a class="jxr_linenumber" name="567" href="#567">567</a> <strong class="jxr_keyword">continue</strong>;
<a class="jxr_linenumber" name="568" href="#568">568</a> }
<a class="jxr_linenumber" name="569" href="#569">569</a> <strong class="jxr_keyword">for</strong> (VulnerableSoftware vs : cpes) {
<a class="jxr_linenumber" name="570" href="#570">570</a> <a href="../../../../org/owasp/dependencycheck/utils/DependencyVersion.html">DependencyVersion</a> dbVer;
<a class="jxr_linenumber" name="571" href="#571">571</a> <strong class="jxr_keyword">if</strong> (vs.getRevision() != <strong class="jxr_keyword">null</strong> &amp;&amp; !vs.getRevision().isEmpty()) {
<a class="jxr_linenumber" name="572" href="#572">572</a> dbVer = DependencyVersionUtil.parseVersion(vs.getVersion() + <span class="jxr_string">"."</span> + vs.getRevision());
<a class="jxr_linenumber" name="573" href="#573">573</a> } <strong class="jxr_keyword">else</strong> {
<a class="jxr_linenumber" name="574" href="#574">574</a> dbVer = DependencyVersionUtil.parseVersion(vs.getVersion());
<a class="jxr_linenumber" name="575" href="#575">575</a> }
<a class="jxr_linenumber" name="576" href="#576">576</a> <strong class="jxr_keyword">if</strong> (dbVer == <strong class="jxr_keyword">null</strong> <em class="jxr_comment">//special case, no version specified - everything is vulnerable</em>
<a class="jxr_linenumber" name="577" href="#577">577</a> || evVer.equals(dbVer)) { <em class="jxr_comment">//woot exect match</em>
<a class="jxr_linenumber" name="578" href="#578">578</a> <strong class="jxr_keyword">final</strong> String url = String.format(<span class="jxr_string">"http://web.nvd.nist.gov/view/vuln/search?cpe=%s"</span>, URLEncoder.encode(vs.getName(), <span class="jxr_string">"UTF-8"</span>));
<a class="jxr_linenumber" name="579" href="#579">579</a> <strong class="jxr_keyword">final</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/CPEAnalyzer.html">IdentifierMatch</a> match = <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/CPEAnalyzer.html">IdentifierMatch</a>(<span class="jxr_string">"cpe"</span>, vs.getName(), url, IdentifierConfidence.EXACT_MATCH, conf);
<a class="jxr_linenumber" name="580" href="#580">580</a> collected.add(match);
<a class="jxr_linenumber" name="581" href="#581">581</a> } <strong class="jxr_keyword">else</strong> {
<a class="jxr_linenumber" name="582" href="#582">582</a> <em class="jxr_comment">//TODO the following isn't quite right is it? need to think about this guessing game a bit more.</em>
<a class="jxr_linenumber" name="583" href="#583">583</a> <strong class="jxr_keyword">if</strong> (evVer.getVersionParts().size() &lt;= dbVer.getVersionParts().size()
<a class="jxr_linenumber" name="584" href="#584">584</a> &amp;&amp; evVer.matchesAtLeastThreeLevels(dbVer)) {
<a class="jxr_linenumber" name="585" href="#585">585</a> <strong class="jxr_keyword">if</strong> (bestGuessConf == <strong class="jxr_keyword">null</strong> || bestGuessConf.compareTo(conf) &gt; 0) {
<a class="jxr_linenumber" name="586" href="#586">586</a> <strong class="jxr_keyword">if</strong> (bestGuess.getVersionParts().size() &lt; dbVer.getVersionParts().size()) {
<a class="jxr_linenumber" name="587" href="#587">587</a> bestGuess = dbVer;
<a class="jxr_linenumber" name="588" href="#588">588</a> bestGuessConf = conf;
<a class="jxr_linenumber" name="589" href="#589">589</a> }
<a class="jxr_linenumber" name="590" href="#590">590</a> }
<a class="jxr_linenumber" name="591" href="#591">591</a> }
<a class="jxr_linenumber" name="592" href="#592">592</a> }
<a class="jxr_linenumber" name="593" href="#593">593</a> }
<a class="jxr_linenumber" name="594" href="#594">594</a> <strong class="jxr_keyword">if</strong> (bestGuessConf == <strong class="jxr_keyword">null</strong> || bestGuessConf.compareTo(conf) &gt; 0) {
<a class="jxr_linenumber" name="595" href="#595">595</a> <strong class="jxr_keyword">if</strong> (bestGuess.getVersionParts().size() &lt; evVer.getVersionParts().size()) {
<a class="jxr_linenumber" name="596" href="#596">596</a> bestGuess = evVer;
<a class="jxr_linenumber" name="597" href="#597">597</a> bestGuessConf = conf;
<a class="jxr_linenumber" name="598" href="#598">598</a> }
<a class="jxr_linenumber" name="599" href="#599">599</a> }
<a class="jxr_linenumber" name="600" href="#600">600</a> }
<a class="jxr_linenumber" name="601" href="#601">601</a> }
<a class="jxr_linenumber" name="602" href="#602">602</a> <strong class="jxr_keyword">final</strong> String cpeName = String.format(<span class="jxr_string">"cpe:/a:%s:%s:%s"</span>, vendor, product, bestGuess.toString());
<a class="jxr_linenumber" name="603" href="#603">603</a> <strong class="jxr_keyword">final</strong> String url = <strong class="jxr_keyword">null</strong>; <em class="jxr_comment">//String.format("http://web.nvd.nist.gov/view/vuln/search?cpe=%s", URLEncoder.encode(cpeName, "UTF-8"));</em>
<a class="jxr_linenumber" name="604" href="#604">604</a> <strong class="jxr_keyword">if</strong> (bestGuessConf == <strong class="jxr_keyword">null</strong>) {
<a class="jxr_linenumber" name="605" href="#605">605</a> bestGuessConf = Confidence.LOW;
<a class="jxr_linenumber" name="606" href="#606">606</a> }
<a class="jxr_linenumber" name="607" href="#607">607</a> <strong class="jxr_keyword">final</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/CPEAnalyzer.html">IdentifierMatch</a> match = <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/CPEAnalyzer.html">IdentifierMatch</a>(<span class="jxr_string">"cpe"</span>, cpeName, url, IdentifierConfidence.BEST_GUESS, bestGuessConf);
<a class="jxr_linenumber" name="608" href="#608">608</a> collected.add(match);
<a class="jxr_linenumber" name="609" href="#609">609</a>
<a class="jxr_linenumber" name="610" href="#610">610</a> Collections.sort(collected);
<a class="jxr_linenumber" name="611" href="#611">611</a> <strong class="jxr_keyword">final</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/CPEAnalyzer.html">IdentifierConfidence</a> bestIdentifierQuality = collected.get(0).getConfidence();
<a class="jxr_linenumber" name="612" href="#612">612</a> <strong class="jxr_keyword">final</strong> <a href="../../../../org/owasp/dependencycheck/dependency/Evidence.html">Confidence</a> bestEvidenceQuality = collected.get(0).getEvidenceConfidence();
<a class="jxr_linenumber" name="613" href="#613">613</a> <strong class="jxr_keyword">for</strong> (IdentifierMatch m : collected) {
<a class="jxr_linenumber" name="614" href="#614">614</a> <strong class="jxr_keyword">if</strong> (bestIdentifierQuality.equals(m.getConfidence())
<a class="jxr_linenumber" name="615" href="#615">615</a> &amp;&amp; bestEvidenceQuality.equals(m.getEvidenceConfidence())) {
<a class="jxr_linenumber" name="616" href="#616">616</a> dependency.addIdentifier(m.getIdentifier());
<a class="jxr_linenumber" name="617" href="#617">617</a> }
<a class="jxr_linenumber" name="618" href="#618">618</a> }
<a class="jxr_linenumber" name="619" href="#619">619</a> }
<a class="jxr_linenumber" name="620" href="#620">620</a>
<a class="jxr_linenumber" name="621" href="#621">621</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="622" href="#622">622</a> <em class="jxr_javadoccomment"> * The confidence whether the identifier is an exact match, or a best guess.</em>
<a class="jxr_linenumber" name="623" href="#623">623</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="624" href="#624">624</a> <strong class="jxr_keyword">private</strong> enum <a href="../../../../org/owasp/dependencycheck/analyzer/CPEAnalyzer.html">IdentifierConfidence</a> {
<a class="jxr_linenumber" name="625" href="#625">625</a>
<a class="jxr_linenumber" name="626" href="#626">626</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="627" href="#627">627</a> <em class="jxr_javadoccomment"> * An exact match for the CPE.</em>
<a class="jxr_linenumber" name="628" href="#628">628</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="629" href="#629">629</a> EXACT_MATCH,
<a class="jxr_linenumber" name="630" href="#630">630</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="631" href="#631">631</a> <em class="jxr_javadoccomment"> * A best guess for the CPE.</em>
<a class="jxr_linenumber" name="632" href="#632">632</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="633" href="#633">633</a> BEST_GUESS
<a class="jxr_linenumber" name="634" href="#634">634</a> }
<a class="jxr_linenumber" name="635" href="#635">635</a>
<a class="jxr_linenumber" name="636" href="#636">636</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="637" href="#637">637</a> <em class="jxr_javadoccomment"> * A simple object to hold an identifier and carry information about the</em>
<a class="jxr_linenumber" name="638" href="#638">638</a> <em class="jxr_javadoccomment"> * confidence in the identifier.</em>
<a class="jxr_linenumber" name="639" href="#639">639</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="640" href="#640">640</a> <strong class="jxr_keyword">private</strong> <strong class="jxr_keyword">static</strong> <strong class="jxr_keyword">class</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/CPEAnalyzer.html">IdentifierMatch</a> <strong class="jxr_keyword">implements</strong> Comparable&lt;IdentifierMatch&gt; {
<a class="jxr_linenumber" name="641" href="#641">641</a>
<a class="jxr_linenumber" name="642" href="#642">642</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="643" href="#643">643</a> <em class="jxr_javadoccomment"> * Constructs an IdentiferMatch.</em>
<a class="jxr_linenumber" name="644" href="#644">644</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="645" href="#645">645</a> <em class="jxr_javadoccomment"> * @param type the type of identifier (such as CPE)</em>
<a class="jxr_linenumber" name="646" href="#646">646</a> <em class="jxr_javadoccomment"> * @param value the value of the identifier</em>
<a class="jxr_linenumber" name="647" href="#647">647</a> <em class="jxr_javadoccomment"> * @param url the URL of the identifier</em>
<a class="jxr_linenumber" name="648" href="#648">648</a> <em class="jxr_javadoccomment"> * @param identifierConfidence the confidence in the identifier: best</em>
<a class="jxr_linenumber" name="649" href="#649">649</a> <em class="jxr_javadoccomment"> * guess or exact match</em>
<a class="jxr_linenumber" name="650" href="#650">650</a> <em class="jxr_javadoccomment"> * @param evidenceConfidence the confidence of the evidence used to find</em>
<a class="jxr_linenumber" name="651" href="#651">651</a> <em class="jxr_javadoccomment"> * the identifier</em>
<a class="jxr_linenumber" name="652" href="#652">652</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="653" href="#653">653</a> <a href="../../../../org/owasp/dependencycheck/analyzer/CPEAnalyzer.html">IdentifierMatch</a>(String type, String value, String url, <a href="../../../../org/owasp/dependencycheck/analyzer/CPEAnalyzer.html">IdentifierConfidence</a> identifierConfidence, <a href="../../../../org/owasp/dependencycheck/dependency/Evidence.html">Confidence</a> evidenceConfidence) {
<a class="jxr_linenumber" name="654" href="#654">654</a> <strong class="jxr_keyword">this</strong>.identifier = <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/dependency/Identifier.html">Identifier</a>(type, value, url);
<a class="jxr_linenumber" name="655" href="#655">655</a> <strong class="jxr_keyword">this</strong>.confidence = identifierConfidence;
<a class="jxr_linenumber" name="656" href="#656">656</a> <strong class="jxr_keyword">this</strong>.evidenceConfidence = evidenceConfidence;
<a class="jxr_linenumber" name="657" href="#657">657</a> }
<a class="jxr_linenumber" name="658" href="#658">658</a> <em class="jxr_comment">//&lt;editor-fold defaultstate="collapsed" desc="Property implementations: evidenceConfidence, confidence, identifier"&gt;</em>
<a class="jxr_linenumber" name="659" href="#659">659</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="660" href="#660">660</a> <em class="jxr_javadoccomment"> * The confidence in the evidence used to identify this match.</em>
<a class="jxr_linenumber" name="661" href="#661">661</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="662" href="#662">662</a> <strong class="jxr_keyword">private</strong> <a href="../../../../org/owasp/dependencycheck/dependency/Evidence.html">Confidence</a> evidenceConfidence;
<a class="jxr_linenumber" name="663" href="#663">663</a>
<a class="jxr_linenumber" name="664" href="#664">664</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="665" href="#665">665</a> <em class="jxr_javadoccomment"> * Get the value of evidenceConfidence</em>
<a class="jxr_linenumber" name="666" href="#666">666</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="667" href="#667">667</a> <em class="jxr_javadoccomment"> * @return the value of evidenceConfidence</em>
<a class="jxr_linenumber" name="668" href="#668">668</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="669" href="#669">669</a> <strong class="jxr_keyword">public</strong> <a href="../../../../org/owasp/dependencycheck/dependency/Evidence.html">Confidence</a> getEvidenceConfidence() {
<a class="jxr_linenumber" name="670" href="#670">670</a> <strong class="jxr_keyword">return</strong> evidenceConfidence;
<a class="jxr_linenumber" name="671" href="#671">671</a> }
<a class="jxr_linenumber" name="672" href="#672">672</a>
<a class="jxr_linenumber" name="673" href="#673">673</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="674" href="#674">674</a> <em class="jxr_javadoccomment"> * Set the value of evidenceConfidence</em>
<a class="jxr_linenumber" name="675" href="#675">675</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="676" href="#676">676</a> <em class="jxr_javadoccomment"> * @param evidenceConfidence new value of evidenceConfidence</em>
<a class="jxr_linenumber" name="677" href="#677">677</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="678" href="#678">678</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">void</strong> setEvidenceConfidence(<a href="../../../../org/owasp/dependencycheck/dependency/Evidence.html">Confidence</a> evidenceConfidence) {
<a class="jxr_linenumber" name="679" href="#679">679</a> <strong class="jxr_keyword">this</strong>.evidenceConfidence = evidenceConfidence;
<a class="jxr_linenumber" name="680" href="#680">680</a> }
<a class="jxr_linenumber" name="681" href="#681">681</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="682" href="#682">682</a> <em class="jxr_javadoccomment"> * The confidence whether this is an exact match, or a best guess.</em>
<a class="jxr_linenumber" name="683" href="#683">683</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="684" href="#684">684</a> <strong class="jxr_keyword">private</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/CPEAnalyzer.html">IdentifierConfidence</a> confidence;
<a class="jxr_linenumber" name="685" href="#685">685</a>
<a class="jxr_linenumber" name="686" href="#686">686</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="687" href="#687">687</a> <em class="jxr_javadoccomment"> * Get the value of confidence.</em>
<a class="jxr_linenumber" name="688" href="#688">688</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="689" href="#689">689</a> <em class="jxr_javadoccomment"> * @return the value of confidence</em>
<a class="jxr_linenumber" name="690" href="#690">690</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="691" href="#691">691</a> <strong class="jxr_keyword">public</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/CPEAnalyzer.html">IdentifierConfidence</a> getConfidence() {
<a class="jxr_linenumber" name="692" href="#692">692</a> <strong class="jxr_keyword">return</strong> confidence;
<a class="jxr_linenumber" name="693" href="#693">693</a> }
<a class="jxr_linenumber" name="694" href="#694">694</a>
<a class="jxr_linenumber" name="695" href="#695">695</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="696" href="#696">696</a> <em class="jxr_javadoccomment"> * Set the value of confidence.</em>
<a class="jxr_linenumber" name="697" href="#697">697</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="698" href="#698">698</a> <em class="jxr_javadoccomment"> * @param confidence new value of confidence</em>
<a class="jxr_linenumber" name="699" href="#699">699</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="700" href="#700">700</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">void</strong> setConfidence(<a href="../../../../org/owasp/dependencycheck/analyzer/CPEAnalyzer.html">IdentifierConfidence</a> confidence) {
<a class="jxr_linenumber" name="701" href="#701">701</a> <strong class="jxr_keyword">this</strong>.confidence = confidence;
<a class="jxr_linenumber" name="702" href="#702">702</a> }
<a class="jxr_linenumber" name="703" href="#703">703</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="704" href="#704">704</a> <em class="jxr_javadoccomment"> * The CPE identifier.</em>
<a class="jxr_linenumber" name="705" href="#705">705</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="706" href="#706">706</a> <strong class="jxr_keyword">private</strong> <a href="../../../../org/owasp/dependencycheck/dependency/Identifier.html">Identifier</a> identifier;
<a class="jxr_linenumber" name="707" href="#707">707</a>
<a class="jxr_linenumber" name="708" href="#708">708</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="709" href="#709">709</a> <em class="jxr_javadoccomment"> * Get the value of identifier.</em>
<a class="jxr_linenumber" name="710" href="#710">710</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="711" href="#711">711</a> <em class="jxr_javadoccomment"> * @return the value of identifier</em>
<a class="jxr_linenumber" name="712" href="#712">712</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="713" href="#713">713</a> <strong class="jxr_keyword">public</strong> <a href="../../../../org/owasp/dependencycheck/dependency/Identifier.html">Identifier</a> getIdentifier() {
<a class="jxr_linenumber" name="714" href="#714">714</a> <strong class="jxr_keyword">return</strong> identifier;
<a class="jxr_linenumber" name="715" href="#715">715</a> }
<a class="jxr_linenumber" name="716" href="#716">716</a>
<a class="jxr_linenumber" name="717" href="#717">717</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="718" href="#718">718</a> <em class="jxr_javadoccomment"> * Set the value of identifier.</em>
<a class="jxr_linenumber" name="719" href="#719">719</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="720" href="#720">720</a> <em class="jxr_javadoccomment"> * @param identifier new value of identifier</em>
<a class="jxr_linenumber" name="721" href="#721">721</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="722" href="#722">722</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">void</strong> setIdentifier(<a href="../../../../org/owasp/dependencycheck/dependency/Identifier.html">Identifier</a> identifier) {
<a class="jxr_linenumber" name="723" href="#723">723</a> <strong class="jxr_keyword">this</strong>.identifier = identifier;
<a class="jxr_linenumber" name="724" href="#724">724</a> }
<a class="jxr_linenumber" name="725" href="#725">725</a> <em class="jxr_comment">//&lt;/editor-fold&gt;</em>
<a class="jxr_linenumber" name="726" href="#726">726</a> <em class="jxr_comment">//&lt;editor-fold defaultstate="collapsed" desc="Standard implementations of toString, hashCode, and equals"&gt;</em>
<a class="jxr_linenumber" name="727" href="#727">727</a>
<a class="jxr_linenumber" name="728" href="#728">728</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="729" href="#729">729</a> <em class="jxr_javadoccomment"> * Standard toString() implementation.</em>
<a class="jxr_linenumber" name="730" href="#730">730</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="731" href="#731">731</a> <em class="jxr_javadoccomment"> * @return the string representation of the object</em>
<a class="jxr_linenumber" name="732" href="#732">732</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="733" href="#733">733</a> @Override
<a class="jxr_linenumber" name="734" href="#734">734</a> <strong class="jxr_keyword">public</strong> String toString() {
<a class="jxr_linenumber" name="735" href="#735">735</a> <strong class="jxr_keyword">return</strong> <span class="jxr_string">"IdentifierMatch{"</span> + <span class="jxr_string">"evidenceConfidence="</span> + evidenceConfidence
<a class="jxr_linenumber" name="736" href="#736">736</a> + <span class="jxr_string">", confidence="</span> + confidence + <span class="jxr_string">", identifier="</span> + identifier + '}';
<a class="jxr_linenumber" name="737" href="#737">737</a> }
<a class="jxr_linenumber" name="738" href="#738">738</a>
<a class="jxr_linenumber" name="739" href="#739">739</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="740" href="#740">740</a> <em class="jxr_javadoccomment"> * Standard hashCode() implementation.</em>
<a class="jxr_linenumber" name="741" href="#741">741</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="742" href="#742">742</a> <em class="jxr_javadoccomment"> * @return the hashCode</em>
<a class="jxr_linenumber" name="743" href="#743">743</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="744" href="#744">744</a> @Override
<a class="jxr_linenumber" name="745" href="#745">745</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">int</strong> hashCode() {
<a class="jxr_linenumber" name="746" href="#746">746</a> <strong class="jxr_keyword">int</strong> hash = 5;
<a class="jxr_linenumber" name="747" href="#747">747</a> hash = 97 * hash + (<strong class="jxr_keyword">this</strong>.evidenceConfidence != <strong class="jxr_keyword">null</strong> ? <strong class="jxr_keyword">this</strong>.evidenceConfidence.hashCode() : 0);
<a class="jxr_linenumber" name="748" href="#748">748</a> hash = 97 * hash + (<strong class="jxr_keyword">this</strong>.confidence != <strong class="jxr_keyword">null</strong> ? <strong class="jxr_keyword">this</strong>.confidence.hashCode() : 0);
<a class="jxr_linenumber" name="749" href="#749">749</a> hash = 97 * hash + (<strong class="jxr_keyword">this</strong>.identifier != <strong class="jxr_keyword">null</strong> ? <strong class="jxr_keyword">this</strong>.identifier.hashCode() : 0);
<a class="jxr_linenumber" name="750" href="#750">750</a> <strong class="jxr_keyword">return</strong> hash;
<a class="jxr_linenumber" name="751" href="#751">751</a> }
<a class="jxr_linenumber" name="752" href="#752">752</a>
<a class="jxr_linenumber" name="753" href="#753">753</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="754" href="#754">754</a> <em class="jxr_javadoccomment"> * Standard equals implementation.</em>
<a class="jxr_linenumber" name="755" href="#755">755</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="756" href="#756">756</a> <em class="jxr_javadoccomment"> * @param obj the object to compare</em>
<a class="jxr_linenumber" name="757" href="#757">757</a> <em class="jxr_javadoccomment"> * @return true if the objects are equal, otherwise false</em>
<a class="jxr_linenumber" name="758" href="#758">758</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="759" href="#759">759</a> @Override
<a class="jxr_linenumber" name="760" href="#760">760</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">boolean</strong> equals(Object obj) {
<a class="jxr_linenumber" name="761" href="#761">761</a> <strong class="jxr_keyword">if</strong> (obj == <strong class="jxr_keyword">null</strong>) {
<a class="jxr_linenumber" name="762" href="#762">762</a> <strong class="jxr_keyword">return</strong> false;
<a class="jxr_linenumber" name="763" href="#763">763</a> }
<a class="jxr_linenumber" name="764" href="#764">764</a> <strong class="jxr_keyword">if</strong> (getClass() != obj.getClass()) {
<a class="jxr_linenumber" name="447" href="#447">447</a> <strong class="jxr_keyword">if</strong> (text == <strong class="jxr_keyword">null</strong>) {
<a class="jxr_linenumber" name="448" href="#448">448</a> <strong class="jxr_keyword">return</strong> false;
<a class="jxr_linenumber" name="449" href="#449">449</a> }
<a class="jxr_linenumber" name="450" href="#450">450</a> <strong class="jxr_keyword">final</strong> String[] words = text.split(<span class="jxr_string">"[&#92;&#92;s_-]"</span>);
<a class="jxr_linenumber" name="451" href="#451">451</a> <strong class="jxr_keyword">final</strong> List&lt;String&gt; list = <strong class="jxr_keyword">new</strong> ArrayList&lt;String&gt;();
<a class="jxr_linenumber" name="452" href="#452">452</a> String tempWord = <strong class="jxr_keyword">null</strong>;
<a class="jxr_linenumber" name="453" href="#453">453</a> <strong class="jxr_keyword">for</strong> (String word : words) {
<a class="jxr_linenumber" name="454" href="#454">454</a> <em class="jxr_comment">//single letter words should be concatonated with the next word.</em>
<a class="jxr_linenumber" name="455" href="#455">455</a> <em class="jxr_comment">// so { "m", "core", "sample" } -&gt; { "mcore", "sample" }</em>
<a class="jxr_linenumber" name="456" href="#456">456</a> <strong class="jxr_keyword">if</strong> (tempWord != <strong class="jxr_keyword">null</strong>) {
<a class="jxr_linenumber" name="457" href="#457">457</a> list.add(tempWord + word);
<a class="jxr_linenumber" name="458" href="#458">458</a> tempWord = <strong class="jxr_keyword">null</strong>;
<a class="jxr_linenumber" name="459" href="#459">459</a> } <strong class="jxr_keyword">else</strong> <strong class="jxr_keyword">if</strong> (word.length() &lt;= 2) {
<a class="jxr_linenumber" name="460" href="#460">460</a> tempWord = word;
<a class="jxr_linenumber" name="461" href="#461">461</a> } <strong class="jxr_keyword">else</strong> {
<a class="jxr_linenumber" name="462" href="#462">462</a> list.add(word);
<a class="jxr_linenumber" name="463" href="#463">463</a> }
<a class="jxr_linenumber" name="464" href="#464">464</a> }
<a class="jxr_linenumber" name="465" href="#465">465</a> <strong class="jxr_keyword">if</strong> (tempWord != <strong class="jxr_keyword">null</strong> &amp;&amp; !list.isEmpty()) {
<a class="jxr_linenumber" name="466" href="#466">466</a> <strong class="jxr_keyword">final</strong> String tmp = list.get(list.size() - 1) + tempWord;
<a class="jxr_linenumber" name="467" href="#467">467</a> list.add(tmp);
<a class="jxr_linenumber" name="468" href="#468">468</a> }
<a class="jxr_linenumber" name="469" href="#469">469</a> <strong class="jxr_keyword">boolean</strong> contains = <strong class="jxr_keyword">true</strong>;
<a class="jxr_linenumber" name="470" href="#470">470</a> <strong class="jxr_keyword">for</strong> (String word : list) {
<a class="jxr_linenumber" name="471" href="#471">471</a> contains &amp;= ec.containsUsedString(word);
<a class="jxr_linenumber" name="472" href="#472">472</a> }
<a class="jxr_linenumber" name="473" href="#473">473</a> <strong class="jxr_keyword">return</strong> contains;
<a class="jxr_linenumber" name="474" href="#474">474</a> }
<a class="jxr_linenumber" name="475" href="#475">475</a>
<a class="jxr_linenumber" name="476" href="#476">476</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="477" href="#477">477</a> <em class="jxr_javadoccomment"> * Analyzes a dependency and attempts to determine if there are any CPE</em>
<a class="jxr_linenumber" name="478" href="#478">478</a> <em class="jxr_javadoccomment"> * identifiers for this dependency.</em>
<a class="jxr_linenumber" name="479" href="#479">479</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="480" href="#480">480</a> <em class="jxr_javadoccomment"> * @param dependency The Dependency to analyze.</em>
<a class="jxr_linenumber" name="481" href="#481">481</a> <em class="jxr_javadoccomment"> * @param engine The analysis engine</em>
<a class="jxr_linenumber" name="482" href="#482">482</a> <em class="jxr_javadoccomment"> * @throws AnalysisException is thrown if there is an issue analyzing the</em>
<a class="jxr_linenumber" name="483" href="#483">483</a> <em class="jxr_javadoccomment"> * dependency.</em>
<a class="jxr_linenumber" name="484" href="#484">484</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="485" href="#485">485</a> @Override
<a class="jxr_linenumber" name="486" href="#486">486</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">void</strong> analyze(<a href="../../../../org/owasp/dependencycheck/dependency/Dependency.html">Dependency</a> dependency, <a href="../../../../org/owasp/dependencycheck/Engine.html">Engine</a> engine) <strong class="jxr_keyword">throws</strong> AnalysisException {
<a class="jxr_linenumber" name="487" href="#487">487</a> <strong class="jxr_keyword">try</strong> {
<a class="jxr_linenumber" name="488" href="#488">488</a> determineCPE(dependency);
<a class="jxr_linenumber" name="489" href="#489">489</a> } <strong class="jxr_keyword">catch</strong> (CorruptIndexException ex) {
<a class="jxr_linenumber" name="490" href="#490">490</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/AnalysisException.html">AnalysisException</a>(<span class="jxr_string">"CPE Index is corrupt."</span>, ex);
<a class="jxr_linenumber" name="491" href="#491">491</a> } <strong class="jxr_keyword">catch</strong> (IOException ex) {
<a class="jxr_linenumber" name="492" href="#492">492</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/AnalysisException.html">AnalysisException</a>(<span class="jxr_string">"Failure opening the CPE Index."</span>, ex);
<a class="jxr_linenumber" name="493" href="#493">493</a> } <strong class="jxr_keyword">catch</strong> (ParseException ex) {
<a class="jxr_linenumber" name="494" href="#494">494</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/AnalysisException.html">AnalysisException</a>(<span class="jxr_string">"Unable to parse the generated Lucene query for this dependency."</span>, ex);
<a class="jxr_linenumber" name="495" href="#495">495</a> }
<a class="jxr_linenumber" name="496" href="#496">496</a> }
<a class="jxr_linenumber" name="497" href="#497">497</a>
<a class="jxr_linenumber" name="498" href="#498">498</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="499" href="#499">499</a> <em class="jxr_javadoccomment"> * Returns true because this analyzer supports all dependency types.</em>
<a class="jxr_linenumber" name="500" href="#500">500</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="501" href="#501">501</a> <em class="jxr_javadoccomment"> * @return true.</em>
<a class="jxr_linenumber" name="502" href="#502">502</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="503" href="#503">503</a> @Override
<a class="jxr_linenumber" name="504" href="#504">504</a> <strong class="jxr_keyword">public</strong> Set&lt;String&gt; getSupportedExtensions() {
<a class="jxr_linenumber" name="505" href="#505">505</a> <strong class="jxr_keyword">return</strong> <strong class="jxr_keyword">null</strong>;
<a class="jxr_linenumber" name="506" href="#506">506</a> }
<a class="jxr_linenumber" name="507" href="#507">507</a>
<a class="jxr_linenumber" name="508" href="#508">508</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="509" href="#509">509</a> <em class="jxr_javadoccomment"> * Returns the name of this analyzer.</em>
<a class="jxr_linenumber" name="510" href="#510">510</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="511" href="#511">511</a> <em class="jxr_javadoccomment"> * @return the name of this analyzer.</em>
<a class="jxr_linenumber" name="512" href="#512">512</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="513" href="#513">513</a> @Override
<a class="jxr_linenumber" name="514" href="#514">514</a> <strong class="jxr_keyword">public</strong> String getName() {
<a class="jxr_linenumber" name="515" href="#515">515</a> <strong class="jxr_keyword">return</strong> <span class="jxr_string">"CPE Analyzer"</span>;
<a class="jxr_linenumber" name="516" href="#516">516</a> }
<a class="jxr_linenumber" name="517" href="#517">517</a>
<a class="jxr_linenumber" name="518" href="#518">518</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="519" href="#519">519</a> <em class="jxr_javadoccomment"> * Returns true because this analyzer supports all dependency types.</em>
<a class="jxr_linenumber" name="520" href="#520">520</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="521" href="#521">521</a> <em class="jxr_javadoccomment"> * @param extension the file extension of the dependency being analyzed.</em>
<a class="jxr_linenumber" name="522" href="#522">522</a> <em class="jxr_javadoccomment"> * @return true.</em>
<a class="jxr_linenumber" name="523" href="#523">523</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="524" href="#524">524</a> @Override
<a class="jxr_linenumber" name="525" href="#525">525</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">boolean</strong> supportsExtension(String extension) {
<a class="jxr_linenumber" name="526" href="#526">526</a> <strong class="jxr_keyword">return</strong> <strong class="jxr_keyword">true</strong>;
<a class="jxr_linenumber" name="527" href="#527">527</a> }
<a class="jxr_linenumber" name="528" href="#528">528</a>
<a class="jxr_linenumber" name="529" href="#529">529</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="530" href="#530">530</a> <em class="jxr_javadoccomment"> * Returns the analysis phase that this analyzer should run in.</em>
<a class="jxr_linenumber" name="531" href="#531">531</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="532" href="#532">532</a> <em class="jxr_javadoccomment"> * @return the analysis phase that this analyzer should run in.</em>
<a class="jxr_linenumber" name="533" href="#533">533</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="534" href="#534">534</a> @Override
<a class="jxr_linenumber" name="535" href="#535">535</a> <strong class="jxr_keyword">public</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/AnalysisPhase.html">AnalysisPhase</a> getAnalysisPhase() {
<a class="jxr_linenumber" name="536" href="#536">536</a> <strong class="jxr_keyword">return</strong> AnalysisPhase.IDENTIFIER_ANALYSIS;
<a class="jxr_linenumber" name="537" href="#537">537</a> }
<a class="jxr_linenumber" name="538" href="#538">538</a>
<a class="jxr_linenumber" name="539" href="#539">539</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="540" href="#540">540</a> <em class="jxr_javadoccomment"> * Opens the CPE Lucene Index.</em>
<a class="jxr_linenumber" name="541" href="#541">541</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="542" href="#542">542</a> <em class="jxr_javadoccomment"> * @throws Exception is thrown if there is an issue opening the index.</em>
<a class="jxr_linenumber" name="543" href="#543">543</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="544" href="#544">544</a> @Override
<a class="jxr_linenumber" name="545" href="#545">545</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">void</strong> initialize() <strong class="jxr_keyword">throws</strong> Exception {
<a class="jxr_linenumber" name="546" href="#546">546</a> <strong class="jxr_keyword">this</strong>.open();
<a class="jxr_linenumber" name="547" href="#547">547</a> }
<a class="jxr_linenumber" name="548" href="#548">548</a>
<a class="jxr_linenumber" name="549" href="#549">549</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="550" href="#550">550</a> <em class="jxr_javadoccomment"> * Retrieves a list of CPE values from the CveDB based on the vendor and</em>
<a class="jxr_linenumber" name="551" href="#551">551</a> <em class="jxr_javadoccomment"> * product passed in. The list is then validated to find only CPEs that are</em>
<a class="jxr_linenumber" name="552" href="#552">552</a> <em class="jxr_javadoccomment"> * valid for the given dependency. It is possible that the CPE identified is</em>
<a class="jxr_linenumber" name="553" href="#553">553</a> <em class="jxr_javadoccomment"> * a best effort "guess" based on the vendor, product, and version</em>
<a class="jxr_linenumber" name="554" href="#554">554</a> <em class="jxr_javadoccomment"> * information.</em>
<a class="jxr_linenumber" name="555" href="#555">555</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="556" href="#556">556</a> <em class="jxr_javadoccomment"> * @param dependency the Dependency being analyzed</em>
<a class="jxr_linenumber" name="557" href="#557">557</a> <em class="jxr_javadoccomment"> * @param vendor the vendor for the CPE being analyzed</em>
<a class="jxr_linenumber" name="558" href="#558">558</a> <em class="jxr_javadoccomment"> * @param product the product for the CPE being analyzed</em>
<a class="jxr_linenumber" name="559" href="#559">559</a> <em class="jxr_javadoccomment"> * @throws UnsupportedEncodingException is thrown if UTF-8 is not supported</em>
<a class="jxr_linenumber" name="560" href="#560">560</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="561" href="#561">561</a> <strong class="jxr_keyword">private</strong> <strong class="jxr_keyword">void</strong> determineIdentifiers(<a href="../../../../org/owasp/dependencycheck/dependency/Dependency.html">Dependency</a> dependency, String vendor, String product) <strong class="jxr_keyword">throws</strong> UnsupportedEncodingException {
<a class="jxr_linenumber" name="562" href="#562">562</a> <strong class="jxr_keyword">final</strong> Set&lt;VulnerableSoftware&gt; cpes = cve.getCPEs(vendor, product);
<a class="jxr_linenumber" name="563" href="#563">563</a> <a href="../../../../org/owasp/dependencycheck/utils/DependencyVersion.html">DependencyVersion</a> bestGuess = <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/utils/DependencyVersion.html">DependencyVersion</a>(<span class="jxr_string">"-"</span>);
<a class="jxr_linenumber" name="564" href="#564">564</a> <a href="../../../../org/owasp/dependencycheck/dependency/Evidence.html">Confidence</a> bestGuessConf = <strong class="jxr_keyword">null</strong>;
<a class="jxr_linenumber" name="565" href="#565">565</a> <strong class="jxr_keyword">final</strong> List&lt;IdentifierMatch&gt; collected = <strong class="jxr_keyword">new</strong> ArrayList&lt;IdentifierMatch&gt;();
<a class="jxr_linenumber" name="566" href="#566">566</a> <strong class="jxr_keyword">for</strong> (Confidence conf : Confidence.values()) {
<a class="jxr_linenumber" name="567" href="#567">567</a> <strong class="jxr_keyword">for</strong> (Evidence evidence : dependency.getVersionEvidence().iterator(conf)) {
<a class="jxr_linenumber" name="568" href="#568">568</a> <strong class="jxr_keyword">final</strong> <a href="../../../../org/owasp/dependencycheck/utils/DependencyVersion.html">DependencyVersion</a> evVer = DependencyVersionUtil.parseVersion(evidence.getValue());
<a class="jxr_linenumber" name="569" href="#569">569</a> <strong class="jxr_keyword">if</strong> (evVer == <strong class="jxr_keyword">null</strong>) {
<a class="jxr_linenumber" name="570" href="#570">570</a> <strong class="jxr_keyword">continue</strong>;
<a class="jxr_linenumber" name="571" href="#571">571</a> }
<a class="jxr_linenumber" name="572" href="#572">572</a> <strong class="jxr_keyword">for</strong> (VulnerableSoftware vs : cpes) {
<a class="jxr_linenumber" name="573" href="#573">573</a> <a href="../../../../org/owasp/dependencycheck/utils/DependencyVersion.html">DependencyVersion</a> dbVer;
<a class="jxr_linenumber" name="574" href="#574">574</a> <strong class="jxr_keyword">if</strong> (vs.getRevision() != <strong class="jxr_keyword">null</strong> &amp;&amp; !vs.getRevision().isEmpty()) {
<a class="jxr_linenumber" name="575" href="#575">575</a> dbVer = DependencyVersionUtil.parseVersion(vs.getVersion() + <span class="jxr_string">"."</span> + vs.getRevision());
<a class="jxr_linenumber" name="576" href="#576">576</a> } <strong class="jxr_keyword">else</strong> {
<a class="jxr_linenumber" name="577" href="#577">577</a> dbVer = DependencyVersionUtil.parseVersion(vs.getVersion());
<a class="jxr_linenumber" name="578" href="#578">578</a> }
<a class="jxr_linenumber" name="579" href="#579">579</a> <strong class="jxr_keyword">if</strong> (dbVer == <strong class="jxr_keyword">null</strong> <em class="jxr_comment">//special case, no version specified - everything is vulnerable</em>
<a class="jxr_linenumber" name="580" href="#580">580</a> || evVer.equals(dbVer)) { <em class="jxr_comment">//woot exect match</em>
<a class="jxr_linenumber" name="581" href="#581">581</a> <strong class="jxr_keyword">final</strong> String url = String.format(<span class="jxr_string">"http://web.nvd.nist.gov/view/vuln/search?cpe=%s"</span>, URLEncoder.encode(vs.getName(), <span class="jxr_string">"UTF-8"</span>));
<a class="jxr_linenumber" name="582" href="#582">582</a> <strong class="jxr_keyword">final</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/CPEAnalyzer.html">IdentifierMatch</a> match = <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/CPEAnalyzer.html">IdentifierMatch</a>(<span class="jxr_string">"cpe"</span>, vs.getName(), url, IdentifierConfidence.EXACT_MATCH, conf);
<a class="jxr_linenumber" name="583" href="#583">583</a> collected.add(match);
<a class="jxr_linenumber" name="584" href="#584">584</a> } <strong class="jxr_keyword">else</strong> {
<a class="jxr_linenumber" name="585" href="#585">585</a> <em class="jxr_comment">//TODO the following isn't quite right is it? need to think about this guessing game a bit more.</em>
<a class="jxr_linenumber" name="586" href="#586">586</a> <strong class="jxr_keyword">if</strong> (evVer.getVersionParts().size() &lt;= dbVer.getVersionParts().size()
<a class="jxr_linenumber" name="587" href="#587">587</a> &amp;&amp; evVer.matchesAtLeastThreeLevels(dbVer)) {
<a class="jxr_linenumber" name="588" href="#588">588</a> <strong class="jxr_keyword">if</strong> (bestGuessConf == <strong class="jxr_keyword">null</strong> || bestGuessConf.compareTo(conf) &gt; 0) {
<a class="jxr_linenumber" name="589" href="#589">589</a> <strong class="jxr_keyword">if</strong> (bestGuess.getVersionParts().size() &lt; dbVer.getVersionParts().size()) {
<a class="jxr_linenumber" name="590" href="#590">590</a> bestGuess = dbVer;
<a class="jxr_linenumber" name="591" href="#591">591</a> bestGuessConf = conf;
<a class="jxr_linenumber" name="592" href="#592">592</a> }
<a class="jxr_linenumber" name="593" href="#593">593</a> }
<a class="jxr_linenumber" name="594" href="#594">594</a> }
<a class="jxr_linenumber" name="595" href="#595">595</a> }
<a class="jxr_linenumber" name="596" href="#596">596</a> }
<a class="jxr_linenumber" name="597" href="#597">597</a> <strong class="jxr_keyword">if</strong> (bestGuessConf == <strong class="jxr_keyword">null</strong> || bestGuessConf.compareTo(conf) &gt; 0) {
<a class="jxr_linenumber" name="598" href="#598">598</a> <strong class="jxr_keyword">if</strong> (bestGuess.getVersionParts().size() &lt; evVer.getVersionParts().size()) {
<a class="jxr_linenumber" name="599" href="#599">599</a> bestGuess = evVer;
<a class="jxr_linenumber" name="600" href="#600">600</a> bestGuessConf = conf;
<a class="jxr_linenumber" name="601" href="#601">601</a> }
<a class="jxr_linenumber" name="602" href="#602">602</a> }
<a class="jxr_linenumber" name="603" href="#603">603</a> }
<a class="jxr_linenumber" name="604" href="#604">604</a> }
<a class="jxr_linenumber" name="605" href="#605">605</a> <strong class="jxr_keyword">final</strong> String cpeName = String.format(<span class="jxr_string">"cpe:/a:%s:%s:%s"</span>, vendor, product, bestGuess.toString());
<a class="jxr_linenumber" name="606" href="#606">606</a> <strong class="jxr_keyword">final</strong> String url = <strong class="jxr_keyword">null</strong>; <em class="jxr_comment">//String.format("http://web.nvd.nist.gov/view/vuln/search?cpe=%s", URLEncoder.encode(cpeName, "UTF-8"));</em>
<a class="jxr_linenumber" name="607" href="#607">607</a> <strong class="jxr_keyword">if</strong> (bestGuessConf == <strong class="jxr_keyword">null</strong>) {
<a class="jxr_linenumber" name="608" href="#608">608</a> bestGuessConf = Confidence.LOW;
<a class="jxr_linenumber" name="609" href="#609">609</a> }
<a class="jxr_linenumber" name="610" href="#610">610</a> <strong class="jxr_keyword">final</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/CPEAnalyzer.html">IdentifierMatch</a> match = <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/CPEAnalyzer.html">IdentifierMatch</a>(<span class="jxr_string">"cpe"</span>, cpeName, url, IdentifierConfidence.BEST_GUESS, bestGuessConf);
<a class="jxr_linenumber" name="611" href="#611">611</a> collected.add(match);
<a class="jxr_linenumber" name="612" href="#612">612</a>
<a class="jxr_linenumber" name="613" href="#613">613</a> Collections.sort(collected);
<a class="jxr_linenumber" name="614" href="#614">614</a> <strong class="jxr_keyword">final</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/CPEAnalyzer.html">IdentifierConfidence</a> bestIdentifierQuality = collected.get(0).getConfidence();
<a class="jxr_linenumber" name="615" href="#615">615</a> <strong class="jxr_keyword">final</strong> <a href="../../../../org/owasp/dependencycheck/dependency/Evidence.html">Confidence</a> bestEvidenceQuality = collected.get(0).getEvidenceConfidence();
<a class="jxr_linenumber" name="616" href="#616">616</a> <strong class="jxr_keyword">for</strong> (IdentifierMatch m : collected) {
<a class="jxr_linenumber" name="617" href="#617">617</a> <strong class="jxr_keyword">if</strong> (bestIdentifierQuality.equals(m.getConfidence())
<a class="jxr_linenumber" name="618" href="#618">618</a> &amp;&amp; bestEvidenceQuality.equals(m.getEvidenceConfidence())) {
<a class="jxr_linenumber" name="619" href="#619">619</a> dependency.addIdentifier(m.getIdentifier());
<a class="jxr_linenumber" name="620" href="#620">620</a> }
<a class="jxr_linenumber" name="621" href="#621">621</a> }
<a class="jxr_linenumber" name="622" href="#622">622</a> }
<a class="jxr_linenumber" name="623" href="#623">623</a>
<a class="jxr_linenumber" name="624" href="#624">624</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="625" href="#625">625</a> <em class="jxr_javadoccomment"> * The confidence whether the identifier is an exact match, or a best guess.</em>
<a class="jxr_linenumber" name="626" href="#626">626</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="627" href="#627">627</a> <strong class="jxr_keyword">private</strong> enum <a href="../../../../org/owasp/dependencycheck/analyzer/CPEAnalyzer.html">IdentifierConfidence</a> {
<a class="jxr_linenumber" name="628" href="#628">628</a>
<a class="jxr_linenumber" name="629" href="#629">629</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="630" href="#630">630</a> <em class="jxr_javadoccomment"> * An exact match for the CPE.</em>
<a class="jxr_linenumber" name="631" href="#631">631</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="632" href="#632">632</a> EXACT_MATCH,
<a class="jxr_linenumber" name="633" href="#633">633</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="634" href="#634">634</a> <em class="jxr_javadoccomment"> * A best guess for the CPE.</em>
<a class="jxr_linenumber" name="635" href="#635">635</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="636" href="#636">636</a> BEST_GUESS
<a class="jxr_linenumber" name="637" href="#637">637</a> }
<a class="jxr_linenumber" name="638" href="#638">638</a>
<a class="jxr_linenumber" name="639" href="#639">639</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="640" href="#640">640</a> <em class="jxr_javadoccomment"> * A simple object to hold an identifier and carry information about the</em>
<a class="jxr_linenumber" name="641" href="#641">641</a> <em class="jxr_javadoccomment"> * confidence in the identifier.</em>
<a class="jxr_linenumber" name="642" href="#642">642</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="643" href="#643">643</a> <strong class="jxr_keyword">private</strong> <strong class="jxr_keyword">static</strong> <strong class="jxr_keyword">class</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/CPEAnalyzer.html">IdentifierMatch</a> <strong class="jxr_keyword">implements</strong> Comparable&lt;IdentifierMatch&gt; {
<a class="jxr_linenumber" name="644" href="#644">644</a>
<a class="jxr_linenumber" name="645" href="#645">645</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="646" href="#646">646</a> <em class="jxr_javadoccomment"> * Constructs an IdentiferMatch.</em>
<a class="jxr_linenumber" name="647" href="#647">647</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="648" href="#648">648</a> <em class="jxr_javadoccomment"> * @param type the type of identifier (such as CPE)</em>
<a class="jxr_linenumber" name="649" href="#649">649</a> <em class="jxr_javadoccomment"> * @param value the value of the identifier</em>
<a class="jxr_linenumber" name="650" href="#650">650</a> <em class="jxr_javadoccomment"> * @param url the URL of the identifier</em>
<a class="jxr_linenumber" name="651" href="#651">651</a> <em class="jxr_javadoccomment"> * @param identifierConfidence the confidence in the identifier: best</em>
<a class="jxr_linenumber" name="652" href="#652">652</a> <em class="jxr_javadoccomment"> * guess or exact match</em>
<a class="jxr_linenumber" name="653" href="#653">653</a> <em class="jxr_javadoccomment"> * @param evidenceConfidence the confidence of the evidence used to find</em>
<a class="jxr_linenumber" name="654" href="#654">654</a> <em class="jxr_javadoccomment"> * the identifier</em>
<a class="jxr_linenumber" name="655" href="#655">655</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="656" href="#656">656</a> <a href="../../../../org/owasp/dependencycheck/analyzer/CPEAnalyzer.html">IdentifierMatch</a>(String type, String value, String url, <a href="../../../../org/owasp/dependencycheck/analyzer/CPEAnalyzer.html">IdentifierConfidence</a> identifierConfidence, <a href="../../../../org/owasp/dependencycheck/dependency/Evidence.html">Confidence</a> evidenceConfidence) {
<a class="jxr_linenumber" name="657" href="#657">657</a> <strong class="jxr_keyword">this</strong>.identifier = <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/dependency/Identifier.html">Identifier</a>(type, value, url);
<a class="jxr_linenumber" name="658" href="#658">658</a> <strong class="jxr_keyword">this</strong>.confidence = identifierConfidence;
<a class="jxr_linenumber" name="659" href="#659">659</a> <strong class="jxr_keyword">this</strong>.evidenceConfidence = evidenceConfidence;
<a class="jxr_linenumber" name="660" href="#660">660</a> }
<a class="jxr_linenumber" name="661" href="#661">661</a> <em class="jxr_comment">//&lt;editor-fold defaultstate="collapsed" desc="Property implementations: evidenceConfidence, confidence, identifier"&gt;</em>
<a class="jxr_linenumber" name="662" href="#662">662</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="663" href="#663">663</a> <em class="jxr_javadoccomment"> * The confidence in the evidence used to identify this match.</em>
<a class="jxr_linenumber" name="664" href="#664">664</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="665" href="#665">665</a> <strong class="jxr_keyword">private</strong> <a href="../../../../org/owasp/dependencycheck/dependency/Evidence.html">Confidence</a> evidenceConfidence;
<a class="jxr_linenumber" name="666" href="#666">666</a>
<a class="jxr_linenumber" name="667" href="#667">667</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="668" href="#668">668</a> <em class="jxr_javadoccomment"> * Get the value of evidenceConfidence</em>
<a class="jxr_linenumber" name="669" href="#669">669</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="670" href="#670">670</a> <em class="jxr_javadoccomment"> * @return the value of evidenceConfidence</em>
<a class="jxr_linenumber" name="671" href="#671">671</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="672" href="#672">672</a> <strong class="jxr_keyword">public</strong> <a href="../../../../org/owasp/dependencycheck/dependency/Evidence.html">Confidence</a> getEvidenceConfidence() {
<a class="jxr_linenumber" name="673" href="#673">673</a> <strong class="jxr_keyword">return</strong> evidenceConfidence;
<a class="jxr_linenumber" name="674" href="#674">674</a> }
<a class="jxr_linenumber" name="675" href="#675">675</a>
<a class="jxr_linenumber" name="676" href="#676">676</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="677" href="#677">677</a> <em class="jxr_javadoccomment"> * Set the value of evidenceConfidence</em>
<a class="jxr_linenumber" name="678" href="#678">678</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="679" href="#679">679</a> <em class="jxr_javadoccomment"> * @param evidenceConfidence new value of evidenceConfidence</em>
<a class="jxr_linenumber" name="680" href="#680">680</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="681" href="#681">681</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">void</strong> setEvidenceConfidence(<a href="../../../../org/owasp/dependencycheck/dependency/Evidence.html">Confidence</a> evidenceConfidence) {
<a class="jxr_linenumber" name="682" href="#682">682</a> <strong class="jxr_keyword">this</strong>.evidenceConfidence = evidenceConfidence;
<a class="jxr_linenumber" name="683" href="#683">683</a> }
<a class="jxr_linenumber" name="684" href="#684">684</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="685" href="#685">685</a> <em class="jxr_javadoccomment"> * The confidence whether this is an exact match, or a best guess.</em>
<a class="jxr_linenumber" name="686" href="#686">686</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="687" href="#687">687</a> <strong class="jxr_keyword">private</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/CPEAnalyzer.html">IdentifierConfidence</a> confidence;
<a class="jxr_linenumber" name="688" href="#688">688</a>
<a class="jxr_linenumber" name="689" href="#689">689</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="690" href="#690">690</a> <em class="jxr_javadoccomment"> * Get the value of confidence.</em>
<a class="jxr_linenumber" name="691" href="#691">691</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="692" href="#692">692</a> <em class="jxr_javadoccomment"> * @return the value of confidence</em>
<a class="jxr_linenumber" name="693" href="#693">693</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="694" href="#694">694</a> <strong class="jxr_keyword">public</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/CPEAnalyzer.html">IdentifierConfidence</a> getConfidence() {
<a class="jxr_linenumber" name="695" href="#695">695</a> <strong class="jxr_keyword">return</strong> confidence;
<a class="jxr_linenumber" name="696" href="#696">696</a> }
<a class="jxr_linenumber" name="697" href="#697">697</a>
<a class="jxr_linenumber" name="698" href="#698">698</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="699" href="#699">699</a> <em class="jxr_javadoccomment"> * Set the value of confidence.</em>
<a class="jxr_linenumber" name="700" href="#700">700</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="701" href="#701">701</a> <em class="jxr_javadoccomment"> * @param confidence new value of confidence</em>
<a class="jxr_linenumber" name="702" href="#702">702</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="703" href="#703">703</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">void</strong> setConfidence(<a href="../../../../org/owasp/dependencycheck/analyzer/CPEAnalyzer.html">IdentifierConfidence</a> confidence) {
<a class="jxr_linenumber" name="704" href="#704">704</a> <strong class="jxr_keyword">this</strong>.confidence = confidence;
<a class="jxr_linenumber" name="705" href="#705">705</a> }
<a class="jxr_linenumber" name="706" href="#706">706</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="707" href="#707">707</a> <em class="jxr_javadoccomment"> * The CPE identifier.</em>
<a class="jxr_linenumber" name="708" href="#708">708</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="709" href="#709">709</a> <strong class="jxr_keyword">private</strong> <a href="../../../../org/owasp/dependencycheck/dependency/Identifier.html">Identifier</a> identifier;
<a class="jxr_linenumber" name="710" href="#710">710</a>
<a class="jxr_linenumber" name="711" href="#711">711</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="712" href="#712">712</a> <em class="jxr_javadoccomment"> * Get the value of identifier.</em>
<a class="jxr_linenumber" name="713" href="#713">713</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="714" href="#714">714</a> <em class="jxr_javadoccomment"> * @return the value of identifier</em>
<a class="jxr_linenumber" name="715" href="#715">715</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="716" href="#716">716</a> <strong class="jxr_keyword">public</strong> <a href="../../../../org/owasp/dependencycheck/dependency/Identifier.html">Identifier</a> getIdentifier() {
<a class="jxr_linenumber" name="717" href="#717">717</a> <strong class="jxr_keyword">return</strong> identifier;
<a class="jxr_linenumber" name="718" href="#718">718</a> }
<a class="jxr_linenumber" name="719" href="#719">719</a>
<a class="jxr_linenumber" name="720" href="#720">720</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="721" href="#721">721</a> <em class="jxr_javadoccomment"> * Set the value of identifier.</em>
<a class="jxr_linenumber" name="722" href="#722">722</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="723" href="#723">723</a> <em class="jxr_javadoccomment"> * @param identifier new value of identifier</em>
<a class="jxr_linenumber" name="724" href="#724">724</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="725" href="#725">725</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">void</strong> setIdentifier(<a href="../../../../org/owasp/dependencycheck/dependency/Identifier.html">Identifier</a> identifier) {
<a class="jxr_linenumber" name="726" href="#726">726</a> <strong class="jxr_keyword">this</strong>.identifier = identifier;
<a class="jxr_linenumber" name="727" href="#727">727</a> }
<a class="jxr_linenumber" name="728" href="#728">728</a> <em class="jxr_comment">//&lt;/editor-fold&gt;</em>
<a class="jxr_linenumber" name="729" href="#729">729</a> <em class="jxr_comment">//&lt;editor-fold defaultstate="collapsed" desc="Standard implementations of toString, hashCode, and equals"&gt;</em>
<a class="jxr_linenumber" name="730" href="#730">730</a>
<a class="jxr_linenumber" name="731" href="#731">731</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="732" href="#732">732</a> <em class="jxr_javadoccomment"> * Standard toString() implementation.</em>
<a class="jxr_linenumber" name="733" href="#733">733</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="734" href="#734">734</a> <em class="jxr_javadoccomment"> * @return the string representation of the object</em>
<a class="jxr_linenumber" name="735" href="#735">735</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="736" href="#736">736</a> @Override
<a class="jxr_linenumber" name="737" href="#737">737</a> <strong class="jxr_keyword">public</strong> String toString() {
<a class="jxr_linenumber" name="738" href="#738">738</a> <strong class="jxr_keyword">return</strong> <span class="jxr_string">"IdentifierMatch{"</span> + <span class="jxr_string">"evidenceConfidence="</span> + evidenceConfidence
<a class="jxr_linenumber" name="739" href="#739">739</a> + <span class="jxr_string">", confidence="</span> + confidence + <span class="jxr_string">", identifier="</span> + identifier + '}';
<a class="jxr_linenumber" name="740" href="#740">740</a> }
<a class="jxr_linenumber" name="741" href="#741">741</a>
<a class="jxr_linenumber" name="742" href="#742">742</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="743" href="#743">743</a> <em class="jxr_javadoccomment"> * Standard hashCode() implementation.</em>
<a class="jxr_linenumber" name="744" href="#744">744</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="745" href="#745">745</a> <em class="jxr_javadoccomment"> * @return the hashCode</em>
<a class="jxr_linenumber" name="746" href="#746">746</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="747" href="#747">747</a> @Override
<a class="jxr_linenumber" name="748" href="#748">748</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">int</strong> hashCode() {
<a class="jxr_linenumber" name="749" href="#749">749</a> <strong class="jxr_keyword">int</strong> hash = 5;
<a class="jxr_linenumber" name="750" href="#750">750</a> hash = 97 * hash + (<strong class="jxr_keyword">this</strong>.evidenceConfidence != <strong class="jxr_keyword">null</strong> ? <strong class="jxr_keyword">this</strong>.evidenceConfidence.hashCode() : 0);
<a class="jxr_linenumber" name="751" href="#751">751</a> hash = 97 * hash + (<strong class="jxr_keyword">this</strong>.confidence != <strong class="jxr_keyword">null</strong> ? <strong class="jxr_keyword">this</strong>.confidence.hashCode() : 0);
<a class="jxr_linenumber" name="752" href="#752">752</a> hash = 97 * hash + (<strong class="jxr_keyword">this</strong>.identifier != <strong class="jxr_keyword">null</strong> ? <strong class="jxr_keyword">this</strong>.identifier.hashCode() : 0);
<a class="jxr_linenumber" name="753" href="#753">753</a> <strong class="jxr_keyword">return</strong> hash;
<a class="jxr_linenumber" name="754" href="#754">754</a> }
<a class="jxr_linenumber" name="755" href="#755">755</a>
<a class="jxr_linenumber" name="756" href="#756">756</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="757" href="#757">757</a> <em class="jxr_javadoccomment"> * Standard equals implementation.</em>
<a class="jxr_linenumber" name="758" href="#758">758</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="759" href="#759">759</a> <em class="jxr_javadoccomment"> * @param obj the object to compare</em>
<a class="jxr_linenumber" name="760" href="#760">760</a> <em class="jxr_javadoccomment"> * @return true if the objects are equal, otherwise false</em>
<a class="jxr_linenumber" name="761" href="#761">761</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="762" href="#762">762</a> @Override
<a class="jxr_linenumber" name="763" href="#763">763</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">boolean</strong> equals(Object obj) {
<a class="jxr_linenumber" name="764" href="#764">764</a> <strong class="jxr_keyword">if</strong> (obj == <strong class="jxr_keyword">null</strong>) {
<a class="jxr_linenumber" name="765" href="#765">765</a> <strong class="jxr_keyword">return</strong> false;
<a class="jxr_linenumber" name="766" href="#766">766</a> }
<a class="jxr_linenumber" name="767" href="#767">767</a> <strong class="jxr_keyword">final</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/CPEAnalyzer.html">IdentifierMatch</a> other = (IdentifierMatch) obj;
<a class="jxr_linenumber" name="768" href="#768">768</a> <strong class="jxr_keyword">if</strong> (<strong class="jxr_keyword">this</strong>.evidenceConfidence != other.evidenceConfidence) {
<a class="jxr_linenumber" name="769" href="#769">769</a> <strong class="jxr_keyword">return</strong> false;
<a class="jxr_linenumber" name="770" href="#770">770</a> }
<a class="jxr_linenumber" name="771" href="#771">771</a> <strong class="jxr_keyword">if</strong> (<strong class="jxr_keyword">this</strong>.confidence != other.confidence) {
<a class="jxr_linenumber" name="767" href="#767">767</a> <strong class="jxr_keyword">if</strong> (getClass() != obj.getClass()) {
<a class="jxr_linenumber" name="768" href="#768">768</a> <strong class="jxr_keyword">return</strong> false;
<a class="jxr_linenumber" name="769" href="#769">769</a> }
<a class="jxr_linenumber" name="770" href="#770">770</a> <strong class="jxr_keyword">final</strong> <a href="../../../../org/owasp/dependencycheck/analyzer/CPEAnalyzer.html">IdentifierMatch</a> other = (IdentifierMatch) obj;
<a class="jxr_linenumber" name="771" href="#771">771</a> <strong class="jxr_keyword">if</strong> (<strong class="jxr_keyword">this</strong>.evidenceConfidence != other.evidenceConfidence) {
<a class="jxr_linenumber" name="772" href="#772">772</a> <strong class="jxr_keyword">return</strong> false;
<a class="jxr_linenumber" name="773" href="#773">773</a> }
<a class="jxr_linenumber" name="774" href="#774">774</a> <strong class="jxr_keyword">if</strong> (<strong class="jxr_keyword">this</strong>.identifier != other.identifier &amp;&amp; (<strong class="jxr_keyword">this</strong>.identifier == <strong class="jxr_keyword">null</strong> || !<strong class="jxr_keyword">this</strong>.identifier.equals(other.identifier))) {
<a class="jxr_linenumber" name="774" href="#774">774</a> <strong class="jxr_keyword">if</strong> (<strong class="jxr_keyword">this</strong>.confidence != other.confidence) {
<a class="jxr_linenumber" name="775" href="#775">775</a> <strong class="jxr_keyword">return</strong> false;
<a class="jxr_linenumber" name="776" href="#776">776</a> }
<a class="jxr_linenumber" name="777" href="#777">777</a> <strong class="jxr_keyword">return</strong> <strong class="jxr_keyword">true</strong>;
<a class="jxr_linenumber" name="778" href="#778">778</a> }
<a class="jxr_linenumber" name="779" href="#779">779</a> <em class="jxr_comment">//&lt;/editor-fold&gt;</em>
<a class="jxr_linenumber" name="780" href="#780">780</a>
<a class="jxr_linenumber" name="781" href="#781">781</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="782" href="#782">782</a> <em class="jxr_javadoccomment"> * Standard implementation of compareTo that compares identifier</em>
<a class="jxr_linenumber" name="783" href="#783">783</a> <em class="jxr_javadoccomment"> * confidence, evidence confidence, and then the identifier.</em>
<a class="jxr_linenumber" name="784" href="#784">784</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="785" href="#785">785</a> <em class="jxr_javadoccomment"> * @param o the IdentifierMatch to compare to</em>
<a class="jxr_linenumber" name="786" href="#786">786</a> <em class="jxr_javadoccomment"> * @return the natural ordering of IdentifierMatch</em>
<a class="jxr_linenumber" name="787" href="#787">787</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="788" href="#788">788</a> @Override
<a class="jxr_linenumber" name="789" href="#789">789</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">int</strong> compareTo(<a href="../../../../org/owasp/dependencycheck/analyzer/CPEAnalyzer.html">IdentifierMatch</a> o) {
<a class="jxr_linenumber" name="790" href="#790">790</a> <strong class="jxr_keyword">int</strong> conf = <strong class="jxr_keyword">this</strong>.confidence.compareTo(o.confidence);
<a class="jxr_linenumber" name="791" href="#791">791</a> <strong class="jxr_keyword">if</strong> (conf == 0) {
<a class="jxr_linenumber" name="792" href="#792">792</a> conf = <strong class="jxr_keyword">this</strong>.evidenceConfidence.compareTo(o.evidenceConfidence);
<a class="jxr_linenumber" name="793" href="#793">793</a> <strong class="jxr_keyword">if</strong> (conf == 0) {
<a class="jxr_linenumber" name="794" href="#794">794</a> conf = identifier.compareTo(o.identifier);
<a class="jxr_linenumber" name="795" href="#795">795</a> }
<a class="jxr_linenumber" name="796" href="#796">796</a> }
<a class="jxr_linenumber" name="797" href="#797">797</a> <strong class="jxr_keyword">return</strong> conf;
<a class="jxr_linenumber" name="798" href="#798">798</a> }
<a class="jxr_linenumber" name="799" href="#799">799</a> }
<a class="jxr_linenumber" name="800" href="#800">800</a> }
<a class="jxr_linenumber" name="777" href="#777">777</a> <strong class="jxr_keyword">if</strong> (<strong class="jxr_keyword">this</strong>.identifier != other.identifier &amp;&amp; (<strong class="jxr_keyword">this</strong>.identifier == <strong class="jxr_keyword">null</strong> || !<strong class="jxr_keyword">this</strong>.identifier.equals(other.identifier))) {
<a class="jxr_linenumber" name="778" href="#778">778</a> <strong class="jxr_keyword">return</strong> false;
<a class="jxr_linenumber" name="779" href="#779">779</a> }
<a class="jxr_linenumber" name="780" href="#780">780</a> <strong class="jxr_keyword">return</strong> <strong class="jxr_keyword">true</strong>;
<a class="jxr_linenumber" name="781" href="#781">781</a> }
<a class="jxr_linenumber" name="782" href="#782">782</a> <em class="jxr_comment">//&lt;/editor-fold&gt;</em>
<a class="jxr_linenumber" name="783" href="#783">783</a>
<a class="jxr_linenumber" name="784" href="#784">784</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="785" href="#785">785</a> <em class="jxr_javadoccomment"> * Standard implementation of compareTo that compares identifier</em>
<a class="jxr_linenumber" name="786" href="#786">786</a> <em class="jxr_javadoccomment"> * confidence, evidence confidence, and then the identifier.</em>
<a class="jxr_linenumber" name="787" href="#787">787</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="788" href="#788">788</a> <em class="jxr_javadoccomment"> * @param o the IdentifierMatch to compare to</em>
<a class="jxr_linenumber" name="789" href="#789">789</a> <em class="jxr_javadoccomment"> * @return the natural ordering of IdentifierMatch</em>
<a class="jxr_linenumber" name="790" href="#790">790</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="791" href="#791">791</a> @Override
<a class="jxr_linenumber" name="792" href="#792">792</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">int</strong> compareTo(<a href="../../../../org/owasp/dependencycheck/analyzer/CPEAnalyzer.html">IdentifierMatch</a> o) {
<a class="jxr_linenumber" name="793" href="#793">793</a> <strong class="jxr_keyword">int</strong> conf = <strong class="jxr_keyword">this</strong>.confidence.compareTo(o.confidence);
<a class="jxr_linenumber" name="794" href="#794">794</a> <strong class="jxr_keyword">if</strong> (conf == 0) {
<a class="jxr_linenumber" name="795" href="#795">795</a> conf = <strong class="jxr_keyword">this</strong>.evidenceConfidence.compareTo(o.evidenceConfidence);
<a class="jxr_linenumber" name="796" href="#796">796</a> <strong class="jxr_keyword">if</strong> (conf == 0) {
<a class="jxr_linenumber" name="797" href="#797">797</a> conf = identifier.compareTo(o.identifier);
<a class="jxr_linenumber" name="798" href="#798">798</a> }
<a class="jxr_linenumber" name="799" href="#799">799</a> }
<a class="jxr_linenumber" name="800" href="#800">800</a> <strong class="jxr_keyword">return</strong> conf;
<a class="jxr_linenumber" name="801" href="#801">801</a> }
<a class="jxr_linenumber" name="802" href="#802">802</a> }
<a class="jxr_linenumber" name="803" href="#803">803</a> }
</pre>
<hr/><div id="footer">This page was automatically generated by <a href="http://maven.apache.org/">Maven</a></div></body>
</html>

2
dependency-check-core/xref/org/owasp/dependencycheck/analyzer/package-frame.html
View File

@@ -3,7 +3,7 @@
<html xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<title>Dependency-Check Core 1.0.3 Reference Package org.owasp.dependencycheck.analyzer</title>
<title>Dependency-Check Core 1.0.4 Reference Package org.owasp.dependencycheck.analyzer</title>
<link rel="stylesheet" type="text/css" href="../../../../stylesheet.css" title="style" />
</head>
<body>

2
dependency-check-core/xref/org/owasp/dependencycheck/analyzer/package-summary.html
View File

@@ -3,7 +3,7 @@
<html xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<title>Dependency-Check Core 1.0.3 Reference Package org.owasp.dependencycheck.analyzer</title>
<title>Dependency-Check Core 1.0.4 Reference Package org.owasp.dependencycheck.analyzer</title>
<link rel="stylesheet" type="text/css" href="../../../../stylesheet.css" title="style" />
</head>
<body>

2
dependency-check-core/xref/org/owasp/dependencycheck/concurrency/package-frame.html
View File

@@ -3,7 +3,7 @@
<html xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<title>Dependency-Check Core 1.0.3 Reference Package org.owasp.dependencycheck.concurrency</title>
<title>Dependency-Check Core 1.0.4 Reference Package org.owasp.dependencycheck.concurrency</title>
<link rel="stylesheet" type="text/css" href="../../../../stylesheet.css" title="style" />
</head>
<body>

2
dependency-check-core/xref/org/owasp/dependencycheck/concurrency/package-summary.html
View File

@@ -3,7 +3,7 @@
<html xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<title>Dependency-Check Core 1.0.3 Reference Package org.owasp.dependencycheck.concurrency</title>
<title>Dependency-Check Core 1.0.4 Reference Package org.owasp.dependencycheck.concurrency</title>
<link rel="stylesheet" type="text/css" href="../../../../stylesheet.css" title="style" />
</head>
<body>

2
dependency-check-core/xref/org/owasp/dependencycheck/data/cpe/package-frame.html
View File

@@ -3,7 +3,7 @@
<html xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<title>Dependency-Check Core 1.0.3 Reference Package org.owasp.dependencycheck.data.cpe</title>
<title>Dependency-Check Core 1.0.4 Reference Package org.owasp.dependencycheck.data.cpe</title>
<link rel="stylesheet" type="text/css" href="../../../../../stylesheet.css" title="style" />
</head>
<body>

2
dependency-check-core/xref/org/owasp/dependencycheck/data/cpe/package-summary.html
View File

@@ -3,7 +3,7 @@
<html xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<title>Dependency-Check Core 1.0.3 Reference Package org.owasp.dependencycheck.data.cpe</title>
<title>Dependency-Check Core 1.0.4 Reference Package org.owasp.dependencycheck.data.cpe</title>
<link rel="stylesheet" type="text/css" href="../../../../../stylesheet.css" title="style" />
</head>
<body>

2
dependency-check-core/xref/org/owasp/dependencycheck/data/cwe/package-frame.html
View File

@@ -3,7 +3,7 @@
<html xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<title>Dependency-Check Core 1.0.3 Reference Package org.owasp.dependencycheck.data.cwe</title>
<title>Dependency-Check Core 1.0.4 Reference Package org.owasp.dependencycheck.data.cwe</title>
<link rel="stylesheet" type="text/css" href="../../../../../stylesheet.css" title="style" />
</head>
<body>

2
dependency-check-core/xref/org/owasp/dependencycheck/data/cwe/package-summary.html
View File

@@ -3,7 +3,7 @@
<html xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<title>Dependency-Check Core 1.0.3 Reference Package org.owasp.dependencycheck.data.cwe</title>
<title>Dependency-Check Core 1.0.4 Reference Package org.owasp.dependencycheck.data.cwe</title>
<link rel="stylesheet" type="text/css" href="../../../../../stylesheet.css" title="style" />
</head>
<body>

2
dependency-check-core/xref/org/owasp/dependencycheck/data/lucene/package-frame.html
View File

@@ -3,7 +3,7 @@
<html xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<title>Dependency-Check Core 1.0.3 Reference Package org.owasp.dependencycheck.data.lucene</title>
<title>Dependency-Check Core 1.0.4 Reference Package org.owasp.dependencycheck.data.lucene</title>
<link rel="stylesheet" type="text/css" href="../../../../../stylesheet.css" title="style" />
</head>
<body>

2
dependency-check-core/xref/org/owasp/dependencycheck/data/lucene/package-summary.html
View File

@@ -3,7 +3,7 @@
<html xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<title>Dependency-Check Core 1.0.3 Reference Package org.owasp.dependencycheck.data.lucene</title>
<title>Dependency-Check Core 1.0.4 Reference Package org.owasp.dependencycheck.data.lucene</title>
<link rel="stylesheet" type="text/css" href="../../../../../stylesheet.css" title="style" />
</head>
<body>

2
dependency-check-core/xref/org/owasp/dependencycheck/data/nvdcve/package-frame.html
View File

@@ -3,7 +3,7 @@
<html xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<title>Dependency-Check Core 1.0.3 Reference Package org.owasp.dependencycheck.data.nvdcve</title>
<title>Dependency-Check Core 1.0.4 Reference Package org.owasp.dependencycheck.data.nvdcve</title>
<link rel="stylesheet" type="text/css" href="../../../../../stylesheet.css" title="style" />
</head>
<body>

2
dependency-check-core/xref/org/owasp/dependencycheck/data/nvdcve/package-summary.html
View File

@@ -3,7 +3,7 @@
<html xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<title>Dependency-Check Core 1.0.3 Reference Package org.owasp.dependencycheck.data.nvdcve</title>
<title>Dependency-Check Core 1.0.4 Reference Package org.owasp.dependencycheck.data.nvdcve</title>
<link rel="stylesheet" type="text/css" href="../../../../../stylesheet.css" title="style" />
</head>
<body>

2
dependency-check-core/xref/org/owasp/dependencycheck/data/package-frame.html
View File

@@ -3,7 +3,7 @@
<html xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<title>Dependency-Check Core 1.0.3 Reference Package org.owasp.dependencycheck.data</title>
<title>Dependency-Check Core 1.0.4 Reference Package org.owasp.dependencycheck.data</title>
<link rel="stylesheet" type="text/css" href="../../../../stylesheet.css" title="style" />
</head>
<body>

2
dependency-check-core/xref/org/owasp/dependencycheck/data/package-summary.html
View File

@@ -3,7 +3,7 @@
<html xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<title>Dependency-Check Core 1.0.3 Reference Package org.owasp.dependencycheck.data</title>
<title>Dependency-Check Core 1.0.4 Reference Package org.owasp.dependencycheck.data</title>
<link rel="stylesheet" type="text/css" href="../../../../stylesheet.css" title="style" />
</head>
<body>

2
dependency-check-core/xref/org/owasp/dependencycheck/data/update/package-frame.html
View File

@@ -3,7 +3,7 @@
<html xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<title>Dependency-Check Core 1.0.3 Reference Package org.owasp.dependencycheck.data.update</title>
<title>Dependency-Check Core 1.0.4 Reference Package org.owasp.dependencycheck.data.update</title>
<link rel="stylesheet" type="text/css" href="../../../../../stylesheet.css" title="style" />
</head>
<body>

2
dependency-check-core/xref/org/owasp/dependencycheck/data/update/package-summary.html
View File

@@ -3,7 +3,7 @@
<html xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<title>Dependency-Check Core 1.0.3 Reference Package org.owasp.dependencycheck.data.update</title>
<title>Dependency-Check Core 1.0.4 Reference Package org.owasp.dependencycheck.data.update</title>
<link rel="stylesheet" type="text/css" href="../../../../../stylesheet.css" title="style" />
</head>
<body>

2
dependency-check-core/xref/org/owasp/dependencycheck/dependency/package-frame.html
View File

@@ -3,7 +3,7 @@
<html xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<title>Dependency-Check Core 1.0.3 Reference Package org.owasp.dependencycheck.dependency</title>
<title>Dependency-Check Core 1.0.4 Reference Package org.owasp.dependencycheck.dependency</title>
<link rel="stylesheet" type="text/css" href="../../../../stylesheet.css" title="style" />
</head>
<body>

2
dependency-check-core/xref/org/owasp/dependencycheck/dependency/package-summary.html
View File

@@ -3,7 +3,7 @@
<html xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<title>Dependency-Check Core 1.0.3 Reference Package org.owasp.dependencycheck.dependency</title>
<title>Dependency-Check Core 1.0.4 Reference Package org.owasp.dependencycheck.dependency</title>
<link rel="stylesheet" type="text/css" href="../../../../stylesheet.css" title="style" />
</head>
<body>

2
dependency-check-core/xref/org/owasp/dependencycheck/jaxb/pom/generated/package-frame.html
View File

@@ -3,7 +3,7 @@
<html xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<title>Dependency-Check Core 1.0.3 Reference Package org.owasp.dependencycheck.jaxb.pom.generated</title>
<title>Dependency-Check Core 1.0.4 Reference Package org.owasp.dependencycheck.jaxb.pom.generated</title>
<link rel="stylesheet" type="text/css" href="../../../../../../stylesheet.css" title="style" />
</head>
<body>

2
dependency-check-core/xref/org/owasp/dependencycheck/jaxb/pom/generated/package-summary.html
View File

@@ -3,7 +3,7 @@
<html xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<title>Dependency-Check Core 1.0.3 Reference Package org.owasp.dependencycheck.jaxb.pom.generated</title>
<title>Dependency-Check Core 1.0.4 Reference Package org.owasp.dependencycheck.jaxb.pom.generated</title>
<link rel="stylesheet" type="text/css" href="../../../../../../stylesheet.css" title="style" />
</head>
<body>

2
dependency-check-core/xref/org/owasp/dependencycheck/jaxb/pom/package-frame.html
View File

@@ -3,7 +3,7 @@
<html xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<title>Dependency-Check Core 1.0.3 Reference Package org.owasp.dependencycheck.jaxb.pom</title>
<title>Dependency-Check Core 1.0.4 Reference Package org.owasp.dependencycheck.jaxb.pom</title>
<link rel="stylesheet" type="text/css" href="../../../../../stylesheet.css" title="style" />
</head>
<body>

2
dependency-check-core/xref/org/owasp/dependencycheck/jaxb/pom/package-summary.html
View File

@@ -3,7 +3,7 @@
<html xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<title>Dependency-Check Core 1.0.3 Reference Package org.owasp.dependencycheck.jaxb.pom</title>
<title>Dependency-Check Core 1.0.4 Reference Package org.owasp.dependencycheck.jaxb.pom</title>
<link rel="stylesheet" type="text/css" href="../../../../../stylesheet.css" title="style" />
</head>
<body>

2
dependency-check-core/xref/org/owasp/dependencycheck/package-frame.html
View File

@@ -3,7 +3,7 @@
<html xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<title>Dependency-Check Core 1.0.3 Reference Package org.owasp.dependencycheck</title>
<title>Dependency-Check Core 1.0.4 Reference Package org.owasp.dependencycheck</title>
<link rel="stylesheet" type="text/css" href="../../../stylesheet.css" title="style" />
</head>
<body>

2
dependency-check-core/xref/org/owasp/dependencycheck/package-summary.html
View File

@@ -3,7 +3,7 @@
<html xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<title>Dependency-Check Core 1.0.3 Reference Package org.owasp.dependencycheck</title>
<title>Dependency-Check Core 1.0.4 Reference Package org.owasp.dependencycheck</title>
<link rel="stylesheet" type="text/css" href="../../../stylesheet.css" title="style" />
</head>
<body>

2
dependency-check-core/xref/org/owasp/dependencycheck/reporting/package-frame.html
View File

@@ -3,7 +3,7 @@
<html xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<title>Dependency-Check Core 1.0.3 Reference Package org.owasp.dependencycheck.reporting</title>
<title>Dependency-Check Core 1.0.4 Reference Package org.owasp.dependencycheck.reporting</title>
<link rel="stylesheet" type="text/css" href="../../../../stylesheet.css" title="style" />
</head>
<body>

2
dependency-check-core/xref/org/owasp/dependencycheck/reporting/package-summary.html
View File

@@ -3,7 +3,7 @@
<html xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<title>Dependency-Check Core 1.0.3 Reference Package org.owasp.dependencycheck.reporting</title>
<title>Dependency-Check Core 1.0.4 Reference Package org.owasp.dependencycheck.reporting</title>
<link rel="stylesheet" type="text/css" href="../../../../stylesheet.css" title="style" />
</head>
<body>

58
dependency-check-core/xref/org/owasp/dependencycheck/utils/LogFilter.html Normal file
View File

@@ -0,0 +1,58 @@
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<title>LogFilter xref</title>
<link type="text/css" rel="stylesheet" href="../../../../stylesheet.css" />
</head>
<body>
<div id="overview"><a href="../../../../../apidocs/org/owasp/dependencycheck/utils/LogFilter.html">View Javadoc</a></div><pre>
<a class="jxr_linenumber" name="1" href="#1">1</a> <em class="jxr_comment">/*</em>
<a class="jxr_linenumber" name="2" href="#2">2</a> <em class="jxr_comment"> * This file is part of dependency-check-core.</em>
<a class="jxr_linenumber" name="3" href="#3">3</a> <em class="jxr_comment"> *</em>
<a class="jxr_linenumber" name="4" href="#4">4</a> <em class="jxr_comment"> * Dependency-check-core is free software: you can redistribute it and/or modify it</em>
<a class="jxr_linenumber" name="5" href="#5">5</a> <em class="jxr_comment"> * under the terms of the GNU General Public License as published by the Free</em>
<a class="jxr_linenumber" name="6" href="#6">6</a> <em class="jxr_comment"> * Software Foundation, either version 3 of the License, or (at your option) any</em>
<a class="jxr_linenumber" name="7" href="#7">7</a> <em class="jxr_comment"> * later version.</em>
<a class="jxr_linenumber" name="8" href="#8">8</a> <em class="jxr_comment"> *</em>
<a class="jxr_linenumber" name="9" href="#9">9</a> <em class="jxr_comment"> * Dependency-check-core is distributed in the hope that it will be useful, but</em>
<a class="jxr_linenumber" name="10" href="#10">10</a> <em class="jxr_comment"> * WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or</em>
<a class="jxr_linenumber" name="11" href="#11">11</a> <em class="jxr_comment"> * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more</em>
<a class="jxr_linenumber" name="12" href="#12">12</a> <em class="jxr_comment"> * details.</em>
<a class="jxr_linenumber" name="13" href="#13">13</a> <em class="jxr_comment"> *</em>
<a class="jxr_linenumber" name="14" href="#14">14</a> <em class="jxr_comment"> * You should have received a copy of the GNU General Public License along with</em>
<a class="jxr_linenumber" name="15" href="#15">15</a> <em class="jxr_comment"> * dependency-check-core. If not, see <a href="http://www.gnu.org/licenses/." target="alexandria_uri">http://www.gnu.org/licenses/.</a></em>
<a class="jxr_linenumber" name="16" href="#16">16</a> <em class="jxr_comment"> *</em>
<a class="jxr_linenumber" name="17" href="#17">17</a> <em class="jxr_comment"> * Copyright (c) 2013 Jeremy Long. All Rights Reserved.</em>
<a class="jxr_linenumber" name="18" href="#18">18</a> <em class="jxr_comment"> */</em>
<a class="jxr_linenumber" name="19" href="#19">19</a> <strong class="jxr_keyword">package</strong> org.owasp.dependencycheck.utils;
<a class="jxr_linenumber" name="20" href="#20">20</a>
<a class="jxr_linenumber" name="21" href="#21">21</a> <strong class="jxr_keyword">import</strong> java.util.logging.Filter;
<a class="jxr_linenumber" name="22" href="#22">22</a> <strong class="jxr_keyword">import</strong> java.util.logging.LogRecord;
<a class="jxr_linenumber" name="23" href="#23">23</a>
<a class="jxr_linenumber" name="24" href="#24">24</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="25" href="#25">25</a> <em class="jxr_javadoccomment"> * A simple log filter to limit the entries written to the verbose log file. The</em>
<a class="jxr_linenumber" name="26" href="#26">26</a> <em class="jxr_javadoccomment"> * verbose log file uses the root logger as I couldn't get anything else to</em>
<a class="jxr_linenumber" name="27" href="#27">27</a> <em class="jxr_javadoccomment"> * work; as such, this filter limits the log entries to specific classes.</em>
<a class="jxr_linenumber" name="28" href="#28">28</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="29" href="#29">29</a> <em class="jxr_javadoccomment"> * @author Jeremy Long (jeremy.long@owasp.org)</em>
<a class="jxr_linenumber" name="30" href="#30">30</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="31" href="#31">31</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">class</strong> <a href="../../../../org/owasp/dependencycheck/utils/LogFilter.html">LogFilter</a> <strong class="jxr_keyword">implements</strong> <a href="../../../../org/owasp/dependencycheck/utils/Filter.html">Filter</a> {
<a class="jxr_linenumber" name="32" href="#32">32</a>
<a class="jxr_linenumber" name="33" href="#33">33</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="34" href="#34">34</a> <em class="jxr_javadoccomment"> * Determines if the record should be logged.</em>
<a class="jxr_linenumber" name="35" href="#35">35</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="36" href="#36">36</a> <em class="jxr_javadoccomment"> * @param record a log record to examine</em>
<a class="jxr_linenumber" name="37" href="#37">37</a> <em class="jxr_javadoccomment"> * @return true if the record should be logged, otherwise false</em>
<a class="jxr_linenumber" name="38" href="#38">38</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="39" href="#39">39</a> @Override
<a class="jxr_linenumber" name="40" href="#40">40</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">boolean</strong> isLoggable(LogRecord record) {
<a class="jxr_linenumber" name="41" href="#41">41</a> <strong class="jxr_keyword">final</strong> String name = record.getSourceClassName();
<a class="jxr_linenumber" name="42" href="#42">42</a> <strong class="jxr_keyword">return</strong> name.startsWith(<span class="jxr_string">"org.owasp.dependencycheck"</span>) &amp;&amp; !name.contains(<span class="jxr_string">"generated"</span>) &amp;&amp; !name.contains(<span class="jxr_string">"VelocityLoggerRedirect"</span>);
<a class="jxr_linenumber" name="43" href="#43">43</a> }
<a class="jxr_linenumber" name="44" href="#44">44</a> }
</pre>
<hr/><div id="footer">This page was automatically generated by <a href="http://maven.apache.org/">Maven</a></div></body>
</html>

89
dependency-check-core/xref/org/owasp/dependencycheck/utils/LogUtils.html Normal file
View File

@@ -0,0 +1,89 @@
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<title>LogUtils xref</title>
<link type="text/css" rel="stylesheet" href="../../../../stylesheet.css" />
</head>
<body>
<div id="overview"><a href="../../../../../apidocs/org/owasp/dependencycheck/utils/LogUtils.html">View Javadoc</a></div><pre>
<a class="jxr_linenumber" name="1" href="#1">1</a> <em class="jxr_comment">/*</em>
<a class="jxr_linenumber" name="2" href="#2">2</a> <em class="jxr_comment"> * This file is part of dependency-check-core.</em>
<a class="jxr_linenumber" name="3" href="#3">3</a> <em class="jxr_comment"> *</em>
<a class="jxr_linenumber" name="4" href="#4">4</a> <em class="jxr_comment"> * Dependency-check-core is free software: you can redistribute it and/or modify it</em>
<a class="jxr_linenumber" name="5" href="#5">5</a> <em class="jxr_comment"> * under the terms of the GNU General Public License as published by the Free</em>
<a class="jxr_linenumber" name="6" href="#6">6</a> <em class="jxr_comment"> * Software Foundation, either version 3 of the License, or (at your option) any</em>
<a class="jxr_linenumber" name="7" href="#7">7</a> <em class="jxr_comment"> * later version.</em>
<a class="jxr_linenumber" name="8" href="#8">8</a> <em class="jxr_comment"> *</em>
<a class="jxr_linenumber" name="9" href="#9">9</a> <em class="jxr_comment"> * Dependency-check-core is distributed in the hope that it will be useful, but</em>
<a class="jxr_linenumber" name="10" href="#10">10</a> <em class="jxr_comment"> * WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or</em>
<a class="jxr_linenumber" name="11" href="#11">11</a> <em class="jxr_comment"> * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more</em>
<a class="jxr_linenumber" name="12" href="#12">12</a> <em class="jxr_comment"> * details.</em>
<a class="jxr_linenumber" name="13" href="#13">13</a> <em class="jxr_comment"> *</em>
<a class="jxr_linenumber" name="14" href="#14">14</a> <em class="jxr_comment"> * You should have received a copy of the GNU General Public License along with</em>
<a class="jxr_linenumber" name="15" href="#15">15</a> <em class="jxr_comment"> * dependency-check-core. If not, see <a href="http://www.gnu.org/licenses/." target="alexandria_uri">http://www.gnu.org/licenses/.</a></em>
<a class="jxr_linenumber" name="16" href="#16">16</a> <em class="jxr_comment"> *</em>
<a class="jxr_linenumber" name="17" href="#17">17</a> <em class="jxr_comment"> * Copyright (c) 2013 Jeremy Long. All Rights Reserved.</em>
<a class="jxr_linenumber" name="18" href="#18">18</a> <em class="jxr_comment"> */</em>
<a class="jxr_linenumber" name="19" href="#19">19</a> <strong class="jxr_keyword">package</strong> org.owasp.dependencycheck.utils;
<a class="jxr_linenumber" name="20" href="#20">20</a>
<a class="jxr_linenumber" name="21" href="#21">21</a> <strong class="jxr_keyword">import</strong> java.io.IOException;
<a class="jxr_linenumber" name="22" href="#22">22</a> <strong class="jxr_keyword">import</strong> java.io.InputStream;
<a class="jxr_linenumber" name="23" href="#23">23</a> <strong class="jxr_keyword">import</strong> java.util.logging.FileHandler;
<a class="jxr_linenumber" name="24" href="#24">24</a> <strong class="jxr_keyword">import</strong> java.util.logging.Level;
<a class="jxr_linenumber" name="25" href="#25">25</a> <strong class="jxr_keyword">import</strong> java.util.logging.LogManager;
<a class="jxr_linenumber" name="26" href="#26">26</a> <strong class="jxr_keyword">import</strong> java.util.logging.Logger;
<a class="jxr_linenumber" name="27" href="#27">27</a> <strong class="jxr_keyword">import</strong> java.util.logging.SimpleFormatter;
<a class="jxr_linenumber" name="28" href="#28">28</a>
<a class="jxr_linenumber" name="29" href="#29">29</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="30" href="#30">30</a> <em class="jxr_javadoccomment"> * A utility class to aide in the setup of the logging mechanism.</em>
<a class="jxr_linenumber" name="31" href="#31">31</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="32" href="#32">32</a> <em class="jxr_javadoccomment"> * @author Jeremy Long (jeremy.long@owasp.org)</em>
<a class="jxr_linenumber" name="33" href="#33">33</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="34" href="#34">34</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">final</strong> <strong class="jxr_keyword">class</strong> <a href="../../../../org/owasp/dependencycheck/utils/LogUtils.html">LogUtils</a> {
<a class="jxr_linenumber" name="35" href="#35">35</a>
<a class="jxr_linenumber" name="36" href="#36">36</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="37" href="#37">37</a> <em class="jxr_javadoccomment"> * Private constructor for a utility class.</em>
<a class="jxr_linenumber" name="38" href="#38">38</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="39" href="#39">39</a> <strong class="jxr_keyword">private</strong> <a href="../../../../org/owasp/dependencycheck/utils/LogUtils.html">LogUtils</a>() {
<a class="jxr_linenumber" name="40" href="#40">40</a> }
<a class="jxr_linenumber" name="41" href="#41">41</a>
<a class="jxr_linenumber" name="42" href="#42">42</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="43" href="#43">43</a> <em class="jxr_javadoccomment"> * Configures the logger for use by the application.</em>
<a class="jxr_linenumber" name="44" href="#44">44</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="45" href="#45">45</a> <em class="jxr_javadoccomment"> * @param in the input stream to read the log settings from</em>
<a class="jxr_linenumber" name="46" href="#46">46</a> <em class="jxr_javadoccomment"> * @param verboseLogFile the file path for the verbose log</em>
<a class="jxr_linenumber" name="47" href="#47">47</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="48" href="#48">48</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">static</strong> <strong class="jxr_keyword">void</strong> prepareLogger(InputStream in, String verboseLogFile) {
<a class="jxr_linenumber" name="49" href="#49">49</a> <strong class="jxr_keyword">try</strong> {
<a class="jxr_linenumber" name="50" href="#50">50</a> LogManager.getLogManager().reset();
<a class="jxr_linenumber" name="51" href="#51">51</a> LogManager.getLogManager().readConfiguration(in);
<a class="jxr_linenumber" name="52" href="#52">52</a> <strong class="jxr_keyword">if</strong> (verboseLogFile != <strong class="jxr_keyword">null</strong> &amp;&amp; !verboseLogFile.isEmpty()) {
<a class="jxr_linenumber" name="53" href="#53">53</a> <strong class="jxr_keyword">final</strong> Logger logger = Logger.getLogger(<span class="jxr_string">""</span>);
<a class="jxr_linenumber" name="54" href="#54">54</a> <strong class="jxr_keyword">final</strong> FileHandler handler = <strong class="jxr_keyword">new</strong> FileHandler(verboseLogFile, <strong class="jxr_keyword">true</strong>);
<a class="jxr_linenumber" name="55" href="#55">55</a> handler.setFormatter(<strong class="jxr_keyword">new</strong> SimpleFormatter());
<a class="jxr_linenumber" name="56" href="#56">56</a> handler.setLevel(Level.FINE);
<a class="jxr_linenumber" name="57" href="#57">57</a> handler.setFilter(<strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/utils/LogFilter.html">LogFilter</a>());
<a class="jxr_linenumber" name="58" href="#58">58</a> logger.addHandler(handler);
<a class="jxr_linenumber" name="59" href="#59">59</a> logger.setLevel(Level.FINE);
<a class="jxr_linenumber" name="60" href="#60">60</a> }
<a class="jxr_linenumber" name="61" href="#61">61</a> } <strong class="jxr_keyword">catch</strong> (IOException ex) {
<a class="jxr_linenumber" name="62" href="#62">62</a> Logger.getLogger(LogUtils.<strong class="jxr_keyword">class</strong>.getName()).log(Level.FINE, <span class="jxr_string">"IO Error preparing the logger"</span>, ex);
<a class="jxr_linenumber" name="63" href="#63">63</a> } <strong class="jxr_keyword">catch</strong> (SecurityException ex) {
<a class="jxr_linenumber" name="64" href="#64">64</a> Logger.getLogger(LogUtils.<strong class="jxr_keyword">class</strong>.getName()).log(Level.FINE, <span class="jxr_string">"Error preparing the logger"</span>, ex);
<a class="jxr_linenumber" name="65" href="#65">65</a> } <strong class="jxr_keyword">finally</strong> {
<a class="jxr_linenumber" name="66" href="#66">66</a> <strong class="jxr_keyword">if</strong> (in != <strong class="jxr_keyword">null</strong>) {
<a class="jxr_linenumber" name="67" href="#67">67</a> <strong class="jxr_keyword">try</strong> {
<a class="jxr_linenumber" name="68" href="#68">68</a> in.close();
<a class="jxr_linenumber" name="69" href="#69">69</a> } <strong class="jxr_keyword">catch</strong> (Exception ex) {
<a class="jxr_linenumber" name="70" href="#70">70</a> Logger.getLogger(LogUtils.<strong class="jxr_keyword">class</strong>.getName()).log(Level.FINEST, <span class="jxr_string">"Error closing resource stream"</span>, ex);
<a class="jxr_linenumber" name="71" href="#71">71</a> }
<a class="jxr_linenumber" name="72" href="#72">72</a> }
<a class="jxr_linenumber" name="73" href="#73">73</a> }
<a class="jxr_linenumber" name="74" href="#74">74</a> }
<a class="jxr_linenumber" name="75" href="#75">75</a> }
</pre>
<hr/><div id="footer">This page was automatically generated by <a href="http://maven.apache.org/">Maven</a></div></body>
</html>

409
dependency-check-core/xref/org/owasp/dependencycheck/utils/Settings.html
View File

@@ -217,7 +217,7 @@
<a class="jxr_linenumber" name="207" href="#207">207</a> <em class="jxr_javadoccomment"> * @throws IOException is thrown when there is an exception loading/merging</em>
<a class="jxr_linenumber" name="208" href="#208">208</a> <em class="jxr_javadoccomment"> * the properties</em>
<a class="jxr_linenumber" name="209" href="#209">209</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="210" href="#210">210</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">static</strong> <strong class="jxr_keyword">void</strong> mergeProperties(String filePath) <strong class="jxr_keyword">throws</strong> FileNotFoundException, IOException {
<a class="jxr_linenumber" name="210" href="#210">210</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">static</strong> <strong class="jxr_keyword">void</strong> mergeProperties(File filePath) <strong class="jxr_keyword">throws</strong> FileNotFoundException, IOException {
<a class="jxr_linenumber" name="211" href="#211">211</a> <strong class="jxr_keyword">final</strong> FileInputStream fis = <strong class="jxr_keyword">new</strong> FileInputStream(filePath);
<a class="jxr_linenumber" name="212" href="#212">212</a> mergeProperties(fis);
<a class="jxr_linenumber" name="213" href="#213">213</a> }
@@ -228,203 +228,220 @@
<a class="jxr_linenumber" name="218" href="#218">218</a> <em class="jxr_javadoccomment"> * Note: even if using this method - system properties will be loaded before</em>
<a class="jxr_linenumber" name="219" href="#219">219</a> <em class="jxr_javadoccomment"> * properties loaded from files.</em>
<a class="jxr_linenumber" name="220" href="#220">220</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="221" href="#221">221</a> <em class="jxr_javadoccomment"> * @param stream an Input Stream pointing at a properties file to merge</em>
<a class="jxr_linenumber" name="222" href="#222">222</a> <em class="jxr_javadoccomment"> * @throws IOException is thrown when there is an exception loading/merging</em>
<a class="jxr_linenumber" name="223" href="#223">223</a> <em class="jxr_javadoccomment"> * the properties</em>
<a class="jxr_linenumber" name="224" href="#224">224</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="225" href="#225">225</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">static</strong> <strong class="jxr_keyword">void</strong> mergeProperties(InputStream stream) <strong class="jxr_keyword">throws</strong> IOException {
<a class="jxr_linenumber" name="226" href="#226">226</a> INSTANCE.props.load(stream);
<a class="jxr_linenumber" name="227" href="#227">227</a> }
<a class="jxr_linenumber" name="228" href="#228">228</a>
<a class="jxr_linenumber" name="229" href="#229">229</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="230" href="#230">230</a> <em class="jxr_javadoccomment"> * Returns a value from the properties file as a File object. If the value</em>
<a class="jxr_linenumber" name="231" href="#231">231</a> <em class="jxr_javadoccomment"> * was specified as a system property or passed in via the -Dprop=value</em>
<a class="jxr_linenumber" name="232" href="#232">232</a> <em class="jxr_javadoccomment"> * argument - this method will return the value from the system properties</em>
<a class="jxr_linenumber" name="233" href="#233">233</a> <em class="jxr_javadoccomment"> * before the values in the contained configuration file.</em>
<a class="jxr_linenumber" name="234" href="#234">234</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="235" href="#235">235</a> <em class="jxr_javadoccomment"> * This method will also replace a leading "[JAR]\&quot; sequence with the path</em>
<a class="jxr_linenumber" name="236" href="#236">236</a> <em class="jxr_javadoccomment"> * to the folder containing the JAR file containing this class.</em>
<a class="jxr_linenumber" name="221" href="#221">221</a> <em class="jxr_javadoccomment"> * @param filePath the path to the properties file to merge.</em>
<a class="jxr_linenumber" name="222" href="#222">222</a> <em class="jxr_javadoccomment"> * @throws FileNotFoundException is thrown when the filePath points to a</em>
<a class="jxr_linenumber" name="223" href="#223">223</a> <em class="jxr_javadoccomment"> * non-existent file</em>
<a class="jxr_linenumber" name="224" href="#224">224</a> <em class="jxr_javadoccomment"> * @throws IOException is thrown when there is an exception loading/merging</em>
<a class="jxr_linenumber" name="225" href="#225">225</a> <em class="jxr_javadoccomment"> * the properties</em>
<a class="jxr_linenumber" name="226" href="#226">226</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="227" href="#227">227</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">static</strong> <strong class="jxr_keyword">void</strong> mergeProperties(String filePath) <strong class="jxr_keyword">throws</strong> FileNotFoundException, IOException {
<a class="jxr_linenumber" name="228" href="#228">228</a> <strong class="jxr_keyword">final</strong> FileInputStream fis = <strong class="jxr_keyword">new</strong> FileInputStream(filePath);
<a class="jxr_linenumber" name="229" href="#229">229</a> mergeProperties(fis);
<a class="jxr_linenumber" name="230" href="#230">230</a> }
<a class="jxr_linenumber" name="231" href="#231">231</a>
<a class="jxr_linenumber" name="232" href="#232">232</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="233" href="#233">233</a> <em class="jxr_javadoccomment"> * Merges a new properties file into the current properties. This method</em>
<a class="jxr_linenumber" name="234" href="#234">234</a> <em class="jxr_javadoccomment"> * allows for the loading of a user provided properties file.&lt;br/&gt;&lt;br/&gt;</em>
<a class="jxr_linenumber" name="235" href="#235">235</a> <em class="jxr_javadoccomment"> * Note: even if using this method - system properties will be loaded before</em>
<a class="jxr_linenumber" name="236" href="#236">236</a> <em class="jxr_javadoccomment"> * properties loaded from files.</em>
<a class="jxr_linenumber" name="237" href="#237">237</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="238" href="#238">238</a> <em class="jxr_javadoccomment"> * @param key the key to lookup within the properties file</em>
<a class="jxr_linenumber" name="239" href="#239">239</a> <em class="jxr_javadoccomment"> * @return the property from the properties file converted to a File object</em>
<a class="jxr_linenumber" name="240" href="#240">240</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="241" href="#241">241</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">static</strong> File getFile(String key) {
<a class="jxr_linenumber" name="242" href="#242">242</a> <strong class="jxr_keyword">final</strong> String file = getString(key);
<a class="jxr_linenumber" name="243" href="#243">243</a> <strong class="jxr_keyword">final</strong> String baseDir = getString(Settings.KEYS.DATA_DIRECTORY);
<a class="jxr_linenumber" name="244" href="#244">244</a> <strong class="jxr_keyword">if</strong> (baseDir != <strong class="jxr_keyword">null</strong>) {
<a class="jxr_linenumber" name="245" href="#245">245</a> <strong class="jxr_keyword">if</strong> (baseDir.startsWith(<span class="jxr_string">"[JAR]/"</span>)) {
<a class="jxr_linenumber" name="246" href="#246">246</a> <strong class="jxr_keyword">final</strong> File jarPath = getJarPath();
<a class="jxr_linenumber" name="247" href="#247">247</a> <strong class="jxr_keyword">final</strong> File newBase = <strong class="jxr_keyword">new</strong> File(jarPath, baseDir.substring(6));
<a class="jxr_linenumber" name="248" href="#248">248</a> <strong class="jxr_keyword">if</strong> (Settings.KEYS.DATA_DIRECTORY.equals(key)) {
<a class="jxr_linenumber" name="249" href="#249">249</a> <strong class="jxr_keyword">return</strong> newBase;
<a class="jxr_linenumber" name="250" href="#250">250</a> }
<a class="jxr_linenumber" name="251" href="#251">251</a> <strong class="jxr_keyword">return</strong> <strong class="jxr_keyword">new</strong> File(newBase, file);
<a class="jxr_linenumber" name="252" href="#252">252</a> }
<a class="jxr_linenumber" name="253" href="#253">253</a> <strong class="jxr_keyword">if</strong> (Settings.KEYS.DATA_DIRECTORY.equals(key)) {
<a class="jxr_linenumber" name="254" href="#254">254</a> <strong class="jxr_keyword">return</strong> <strong class="jxr_keyword">new</strong> File(baseDir);
<a class="jxr_linenumber" name="255" href="#255">255</a> }
<a class="jxr_linenumber" name="256" href="#256">256</a> <strong class="jxr_keyword">return</strong> <strong class="jxr_keyword">new</strong> File(baseDir, file);
<a class="jxr_linenumber" name="257" href="#257">257</a> }
<a class="jxr_linenumber" name="258" href="#258">258</a> <strong class="jxr_keyword">return</strong> <strong class="jxr_keyword">new</strong> File(file);
<a class="jxr_linenumber" name="259" href="#259">259</a> }
<a class="jxr_linenumber" name="260" href="#260">260</a>
<a class="jxr_linenumber" name="261" href="#261">261</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="262" href="#262">262</a> <em class="jxr_javadoccomment"> * Attempts to retrieve the folder containing the Jar file containing the</em>
<a class="jxr_linenumber" name="263" href="#263">263</a> <em class="jxr_javadoccomment"> * Settings class.</em>
<a class="jxr_linenumber" name="264" href="#264">264</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="265" href="#265">265</a> <em class="jxr_javadoccomment"> * @return a File object</em>
<a class="jxr_linenumber" name="266" href="#266">266</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="267" href="#267">267</a> <strong class="jxr_keyword">private</strong> <strong class="jxr_keyword">static</strong> File getJarPath() {
<a class="jxr_linenumber" name="268" href="#268">268</a> <strong class="jxr_keyword">final</strong> String jarPath = Settings.<strong class="jxr_keyword">class</strong>.getProtectionDomain().getCodeSource().getLocation().getPath();
<a class="jxr_linenumber" name="269" href="#269">269</a> String decodedPath = <span class="jxr_string">"."</span>;
<a class="jxr_linenumber" name="270" href="#270">270</a> <strong class="jxr_keyword">try</strong> {
<a class="jxr_linenumber" name="271" href="#271">271</a> decodedPath = URLDecoder.decode(jarPath, <span class="jxr_string">"UTF-8"</span>);
<a class="jxr_linenumber" name="272" href="#272">272</a> } <strong class="jxr_keyword">catch</strong> (UnsupportedEncodingException ex) {
<a class="jxr_linenumber" name="273" href="#273">273</a> Logger.getLogger(Settings.<strong class="jxr_keyword">class</strong>.getName()).log(Level.FINEST, <strong class="jxr_keyword">null</strong>, ex);
<a class="jxr_linenumber" name="238" href="#238">238</a> <em class="jxr_javadoccomment"> * @param stream an Input Stream pointing at a properties file to merge</em>
<a class="jxr_linenumber" name="239" href="#239">239</a> <em class="jxr_javadoccomment"> * @throws IOException is thrown when there is an exception loading/merging</em>
<a class="jxr_linenumber" name="240" href="#240">240</a> <em class="jxr_javadoccomment"> * the properties</em>
<a class="jxr_linenumber" name="241" href="#241">241</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="242" href="#242">242</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">static</strong> <strong class="jxr_keyword">void</strong> mergeProperties(InputStream stream) <strong class="jxr_keyword">throws</strong> IOException {
<a class="jxr_linenumber" name="243" href="#243">243</a> INSTANCE.props.load(stream);
<a class="jxr_linenumber" name="244" href="#244">244</a> }
<a class="jxr_linenumber" name="245" href="#245">245</a>
<a class="jxr_linenumber" name="246" href="#246">246</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="247" href="#247">247</a> <em class="jxr_javadoccomment"> * Returns a value from the properties file as a File object. If the value</em>
<a class="jxr_linenumber" name="248" href="#248">248</a> <em class="jxr_javadoccomment"> * was specified as a system property or passed in via the -Dprop=value</em>
<a class="jxr_linenumber" name="249" href="#249">249</a> <em class="jxr_javadoccomment"> * argument - this method will return the value from the system properties</em>
<a class="jxr_linenumber" name="250" href="#250">250</a> <em class="jxr_javadoccomment"> * before the values in the contained configuration file.</em>
<a class="jxr_linenumber" name="251" href="#251">251</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="252" href="#252">252</a> <em class="jxr_javadoccomment"> * This method will also replace a leading "[JAR]\&quot; sequence with the path</em>
<a class="jxr_linenumber" name="253" href="#253">253</a> <em class="jxr_javadoccomment"> * to the folder containing the JAR file containing this class.</em>
<a class="jxr_linenumber" name="254" href="#254">254</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="255" href="#255">255</a> <em class="jxr_javadoccomment"> * @param key the key to lookup within the properties file</em>
<a class="jxr_linenumber" name="256" href="#256">256</a> <em class="jxr_javadoccomment"> * @return the property from the properties file converted to a File object</em>
<a class="jxr_linenumber" name="257" href="#257">257</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="258" href="#258">258</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">static</strong> File getFile(String key) {
<a class="jxr_linenumber" name="259" href="#259">259</a> <strong class="jxr_keyword">final</strong> String file = getString(key);
<a class="jxr_linenumber" name="260" href="#260">260</a> <strong class="jxr_keyword">final</strong> String baseDir = getString(Settings.KEYS.DATA_DIRECTORY);
<a class="jxr_linenumber" name="261" href="#261">261</a> <strong class="jxr_keyword">if</strong> (baseDir != <strong class="jxr_keyword">null</strong>) {
<a class="jxr_linenumber" name="262" href="#262">262</a> <strong class="jxr_keyword">if</strong> (baseDir.startsWith(<span class="jxr_string">"[JAR]/"</span>)) {
<a class="jxr_linenumber" name="263" href="#263">263</a> <strong class="jxr_keyword">final</strong> File jarPath = getJarPath();
<a class="jxr_linenumber" name="264" href="#264">264</a> <strong class="jxr_keyword">final</strong> File newBase = <strong class="jxr_keyword">new</strong> File(jarPath, baseDir.substring(6));
<a class="jxr_linenumber" name="265" href="#265">265</a> <strong class="jxr_keyword">if</strong> (Settings.KEYS.DATA_DIRECTORY.equals(key)) {
<a class="jxr_linenumber" name="266" href="#266">266</a> <strong class="jxr_keyword">return</strong> newBase;
<a class="jxr_linenumber" name="267" href="#267">267</a> }
<a class="jxr_linenumber" name="268" href="#268">268</a> <strong class="jxr_keyword">return</strong> <strong class="jxr_keyword">new</strong> File(newBase, file);
<a class="jxr_linenumber" name="269" href="#269">269</a> }
<a class="jxr_linenumber" name="270" href="#270">270</a> <strong class="jxr_keyword">if</strong> (Settings.KEYS.DATA_DIRECTORY.equals(key)) {
<a class="jxr_linenumber" name="271" href="#271">271</a> <strong class="jxr_keyword">return</strong> <strong class="jxr_keyword">new</strong> File(baseDir);
<a class="jxr_linenumber" name="272" href="#272">272</a> }
<a class="jxr_linenumber" name="273" href="#273">273</a> <strong class="jxr_keyword">return</strong> <strong class="jxr_keyword">new</strong> File(baseDir, file);
<a class="jxr_linenumber" name="274" href="#274">274</a> }
<a class="jxr_linenumber" name="275" href="#275">275</a>
<a class="jxr_linenumber" name="276" href="#276">276</a> <strong class="jxr_keyword">final</strong> File path = <strong class="jxr_keyword">new</strong> File(decodedPath);
<a class="jxr_linenumber" name="277" href="#277">277</a> <strong class="jxr_keyword">if</strong> (path.getName().toLowerCase().endsWith(<span class="jxr_string">".jar"</span>)) {
<a class="jxr_linenumber" name="278" href="#278">278</a> <strong class="jxr_keyword">return</strong> path.getParentFile();
<a class="jxr_linenumber" name="279" href="#279">279</a> } <strong class="jxr_keyword">else</strong> {
<a class="jxr_linenumber" name="280" href="#280">280</a> <strong class="jxr_keyword">return</strong> <strong class="jxr_keyword">new</strong> File(<span class="jxr_string">"."</span>);
<a class="jxr_linenumber" name="281" href="#281">281</a> }
<a class="jxr_linenumber" name="282" href="#282">282</a> }
<a class="jxr_linenumber" name="283" href="#283">283</a>
<a class="jxr_linenumber" name="284" href="#284">284</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="285" href="#285">285</a> <em class="jxr_javadoccomment"> * Returns a value from the properties file. If the value was specified as a</em>
<a class="jxr_linenumber" name="286" href="#286">286</a> <em class="jxr_javadoccomment"> * system property or passed in via the -Dprop=value argument - this method</em>
<a class="jxr_linenumber" name="287" href="#287">287</a> <em class="jxr_javadoccomment"> * will return the value from the system properties before the values in the</em>
<a class="jxr_linenumber" name="288" href="#288">288</a> <em class="jxr_javadoccomment"> * contained configuration file.</em>
<a class="jxr_linenumber" name="289" href="#289">289</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="290" href="#290">290</a> <em class="jxr_javadoccomment"> * @param key the key to lookup within the properties file</em>
<a class="jxr_linenumber" name="291" href="#291">291</a> <em class="jxr_javadoccomment"> * @param defaultValue the default value for the requested property</em>
<a class="jxr_linenumber" name="292" href="#292">292</a> <em class="jxr_javadoccomment"> * @return the property from the properties file</em>
<a class="jxr_linenumber" name="293" href="#293">293</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="294" href="#294">294</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">static</strong> String getString(String key, String defaultValue) {
<a class="jxr_linenumber" name="295" href="#295">295</a> <strong class="jxr_keyword">final</strong> String str = System.getProperty(key, INSTANCE.props.getProperty(key, defaultValue));
<a class="jxr_linenumber" name="296" href="#296">296</a> <strong class="jxr_keyword">return</strong> str;
<a class="jxr_linenumber" name="297" href="#297">297</a> }
<a class="jxr_linenumber" name="298" href="#298">298</a>
<a class="jxr_linenumber" name="299" href="#299">299</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="300" href="#300">300</a> <em class="jxr_javadoccomment"> * Returns the temporary directory.</em>
<a class="jxr_linenumber" name="301" href="#301">301</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="302" href="#302">302</a> <em class="jxr_javadoccomment"> * @return the temporary directory</em>
<a class="jxr_linenumber" name="303" href="#303">303</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="304" href="#304">304</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">static</strong> File getTempDirectory() {
<a class="jxr_linenumber" name="305" href="#305">305</a> <strong class="jxr_keyword">return</strong> <strong class="jxr_keyword">new</strong> File(Settings.getString(Settings.KEYS.TEMP_DIRECTORY, System.getProperty(<span class="jxr_string">"java.io.tmpdir"</span>)));
<a class="jxr_linenumber" name="306" href="#306">306</a> }
<a class="jxr_linenumber" name="307" href="#307">307</a>
<a class="jxr_linenumber" name="308" href="#308">308</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="309" href="#309">309</a> <em class="jxr_javadoccomment"> * Returns a value from the properties file. If the value was specified as a</em>
<a class="jxr_linenumber" name="310" href="#310">310</a> <em class="jxr_javadoccomment"> * system property or passed in via the -Dprop=value argument - this method</em>
<a class="jxr_linenumber" name="311" href="#311">311</a> <em class="jxr_javadoccomment"> * will return the value from the system properties before the values in the</em>
<a class="jxr_linenumber" name="312" href="#312">312</a> <em class="jxr_javadoccomment"> * contained configuration file.</em>
<a class="jxr_linenumber" name="313" href="#313">313</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="314" href="#314">314</a> <em class="jxr_javadoccomment"> * @param key the key to lookup within the properties file</em>
<a class="jxr_linenumber" name="315" href="#315">315</a> <em class="jxr_javadoccomment"> * @return the property from the properties file</em>
<a class="jxr_linenumber" name="316" href="#316">316</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="317" href="#317">317</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">static</strong> String getString(String key) {
<a class="jxr_linenumber" name="318" href="#318">318</a> <strong class="jxr_keyword">return</strong> System.getProperty(key, INSTANCE.props.getProperty(key));
<a class="jxr_linenumber" name="319" href="#319">319</a> }
<a class="jxr_linenumber" name="320" href="#320">320</a>
<a class="jxr_linenumber" name="321" href="#321">321</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="322" href="#322">322</a> <em class="jxr_javadoccomment"> * Removes a property from the local properties collection. This is mainly</em>
<a class="jxr_linenumber" name="323" href="#323">323</a> <em class="jxr_javadoccomment"> * used in test cases.</em>
<a class="jxr_linenumber" name="324" href="#324">324</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="325" href="#325">325</a> <em class="jxr_javadoccomment"> * @param key the property key to remove</em>
<a class="jxr_linenumber" name="326" href="#326">326</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="327" href="#327">327</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">static</strong> <strong class="jxr_keyword">void</strong> removeProperty(String key) {
<a class="jxr_linenumber" name="328" href="#328">328</a> INSTANCE.props.remove(key);
<a class="jxr_linenumber" name="329" href="#329">329</a> }
<a class="jxr_linenumber" name="330" href="#330">330</a>
<a class="jxr_linenumber" name="331" href="#331">331</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="332" href="#332">332</a> <em class="jxr_javadoccomment"> * Returns an int value from the properties file. If the value was specified</em>
<a class="jxr_linenumber" name="333" href="#333">333</a> <em class="jxr_javadoccomment"> * as a system property or passed in via the -Dprop=value argument - this</em>
<a class="jxr_linenumber" name="334" href="#334">334</a> <em class="jxr_javadoccomment"> * method will return the value from the system properties before the values</em>
<a class="jxr_linenumber" name="335" href="#335">335</a> <em class="jxr_javadoccomment"> * in the contained configuration file.</em>
<a class="jxr_linenumber" name="336" href="#336">336</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="337" href="#337">337</a> <em class="jxr_javadoccomment"> * @param key the key to lookup within the properties file</em>
<a class="jxr_linenumber" name="338" href="#338">338</a> <em class="jxr_javadoccomment"> * @return the property from the properties file</em>
<a class="jxr_linenumber" name="339" href="#339">339</a> <em class="jxr_javadoccomment"> * @throws InvalidSettingException is thrown if there is an error retrieving</em>
<a class="jxr_linenumber" name="340" href="#340">340</a> <em class="jxr_javadoccomment"> * the setting</em>
<a class="jxr_linenumber" name="341" href="#341">341</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="342" href="#342">342</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">static</strong> <strong class="jxr_keyword">int</strong> getInt(String key) <strong class="jxr_keyword">throws</strong> InvalidSettingException {
<a class="jxr_linenumber" name="343" href="#343">343</a> <strong class="jxr_keyword">int</strong> value;
<a class="jxr_linenumber" name="344" href="#344">344</a> <strong class="jxr_keyword">try</strong> {
<a class="jxr_linenumber" name="345" href="#345">345</a> value = Integer.parseInt(Settings.getString(key));
<a class="jxr_linenumber" name="346" href="#346">346</a> } <strong class="jxr_keyword">catch</strong> (NumberFormatException ex) {
<a class="jxr_linenumber" name="347" href="#347">347</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/utils/InvalidSettingException.html">InvalidSettingException</a>(<span class="jxr_string">"Could not convert property '"</span> + key + <span class="jxr_string">"' to an int."</span>, ex);
<a class="jxr_linenumber" name="348" href="#348">348</a> }
<a class="jxr_linenumber" name="349" href="#349">349</a> <strong class="jxr_keyword">return</strong> value;
<a class="jxr_linenumber" name="350" href="#350">350</a> }
<a class="jxr_linenumber" name="351" href="#351">351</a>
<a class="jxr_linenumber" name="352" href="#352">352</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="353" href="#353">353</a> <em class="jxr_javadoccomment"> * Returns an int value from the properties file. If the value was specified</em>
<a class="jxr_linenumber" name="354" href="#354">354</a> <em class="jxr_javadoccomment"> * as a system property or passed in via the -Dprop=value argument - this</em>
<a class="jxr_linenumber" name="355" href="#355">355</a> <em class="jxr_javadoccomment"> * method will return the value from the system properties before the values</em>
<a class="jxr_linenumber" name="356" href="#356">356</a> <em class="jxr_javadoccomment"> * in the contained configuration file.</em>
<a class="jxr_linenumber" name="357" href="#357">357</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="358" href="#358">358</a> <em class="jxr_javadoccomment"> * @param key the key to lookup within the properties file</em>
<a class="jxr_linenumber" name="359" href="#359">359</a> <em class="jxr_javadoccomment"> * @param defaultValue the default value to return</em>
<a class="jxr_linenumber" name="360" href="#360">360</a> <em class="jxr_javadoccomment"> * @return the property from the properties file or the defaultValue if the</em>
<a class="jxr_linenumber" name="361" href="#361">361</a> <em class="jxr_javadoccomment"> * property does not exist or cannot be converted to an integer</em>
<a class="jxr_linenumber" name="362" href="#362">362</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="363" href="#363">363</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">static</strong> <strong class="jxr_keyword">int</strong> getInt(String key, <strong class="jxr_keyword">int</strong> defaultValue) {
<a class="jxr_linenumber" name="364" href="#364">364</a> <strong class="jxr_keyword">int</strong> value;
<a class="jxr_linenumber" name="365" href="#365">365</a> <strong class="jxr_keyword">try</strong> {
<a class="jxr_linenumber" name="366" href="#366">366</a> value = Integer.parseInt(Settings.getString(key));
<a class="jxr_linenumber" name="367" href="#367">367</a> } <strong class="jxr_keyword">catch</strong> (NumberFormatException ex) {
<a class="jxr_linenumber" name="368" href="#368">368</a> <strong class="jxr_keyword">final</strong> String msg = String.format(<span class="jxr_string">"Could not convert property '%s' to an int."</span>, key);
<a class="jxr_linenumber" name="369" href="#369">369</a> Logger.getLogger(Settings.<strong class="jxr_keyword">class</strong>.getName()).log(Level.FINEST, msg, ex);
<a class="jxr_linenumber" name="370" href="#370">370</a> value = defaultValue;
<a class="jxr_linenumber" name="371" href="#371">371</a> }
<a class="jxr_linenumber" name="372" href="#372">372</a> <strong class="jxr_keyword">return</strong> value;
<a class="jxr_linenumber" name="373" href="#373">373</a> }
<a class="jxr_linenumber" name="374" href="#374">374</a>
<a class="jxr_linenumber" name="375" href="#375">375</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="376" href="#376">376</a> <em class="jxr_javadoccomment"> * Returns a long value from the properties file. If the value was specified</em>
<a class="jxr_linenumber" name="377" href="#377">377</a> <em class="jxr_javadoccomment"> * as a system property or passed in via the -Dprop=value argument - this</em>
<a class="jxr_linenumber" name="378" href="#378">378</a> <em class="jxr_javadoccomment"> * method will return the value from the system properties before the values</em>
<a class="jxr_linenumber" name="379" href="#379">379</a> <em class="jxr_javadoccomment"> * in the contained configuration file.</em>
<a class="jxr_linenumber" name="380" href="#380">380</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="381" href="#381">381</a> <em class="jxr_javadoccomment"> * @param key the key to lookup within the properties file</em>
<a class="jxr_linenumber" name="382" href="#382">382</a> <em class="jxr_javadoccomment"> * @return the property from the properties file</em>
<a class="jxr_linenumber" name="383" href="#383">383</a> <em class="jxr_javadoccomment"> * @throws InvalidSettingException is thrown if there is an error retrieving</em>
<a class="jxr_linenumber" name="384" href="#384">384</a> <em class="jxr_javadoccomment"> * the setting</em>
<a class="jxr_linenumber" name="385" href="#385">385</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="386" href="#386">386</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">static</strong> <strong class="jxr_keyword">long</strong> getLong(String key) <strong class="jxr_keyword">throws</strong> InvalidSettingException {
<a class="jxr_linenumber" name="387" href="#387">387</a> <strong class="jxr_keyword">long</strong> value;
<a class="jxr_linenumber" name="388" href="#388">388</a> <strong class="jxr_keyword">try</strong> {
<a class="jxr_linenumber" name="389" href="#389">389</a> value = Long.parseLong(Settings.getString(key));
<a class="jxr_linenumber" name="390" href="#390">390</a> } <strong class="jxr_keyword">catch</strong> (NumberFormatException ex) {
<a class="jxr_linenumber" name="391" href="#391">391</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/utils/InvalidSettingException.html">InvalidSettingException</a>(<span class="jxr_string">"Could not convert property '"</span> + key + <span class="jxr_string">"' to an int."</span>, ex);
<a class="jxr_linenumber" name="392" href="#392">392</a> }
<a class="jxr_linenumber" name="393" href="#393">393</a> <strong class="jxr_keyword">return</strong> value;
<a class="jxr_linenumber" name="394" href="#394">394</a> }
<a class="jxr_linenumber" name="395" href="#395">395</a>
<a class="jxr_linenumber" name="396" href="#396">396</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="397" href="#397">397</a> <em class="jxr_javadoccomment"> * Returns a boolean value from the properties file. If the value was</em>
<a class="jxr_linenumber" name="398" href="#398">398</a> <em class="jxr_javadoccomment"> * specified as a system property or passed in via the</em>
<a class="jxr_linenumber" name="399" href="#399">399</a> <em class="jxr_javadoccomment"> * &lt;code&gt;-Dprop=value&lt;/code&gt; argument this method will return the value from</em>
<a class="jxr_linenumber" name="400" href="#400">400</a> <em class="jxr_javadoccomment"> * the system properties before the values in the contained configuration</em>
<a class="jxr_linenumber" name="401" href="#401">401</a> <em class="jxr_javadoccomment"> * file.</em>
<a class="jxr_linenumber" name="402" href="#402">402</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="403" href="#403">403</a> <em class="jxr_javadoccomment"> * @param key the key to lookup within the properties file</em>
<a class="jxr_linenumber" name="404" href="#404">404</a> <em class="jxr_javadoccomment"> * @return the property from the properties file</em>
<a class="jxr_linenumber" name="405" href="#405">405</a> <em class="jxr_javadoccomment"> * @throws InvalidSettingException is thrown if there is an error retrieving</em>
<a class="jxr_linenumber" name="406" href="#406">406</a> <em class="jxr_javadoccomment"> * the setting</em>
<a class="jxr_linenumber" name="407" href="#407">407</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="408" href="#408">408</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">static</strong> <strong class="jxr_keyword">boolean</strong> getBoolean(String key) <strong class="jxr_keyword">throws</strong> InvalidSettingException {
<a class="jxr_linenumber" name="409" href="#409">409</a> <strong class="jxr_keyword">boolean</strong> value;
<a class="jxr_linenumber" name="410" href="#410">410</a> <strong class="jxr_keyword">try</strong> {
<a class="jxr_linenumber" name="411" href="#411">411</a> value = Boolean.parseBoolean(Settings.getString(key));
<a class="jxr_linenumber" name="412" href="#412">412</a> } <strong class="jxr_keyword">catch</strong> (NumberFormatException ex) {
<a class="jxr_linenumber" name="413" href="#413">413</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/utils/InvalidSettingException.html">InvalidSettingException</a>(<span class="jxr_string">"Could not convert property '"</span> + key + <span class="jxr_string">"' to an int."</span>, ex);
<a class="jxr_linenumber" name="414" href="#414">414</a> }
<a class="jxr_linenumber" name="415" href="#415">415</a> <strong class="jxr_keyword">return</strong> value;
<a class="jxr_linenumber" name="416" href="#416">416</a> }
<a class="jxr_linenumber" name="417" href="#417">417</a> }
<a class="jxr_linenumber" name="275" href="#275">275</a> <strong class="jxr_keyword">return</strong> <strong class="jxr_keyword">new</strong> File(file);
<a class="jxr_linenumber" name="276" href="#276">276</a> }
<a class="jxr_linenumber" name="277" href="#277">277</a>
<a class="jxr_linenumber" name="278" href="#278">278</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="279" href="#279">279</a> <em class="jxr_javadoccomment"> * Attempts to retrieve the folder containing the Jar file containing the</em>
<a class="jxr_linenumber" name="280" href="#280">280</a> <em class="jxr_javadoccomment"> * Settings class.</em>
<a class="jxr_linenumber" name="281" href="#281">281</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="282" href="#282">282</a> <em class="jxr_javadoccomment"> * @return a File object</em>
<a class="jxr_linenumber" name="283" href="#283">283</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="284" href="#284">284</a> <strong class="jxr_keyword">private</strong> <strong class="jxr_keyword">static</strong> File getJarPath() {
<a class="jxr_linenumber" name="285" href="#285">285</a> <strong class="jxr_keyword">final</strong> String jarPath = Settings.<strong class="jxr_keyword">class</strong>.getProtectionDomain().getCodeSource().getLocation().getPath();
<a class="jxr_linenumber" name="286" href="#286">286</a> String decodedPath = <span class="jxr_string">"."</span>;
<a class="jxr_linenumber" name="287" href="#287">287</a> <strong class="jxr_keyword">try</strong> {
<a class="jxr_linenumber" name="288" href="#288">288</a> decodedPath = URLDecoder.decode(jarPath, <span class="jxr_string">"UTF-8"</span>);
<a class="jxr_linenumber" name="289" href="#289">289</a> } <strong class="jxr_keyword">catch</strong> (UnsupportedEncodingException ex) {
<a class="jxr_linenumber" name="290" href="#290">290</a> Logger.getLogger(Settings.<strong class="jxr_keyword">class</strong>.getName()).log(Level.FINEST, <strong class="jxr_keyword">null</strong>, ex);
<a class="jxr_linenumber" name="291" href="#291">291</a> }
<a class="jxr_linenumber" name="292" href="#292">292</a>
<a class="jxr_linenumber" name="293" href="#293">293</a> <strong class="jxr_keyword">final</strong> File path = <strong class="jxr_keyword">new</strong> File(decodedPath);
<a class="jxr_linenumber" name="294" href="#294">294</a> <strong class="jxr_keyword">if</strong> (path.getName().toLowerCase().endsWith(<span class="jxr_string">".jar"</span>)) {
<a class="jxr_linenumber" name="295" href="#295">295</a> <strong class="jxr_keyword">return</strong> path.getParentFile();
<a class="jxr_linenumber" name="296" href="#296">296</a> } <strong class="jxr_keyword">else</strong> {
<a class="jxr_linenumber" name="297" href="#297">297</a> <strong class="jxr_keyword">return</strong> <strong class="jxr_keyword">new</strong> File(<span class="jxr_string">"."</span>);
<a class="jxr_linenumber" name="298" href="#298">298</a> }
<a class="jxr_linenumber" name="299" href="#299">299</a> }
<a class="jxr_linenumber" name="300" href="#300">300</a>
<a class="jxr_linenumber" name="301" href="#301">301</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="302" href="#302">302</a> <em class="jxr_javadoccomment"> * Returns a value from the properties file. If the value was specified as a</em>
<a class="jxr_linenumber" name="303" href="#303">303</a> <em class="jxr_javadoccomment"> * system property or passed in via the -Dprop=value argument - this method</em>
<a class="jxr_linenumber" name="304" href="#304">304</a> <em class="jxr_javadoccomment"> * will return the value from the system properties before the values in the</em>
<a class="jxr_linenumber" name="305" href="#305">305</a> <em class="jxr_javadoccomment"> * contained configuration file.</em>
<a class="jxr_linenumber" name="306" href="#306">306</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="307" href="#307">307</a> <em class="jxr_javadoccomment"> * @param key the key to lookup within the properties file</em>
<a class="jxr_linenumber" name="308" href="#308">308</a> <em class="jxr_javadoccomment"> * @param defaultValue the default value for the requested property</em>
<a class="jxr_linenumber" name="309" href="#309">309</a> <em class="jxr_javadoccomment"> * @return the property from the properties file</em>
<a class="jxr_linenumber" name="310" href="#310">310</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="311" href="#311">311</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">static</strong> String getString(String key, String defaultValue) {
<a class="jxr_linenumber" name="312" href="#312">312</a> <strong class="jxr_keyword">final</strong> String str = System.getProperty(key, INSTANCE.props.getProperty(key, defaultValue));
<a class="jxr_linenumber" name="313" href="#313">313</a> <strong class="jxr_keyword">return</strong> str;
<a class="jxr_linenumber" name="314" href="#314">314</a> }
<a class="jxr_linenumber" name="315" href="#315">315</a>
<a class="jxr_linenumber" name="316" href="#316">316</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="317" href="#317">317</a> <em class="jxr_javadoccomment"> * Returns the temporary directory.</em>
<a class="jxr_linenumber" name="318" href="#318">318</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="319" href="#319">319</a> <em class="jxr_javadoccomment"> * @return the temporary directory</em>
<a class="jxr_linenumber" name="320" href="#320">320</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="321" href="#321">321</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">static</strong> File getTempDirectory() {
<a class="jxr_linenumber" name="322" href="#322">322</a> <strong class="jxr_keyword">return</strong> <strong class="jxr_keyword">new</strong> File(Settings.getString(Settings.KEYS.TEMP_DIRECTORY, System.getProperty(<span class="jxr_string">"java.io.tmpdir"</span>)));
<a class="jxr_linenumber" name="323" href="#323">323</a> }
<a class="jxr_linenumber" name="324" href="#324">324</a>
<a class="jxr_linenumber" name="325" href="#325">325</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="326" href="#326">326</a> <em class="jxr_javadoccomment"> * Returns a value from the properties file. If the value was specified as a</em>
<a class="jxr_linenumber" name="327" href="#327">327</a> <em class="jxr_javadoccomment"> * system property or passed in via the -Dprop=value argument - this method</em>
<a class="jxr_linenumber" name="328" href="#328">328</a> <em class="jxr_javadoccomment"> * will return the value from the system properties before the values in the</em>
<a class="jxr_linenumber" name="329" href="#329">329</a> <em class="jxr_javadoccomment"> * contained configuration file.</em>
<a class="jxr_linenumber" name="330" href="#330">330</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="331" href="#331">331</a> <em class="jxr_javadoccomment"> * @param key the key to lookup within the properties file</em>
<a class="jxr_linenumber" name="332" href="#332">332</a> <em class="jxr_javadoccomment"> * @return the property from the properties file</em>
<a class="jxr_linenumber" name="333" href="#333">333</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="334" href="#334">334</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">static</strong> String getString(String key) {
<a class="jxr_linenumber" name="335" href="#335">335</a> <strong class="jxr_keyword">return</strong> System.getProperty(key, INSTANCE.props.getProperty(key));
<a class="jxr_linenumber" name="336" href="#336">336</a> }
<a class="jxr_linenumber" name="337" href="#337">337</a>
<a class="jxr_linenumber" name="338" href="#338">338</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="339" href="#339">339</a> <em class="jxr_javadoccomment"> * Removes a property from the local properties collection. This is mainly</em>
<a class="jxr_linenumber" name="340" href="#340">340</a> <em class="jxr_javadoccomment"> * used in test cases.</em>
<a class="jxr_linenumber" name="341" href="#341">341</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="342" href="#342">342</a> <em class="jxr_javadoccomment"> * @param key the property key to remove</em>
<a class="jxr_linenumber" name="343" href="#343">343</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="344" href="#344">344</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">static</strong> <strong class="jxr_keyword">void</strong> removeProperty(String key) {
<a class="jxr_linenumber" name="345" href="#345">345</a> INSTANCE.props.remove(key);
<a class="jxr_linenumber" name="346" href="#346">346</a> }
<a class="jxr_linenumber" name="347" href="#347">347</a>
<a class="jxr_linenumber" name="348" href="#348">348</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="349" href="#349">349</a> <em class="jxr_javadoccomment"> * Returns an int value from the properties file. If the value was specified</em>
<a class="jxr_linenumber" name="350" href="#350">350</a> <em class="jxr_javadoccomment"> * as a system property or passed in via the -Dprop=value argument - this</em>
<a class="jxr_linenumber" name="351" href="#351">351</a> <em class="jxr_javadoccomment"> * method will return the value from the system properties before the values</em>
<a class="jxr_linenumber" name="352" href="#352">352</a> <em class="jxr_javadoccomment"> * in the contained configuration file.</em>
<a class="jxr_linenumber" name="353" href="#353">353</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="354" href="#354">354</a> <em class="jxr_javadoccomment"> * @param key the key to lookup within the properties file</em>
<a class="jxr_linenumber" name="355" href="#355">355</a> <em class="jxr_javadoccomment"> * @return the property from the properties file</em>
<a class="jxr_linenumber" name="356" href="#356">356</a> <em class="jxr_javadoccomment"> * @throws InvalidSettingException is thrown if there is an error retrieving</em>
<a class="jxr_linenumber" name="357" href="#357">357</a> <em class="jxr_javadoccomment"> * the setting</em>
<a class="jxr_linenumber" name="358" href="#358">358</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="359" href="#359">359</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">static</strong> <strong class="jxr_keyword">int</strong> getInt(String key) <strong class="jxr_keyword">throws</strong> InvalidSettingException {
<a class="jxr_linenumber" name="360" href="#360">360</a> <strong class="jxr_keyword">int</strong> value;
<a class="jxr_linenumber" name="361" href="#361">361</a> <strong class="jxr_keyword">try</strong> {
<a class="jxr_linenumber" name="362" href="#362">362</a> value = Integer.parseInt(Settings.getString(key));
<a class="jxr_linenumber" name="363" href="#363">363</a> } <strong class="jxr_keyword">catch</strong> (NumberFormatException ex) {
<a class="jxr_linenumber" name="364" href="#364">364</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/utils/InvalidSettingException.html">InvalidSettingException</a>(<span class="jxr_string">"Could not convert property '"</span> + key + <span class="jxr_string">"' to an int."</span>, ex);
<a class="jxr_linenumber" name="365" href="#365">365</a> }
<a class="jxr_linenumber" name="366" href="#366">366</a> <strong class="jxr_keyword">return</strong> value;
<a class="jxr_linenumber" name="367" href="#367">367</a> }
<a class="jxr_linenumber" name="368" href="#368">368</a>
<a class="jxr_linenumber" name="369" href="#369">369</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="370" href="#370">370</a> <em class="jxr_javadoccomment"> * Returns an int value from the properties file. If the value was specified</em>
<a class="jxr_linenumber" name="371" href="#371">371</a> <em class="jxr_javadoccomment"> * as a system property or passed in via the -Dprop=value argument - this</em>
<a class="jxr_linenumber" name="372" href="#372">372</a> <em class="jxr_javadoccomment"> * method will return the value from the system properties before the values</em>
<a class="jxr_linenumber" name="373" href="#373">373</a> <em class="jxr_javadoccomment"> * in the contained configuration file.</em>
<a class="jxr_linenumber" name="374" href="#374">374</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="375" href="#375">375</a> <em class="jxr_javadoccomment"> * @param key the key to lookup within the properties file</em>
<a class="jxr_linenumber" name="376" href="#376">376</a> <em class="jxr_javadoccomment"> * @param defaultValue the default value to return</em>
<a class="jxr_linenumber" name="377" href="#377">377</a> <em class="jxr_javadoccomment"> * @return the property from the properties file or the defaultValue if the</em>
<a class="jxr_linenumber" name="378" href="#378">378</a> <em class="jxr_javadoccomment"> * property does not exist or cannot be converted to an integer</em>
<a class="jxr_linenumber" name="379" href="#379">379</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="380" href="#380">380</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">static</strong> <strong class="jxr_keyword">int</strong> getInt(String key, <strong class="jxr_keyword">int</strong> defaultValue) {
<a class="jxr_linenumber" name="381" href="#381">381</a> <strong class="jxr_keyword">int</strong> value;
<a class="jxr_linenumber" name="382" href="#382">382</a> <strong class="jxr_keyword">try</strong> {
<a class="jxr_linenumber" name="383" href="#383">383</a> value = Integer.parseInt(Settings.getString(key));
<a class="jxr_linenumber" name="384" href="#384">384</a> } <strong class="jxr_keyword">catch</strong> (NumberFormatException ex) {
<a class="jxr_linenumber" name="385" href="#385">385</a> <strong class="jxr_keyword">final</strong> String msg = String.format(<span class="jxr_string">"Could not convert property '%s' to an int."</span>, key);
<a class="jxr_linenumber" name="386" href="#386">386</a> Logger.getLogger(Settings.<strong class="jxr_keyword">class</strong>.getName()).log(Level.FINEST, msg, ex);
<a class="jxr_linenumber" name="387" href="#387">387</a> value = defaultValue;
<a class="jxr_linenumber" name="388" href="#388">388</a> }
<a class="jxr_linenumber" name="389" href="#389">389</a> <strong class="jxr_keyword">return</strong> value;
<a class="jxr_linenumber" name="390" href="#390">390</a> }
<a class="jxr_linenumber" name="391" href="#391">391</a>
<a class="jxr_linenumber" name="392" href="#392">392</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="393" href="#393">393</a> <em class="jxr_javadoccomment"> * Returns a long value from the properties file. If the value was specified</em>
<a class="jxr_linenumber" name="394" href="#394">394</a> <em class="jxr_javadoccomment"> * as a system property or passed in via the -Dprop=value argument - this</em>
<a class="jxr_linenumber" name="395" href="#395">395</a> <em class="jxr_javadoccomment"> * method will return the value from the system properties before the values</em>
<a class="jxr_linenumber" name="396" href="#396">396</a> <em class="jxr_javadoccomment"> * in the contained configuration file.</em>
<a class="jxr_linenumber" name="397" href="#397">397</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="398" href="#398">398</a> <em class="jxr_javadoccomment"> * @param key the key to lookup within the properties file</em>
<a class="jxr_linenumber" name="399" href="#399">399</a> <em class="jxr_javadoccomment"> * @return the property from the properties file</em>
<a class="jxr_linenumber" name="400" href="#400">400</a> <em class="jxr_javadoccomment"> * @throws InvalidSettingException is thrown if there is an error retrieving</em>
<a class="jxr_linenumber" name="401" href="#401">401</a> <em class="jxr_javadoccomment"> * the setting</em>
<a class="jxr_linenumber" name="402" href="#402">402</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="403" href="#403">403</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">static</strong> <strong class="jxr_keyword">long</strong> getLong(String key) <strong class="jxr_keyword">throws</strong> InvalidSettingException {
<a class="jxr_linenumber" name="404" href="#404">404</a> <strong class="jxr_keyword">long</strong> value;
<a class="jxr_linenumber" name="405" href="#405">405</a> <strong class="jxr_keyword">try</strong> {
<a class="jxr_linenumber" name="406" href="#406">406</a> value = Long.parseLong(Settings.getString(key));
<a class="jxr_linenumber" name="407" href="#407">407</a> } <strong class="jxr_keyword">catch</strong> (NumberFormatException ex) {
<a class="jxr_linenumber" name="408" href="#408">408</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/utils/InvalidSettingException.html">InvalidSettingException</a>(<span class="jxr_string">"Could not convert property '"</span> + key + <span class="jxr_string">"' to an int."</span>, ex);
<a class="jxr_linenumber" name="409" href="#409">409</a> }
<a class="jxr_linenumber" name="410" href="#410">410</a> <strong class="jxr_keyword">return</strong> value;
<a class="jxr_linenumber" name="411" href="#411">411</a> }
<a class="jxr_linenumber" name="412" href="#412">412</a>
<a class="jxr_linenumber" name="413" href="#413">413</a> <em class="jxr_javadoccomment">/**</em>
<a class="jxr_linenumber" name="414" href="#414">414</a> <em class="jxr_javadoccomment"> * Returns a boolean value from the properties file. If the value was</em>
<a class="jxr_linenumber" name="415" href="#415">415</a> <em class="jxr_javadoccomment"> * specified as a system property or passed in via the</em>
<a class="jxr_linenumber" name="416" href="#416">416</a> <em class="jxr_javadoccomment"> * &lt;code&gt;-Dprop=value&lt;/code&gt; argument this method will return the value from</em>
<a class="jxr_linenumber" name="417" href="#417">417</a> <em class="jxr_javadoccomment"> * the system properties before the values in the contained configuration</em>
<a class="jxr_linenumber" name="418" href="#418">418</a> <em class="jxr_javadoccomment"> * file.</em>
<a class="jxr_linenumber" name="419" href="#419">419</a> <em class="jxr_javadoccomment"> *</em>
<a class="jxr_linenumber" name="420" href="#420">420</a> <em class="jxr_javadoccomment"> * @param key the key to lookup within the properties file</em>
<a class="jxr_linenumber" name="421" href="#421">421</a> <em class="jxr_javadoccomment"> * @return the property from the properties file</em>
<a class="jxr_linenumber" name="422" href="#422">422</a> <em class="jxr_javadoccomment"> * @throws InvalidSettingException is thrown if there is an error retrieving</em>
<a class="jxr_linenumber" name="423" href="#423">423</a> <em class="jxr_javadoccomment"> * the setting</em>
<a class="jxr_linenumber" name="424" href="#424">424</a> <em class="jxr_javadoccomment"> */</em>
<a class="jxr_linenumber" name="425" href="#425">425</a> <strong class="jxr_keyword">public</strong> <strong class="jxr_keyword">static</strong> <strong class="jxr_keyword">boolean</strong> getBoolean(String key) <strong class="jxr_keyword">throws</strong> InvalidSettingException {
<a class="jxr_linenumber" name="426" href="#426">426</a> <strong class="jxr_keyword">boolean</strong> value;
<a class="jxr_linenumber" name="427" href="#427">427</a> <strong class="jxr_keyword">try</strong> {
<a class="jxr_linenumber" name="428" href="#428">428</a> value = Boolean.parseBoolean(Settings.getString(key));
<a class="jxr_linenumber" name="429" href="#429">429</a> } <strong class="jxr_keyword">catch</strong> (NumberFormatException ex) {
<a class="jxr_linenumber" name="430" href="#430">430</a> <strong class="jxr_keyword">throw</strong> <strong class="jxr_keyword">new</strong> <a href="../../../../org/owasp/dependencycheck/utils/InvalidSettingException.html">InvalidSettingException</a>(<span class="jxr_string">"Could not convert property '"</span> + key + <span class="jxr_string">"' to an int."</span>, ex);
<a class="jxr_linenumber" name="431" href="#431">431</a> }
<a class="jxr_linenumber" name="432" href="#432">432</a> <strong class="jxr_keyword">return</strong> value;
<a class="jxr_linenumber" name="433" href="#433">433</a> }
<a class="jxr_linenumber" name="434" href="#434">434</a> }
</pre>
<hr/><div id="footer">This page was automatically generated by <a href="http://maven.apache.org/">Maven</a></div></body>
</html>

8
dependency-check-core/xref/org/owasp/dependencycheck/utils/package-frame.html
View File

@@ -3,7 +3,7 @@
<html xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<title>Dependency-Check Core 1.0.3 Reference Package org.owasp.dependencycheck.utils</title>
<title>Dependency-Check Core 1.0.4 Reference Package org.owasp.dependencycheck.utils</title>
<link rel="stylesheet" type="text/css" href="../../../../stylesheet.css" title="style" />
</head>
<body>
@@ -47,6 +47,12 @@
</li>
<li>
<a href="Settings.html" target="classFrame">KEYS</a>
</li>
<li>
<a href="LogFilter.html" target="classFrame">LogFilter</a>
</li>
<li>
<a href="LogUtils.html" target="classFrame">LogUtils</a>
</li>
<li>
<a href="NonClosingStream.html" target="classFrame">NonClosingStream</a>

12
dependency-check-core/xref/org/owasp/dependencycheck/utils/package-summary.html
View File

@@ -3,7 +3,7 @@
<html xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<title>Dependency-Check Core 1.0.3 Reference Package org.owasp.dependencycheck.utils</title>
<title>Dependency-Check Core 1.0.4 Reference Package org.owasp.dependencycheck.utils</title>
<link rel="stylesheet" type="text/css" href="../../../../stylesheet.css" title="style" />
</head>
<body>
@@ -89,6 +89,16 @@
<td>
<a href="Settings.html" target="classFrame">KEYS</a>
</td>
</tr>
<tr>
<td>
<a href="LogFilter.html" target="classFrame">LogFilter</a>
</td>
</tr>
<tr>
<td>
<a href="LogUtils.html" target="classFrame">LogUtils</a>
</td>
</tr>
<tr>
<td>

2
dependency-check-core/xref/overview-frame.html
View File

@@ -3,7 +3,7 @@
<html xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<title>Dependency-Check Core 1.0.3 Reference</title>
<title>Dependency-Check Core 1.0.4 Reference</title>
<link rel="stylesheet" type="text/css" href="stylesheet.css" title="style" />
</head>
<body>

4
dependency-check-core/xref/overview-summary.html
View File

@@ -3,7 +3,7 @@
<html xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<title>Dependency-Check Core 1.0.3 Reference</title>
<title>Dependency-Check Core 1.0.4 Reference</title>
<link rel="stylesheet" type="text/css" href="stylesheet.css" title="style" />
</head>
<body>
@@ -24,7 +24,7 @@
</ul>
</div>
<h2>Dependency-Check Core 1.0.3 Reference</h2>
<h2>Dependency-Check Core 1.0.4 Reference</h2>
<table class="summary">
<thead>