java:S6909 false positive when inside control statements

OlliL · May 27, 2024, 4:53pm

What language is this for: Java
Which rule: S6909
Why do you believe it’s a false-positive/false-negative: because it does not consider control statements
SonarLint - Eclipse - not connected

Imagine the following code:

try (final PreparedStatement stmt = con.prepareStatement(STATEMENT, Statement.RETURN_GENERATED_KEYS)) {
	for (final AccountMovement accountMovement : this.accountMovements) {
....
		if (accountMovement.getOtherAccountnumber() == null)
			stmt.setNull(11, Types.BIGINT);         <----------------------
		else
			stmt.setLong(11, accountMovement.getOtherAccountnumber());
....

S6909 will complain saying the Types.BIGINT line could be moved outside the for loop - which of course is not true and would change the semantics because it is inside an if statement!

Dorian_Burihabwa · May 28, 2024, 3:48pm

Hi @OlliL,

Welcome to the community and thank you for reporting this FP!

I feel the pain here since the suggestion is likely to introduce a bug. Hopefully, the sample you shared was just for education and you see how you could improve this to be more efficient

However, I can reproduce the problem locally, and I created a ticket to track progress on the issue.

Cheers,

Dorian

OlliL · May 29, 2024, 5:45pm

Oh… it was indeed a reduced form of live code:

github.com

OlliL/moneyjinn-server/blob/master/moneyjinn-hbci-batch/src/main/java/org/laladev/moneyjinn/hbci/core/handler/AccountMovementHandler.java#L137


      
          				stmt.setString(3, accountMovement.getMyBic());
          				stmt.setLong(4, accountMovement.getMyAccountnumber());
          				stmt.setInt(5, accountMovement.getMyBankcode());
          				stmt.setDate(6, Date.valueOf(accountMovement.getBookingDate()));
          				stmt.setDate(7, Date.valueOf(accountMovement.getValueDate()));
          				stmt.setTimestamp(8, accountMovement.getInvoiceTimestamp() == null ? null
          						: Timestamp.valueOf(accountMovement.getInvoiceTimestamp()));
          				stmt.setString(9, accountMovement.getOtherIban());
          				stmt.setString(10, accountMovement.getOtherBic());
          
          				if (accountMovement.getOtherAccountnumber() == null)
          					stmt.setNull(11, Types.BIGINT);
          				else
          					stmt.setLong(11, accountMovement.getOtherAccountnumber());
          
          				if (accountMovement.getOtherBankcode() == null)
          					stmt.setNull(12, Types.INTEGER);
          				else
          					stmt.setLong(12, accountMovement.getOtherBankcode());
          
          				stmt.setString(13, accountMovement.getOtherName());

Would be cool to hear what you had in mind to improve it to be more efficient

Dorian_Burihabwa · May 30, 2024, 4:05pm

Sorry, you can discard my comment on efficiency.
I misread the original snippet and thought you were assigning the value in position 11 with the same method called in both branches. In which case you could have moved the test of nullability into a variable assignment and called the method with the same variable without branching anymore.
But that does apply here