Review

Misuse Details

Details about the known misuse from the MUBench dataset.

Description:	Uses DES which is considered unsafe.
Fix Description:
Violation Types:	missing/condition/value_or_state
In File:	server/generateChecksumPostsAndReplies.java
In Method:	main(String[])
Code with Misuse:	`class generateChecksumPostsAndReplies {` `/*` ` @param args` `/` `public static void main(String[] args) throws Exception{` `/make decoder*/` `DESKeySpec keySpec = new DESKeySpec(CryptoUtil.decode("92LlYoVU1hU="));` `SecretKeyFactory factory = SecretKeyFactory.getInstance("DES");` `SecretKey key = factory.generateSecret(keySpec);` `byte[] iv = CryptoUtil.decode(decAndCheck.substring(0, 12));` `Cipher c = Cipher.getInstance("DES/CBC/PKCS5Padding");` `IvParameterSpec ivSpec = new IvParameterSpec(iv);` `c.init(Cipher.DECRYPT_MODE, key, ivSpec);` `byte[] content = c.doFinal(CryptoUtil.decode(decAndCheck.substring(12)));` `System.out.println(new String(content, "UTF8"));` `byte[] checksum = Hash.generateChecksum(content);` `System.out.println("\"" + CryptoUtil.encode(checksum) + "\"");` `}` `}`