I'm completely riddled with the following stacktrace... Looks like it is caused by the String instance which has null char array internally. Putting aside reflection, is there any "legal" way to get such String instance in java?
Caused by: java.lang.NullPointerException: null
at java.lang.String.length(String.java:611) ~[na:1.8.0_31]
at org.apache.commons.lang.StringUtils.isEmpty(StringUtils.java:195) ~[commons-lang-2.6.jar:2.6]
If by legal you mean by using the constructors and methods exposed by the String API, then, no, it is not possible to reproduce such an exception.
There are ways to instantiate classes that will skip constructors and initializers. sun.misc.Unsafe provides such a utility, allocateInstance.
public static void main(String[] args) throws Exception {
String string = (String) getUnsafe().allocateInstance(String.class);
System.out.println(string.length());
}
@SuppressWarnings("restriction")
private static Unsafe getUnsafe() {
try {
Field singleoneInstanceField = Unsafe.class.getDeclaredField("theUnsafe");
singleoneInstanceField.setAccessible(true);
return (Unsafe) singleoneInstanceField.get(null);
} catch (Exception e) {
}
return null;
}
In this case, the value field of String will remain null and the NullPointerException will occur when invoking length().
Similarly, some proxying libraries that use byte code manipulation can omit an invocation to super() when creating proxy subclasses, effectively skipping initialization. Here's a related question where mocking failed to properly initialize an ArrayList's backing array.
Also see for reports of an npe on the same line in String. - NullPointerException from within String is confusing - java Strings odd behavior with collator - https://twitter.com/s1m0nw/status/829728992907448326
There's a String(char[] value, boolean shared) package protected constructor that does not do a null check.
My guess that this is used in combination with String intern, so not called directly by your code.
One hypothetical scenario here could be multithreading in combination with String intern. The value field in String is final but not volatile. This may lead to weird issues early in it's lifecycle.
{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://img.manongdao.com/sparkler-677774__340.jpg', '推荐 祖国的老花朵 的文章《NullPointerException at java.lang.String.length(St》','https://www.manongdao.com/article-723069.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}