Skip to content

Fix S4426 FN: On .Net 7 when using ECDsaOpenSsl #6164

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
costin-zaharia-sonarsource opened this issue Oct 4, 2022 · 0 comments · Fixed by #6489
Closed

Fix S4426 FN: On .Net 7 when using ECDsaOpenSsl #6164

costin-zaharia-sonarsource opened this issue Oct 4, 2022 · 0 comments · Fixed by #6489
Assignees
@cristian-ambrosini-sonarsource
Labels
Type: False Negative Rule is NOT triggered when it should be.
Milestone
8.51

Comments

@costin-zaharia-sonarsource
Copy link
Member

costin-zaharia-sonarsource commented Oct 4, 2022
edited
Loading

Description

The rule S4426 does not raise issues for ECDsaOpenSsl when running on .Net 7 runtime.

Repro steps

var ec3 = new ECDsaOpenSsl();
ec3.GenerateKey(ECCurve.NamedCurves.brainpoolP192t1); // Noncompliant {{Use a key length of at least 224 bits for EC cipher algorithm.}}

Expected behavior

An issue should be raised.

Actual behavior

No issue raised.

Known workarounds

Please provide a description of any known workarounds.
@costin-zaharia-sonarsource costin-zaharia-sonarsource added the Type: False Negative Rule is NOT triggered when it should be. label Nov 11, 2022
@csaba-sagi-sonarsource csaba-sagi-sonarsource added this to the 8.51 milestone Dec 2, 2022
Merged
@martin-strecker-sonarsource martin-strecker-sonarsource changed the title S4426 FN: On .Net 7 when using ECDsaOpenSsl Fix S4426 FN: On .Net 7 when using ECDsaOpenSsl Dec 8, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@cristian-ambrosini-sonarsource cristian-ambrosini-sonarsource

Labels
Type: False Negative Rule is NOT triggered when it should be.
Projects
None yet
Milestone
8.51
Development

Successfully merging a pull request may close this issue.

Fix S4426 FN: On .Net 7 when using ECDsaOpenSsl SonarSource/sonar-dotnet
4 participants
@costin-zaharia-sonarsource @csaba-sagi-sonarsource @martin-strecker-sonarsource @cristian-ambrosini-sonarsource