清单3.7实际上是如何在java并发中工作的?
清单3.7。隐式地允许此引用转义。不要这样做清单3.7实际上是如何在java并发中工作的?,java,concurrency,Java,Concurrency,清单3.7。隐式地允许此引用转义。不要这样做 public class ThisEscape { public ThisEscape(EventSource source) { source.registerListener( new EventListener() { public void onEvent(Event e) { doSomething(e); } } } } } 引用 发布对象或其内部状态的最后一种机制是发布内部类实例
public class ThisEscape {
public ThisEscape(EventSource source) {
source.registerListener(
new EventListener() {
public void onEvent(Event e) {
doSomething(e);
}
}
}
}
}
这个隐藏引用在哪里?如何利用它?隐藏引用是任何非静态内部类都具有的隐式变量,允许它引用其外部类的成员 考虑对该类稍加修改的版本:
public class ThisEscape {
private final List<EventSource> listOfEvents;
public ThisEscape(EventSource source) {
source.registerListener(
new EventListener() {
public void onEvent(Event e) {
doSomething(e);
listOfEvents.add(e); //The "hidden reference" is what allows this inner class
//to use the parent's "listOfEvents" member variable
}
}
}
Thread.sleep(5000); //This would need a try/catch - skipping that
listOfEvents = new ArrayList<EventSource>();
}
}
就利用这一点而言,这在很大程度上取决于上下文-但上述模式的任何实例都肯定是可能发生的潜在错误,即使没有攻击者试图利用它。隐藏引用是任何非静态内部类所具有的隐式变量,允许它引用其外部类的成员 考虑对该类稍加修改的版本:
public class ThisEscape {
private final List<EventSource> listOfEvents;
public ThisEscape(EventSource source) {
source.registerListener(
new EventListener() {
public void onEvent(Event e) {
doSomething(e);
listOfEvents.add(e); //The "hidden reference" is what allows this inner class
//to use the parent's "listOfEvents" member variable
}
}
}
Thread.sleep(5000); //This would need a try/catch - skipping that
listOfEvents = new ArrayList<EventSource>();
}
}