Skip to content
CodeQL

Added a minimal rogue client detection mechanism at the transport level #2992

Sign in to view logs

Added a minimal rogue client detection mechanism at the transport level

Added a minimal rogue client detection mechanism at the transport level #2992

Triggered via pull request November 19, 2024 10:03
@mrsuciumrsuciu
synchronize #2850
mrsuciu:develop/main374-RogueClient
Status Cancelled
Total duration 17m 26s
Artifacts

codeql-analysis.yml

on: pull_request
Matrix: Analyze
Fit to window
Zoom out
Zoom in

Annotations

2 errors and 10 warnings
Analyze (csharp)
Canceling since a higher priority waiting request for 'CodeQL-2850' exists
Analyze (csharp)
The operation was canceled.
Analyze (csharp): Libraries/Opc.Ua.Security.Certificates/X509Crl/CrlReason.cs#L53
Mark enums with FlagsAttribute (https://learn.microsoft.com/dotnet/fundamentals/code-analysis/quality-rules/ca1027)
Analyze (csharp): Libraries/Opc.Ua.Security.Certificates/Extensions/X509CrlNumberExtension.cs#L60
In externally visible method 'X509CrlNumberExtension.X509CrlNumberExtension(AsnEncodedData encodedExtension, bool critical)', validate parameter 'encodedExtension' is non-null before using it. If appropriate, throw an 'ArgumentNullException' when the argument is 'null'. (https://learn.microsoft.com/dotnet/fundamentals/code-analysis/quality-rules/ca1062)
Analyze (csharp): Libraries/Opc.Ua.Security.Certificates/X509Crl/X509Crl.cs#L70
In externally visible method 'X509CRL.X509CRL(IX509CRL crl)', validate parameter 'crl' is non-null before using it. If appropriate, throw an 'ArgumentNullException' when the argument is 'null'. (https://learn.microsoft.com/dotnet/fundamentals/code-analysis/quality-rules/ca1062)
Analyze (csharp): Libraries/Opc.Ua.Security.Certificates/Extensions/X509SubjectAltNameExtension.cs#L88
In externally visible method 'X509SubjectAltNameExtension.X509SubjectAltNameExtension(AsnEncodedData encodedExtension, bool critical)', validate parameter 'encodedExtension' is non-null before using it. If appropriate, throw an 'ArgumentNullException' when the argument is 'null'. (https://learn.microsoft.com/dotnet/fundamentals/code-analysis/quality-rules/ca1062)
Analyze (csharp): Libraries/Opc.Ua.Security.Certificates/X509Certificate/CertificateBuilderBase.cs#L67
Do not call overridable methods in constructors (https://learn.microsoft.com/dotnet/fundamentals/code-analysis/quality-rules/ca2214)
Analyze (csharp): Libraries/Opc.Ua.Security.Certificates/Extensions/X509AuthorityKeyIdentifierExtension.cs#L66
In externally visible method 'X509AuthorityKeyIdentifierExtension.X509AuthorityKeyIdentifierExtension(AsnEncodedData encodedExtension, bool critical)', validate parameter 'encodedExtension' is non-null before using it. If appropriate, throw an 'ArgumentNullException' when the argument is 'null'. (https://learn.microsoft.com/dotnet/fundamentals/code-analysis/quality-rules/ca1062)
Analyze (csharp): Libraries/Opc.Ua.Security.Certificates/X509Crl/CrlBuilder.cs#L52
In externally visible method 'CrlBuilder CrlBuilder.Create(IX509CRL crl)', validate parameter 'crl' is non-null before using it. If appropriate, throw an 'ArgumentNullException' when the argument is 'null'. (https://learn.microsoft.com/dotnet/fundamentals/code-analysis/quality-rules/ca1062)
Analyze (csharp): Libraries/Opc.Ua.Security.Certificates/Org.BouncyCastle/PEMReader.cs#L60
Call System.IDisposable.Dispose on object created by 'new Org.BouncyCastle.OpenSsl.PemReader(pemStreamReader)' before all references to it are out of scope (https://learn.microsoft.com/dotnet/fundamentals/code-analysis/quality-rules/ca2000)
Analyze (csharp): Libraries/Opc.Ua.Security.Certificates/Org.BouncyCastle/PEMReader.cs#L65
Call System.IDisposable.Dispose on object created by 'new Org.BouncyCastle.OpenSsl.PemReader(pemStreamReader, pwFinder)' before all references to it are out of scope (https://learn.microsoft.com/dotnet/fundamentals/code-analysis/quality-rules/ca2000)
Analyze (csharp): Libraries/Opc.Ua.Security.Certificates/Extensions/X509SubjectAltNameExtension.cs#L116
Change the type of parameter 'applicationUri' of method 'X509SubjectAltNameExtension.X509SubjectAltNameExtension(string, IEnumerable<string>)' from 'string' to 'System.Uri', or provide an overload to 'X509SubjectAltNameExtension.X509SubjectAltNameExtension(string, IEnumerable<string>)' that allows 'applicationUri' to be passed as a 'System.Uri' object (https://learn.microsoft.com/dotnet/fundamentals/code-analysis/quality-rules/ca1054)