我有一些我们运行的旧代码。我不是java和异常后代等方面的Maven,所以我希望有人能够帮助我解决这个问题,因为sonar说它是一个拦截器。
代码如下:
package xxx;import java.io.UnsupportedEncodingException;import java.security.InvalidKeyException;import java.security.Key;import java.security.MessageDigest;import java.security.NoSuchAlgorithmException;import java.util.Arrays;import javax.crypto.BadPaddingException;import javax.crypto.Cipher;import javax.crypto.IllegalBlockSizeException;import javax.crypto.KeyGenerator;import javax.crypto.NoSuchPaddingException;import javax.crypto.spec.SecretKeySpec;public class Encryptor {private static final String ALGORITHM = "AES";private static final String defaultSecretKey = "xxx";private Key secretKeySpec;public Encryptor() throws InvalidKeyException, NoSuchAlgorithmException, NoSuchPaddingException,UnsupportedEncodingException {this(null);}public Encryptor(String secretKey) throws NoSuchAlgorithmException, NoSuchPaddingException, InvalidKeyException,UnsupportedEncodingException {this.secretKeySpec = generateKey(secretKey);}public String encrypt(String plainText) throws InvalidKeyException, NoSuchAlgorithmException,NoSuchPaddingException, IllegalBlockSizeException, BadPaddingException, UnsupportedEncodingException {Cipher cipher = Cipher.getInstance(ALGORITHM);cipher.init(Cipher.ENCRYPT_MODE, secretKeySpec);byte[] encrypted = cipher.doFinal(plainText.getBytes("UTF-8"));return asHexString(encrypted);}public String decrypt(String encryptedString) throws InvalidKeyException, IllegalBlockSizeException,BadPaddingException, NoSuchAlgorithmException, NoSuchPaddingException {Cipher cipher = Cipher.getInstance(ALGORITHM);cipher.init(Cipher.DECRYPT_MODE, secretKeySpec);byte[] original = cipher.doFinal(toByteArray(encryptedString));return new String(original);}private Key generateKey(String secretKey) throws UnsupportedEncodingException, NoSuchAlgorithmException {if (secretKey == null) {secretKey = defaultSecretKey;}byte[] key = (secretKey).getBytes("UTF-8");MessageDigest sha = MessageDigest.getInstance("SHA-256");key = sha.digest(key);key = Arrays.copyOf(key, 16); // use only the first 128 bitKeyGenerator kgen = KeyGenerator.getInstance("AES");kgen.init(256); // 192 and 256 bits may not be availablereturn new SecretKeySpec(key, ALGORITHM);}private final String asHexString(byte buf[]) {StringBuffer strbuf = new StringBuffer(buf.length * 2);int i;for (i = 0; i < buf.length; i++) {if (((int) buf[i] & 0xff) < 0x10) {strbuf.append("0");}strbuf.append(Long.toString((int) buf[i] & 0xff, 16));}return strbuf.toString();}private final byte[] toByteArray(String hexString) {int arrLength = hexString.length() >> 1;byte buf[] = new byte[arrLength];for (int ii = 0; ii < arrLength; ii++) {int index = ii << 1;String l_digit = hexString.substring(index, index + 2);buf[ii] = (byte) Integer.parseInt(l_digit, 16);}return buf;}public static void main(String[] args) throws Exception {if (args.length == 1) {String plainText = args[0];Encryptor aes = new Encryptor();String encryptedString = aes.encrypt(plainText);//this line only ensures that decryption worksString decryptedString = aes.decrypt(encryptedString);System.out.println("Original Password: " + plainText + " and Encrypted Password: " + encryptedString);} else {System.out.println("USAGE: java AES string-to-encrypt");}}}
问题就在这条线上:
public static void main(String[] args) throws Exception {
声纳说删除这个条款
有人知道怎么解决这个问题吗?为什么会这样?
谢谢。
m。
2条答案
按热度按时间ikfrs5lh1#
使用最小公分母,或者更具体的异常类(exception class)始终是一种很好的方法,该异常类提供了对其所有子代的最佳抽象。
考虑以下方法声明:
对所有这些例外情况的仔细检查表明,它们都扩展了
GeneralSecurityException. 因此,可以将上述代码重构为:唯一的例外,它不继承
GeneralSecurityException,是UnsupportedEncodingException所以你必须明确声明它。从客户端考虑:您更愿意使用哪个版本?
nmpmafwu2#
感谢所有评论:
这就是解决方案(删除泛型异常并添加显式异常):