Add roslyn analyzer and fix security warning issue (#8214)

lyndaidaii · web-flow · commit 3fb9630f364e · 2020-10-13T22:42:54.000-07:00
* Add roslyn analyzer and fix security warning issue
diff --git a/.editorconfig b/.editorconfig
@@ -0,0 +1,35 @@
+[*.cs]
+
+# Suppress performance, usage, naming, maintainability, style diagnostics.
+dotnet_analyzer_diagnostic.category-design.severity = none
+dotnet_analyzer_diagnostic.category-globalization.severity = none
+dotnet_analyzer_diagnostic.category-naming.severity = none
+dotnet_analyzer_diagnostic.category-performance.severity = none
+dotnet_analyzer_diagnostic.category-reliability.severity = none
+dotnet_analyzer_diagnostic.category-security.severity = warning
+dotnet_analyzer_diagnostic.category-usage.severity = none
+dotnet_analyzer_diagnostic.category-Maintainability.severity = none
+dotnet_analyzer_diagnostic.category-Style.severity = none
+
+# Addtional suppress to be compatible with different version among VS2019
+
+# CA1001: Types that own disposable fields should be disposable
+dotnet_diagnostic.CA1001.severity = none
+
+# CA1063: Implement IDisposable Correctly
+dotnet_diagnostic.CA1063.severity = none
+
+# CA1033: Interface methods should be callable by child types
+dotnet_diagnostic.CA1033.severity = none
+
+# CA2229: Implement serialization constructors
+dotnet_diagnostic.CA2229.severity = none
+
+# CA2200: Rethrow to preserve stack details.
+dotnet_diagnostic.CA2200.severity = none
+
+# CA1065: Do not raise exceptions in unexpected locations
+dotnet_diagnostic.CA1065.severity = none
+
+# CA2214: Do not call overridable methods in constructors
+dotnet_diagnostic.CA2214.severity = none
diff --git a/Directory.Build.props b/Directory.Build.props
@@ -0,0 +1,9 @@
+<Project>
+  <ItemGroup>
+    <PackageReference Include="Microsoft.CodeAnalysis.FxCopAnalyzers">
+      <Version>3.3.0</Version>
+      <IncludeAssets>runtime; build; native; contentfiles; analyzers; buildtransitive</IncludeAssets>
+      <PrivateAssets>all</PrivateAssets>
+    </PackageReference>
+  </ItemGroup>
+</Project>
diff --git a/NuGetGallery.sln b/NuGetGallery.sln
@@ -52,6 +52,11 @@ Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "GitHubVulnerabilities2Db.Fa
 EndProject
 Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "VerifyGitHubVulnerabilities", "src\VerifyGitHubVulnerabilities\VerifyGitHubVulnerabilities.csproj", "{C0B764D2-D376-439E-A5C4-1AC41B11E9DE}"
 EndProject
+Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "Solution Items", "Solution Items", "{C643C106-D245-4F00-A486-146357812D8D}"
+	ProjectSection(SolutionItems) = preProject
+		.editorconfig = .editorconfig
+	EndProjectSection
+EndProject
 Global
 	GlobalSection(SolutionConfigurationPlatforms) = preSolution
 		Debug|Any CPU = Debug|Any CPU
diff --git a/src/AccountDeleter/AccountDeleter.csproj b/src/AccountDeleter/AccountDeleter.csproj
@@ -82,6 +82,7 @@
     <Compile Include="AccountDeleteUserService.cs" />
     <Compile Include="Program.cs" />
     <Compile Include="Properties\AssemblyInfo.cs" />
+    <Compile Include="Properties\AssemblyInfo.*.cs" />
     <Compile Include="Telemetry\IAccountDeleteTelemetryService.cs" />
     <Compile Include="Telemetry\AccountDeleteTelemetryService.cs" />
   </ItemGroup>
diff --git a/src/AccountDeleter/Properties/AssemblyInfo.cs b/src/AccountDeleter/Properties/AssemblyInfo.cs
@@ -21,15 +21,7 @@
 // The following GUID is for the ID of the typelib if this project is exposed to COM
 [assembly: Guid("8ee102b9-da4e-4fdf-b6fd-fb12e6584dd7")]
 
-// Version information for an assembly consists of the following four values:
-//
-//      Major Version
-//      Minor Version
-//      Build Number
-//      Revision
-//
-// You can specify all the values or you can default the Build and Revision Numbers
-// by using the '*' as shown below:
-// [assembly: AssemblyVersion("1.0.*")]
-[assembly: AssemblyVersion("1.0.0.0")]
-[assembly: AssemblyFileVersion("1.0.0.0")]
+// The build will automatically inject the following attributes:
+// AssemblyVersion, AssemblyFileVersion, AssemblyInformationalVersion, AssemblyMetadata (for Branch, CommitId, and BuildDateUtc)
+
+[assembly: AssemblyMetadata("RepositoryUrl", "https://www.github.com/NuGet/NuGetGallery")]
diff --git a/src/DatabaseMigrationTools/DatabaseMigrationTools.csproj b/src/DatabaseMigrationTools/DatabaseMigrationTools.csproj
@@ -49,6 +49,7 @@
     <Compile Include="MigrationContextFactory.cs" />
     <Compile Include="Program.cs" />
     <Compile Include="Properties\AssemblyInfo.cs" />
+    <Compile Include="Properties\AssemblyInfo.*.cs" />
     <Compile Include="ValidationDbMigrationContext.cs" />
   </ItemGroup>
   <ItemGroup>
diff --git a/src/GitHubVulnerabilities2Db/GitHubVulnerabilities2Db.csproj b/src/GitHubVulnerabilities2Db/GitHubVulnerabilities2Db.csproj
@@ -70,6 +70,7 @@
     <Compile Include="Job.cs" />
     <Compile Include="Program.cs" />
     <Compile Include="Properties\AssemblyInfo.cs" />
+    <Compile Include="Properties\AssemblyInfo.*.cs" />
   </ItemGroup>
   <ItemGroup>
     <None Include="App.config" />
diff --git a/src/NuGet.Services.Entities/NuGet.Services.Entities.csproj b/src/NuGet.Services.Entities/NuGet.Services.Entities.csproj
@@ -84,6 +84,7 @@
     <Compile Include="PackageVulnerability.cs" />
     <Compile Include="PackageVulnerabilitySeverity.cs" />
     <Compile Include="Properties\AssemblyInfo.cs" />
+    <Compile Include="Properties\AssemblyInfo.*.cs" />    
     <Compile Include="ReservedNamespace.cs" />
     <Compile Include="Role.cs" />
     <Compile Include="Scope.cs" />
diff --git a/src/NuGet.Services.Entities/Properties/AssemblyInfo.cs b/src/NuGet.Services.Entities/Properties/AssemblyInfo.cs
@@ -2,6 +2,7 @@
 // Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
 
 using System.Reflection;
+using System.Resources;
 using System.Runtime.InteropServices;
 
 [assembly: AssemblyTitle("NuGet.Services.Entities")]
@@ -10,4 +11,5 @@
 [assembly: Guid("6262f4fc-29be-4226-b676-db391c89d396")]
 [assembly: AssemblyDescription("Entities used for NuGet services")]
 [assembly: AssemblyCopyright("Copyright © .NET Foundation 2018")]
-[assembly: AssemblyCompany(".NET Foundation")]
+[assembly: AssemblyCompany(".NET Foundation")]
+[assembly: NeutralResourcesLanguage("en-US")]
diff --git a/src/NuGetGallery.Core/Certificates/CertificateFile.cs b/src/NuGetGallery.Core/Certificates/CertificateFile.cs
@@ -63,10 +63,11 @@ private static MemoryStream CopyAsReadOnly(Stream source)
             }
         }
 
-        [SuppressMessage("Microsoft.Security.Cryptography", "CA5354:SHA1CannotBeUsed", Justification = @"SHA1 thumbprint is only used to distinguish certificates in the Gallery view.")]
         private static string GetSha1Thumbprint(MemoryStream stream)
         {
+#pragma warning disable CA5350 // Do Not Use Weak Cryptographic Algorithms
             using (var hashAlgorithm = SHA1.Create())
+#pragma warning restore CA5350 // Do Not Use Weak Cryptographic Algorithms
             {
                 return GetThumbprint(stream, hashAlgorithm);
             }
diff --git a/src/NuGetGallery.Services/NuGetGallery.Services.csproj b/src/NuGetGallery.Services/NuGetGallery.Services.csproj
@@ -183,6 +183,7 @@
     <Compile Include="Permissions\PermissionsRequirement.cs" />
     <Compile Include="PackageManagement\PackageUpdateService.cs" />
     <Compile Include="Properties\AssemblyInfo.cs" />
+    <Compile Include="Properties\AssemblyInfo.*.cs" />
     <Compile Include="Providers\DateTimeProvider.cs" />
     <Compile Include="Providers\IDateTimeProvider.cs" />
     <Compile Include="Providers\RuntimeServiceProvider.cs" />
diff --git a/src/NuGetGallery/Areas/Admin/Controllers/LuceneController.cs b/src/NuGetGallery/Areas/Admin/Controllers/LuceneController.cs
@@ -25,7 +25,7 @@ public LuceneController(IIndexingService indexingService, IAppConfiguration conf
 
         //
         // GET: /Admin/Lucene/
-
+        [HttpGet]
         public virtual async Task<ActionResult> Index()
         {
             return View("Index", await GetLuceneInfo());
diff --git a/src/NuGetGallery/Areas/Admin/Controllers/SupportRequestController.cs b/src/NuGetGallery/Areas/Admin/Controllers/SupportRequestController.cs
@@ -133,6 +133,8 @@ public async Task<ActionResult> Save(int issueKey, int? assignedToId, int issueS
             }
         }
 
+        [HttpPost]
+        [ValidateAntiForgeryToken]
         public async Task<ActionResult> Filter(int pageNumber = 1, int take = _defaultTakeCount, int? assignedToId = null, int? issueStatusId = null, string reason = null)
         {
             if (pageNumber <= 0)
@@ -169,6 +171,7 @@ public async Task<ActionResult> Filter(int pageNumber = 1, int take = _defaultTa
             return Json(data, JsonRequestBehavior.AllowGet);
         }
 
+        [HttpGet]
         public async Task<ActionResult> Index(int pageNumber = 1, int take = _defaultTakeCount, int? assignedToId = null, int? issueStatusId = null, string reason = null)
         {
             if (pageNumber <= 0)
diff --git a/src/NuGetGallery/Controllers/AccountsController.cs b/src/NuGetGallery/Controllers/AccountsController.cs
@@ -153,6 +153,7 @@ public virtual async Task<ActionResult> ConfirmationRequiredPost(string accountN
 
         protected abstract Task SendNewAccountEmailAsync(User account);
 
+        [HttpGet]
         [UIAuthorize(allowDiscontinuedLogins: true)]
         public virtual async Task<ActionResult> Confirm(string accountName, string token)
         {
@@ -380,7 +381,9 @@ public virtual async Task<ActionResult> Delete(DeleteAccountAsAdminViewModel mod
 
         protected abstract DeleteAccountViewModel GetDeleteAccountViewModel(TUser account);
 
+#pragma warning disable CA3147 // No need to Validate Antiforgery Token for abstract function
         public abstract Task<ActionResult> RequestAccountDeletion(string accountName = null);
+#pragma warning restore CA3147 // No need to Validate Antiforgery Token for abstract function
 
         protected List<DeleteAccountListPackageItemViewModel> GetOwnedPackagesViewModels(User account)
         {
diff --git a/src/NuGetGallery/Controllers/ApiController.cs b/src/NuGetGallery/Controllers/ApiController.cs
@@ -1,6 +1,7 @@
 ﻿// Copyright (c) .NET Foundation. All rights reserved.
 // Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
 
+#pragma warning disable CA3147 // No need to validate Antiforgery Token with API request
 using System;
 using System.Collections.Generic;
 using System.Data;
@@ -1191,3 +1192,4 @@ private static ActionResult GetActionOrNull(SymbolPackageValidationResult valida
         }
     }
 }
+#pragma warning restore CA3147 // No need to validate Antiforgery Token with API request
diff --git a/src/NuGetGallery/Controllers/AuthenticationController.cs b/src/NuGetGallery/Controllers/AuthenticationController.cs
@@ -3,6 +3,7 @@
 
 using System;
 using System.Collections.Generic;
+using System.Diagnostics.CodeAnalysis;
 using System.Globalization;
 using System.Linq;
 using System.Net;
@@ -489,6 +490,7 @@ public ActionResult ChallengeAuthentication(string returnUrl, string provider, A
         /// </summary>
         /// <param name="returnUrl">The url to return upon credential replacement</param>
         /// <returns><see cref="ActionResult"/> for returnUrl</returns>
+        [HttpGet]
         public virtual async Task<ActionResult> LinkOrChangeExternalCredential(string returnUrl)
         {
             var user = GetCurrentUser();
@@ -535,6 +537,7 @@ public virtual async Task<ActionResult> LinkOrChangeExternalCredential(string re
             return SafeRedirect(returnUrl);
         }
 
+        [SuppressMessage("Security", "CA3147:Mark Verb Handlers With Validate Antiforgery Token", Justification = "Disable antiforgery token validation due to actions handle GET/POST requests")]
         public virtual async Task<ActionResult> LinkExternalAccount(string returnUrl, string error = null, string errorDescription = null)
         {
             // Extract the external login info
diff --git a/src/NuGetGallery/Controllers/PackagesController.cs b/src/NuGetGallery/Controllers/PackagesController.cs
@@ -227,7 +227,9 @@ public virtual JsonResult UploadPackageProgress()
             return Json(progress, JsonRequestBehavior.AllowGet);
         }
 
+        [HttpPost]
         [UIAuthorize]
+        [ValidateAntiForgeryToken]
         [RequiresAccountConfirmation("upload a package")]
         public virtual async Task<ActionResult> UploadPackage()
         {
@@ -1156,6 +1158,7 @@ public virtual async Task<ActionResult> License(string id, string version)
             return View(model);
         }
 
+        [HttpGet]
         public virtual async Task<ActionResult> ListPackages(PackageListSearchViewModel searchAndListModel)
         {
             var page = searchAndListModel.Page;
@@ -2099,9 +2102,10 @@ public virtual async Task<ActionResult> UpdateListed(string id, string version,
 
         [UIAuthorize]
         [HttpPost]
-        [ValidateInput(false)] // Security note: Disabling ASP.Net input validation which does things like disallow angle brackets in submissions. See http://go.microsoft.com/fwlink/?LinkID=212874
+        [ValidateInput(false)] 
         [ValidateAntiForgeryToken]
         [RequiresAccountConfirmation("edit a package")]
+        [SuppressMessage("Security", "CA5363:Do Not Disable Request Validation", Justification = "Security note: Disabling ASP.Net input validation which does things like disallow angle brackets in submissions. See http://go.microsoft.com/fwlink/?LinkID=212874")]
         public virtual async Task<JsonResult> Edit(string id, string version, VerifyPackageRequest formData, string returnUrl)
         {
             var package = _packageService.FindPackageByIdAndVersionStrict(id, version);
@@ -2323,7 +2327,8 @@ private Task SendAddPackageOwnerNotificationAsync(PackageRegistration package, U
         [HttpPost]
         [RequiresAccountConfirmation("upload a package")]
         [ValidateAntiForgeryToken]
-        [ValidateInput(false)] // Security note: Disabling ASP.Net input validation which does things like disallow angle brackets in submissions. See http://go.microsoft.com/fwlink/?LinkID=212874
+        [ValidateInput(false)]
+        [SuppressMessage("Security", "CA5363:Do Not Disable Request Validation", Justification = "Security note: Disabling ASP.Net input validation which does things like disallow angle brackets in submissions. See http://go.microsoft.com/fwlink/?LinkID=212874")]
         public virtual async Task<JsonResult> VerifyPackage(VerifyPackageRequest formData)
         {
             try
diff --git a/src/NuGetGallery/Controllers/StatisticsController.cs b/src/NuGetGallery/Controllers/StatisticsController.cs
@@ -14,8 +14,6 @@ namespace NuGetGallery
     public partial class StatisticsController
         : AppController
     {
-        private const string AllPackageSet = "all";
-
         private readonly IStatisticsService _statisticsService = null;
         private readonly IAggregateStatsService _aggregateStatsService = null;
 
@@ -67,7 +65,7 @@ public virtual async Task<ActionResult> Totals()
 
         //
         // GET: /stats
-
+        [HttpGet]
         public virtual async Task<ActionResult> Index()
         {
             if (_statisticsService == NullStatisticsService.Instance)
@@ -103,7 +101,7 @@ public virtual async Task<ActionResult> Index()
 
         //
         // GET: /stats/packages
-
+        [HttpGet]
         public virtual async Task<ActionResult> Packages()
         {
             if (_statisticsService == NullStatisticsService.Instance)
@@ -134,7 +132,7 @@ public virtual async Task<ActionResult> Packages()
 
         //
         // GET: /stats/packageversions
-
+        [HttpGet]
         public virtual async Task<ActionResult> PackageVersions()
         {
             if (_statisticsService == NullStatisticsService.Instance)
@@ -165,7 +163,7 @@ public virtual async Task<ActionResult> PackageVersions()
 
         //
         // GET: /stats/packages/{id}
-
+        [HttpGet]
         public virtual async Task<ActionResult> PackageDownloadsByVersion(string id, string[] groupby)
         {
             if (_statisticsService == NullStatisticsService.Instance)
@@ -186,7 +184,7 @@ public virtual async Task<ActionResult> PackageDownloadsByVersion(string id, str
 
         //
         // GET: /stats/reports/packages/{id}
-
+        [HttpGet]
         public virtual async Task<JsonResult> PackageDownloadsByVersionReport(string id, string[] groupby)
         {
             if (_statisticsService == NullStatisticsService.Instance)
@@ -206,7 +204,7 @@ public virtual async Task<JsonResult> PackageDownloadsByVersionReport(string id,
 
         //
         // GET: /stats/packages/{id}/{version}
-
+        [HttpGet]
         public virtual async Task<ActionResult> PackageDownloadsDetail(string id, string version, string[] groupby)
         {
             if (_statisticsService == NullStatisticsService.Instance)
@@ -227,7 +225,7 @@ public virtual async Task<ActionResult> PackageDownloadsDetail(string id, string
 
         //
         // GET: /stats/reports/packages/{id}/{version}
-
+        [HttpGet]
         public virtual async Task<ActionResult> PackageDownloadsDetailReport(string id, string version, string[] groupby)
         {
             if (_statisticsService == NullStatisticsService.Instance)
diff --git a/src/NuGetGallery/Services/SqlAggregateStatsService.cs b/src/NuGetGallery/Services/SqlAggregateStatsService.cs
@@ -14,7 +14,7 @@ public class SqlAggregateStatsService : IAggregateStatsService
         private readonly ISqlConnectionFactory _connectionFactory;
 
         // Note the NOLOCK hints here!
-        private static readonly string GetStatisticsSql = @"SELECT
+        private const string GetStatisticsSql = @"SELECT
     (SELECT SUM([DownloadCount]) FROM PackageRegistrations WITH (NOLOCK)) As Downloads,
     (SELECT COUNT([Key]) FROM PackageRegistrations pr WITH (NOLOCK)
             WHERE EXISTS (SELECT 1 FROM Packages p WITH (NOLOCK) WHERE p.PackageRegistrationKey = pr.[Key] AND p.Listed = 1 AND p.PackageStatusKey = 0)) AS UniquePackages,
diff --git a/tests/GitHubVulnerabilities2Db.Facts/GitHubVulnerabilities2Db.Facts.csproj b/tests/GitHubVulnerabilities2Db.Facts/GitHubVulnerabilities2Db.Facts.csproj
@@ -45,6 +45,7 @@
     <Compile Include="AdvisoryIngestorFacts.cs" />
     <Compile Include="GitHubVersionRangeParserFacts.cs" />
     <Compile Include="Properties\AssemblyInfo.cs" />
+    <Compile Include="Properties\AssemblyInfo.*.cs" />
     <Compile Include="QueryServiceFacts.cs" />
   </ItemGroup>
   <ItemGroup>
diff --git a/tests/GitHubVulnerabilities2Db.Facts/Properties/AssemblyInfo.cs b/tests/GitHubVulnerabilities2Db.Facts/Properties/AssemblyInfo.cs
@@ -26,6 +26,15 @@
 // The following GUID is for the ID of the typelib if this project is exposed to COM
 [assembly: Guid("e50953cb-209a-484e-951d-a68f5cf3c546")]
 
-// The build will automatically inject the following attributes:
-// AssemblyVersion, AssemblyFileVersion, AssemblyInformationalVersion, AssemblyMetadata (for Branch, CommitId, and BuildDateUtc)
-[assembly: AssemblyMetadata("RepositoryUrl", "https://www.github.com/NuGet/NuGetGallery")]
+// Version information for an assembly consists of the following four values:
+//
+//      Major Version
+//      Minor Version
+//      Build Number
+//      Revision
+//
+// You can specify all the values or you can default the Build and Revision Numbers
+// by using the '*' as shown below:
+// [assembly: AssemblyVersion("1.0.*")]
+[assembly: AssemblyVersion("1.0.0.0")]
+[assembly: AssemblyFileVersion("1.0.0.0")]
diff --git a/tests/NuGet.Services.DatabaseMigration.Facts/PendingMigrationsFacts.cs b/tests/NuGet.Services.DatabaseMigration.Facts/PendingMigrationsFacts.cs
@@ -3,6 +3,7 @@
 
 using System;
 using System.Collections.Generic;
+using System.Data;
 using System.Data.Entity.Migrations.Design;
 using System.Data.SqlClient;
 using System.Linq;
@@ -44,7 +45,9 @@ public async Task DisposeAsync()
                 await sqlConnection.OpenAsync();
                 using (var sqlCommand = sqlConnection.CreateCommand())
                 {
+#pragma warning disable CA2100 // Review SQL queries for security vulnerabilities
                     sqlCommand.CommandText = $"ALTER DATABASE {_dbName} SET SINGLE_USER WITH ROLLBACK IMMEDIATE; DROP DATABASE {_dbName};";
+#pragma warning restore CA2100 // Review SQL queries for security vulnerabilities
                     await sqlCommand.ExecuteNonQueryAsync();
                 }
             }
diff --git a/tests/NuGet.Services.DatabaseMigration.Facts/Properties/AssemblyInfo.cs b/tests/NuGet.Services.DatabaseMigration.Facts/Properties/AssemblyInfo.cs
diff --git a/tests/NuGetGallery.Core.Facts/Properties/AssemblyInfo.cs b/tests/NuGetGallery.Core.Facts/Properties/AssemblyInfo.cs
diff --git a/tests/NuGetGallery.Core.Facts/Services/CloudBlobCoreFileStorageServiceIntegrationTests.cs b/tests/NuGetGallery.Core.Facts/Services/CloudBlobCoreFileStorageServiceIntegrationTests.cs
diff --git a/tests/NuGetGallery.Facts/Controllers/ApiControllerFacts.cs b/tests/NuGetGallery.Facts/Controllers/ApiControllerFacts.cs
diff --git a/tests/NuGetGallery.Facts/Properties/AssemblyInfo.cs b/tests/NuGetGallery.Facts/Properties/AssemblyInfo.cs
diff --git a/tests/NuGetGallery.LoadTests/Properties/AssemblyInfo.cs b/tests/NuGetGallery.LoadTests/Properties/AssemblyInfo.cs
diff --git a/tests/VerifyMicrosoftPackage.Facts/Properties/AssemblyInfo.cs b/tests/VerifyMicrosoftPackage.Facts/Properties/AssemblyInfo.cs

Original file line number	Diff line number	Diff line change
`@@ -63,10 +63,11 @@ private static MemoryStream CopyAsReadOnly(Stream source)`
`63`	`63`	`}`
`64`	`64`	`}`
`65`	`65`
`66`		`- [SuppressMessage("Microsoft.Security.Cryptography", "CA5354:SHA1CannotBeUsed", Justification = @"SHA1 thumbprint is only used to distinguish certificates in the Gallery view.")]`
`67`	`66`	`private static string GetSha1Thumbprint(MemoryStream stream)`
`68`	`67`	`{`
	`68`	`+#pragma warning disable CA5350 // Do Not Use Weak Cryptographic Algorithms`
`69`	`69`	`using (var hashAlgorithm = SHA1.Create())`
	`70`	`+#pragma warning restore CA5350 // Do Not Use Weak Cryptographic Algorithms`
`70`	`71`	`{`
`71`	`72`	`return GetThumbprint(stream, hashAlgorithm);`
`72`	`73`	`}`