rspec/rules/S2445/java/rule.adoc

== Why is this an issue?

Synchronizing on a class field synchronizes not on the field itself, but on the object assigned to it. So synchronizing on a non-``++final++`` field makes it possible for the field's value to change while a thread is in a block synchronized on the old value. That would allow a second thread, synchronized on the new value, to enter the block at the same time.

The story is very similar for synchronizing on parameters; two different threads running the method in parallel could pass two different object instances in to the method as parameters, completely undermining the synchronization.

=== Noncompliant code example

[source,java,diff-id=1,diff-type=noncompliant]
----
private String color = "red";

private void doSomething(){
  synchronized(color) {  // Noncompliant; lock is actually on object instance "red" referred to by the color variable
    //...
    color = "green"; // other threads now allowed into this block
    // ...
  }
  synchronized(new Object()) { // Noncompliant this is a no-op.
     // ...
  }
}
----

=== Compliant solution

[source,java,diff-id=1,diff-type=compliant]
----
private String color = "red";
private final Object lockObj = new Object();

private void doSomething(){
  synchronized(lockObj) {
    //...
    color = "green";
    // ...
  }
}
----

== Resources

* CWE - https://cwe.mitre.org/data/definitions/412[CWE-412 - Unrestricted Externally Accessible Lock]
* CWE - https://cwe.mitre.org/data/definitions/413[CWE-413 - Improper Resource Locking]
* https://wiki.sei.cmu.edu/confluence/x/djdGBQ[CERT, LCK00-J.] - Use private final lock objects to synchronize classes that may interact with untrusted code

ifdef::env-github,rspecator-view[]

'''
== Implementation Specification
(visible only on this page)

=== Message

"xxx" is not "private final", and should not be used for synchronization.

"xxx" is a method parameter, and should not be used for synchronization.

Synchronizing on a new instance is a no-op.

=== Highlighting

``++synchronize xxx++``

'''
== Comments And Links
(visible only on this page)

include::../comments-and-links.adoc[]

endif::env-github,rspecator-view[]
migrate rule descriptions to new education format 2023-05-03 11:06:20 +02:00			`== Why is this an issue?`

Modify rule S2445: Add C# description and samples (#1570) 2023-03-01 11:52:37 +01:00			Synchronizing on a class field synchronizes not on the field itself, but on the object assigned to it. So synchronizing on a non-``++final++`` field makes it possible for the field's value to change while a thread is in a block synchronized on the old value. That would allow a second thread, synchronized on the new value, to enter the block at the same time.

			`The story is very similar for synchronizing on parameters; two different threads running the method in parallel could pass two different object instances in to the method as parameters, completely undermining the synchronization.`

migrate rule descriptions to new education format 2023-05-03 11:06:20 +02:00			`=== Noncompliant code example`
Modify rule S2445: Add C# description and samples (#1570) 2023-03-01 11:52:37 +01:00
Modify rule S2445: Update to LayC (#2184) 2023-06-14 15:58:29 +02:00			`[source,java,diff-id=1,diff-type=noncompliant]`
Modify rule S2445: Add C# description and samples (#1570) 2023-03-01 11:52:37 +01:00			`----`
			`private String color = "red";`

			`private void doSomething(){`
			`synchronized(color) { // Noncompliant; lock is actually on object instance "red" referred to by the color variable`
			`//...`
			`color = "green"; // other threads now allowed into this block`
			`// ...`
			`}`
			`synchronized(new Object()) { // Noncompliant this is a no-op.`
			`// ...`
			`}`
			`}`
			`----`

migrate rule descriptions to new education format 2023-05-03 11:06:20 +02:00			`=== Compliant solution`
Modify rule S2445: Add C# description and samples (#1570) 2023-03-01 11:52:37 +01:00
Modify rule S2445: Fix java diff tag (#2221) 2023-06-16 15:21:46 +02:00			`[source,java,diff-id=1,diff-type=compliant]`
Modify rule S2445: Add C# description and samples (#1570) 2023-03-01 11:52:37 +01:00			`----`
			`private String color = "red";`
			`private final Object lockObj = new Object();`

			`private void doSomething(){`
			`synchronized(lockObj) {`
			`//...`
			`color = "green";`
			`// ...`
			`}`
			`}`
			`----`
Export comments and rspec-to-rspec links from jira 2021-06-02 20:44:38 +02:00
Inline adoc when include has no additional value (#1940) Inline adoc files when they are included exactly once. Also fix language tags because this inlining gives us better information on what language the code is written in. 2023-05-25 14:18:12 +02:00			`== Resources`

Modify CWE and OWASP Top 10 links to follow standard link format (APPSEC-1134) (#3529) * Fix all CWE references * Fix all OWASP references * Fix missing CWE prefixes 2024-01-15 17:15:56 +01:00			`* CWE - https://cwe.mitre.org/data/definitions/412[CWE-412 - Unrestricted Externally Accessible Lock]`
			`* CWE - https://cwe.mitre.org/data/definitions/413[CWE-413 - Improper Resource Locking]`
Inline adoc when include has no additional value (#1940) Inline adoc files when they are included exactly once. Also fix language tags because this inlining gives us better information on what language the code is written in. 2023-05-25 14:18:12 +02:00			`* https://wiki.sei.cmu.edu/confluence/x/djdGBQ[CERT, LCK00-J.] - Use private final lock objects to synchronize classes that may interact with untrusted code`

Fix the comment display: rule-id, timestamp, GH visibility, link direction 2021-06-03 09:05:38 +02:00			`ifdef::env-github,rspecator-view[]`
RULEAPI-666: Migrate the "List of parameters", "Highlighting" and "Message" fields from jira RSPEC (#346) 2021-09-20 15:38:42 +02:00
			`'''`
			`== Implementation Specification`
			`(visible only on this page)`

Inline adoc when include has no additional value (#1940) Inline adoc files when they are included exactly once. Also fix language tags because this inlining gives us better information on what language the code is written in. 2023-05-25 14:18:12 +02:00			`=== Message`

			`"xxx" is not "private final", and should not be used for synchronization.`

			`"xxx" is a method parameter, and should not be used for synchronization.`

			`Synchronizing on a new instance is a no-op.`

			`=== Highlighting`

			``++synchronize xxx++``
RULEAPI-666: Migrate the "List of parameters", "Highlighting" and "Message" fields from jira RSPEC (#346) 2021-09-20 15:38:42 +02:00
RULEAPI-576: add a horizontal rule between rule description and comments 2021-06-08 15:52:13 +02:00			`'''`
Export comments and rspec-to-rspec links from jira 2021-06-02 20:44:38 +02:00			`== Comments And Links`
			`(visible only on this page)`

			`include::../comments-and-links.adoc[]`
Make sure that includes are always surrounded by empty lines (#2270) When an include is not surrounded by empty lines, its content is inlined on the same line as the adjacent content. That can lead to broken tags and other display issues. This PR fixes all such includes and introduces a validation step that forbids introducing the same problem again. 2023-06-22 10:38:01 +02:00
Modify rule S2445: Update to LayC (#2184) 2023-06-14 15:58:29 +02:00			`endif::env-github,rspecator-view[]`