Skip to content
Run CogniCrypt static analysis

Merge pull request #2 from CROSSINGTUD/schlichtig-v3.2.1 #14

Sign in to view logs

Merge pull request #2 from CROSSINGTUD/schlichtig-v3.2.1

Merge pull request #2 from CROSSINGTUD/schlichtig-v3.2.1 #14

Triggered via push August 2, 2024 15:41
@schlichtigschlichtig
pushed 1458bf8
main
Status Failure
Total duration 3m 30s
Artifacts

cognicrypt.yml

on: push
cognicrypt
3m 21s
cognicrypt
Fit to window
Zoom out
Zoom in

Annotations

10 errors and 2 warnings
ConstraintError violating CrySL rule for java.security.KeyPairGenerator: CamBench_Cap/src/main/java/org/cambench/cap/mixedsensitivities/fieldpath/falsepositive/smallkeysize/SmallKeySize1.java#L41
First parameter (with value 512) should be any of {4096, 3072}
RequiredPredicateError violating CrySL rule for java.security.KeyPair: CamBench_Cap/src/main/java/org/cambench/cap/mixedsensitivities/fieldpath/falsepositive/smallkeysize/SmallKeySize1.java#L42
Return value was not properly generated as generatedKeypair
IncompleteOperationError violating CrySL rule for javax.crypto.Cipher: CamBench_Cap/src/main/java/org/cambench/cap/mixedsensitivities/fieldpath/falsepositive/smallkeysize/SmallKeySize1.java#L44
Operation on object of type javax.crypto.Cipher not completed. Expected call to one of the methods {doFinal(byte[]), update(byte[], int, int, byte[], int), doFinal(byte[], int, int, byte[], int), doFinal(byte[], int, int, byte[]), update(byte[]), update(byte[], int, int, byte[]), updateAAD(byte[], int, int), update(byte[], int, int), update(java.nio.ByteBuffer, java.nio.ByteBuffer), wrap(java.security.Key), updateAAD(byte[]), updateAAD(java.nio.ByteBuffer), doFinal(byte[], int, int), doFinal(java.nio.ByteBuffer, java.nio.ByteBuffer)}
RequiredPredicateError violating CrySL rule for java.security.PublicKey: CamBench_Cap/src/main/java/org/cambench/cap/mixedsensitivities/fieldpath/falsepositive/smallkeysize/SmallKeySize1.java#L44
Return value was not properly generated as generatedPubkey
ConstraintError violating CrySL rule for java.security.KeyPairGenerator: CamBench_Cap/src/main/java/org/cambench/cap/mixedsensitivities/fieldpath/falsepositive/smallkeysize/SmallKeySize1.java#L41
First parameter (with value 2048) should be any of {4096, 3072}
RequiredPredicateError violating CrySL rule for javax.crypto.Cipher: CamBench_Cap/src/main/java/org/cambench/cap/mixedsensitivities/fieldpath/falsepositive/smallkeysize/SmallKeySize1.java#L44
Second parameter was not properly generated as generatedPrivkey OR generatedPubkey OR generatedKey
ConstraintError violating CrySL rule for javax.crypto.Cipher: CamBench_Cap/src/main/java/org/cambench/cap/mixedsensitivities/fieldpath/falsepositive/brokencrypto/BrokenCrypto2.java#L39
First parameter (with value "Blowfish") should be any of {AES, PBEWithHmacSHA224AndAES_128, PBEWithHmacSHA256AndAES_128, PBEWithHmacSHA384AndAES_128, PBEWithHmacSHA512AndAES_128, PBEWithHmacSHA224AndAES_256, PBEWithHmacSHA256AndAES_256, PBEWithHmacSHA384AndAES_256, PBEWithHmacSHA512AndAES_256}
RequiredPredicateError violating CrySL rule for javax.crypto.Cipher: CamBench_Cap/src/main/java/org/cambench/cap/mixedsensitivities/fieldpath/falsepositive/brokencrypto/BrokenCrypto2.java#L41
Second parameter was not properly generated as generatedPrivkey OR generatedPubkey OR generatedKey
IncompleteOperationError violating CrySL rule for javax.crypto.Cipher: CamBench_Cap/src/main/java/org/cambench/cap/mixedsensitivities/fieldpath/falsepositive/brokencrypto/BrokenCrypto2.java#L41
Operation on object of type javax.crypto.Cipher not completed. Expected call to one of the methods {doFinal(byte[]), update(byte[], int, int, byte[], int), doFinal(byte[], int, int, byte[], int), doFinal(byte[], int, int, byte[]), update(byte[]), update(byte[], int, int, byte[]), updateAAD(byte[], int, int), update(byte[], int, int), update(java.nio.ByteBuffer, java.nio.ByteBuffer), wrap(java.security.Key), updateAAD(byte[]), updateAAD(java.nio.ByteBuffer), doFinal(byte[], int, int), doFinal(java.nio.ByteBuffer, java.nio.ByteBuffer)}
RequiredPredicateError violating CrySL rule for java.security.KeyPair: CamBench_Cap/src/main/java/org/cambench/cap/mixedsensitivities/fieldflow/falsepositive/smallkeysize/SmallKeySize1.java#L37
Return value was not properly generated as generatedKeypair
cognicrypt
There are more violations than the GitHub annotations interface displays. Please check the log for additional violations.
cognicrypt
The following actions uses Node.js version which is deprecated and will be forced to run on node20: actions/setup-java@v3, actions/cache/restore@v3, stCarolas/[email protected], actions/cache/save@v3. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/