RR.IGNORED

The "RR Value returned by read() or skip() is never checked" error appears when a code entity ignores the result of a read() or skip() method. In this case, another entity may need to read an array of bytes of some length. The array may not be available for reading. RR.IGNORED indicates that a value returned by read() or skip() is never checked.

Example 1

14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
     void copyFile(String src, String dest) {
         try {
             File srcFile = new File(src);
             File destFile = new File(dest);
             FileInputStream fis =
                     new FileInputStream(srcFile);
             FileOutputStream fos =
                     new FileOutputStream(destFile);
             byte bytes[] = new byte[1024];
             fis.read(bytes);
             fos.write(bytes, 0, bytes.length);
             fis.close();
             fos.close();
         } catch (IOException e) {
             e.printStackTrace();
         }
     }

RR.IGNORED is reported for 'read' call on line 23: The value returned by 'java.io.FileInputStream.read'() method is ignored.

External guidance

• CERT EXP00-J: Do not ignore values returned by methods
• CWE-391: Unchecked Error Condition
• STIG-ID:APP3120 Application has error handling vulnerabilities

Security training

Application security training materials provided by Secure Code Warrior.

• Dos Uncaught Errors Training Video - Test your skills with a training example