Fixing CA2000

iothub/device/src/Edge/CustomCertificateValidator.cs

@@ -95,7 +95,8 @@ private static bool ValidateCertificate(X509Certificate2 trustedCertificate, X50
             chain.ChainPolicy.ExtraStore.Add(trustedCertificate);
             chain.ChainPolicy.VerificationFlags = X509VerificationFlags.AllowUnknownCertificateAuthority;
 #if !NET451
-            if (!chain.Build(new X509Certificate2(certificate)))
+            using var cert = new X509Certificate2(certificate);
+            if (!chain.Build(cert))
             {
                 Debug.WriteLine("Unable to build the chain using the expected root certificate.");
                 return false;

iothub/device/src/Edge/InstalledCertificateValidator.cs

@@ -14,7 +14,7 @@ internal class InstalledCertificateValidator : ICertificateValidator
 
         private InstalledCertificateValidator(IList<X509Certificate2> certs)
         {
-            this._certs = certs;
+            _certs = certs;
         }
 
         public static InstalledCertificateValidator Create(IList<X509Certificate2> certs)
@@ -32,10 +32,13 @@ public Func<object, X509Certificate, X509Chain, SslPolicyErrors, bool> GetCustom
         private void SetupCertificateValidation()
         {
             Debug.WriteLine("InstalledCertificateValidator.SetupCertificateValidation()");
-
-            foreach (var cert in this._certs)
+#if NET451
+            var store = new X509Store(StoreName.Root, StoreLocation.CurrentUser);
+#else
+            using var store = new X509Store(StoreName.Root, StoreLocation.CurrentUser);
+#endif
+            foreach (X509Certificate2 cert in _certs)
             {
-                var store = new X509Store(StoreName.Root, StoreLocation.CurrentUser);
                 store.Open(OpenFlags.ReadWrite);
                 store.Add(cert);
             }

iothub/device/src/Transport/AmqpIoT/AmqpIoTMessageConverter.cs

@@ -516,7 +516,7 @@ private static bool TryGetAmqpObjectFromNetObject(object netObject, MappingType
 
         internal static ArraySegment<byte> ReadStream(Stream stream)
         {
-            MemoryStream memoryStream = new MemoryStream();
+            using var memoryStream = new MemoryStream();
             int bytesRead;
             byte[] readBuffer = new byte[512];
             while ((bytesRead = stream.Read(readBuffer, 0, readBuffer.Length)) > 0)

iothub/device/src/Transport/Mqtt/MqttTransportHandler.cs

@@ -291,7 +291,6 @@ public override async Task<Message> ReceiveAsync(CancellationToken cancellationT
 
                     cancellationToken.ThrowIfCancellationRequested();
 
-                    Message message = null;
                     EnsureValidState();
 
                     if (State != TransportState.Receiving)
@@ -300,7 +299,7 @@ public override async Task<Message> ReceiveAsync(CancellationToken cancellationT
                     }
 
                     bool hasMessage = await ReceiveMessageArrivalAsync(cancellationToken).ConfigureAwait(true);
-                    message = ProcessMessage(message, hasMessage);
+                    Message message = ProcessMessage(hasMessage);
 
                     return message;
                 }
@@ -332,8 +331,6 @@ public override async Task<Message> ReceiveAsync(TimeoutHelper timeoutHelper)
                     Logging.Enter(this, timeoutHelper, $"Time remaining for ReceiveAsync(): {timeoutHelper.GetRemainingTime()}", $"{nameof(ReceiveAsync)}");
                 }
 
-                Message message = null;
-
                 EnsureValidState();
 
                 if (State != TransportState.Receiving)
@@ -344,7 +341,7 @@ public override async Task<Message> ReceiveAsync(TimeoutHelper timeoutHelper)
                 TimeSpan timeout = timeoutHelper.GetRemainingTime();
                 using var cts = new CancellationTokenSource(timeout);
                 bool hasMessage = await ReceiveMessageArrivalAsync(cts.Token).ConfigureAwait(true);
-                message = ProcessMessage(message, hasMessage);
+                Message message = ProcessMessage(hasMessage);
 
                 return message;
             }
@@ -357,8 +354,10 @@ public override async Task<Message> ReceiveAsync(TimeoutHelper timeoutHelper)
             }
         }
 
-        private Message ProcessMessage(Message message, bool hasMessage)
+        private Message ProcessMessage(bool hasMessage)
         {
+            Message message = null;
+
             try
             {
                 if (Logging.IsEnabled)
@@ -566,14 +565,12 @@ private async Task HandleIncomingMethodPostAsync(Message message)
 
         private async Task HandleIncomingMessagesAsync()
         {
-            Message message = null;
-
             if (Logging.IsEnabled)
             {
                 Logging.Enter(this, "Process c2d message via callback", nameof(HandleIncomingMessagesAsync));
             }
 
-            message = ProcessMessage(message, true);
+            Message message = ProcessMessage(true);
             await (_deviceMessageReceivedListener?.Invoke(message) ?? TaskHelpers.CompletedTask).ConfigureAwait(false);
 
             if (Logging.IsEnabled)

provisioning/transport/amqp/src/AmqpClientConnection.cs

@@ -7,7 +7,6 @@
 using Microsoft.Azure.Amqp.Transport;
 using Microsoft.Azure.Devices.Shared;
 using System;
-using System.Diagnostics;
 using System.Net;
 using System.Net.Security;
 using System.Net.WebSockets;
@@ -17,11 +16,13 @@
 
 namespace Microsoft.Azure.Devices.Provisioning.Client.Transport
 {
-    internal class AmqpClientConnection
+    internal class AmqpClientConnection : IDisposable
     {
         private readonly AmqpSettings _amqpSettings;
         private readonly Uri _uri;
 
+        private bool _isDisposed;
+
         internal AmqpClientConnection(Uri uri, AmqpSettings amqpSettings)
         {
             _uri = uri;
@@ -42,12 +43,12 @@ internal AmqpClientConnection(Uri uri, AmqpSettings amqpSettings)
 
         public AmqpClientSession AmqpSession { get; private set; }
 
-        public bool IsConnectionClosed => _isConnectionClosed;
-
-        private bool _isConnectionClosed;
+        public bool IsConnectionClosed { get; private set; }
 
         private TaskCompletionSource<TransportBase> _tcs;
 
+        private TransportBase _transport;
+
         private ProtocolHeader _sentHeader;
 
         public async Task OpenAsync(TimeSpan timeout, bool useWebSocket, X509Certificate2 clientCert, IWebProxy proxy, RemoteCertificateValidationCallback remoteCerificateValidationCallback)
@@ -57,7 +58,7 @@ public async Task OpenAsync(TimeSpan timeout, bool useWebSocket, X509Certificate
                 Logging.Enter(this, $"{nameof(AmqpClientConnection)}.{nameof(OpenAsync)}");
             }
 
-            var hostName = _uri.Host;
+            string hostName = _uri.Host;
 
             var tcpSettings = new TcpTransportSettings { Host = hostName, Port = _uri.Port != -1 ? _uri.Port : AmqpConstants.DefaultSecurePort };
             TransportSettings = new TlsTransportSettings(tcpSettings)
@@ -67,11 +68,9 @@ public async Task OpenAsync(TimeSpan timeout, bool useWebSocket, X509Certificate
                 CertificateValidationCallback = remoteCerificateValidationCallback,
             };
 
-            TransportBase transport;
-
             if (useWebSocket)
             {
-                transport = await CreateClientWebSocketTransportAsync(timeout, proxy).ConfigureAwait(false);
+                _transport = await CreateClientWebSocketTransportAsync(timeout, proxy).ConfigureAwait(false);
                 SaslTransportProvider provider = _amqpSettings.GetTransportProvider<SaslTransportProvider>();
                 if (provider != null)
                 {
@@ -81,46 +80,46 @@ public async Task OpenAsync(TimeSpan timeout, bool useWebSocket, X509Certificate
                     }
 
                     _sentHeader = new ProtocolHeader(provider.ProtocolId, provider.DefaultVersion);
-                    ByteBuffer buffer = new ByteBuffer(new byte[AmqpConstants.ProtocolHeaderSize]);
+                    using var buffer = new ByteBuffer(new byte[AmqpConstants.ProtocolHeaderSize]);
                     _sentHeader.Encode(buffer);
 
                     _tcs = new TaskCompletionSource<TransportBase>();
 
                     var args = new TransportAsyncCallbackArgs();
                     args.SetBuffer(buffer.Buffer, buffer.Offset, buffer.Length);
                     args.CompletedCallback = OnWriteHeaderComplete;
-                    args.Transport = transport;
-                    bool operationPending = transport.WriteAsync(args);
+                    args.Transport = _transport;
+                    bool operationPending = _transport.WriteAsync(args);
 
                     if (Logging.IsEnabled)
                     {
-                        Logging.Info(this, $"{nameof(AmqpClientConnection)}.{nameof(OpenAsync)}: Sent Protocol Header: {_sentHeader.ToString()} operationPending: {operationPending} completedSynchronously: {args.CompletedSynchronously}");
+                        Logging.Info(this, $"{nameof(AmqpClientConnection)}.{nameof(OpenAsync)}: Sent Protocol Header: {_sentHeader} operationPending: {operationPending} completedSynchronously: {args.CompletedSynchronously}");
                     }
 
                     if (!operationPending)
                     {
                         args.CompletedCallback(args);
                     }
 
-                    transport = await _tcs.Task.ConfigureAwait(false);
-                    await transport.OpenAsync(timeout).ConfigureAwait(false);
+                    _transport = await _tcs.Task.ConfigureAwait(false);
+                    await _transport.OpenAsync(timeout).ConfigureAwait(false);
                 }
             }
             else
             {
                 var tcpInitiator = new AmqpTransportInitiator(_amqpSettings, TransportSettings);
-                transport = await tcpInitiator.ConnectTaskAsync(timeout).ConfigureAwait(false);
+                _transport = await tcpInitiator.ConnectTaskAsync(timeout).ConfigureAwait(false);
             }
 
-            AmqpConnection = new AmqpConnection(transport, _amqpSettings, AmqpConnectionSettings);
+            AmqpConnection = new AmqpConnection(_transport, _amqpSettings, AmqpConnectionSettings);
             AmqpConnection.Closed += OnConnectionClosed;
             await AmqpConnection.OpenAsync(timeout).ConfigureAwait(false);
-            _isConnectionClosed = false;
+            IsConnectionClosed = false;
         }
 
         public async Task CloseAsync(TimeSpan timeout)
         {
-            var connection = AmqpConnection;
+            AmqpConnection connection = AmqpConnection;
             if (connection != null)
             {
                 await connection.CloseAsync(timeout).ConfigureAwait(false);
@@ -129,7 +128,7 @@ public async Task CloseAsync(TimeSpan timeout)
 
         public void Close()
         {
-            var connection = AmqpConnection;
+            AmqpConnection connection = AmqpConnection;
             if (connection != null)
             {
                 connection.Close();
@@ -145,18 +144,18 @@ public AmqpClientSession CreateSession()
 
         private void OnConnectionClosed(object o, EventArgs args)
         {
-            _isConnectionClosed = true;
+            IsConnectionClosed = true;
         }
 
         private async Task<TransportBase> CreateClientWebSocketTransportAsync(TimeSpan timeout, IWebProxy proxy)
         {
-            UriBuilder webSocketUriBuilder = new UriBuilder
+            var webSocketUriBuilder = new UriBuilder
             {
                 Scheme = WebSocketConstants.Scheme,
                 Host = _uri.Host,
                 Port = _uri.Port
             };
-            var websocket = await CreateClientWebSocketAsync(webSocketUriBuilder.Uri, timeout, proxy).ConfigureAwait(false);
+            ClientWebSocket websocket = await CreateClientWebSocketAsync(webSocketUriBuilder.Uri, timeout, proxy).ConfigureAwait(false);
             return new ClientWebSocketTransport(
                 websocket,
                 null,
@@ -209,7 +208,6 @@ private async Task<ClientWebSocket> CreateClientWebSocketAsync(Uri websocketUri,
                 }
             }
 #endif
-
             using (var cancellationTokenSource = new CancellationTokenSource(timeout))
             {
                 await websocket.ConnectAsync(websocketUri, cancellationTokenSource.Token).ConfigureAwait(false);
@@ -257,12 +255,14 @@ private void OnReadHeaderComplete(TransportAsyncCallbackArgs args)
 
             try
             {
-                ProtocolHeader receivedHeader = new ProtocolHeader();
-                receivedHeader.Decode(new ByteBuffer(args.Buffer, args.Offset, args.Count));
+                var receivedHeader = new ProtocolHeader();
+
+                using var byteBuffer = new ByteBuffer(args.Buffer, args.Offset, args.Count);
+                receivedHeader.Decode(byteBuffer);
 
                 if (Logging.IsEnabled)
                 {
-                    Logging.Info(this, $"{nameof(AmqpClientConnection)}.{nameof(OnReadHeaderComplete)}: Received Protocol Header: {receivedHeader.ToString()}");
+                    Logging.Info(this, $"{nameof(AmqpClientConnection)}.{nameof(OnReadHeaderComplete)}: Received Protocol Header: {receivedHeader}");
                 }
 
                 if (!receivedHeader.Equals(_sentHeader))
@@ -271,7 +271,7 @@ private void OnReadHeaderComplete(TransportAsyncCallbackArgs args)
                 }
 
                 SaslTransportProvider provider = _amqpSettings.GetTransportProvider<SaslTransportProvider>();
-                var transport = provider.CreateTransport(args.Transport, true);
+                TransportBase transport = provider.CreateTransport(args.Transport, true);
                 if (Logging.IsEnabled)
                 {
                     Logging.Info(this, $"{nameof(AmqpClientConnection)}.{nameof(OnReadHeaderComplete)}: Created SaslTransportHandler ");
@@ -305,5 +305,31 @@ private void CompleteOnException(TransportAsyncCallbackArgs args)
                 _tcs.TrySetException(args.Exception);
             }
         }
+
+        public void Dispose()
+        {
+            Dispose(true);
+            GC.SuppressFinalize(this);
+        }
+
+        public virtual void Dispose(bool disposing)
+        {
+            if (_isDisposed)
+            {
+                return;
+            }
+
+            if (disposing)
+            {
+                // We don't know if the transport object is instantiated as a disposable or not
+                // We check and dispose if it is.
+                if (_transport is IDisposable disposable)
+                {
+                    disposable.Dispose();
+                }
+            }
+
+            _isDisposed = true;
+        }
     }
 }

provisioning/transport/amqp/src/ProvisioningTransportHandlerAmqp.cs

@@ -65,8 +65,6 @@ public override async Task<DeviceRegistrationResult> RegisterAsync(
 
             cancellationToken.ThrowIfCancellationRequested();
 
-            AmqpClientConnection connection = null;
-
             try
             {
                 AmqpAuthStrategy authStrategy;
@@ -107,7 +105,7 @@ public override async Task<DeviceRegistrationResult> RegisterAsync(
                 string registrationId = message.Security.GetRegistrationID();
                 string linkEndpoint = $"{message.IdScope}/registrations/{registrationId}";
 
-                connection = authStrategy.CreateConnection(builder.Uri, message.IdScope);
+                using AmqpClientConnection connection = authStrategy.CreateConnection(builder.Uri, message.IdScope);
                 await authStrategy.OpenConnectionAsync(connection, s_timeoutConstant, useWebSocket, Proxy, RemoteCertificateValidationCallback).ConfigureAwait(false);
                 cancellationToken.ThrowIfCancellationRequested();
 

provisioning/transport/http/src/ProvisioningTransportHandlerHttp.cs

@@ -78,11 +78,11 @@ public async override Task<DeviceRegistrationResult> RegisterAsync(
 
                 Logging.Associate(authStrategy, this);
 
-                var httpClientHandler = new HttpClientHandler
+                using var httpClientHandler = new HttpClientHandler()
                 {
                     // Cannot specify a specific protocol here, as desired due to an error:
-                    //   ProvisioningDeviceClient_ValidRegistrationId_AmqpWithProxy_SymmetricKey_RegisterOk_GroupEnrollment failing for me with System.PlatformNotSupportedException: Operation is not supported on this platform.
-                    // When revisiting TLS12 work for DPS, we should figure out why. Perhaps the service needs to support it.
+                    //   ProvisioningDeviceClient_ValidRegistrationId_AmqpWithProxy_SymmetricKey_RegisterOk_GroupEnrollment failing for me with System.PlatformNotSupportedException: Operation is not supported on this platform.	
+                    // When revisiting TLS12 work for DPS, we should figure out why. Perhaps the service needs to support it.	
 
                     //SslProtocols = TlsVersions.Preferred,
                 };
@@ -101,7 +101,7 @@ public async override Task<DeviceRegistrationResult> RegisterAsync(
                     Port = Port,
                 };
 
-                DeviceProvisioningServiceRuntimeClient client = authStrategy.CreateClient(builder.Uri, httpClientHandler);
+                using DeviceProvisioningServiceRuntimeClient client = authStrategy.CreateClient(builder.Uri, httpClientHandler);
                 client.HttpClient.DefaultRequestHeaders.Add("User-Agent", message.ProductInfo);
                 Logging.Info(this, $"Uri: {builder.Uri}; User-Agent: {message.ProductInfo}");