Terraria v1.4.4.9
Terraria source code documentation
Loading...
Searching...
No Matches
RSAImplementation.cs
Go to the documentation of this file.
1using System.Collections.Concurrent;
2using System.Collections.Generic;
3using System.IO;
4using System.Runtime.InteropServices;
5using Internal.Cryptography;
6using Microsoft.Win32.SafeHandles;
7
8namespace System.Security.Cryptography;
9
10internal static class RSAImplementation
11{
12 public sealed class RSACng : RSA
13 {
14 private SafeNCryptKeyHandle _keyHandle;
15
16 private int _lastKeySize;
17
18 private bool _disposed;
19
20 private static readonly ConcurrentDictionary<HashAlgorithmName, int> s_hashSizes = new ConcurrentDictionary<HashAlgorithmName, int>(new KeyValuePair<HashAlgorithmName, int>[3]
21 {
22 KeyValuePair.Create(HashAlgorithmName.SHA256, 32),
23 KeyValuePair.Create(HashAlgorithmName.SHA384, 48),
24 KeyValuePair.Create(HashAlgorithmName.SHA512, 64)
25 });
26
27 public override KeySizes[] LegalKeySizes => new KeySizes[1]
28 {
29 new KeySizes(512, 16384, 64)
30 };
31
32 private void ThrowIfDisposed()
33 {
34 if (_disposed)
35 {
36 throw new ObjectDisposedException("RSA");
37 }
38 }
39
55
56 private byte[] ExportKeyBlob(bool includePrivateParameters)
57 {
58 string blobType = (includePrivateParameters ? "RSAFULLPRIVATEBLOB" : "RSAPUBLICBLOB");
59 using SafeNCryptKeyHandle keyHandle = GetDuplicatedKeyHandle();
60 return CngKeyLite.ExportKeyBlob(keyHandle, blobType);
61 }
62
68
74
75 private void ImportKeyBlob(byte[] rsaBlob, bool includePrivate)
76 {
77 ThrowIfDisposed();
78 string blobType = (includePrivate ? "RSAPRIVATEBLOB" : "RSAPUBLICBLOB");
79 SafeNCryptKeyHandle keyHandle = CngKeyLite.ImportKeyBlob(blobType, rsaBlob);
80 SetKeyHandle(keyHandle);
81 }
82
89
97
98 protected override void Dispose(bool disposing)
99 {
100 if (disposing)
101 {
102 _keyHandle?.Dispose();
103 _keyHandle = null;
104 _disposed = true;
105 }
106 base.Dispose(disposing);
107 }
108
109 public RSACng()
110 : this(2048)
111 {
112 }
113
114 public RSACng(int keySize)
115 {
116 KeySize = keySize;
117 }
118
119 protected override byte[] HashData(byte[] data, int offset, int count, HashAlgorithmName hashAlgorithm)
120 {
121 return CngCommon.HashData(data, offset, count, hashAlgorithm);
122 }
123
124 protected override bool TryHashData(ReadOnlySpan<byte> data, Span<byte> destination, HashAlgorithmName hashAlgorithm, out int bytesWritten)
125 {
126 return CngCommon.TryHashData(data, destination, hashAlgorithm, out bytesWritten);
127 }
128
129 protected override byte[] HashData(Stream data, HashAlgorithmName hashAlgorithm)
130 {
131 return CngCommon.HashData(data, hashAlgorithm);
132 }
133
134 private void ForceSetKeySize(int newKeySize)
135 {
136 KeySizeValue = newKeySize;
137 }
138
139 public override byte[] Encrypt(byte[] data, RSAEncryptionPadding padding)
140 {
141 return EncryptOrDecrypt(data, padding, encrypt: true);
142 }
143
144 public override byte[] Decrypt(byte[] data, RSAEncryptionPadding padding)
145 {
146 return EncryptOrDecrypt(data, padding, encrypt: false);
147 }
148
149 public override bool TryEncrypt(ReadOnlySpan<byte> data, Span<byte> destination, RSAEncryptionPadding padding, out int bytesWritten)
150 {
151 return TryEncryptOrDecrypt(data, destination, padding, encrypt: true, out bytesWritten);
152 }
153
154 public override bool TryDecrypt(ReadOnlySpan<byte> data, Span<byte> destination, RSAEncryptionPadding padding, out int bytesWritten)
155 {
156 return TryEncryptOrDecrypt(data, destination, padding, encrypt: false, out bytesWritten);
157 }
158
159 private unsafe byte[] EncryptOrDecrypt(byte[] data, RSAEncryptionPadding padding, bool encrypt)
160 {
161 if (data == null)
162 {
163 throw new ArgumentNullException("data");
164 }
165 if (padding == null)
166 {
167 throw new ArgumentNullException("padding");
168 }
169 int num = RsaPaddingProcessor.BytesRequiredForBitCount(KeySize);
170 if (!encrypt && data.Length != num)
171 {
172 throw new CryptographicException(System.SR.Cryptography_RSA_DecryptWrongSize);
173 }
174 if (encrypt && padding.Mode == RSAEncryptionPaddingMode.Pkcs1 && data.Length > num - 11)
175 {
176 throw new CryptographicException(System.SR.Format(System.SR.Cryptography_Encryption_MessageTooLong, num - 11));
177 }
178 using SafeNCryptKeyHandle key = GetDuplicatedKeyHandle();
179 if (encrypt && data.Length == 0)
180 {
181 byte[] array = System.Security.Cryptography.CryptoPool.Rent(num);
182 Span<byte> span = new Span<byte>(array, 0, num);
183 try
184 {
185 if (padding == RSAEncryptionPadding.Pkcs1)
186 {
187 RsaPaddingProcessor.PadPkcs1Encryption(data, span);
188 }
189 else
190 {
191 if (padding.Mode != RSAEncryptionPaddingMode.Oaep)
192 {
193 throw new CryptographicException(System.SR.Cryptography_UnsupportedPaddingMode);
194 }
195 RsaPaddingProcessor rsaPaddingProcessor = RsaPaddingProcessor.OpenProcessor(padding.OaepHashAlgorithm);
196 rsaPaddingProcessor.PadOaep(data, span);
197 }
198 return EncryptOrDecrypt(key, span, global::Interop.NCrypt.AsymmetricPaddingMode.NCRYPT_NO_PADDING_FLAG, null, encrypt);
199 }
200 finally
201 {
202 CryptographicOperations.ZeroMemory(span);
203 System.Security.Cryptography.CryptoPool.Return(array, 0);
204 }
205 }
206 switch (padding.Mode)
207 {
208 case RSAEncryptionPaddingMode.Pkcs1:
209 return EncryptOrDecrypt(key, data, global::Interop.NCrypt.AsymmetricPaddingMode.NCRYPT_PAD_PKCS1_FLAG, null, encrypt);
210 case RSAEncryptionPaddingMode.Oaep:
211 {
212 IntPtr intPtr = Marshal.StringToHGlobalUni(padding.OaepHashAlgorithm.Name);
213 try
214 {
215 global::Interop.BCrypt.BCRYPT_OAEP_PADDING_INFO bCRYPT_OAEP_PADDING_INFO = default(global::Interop.BCrypt.BCRYPT_OAEP_PADDING_INFO);
216 bCRYPT_OAEP_PADDING_INFO.pszAlgId = intPtr;
217 bCRYPT_OAEP_PADDING_INFO.pbLabel = IntPtr.Zero;
218 bCRYPT_OAEP_PADDING_INFO.cbLabel = 0;
219 global::Interop.BCrypt.BCRYPT_OAEP_PADDING_INFO bCRYPT_OAEP_PADDING_INFO2 = bCRYPT_OAEP_PADDING_INFO;
220 return EncryptOrDecrypt(key, data, global::Interop.NCrypt.AsymmetricPaddingMode.NCRYPT_PAD_OAEP_FLAG, &bCRYPT_OAEP_PADDING_INFO2, encrypt);
221 }
222 finally
223 {
224 Marshal.FreeHGlobal(intPtr);
225 }
226 }
227 default:
228 throw new CryptographicException(System.SR.Cryptography_UnsupportedPaddingMode);
229 }
230 }
231
232 private unsafe bool TryEncryptOrDecrypt(ReadOnlySpan<byte> data, Span<byte> destination, RSAEncryptionPadding padding, bool encrypt, out int bytesWritten)
233 {
234 if (padding == null)
235 {
236 throw new ArgumentNullException("padding");
237 }
238 int num = RsaPaddingProcessor.BytesRequiredForBitCount(KeySize);
239 if (!encrypt && data.Length != num)
240 {
241 throw new CryptographicException(System.SR.Cryptography_RSA_DecryptWrongSize);
242 }
243 if (encrypt && padding.Mode == RSAEncryptionPaddingMode.Pkcs1 && data.Length > num - 11)
244 {
245 throw new CryptographicException(System.SR.Format(System.SR.Cryptography_Encryption_MessageTooLong, num - 11));
246 }
247 using SafeNCryptKeyHandle key = GetDuplicatedKeyHandle();
248 if (encrypt && data.Length == 0)
249 {
250 byte[] array = System.Security.Cryptography.CryptoPool.Rent(num);
251 Span<byte> span = new Span<byte>(array, 0, num);
252 try
253 {
254 if (padding == RSAEncryptionPadding.Pkcs1)
255 {
256 RsaPaddingProcessor.PadPkcs1Encryption(data, span);
257 }
258 else
259 {
260 if (padding.Mode != RSAEncryptionPaddingMode.Oaep)
261 {
262 throw new CryptographicException(System.SR.Cryptography_UnsupportedPaddingMode);
263 }
264 RsaPaddingProcessor rsaPaddingProcessor = RsaPaddingProcessor.OpenProcessor(padding.OaepHashAlgorithm);
265 rsaPaddingProcessor.PadOaep(data, span);
266 }
267 return TryEncryptOrDecrypt(key, span, destination, global::Interop.NCrypt.AsymmetricPaddingMode.NCRYPT_NO_PADDING_FLAG, null, encrypt, out bytesWritten);
268 }
269 finally
270 {
271 CryptographicOperations.ZeroMemory(span);
272 System.Security.Cryptography.CryptoPool.Return(array, 0);
273 }
274 }
275 switch (padding.Mode)
276 {
277 case RSAEncryptionPaddingMode.Pkcs1:
278 return TryEncryptOrDecrypt(key, data, destination, global::Interop.NCrypt.AsymmetricPaddingMode.NCRYPT_PAD_PKCS1_FLAG, null, encrypt, out bytesWritten);
279 case RSAEncryptionPaddingMode.Oaep:
280 {
281 IntPtr intPtr = Marshal.StringToHGlobalUni(padding.OaepHashAlgorithm.Name);
282 try
283 {
284 global::Interop.BCrypt.BCRYPT_OAEP_PADDING_INFO bCRYPT_OAEP_PADDING_INFO = default(global::Interop.BCrypt.BCRYPT_OAEP_PADDING_INFO);
285 bCRYPT_OAEP_PADDING_INFO.pszAlgId = intPtr;
286 bCRYPT_OAEP_PADDING_INFO.pbLabel = IntPtr.Zero;
287 bCRYPT_OAEP_PADDING_INFO.cbLabel = 0;
288 global::Interop.BCrypt.BCRYPT_OAEP_PADDING_INFO bCRYPT_OAEP_PADDING_INFO2 = bCRYPT_OAEP_PADDING_INFO;
289 return TryEncryptOrDecrypt(key, data, destination, global::Interop.NCrypt.AsymmetricPaddingMode.NCRYPT_PAD_OAEP_FLAG, &bCRYPT_OAEP_PADDING_INFO2, encrypt, out bytesWritten);
290 }
291 finally
292 {
293 Marshal.FreeHGlobal(intPtr);
294 }
295 }
296 default:
297 throw new CryptographicException(System.SR.Cryptography_UnsupportedPaddingMode);
298 }
299 }
300
301 private unsafe byte[] EncryptOrDecrypt(SafeNCryptKeyHandle key, ReadOnlySpan<byte> input, global::Interop.NCrypt.AsymmetricPaddingMode paddingMode, void* paddingInfo, bool encrypt)
302 {
303 int num = KeySize / 8;
304 byte[] array = new byte[num];
305 int bytesNeeded = 0;
306 global::Interop.NCrypt.ErrorCode errorCode = global::Interop.NCrypt.ErrorCode.ERROR_SUCCESS;
307 for (int i = 0; i <= 1; i++)
308 {
309 errorCode = EncryptOrDecrypt(key, input, array, paddingMode, paddingInfo, encrypt, out bytesNeeded);
310 if (errorCode != global::Interop.NCrypt.ErrorCode.STATUS_UNSUCCESSFUL)
311 {
312 break;
313 }
314 }
315 if (errorCode == global::Interop.NCrypt.ErrorCode.NTE_BUFFER_TOO_SMALL)
316 {
317 CryptographicOperations.ZeroMemory(array);
318 array = new byte[bytesNeeded];
319 for (int j = 0; j <= 1; j++)
320 {
321 errorCode = EncryptOrDecrypt(key, input, array, paddingMode, paddingInfo, encrypt, out bytesNeeded);
322 if (errorCode != global::Interop.NCrypt.ErrorCode.STATUS_UNSUCCESSFUL)
323 {
324 break;
325 }
326 }
327 }
328 if (errorCode != 0)
329 {
330 throw errorCode.ToCryptographicException();
331 }
332 if (bytesNeeded != array.Length)
333 {
334 byte[] array2 = array.AsSpan(0, bytesNeeded).ToArray();
335 CryptographicOperations.ZeroMemory(array);
336 array = array2;
337 }
338 return array;
339 }
340
341 private unsafe bool TryEncryptOrDecrypt(SafeNCryptKeyHandle key, ReadOnlySpan<byte> input, Span<byte> output, global::Interop.NCrypt.AsymmetricPaddingMode paddingMode, void* paddingInfo, bool encrypt, out int bytesWritten)
342 {
343 for (int i = 0; i <= 1; i++)
344 {
345 int bytesNeeded;
346 global::Interop.NCrypt.ErrorCode errorCode = EncryptOrDecrypt(key, input, output, paddingMode, paddingInfo, encrypt, out bytesNeeded);
347 switch (errorCode)
348 {
349 case global::Interop.NCrypt.ErrorCode.ERROR_SUCCESS:
350 bytesWritten = bytesNeeded;
351 return true;
352 case global::Interop.NCrypt.ErrorCode.NTE_BUFFER_TOO_SMALL:
353 bytesWritten = 0;
354 return false;
355 default:
356 throw errorCode.ToCryptographicException();
357 case global::Interop.NCrypt.ErrorCode.STATUS_UNSUCCESSFUL:
358 break;
359 }
360 }
361 throw global::Interop.NCrypt.ErrorCode.STATUS_UNSUCCESSFUL.ToCryptographicException();
362 }
363
364 private unsafe static global::Interop.NCrypt.ErrorCode EncryptOrDecrypt(SafeNCryptKeyHandle key, ReadOnlySpan<byte> input, Span<byte> output, global::Interop.NCrypt.AsymmetricPaddingMode paddingMode, void* paddingInfo, bool encrypt, out int bytesNeeded)
365 {
366 global::Interop.NCrypt.ErrorCode errorCode = (encrypt ? global::Interop.NCrypt.NCryptEncrypt(key, input, input.Length, paddingInfo, output, output.Length, out bytesNeeded, paddingMode) : global::Interop.NCrypt.NCryptDecrypt(key, input, input.Length, paddingInfo, output, output.Length, out bytesNeeded, paddingMode));
367 if (errorCode == global::Interop.NCrypt.ErrorCode.ERROR_SUCCESS && bytesNeeded > output.Length)
368 {
369 errorCode = global::Interop.NCrypt.ErrorCode.NTE_BUFFER_TOO_SMALL;
370 }
371 return errorCode;
372 }
373
374 public unsafe override void ImportParameters(RSAParameters parameters)
375 {
376 if (parameters.Exponent == null || parameters.Modulus == null)
377 {
378 throw new CryptographicException(System.SR.Cryptography_InvalidRsaParameters);
379 }
380 bool flag;
381 if (parameters.D == null)
382 {
383 flag = false;
384 if (parameters.P != null || parameters.DP != null || parameters.Q != null || parameters.DQ != null || parameters.InverseQ != null)
385 {
386 throw new CryptographicException(System.SR.Cryptography_InvalidRsaParameters);
387 }
388 }
389 else
390 {
391 flag = true;
392 if (parameters.P == null || parameters.DP == null || parameters.Q == null || parameters.DQ == null || parameters.InverseQ == null)
393 {
394 throw new CryptographicException(System.SR.Cryptography_InvalidRsaParameters);
395 }
396 int num = (parameters.Modulus.Length + 1) / 2;
397 if (parameters.D.Length != parameters.Modulus.Length || parameters.P.Length != num || parameters.Q.Length != num || parameters.DP.Length != num || parameters.DQ.Length != num || parameters.InverseQ.Length != num)
398 {
399 throw new CryptographicException(System.SR.Cryptography_InvalidRsaParameters);
400 }
401 }
402 int num2 = sizeof(global::Interop.BCrypt.BCRYPT_RSAKEY_BLOB) + parameters.Exponent.Length + parameters.Modulus.Length;
403 if (flag)
404 {
405 num2 += parameters.P.Length + parameters.Q.Length;
406 }
407 byte[] array = new byte[num2];
408 fixed (byte* ptr = &array[0])
409 {
410 global::Interop.BCrypt.BCRYPT_RSAKEY_BLOB* ptr2 = (global::Interop.BCrypt.BCRYPT_RSAKEY_BLOB*)ptr;
411 ptr2->Magic = (flag ? global::Interop.BCrypt.KeyBlobMagicNumber.BCRYPT_RSAPRIVATE_MAGIC : global::Interop.BCrypt.KeyBlobMagicNumber.BCRYPT_RSAPUBLIC_MAGIC);
412 ptr2->BitLength = parameters.Modulus.Length * 8;
413 ptr2->cbPublicExp = parameters.Exponent.Length;
414 ptr2->cbModulus = parameters.Modulus.Length;
415 if (flag)
416 {
417 ptr2->cbPrime1 = parameters.P.Length;
418 ptr2->cbPrime2 = parameters.Q.Length;
419 }
420 int offset = sizeof(global::Interop.BCrypt.BCRYPT_RSAKEY_BLOB);
421 global::Interop.BCrypt.Emit(array, ref offset, parameters.Exponent);
422 global::Interop.BCrypt.Emit(array, ref offset, parameters.Modulus);
423 if (flag)
424 {
425 global::Interop.BCrypt.Emit(array, ref offset, parameters.P);
426 global::Interop.BCrypt.Emit(array, ref offset, parameters.Q);
427 }
428 }
429 ImportKeyBlob(array, flag);
430 }
431
440
449
458
459 private void ProcessPkcs8Response(CngPkcs8.Pkcs8Response response)
460 {
461 if (response.GetAlgorithmGroup() != "RSA")
462 {
463 response.FreeKey();
464 throw new CryptographicException(System.SR.Cryptography_NotValidPublicOrPrivateKey);
465 }
466 AcceptImport(response);
467 }
468
469 public override byte[] ExportEncryptedPkcs8PrivateKey(ReadOnlySpan<byte> passwordBytes, PbeParameters pbeParameters)
470 {
471 if (pbeParameters == null)
472 {
473 throw new ArgumentNullException("pbeParameters");
474 }
475 return CngPkcs8.ExportEncryptedPkcs8PrivateKey(this, passwordBytes, pbeParameters);
476 }
477
491
501
515
523
524 private unsafe static void ExportParameters(ref RSAParameters rsaParams, byte[] rsaBlob, bool includePrivateParameters)
525 {
526 global::Interop.BCrypt.KeyBlobMagicNumber magic = (global::Interop.BCrypt.KeyBlobMagicNumber)BitConverter.ToInt32(rsaBlob, 0);
527 CheckMagicValueOfKey(magic, includePrivateParameters);
528 if (rsaBlob.Length < sizeof(global::Interop.BCrypt.BCRYPT_RSAKEY_BLOB))
529 {
530 throw global::Interop.NCrypt.ErrorCode.E_FAIL.ToCryptographicException();
531 }
532 fixed (byte* ptr = &rsaBlob[0])
533 {
534 global::Interop.BCrypt.BCRYPT_RSAKEY_BLOB* ptr2 = (global::Interop.BCrypt.BCRYPT_RSAKEY_BLOB*)ptr;
535 int offset = sizeof(global::Interop.BCrypt.BCRYPT_RSAKEY_BLOB);
536 rsaParams.Exponent = global::Interop.BCrypt.Consume(rsaBlob, ref offset, ptr2->cbPublicExp);
537 rsaParams.Modulus = global::Interop.BCrypt.Consume(rsaBlob, ref offset, ptr2->cbModulus);
538 if (includePrivateParameters)
539 {
540 rsaParams.P = global::Interop.BCrypt.Consume(rsaBlob, ref offset, ptr2->cbPrime1);
541 rsaParams.Q = global::Interop.BCrypt.Consume(rsaBlob, ref offset, ptr2->cbPrime2);
542 rsaParams.DP = global::Interop.BCrypt.Consume(rsaBlob, ref offset, ptr2->cbPrime1);
543 rsaParams.DQ = global::Interop.BCrypt.Consume(rsaBlob, ref offset, ptr2->cbPrime2);
544 rsaParams.InverseQ = global::Interop.BCrypt.Consume(rsaBlob, ref offset, ptr2->cbPrime1);
545 rsaParams.D = global::Interop.BCrypt.Consume(rsaBlob, ref offset, ptr2->cbModulus);
546 }
547 }
548 }
549
550 private static void CheckMagicValueOfKey(global::Interop.BCrypt.KeyBlobMagicNumber magic, bool includePrivateParameters)
551 {
552 if (includePrivateParameters)
553 {
554 if (magic != global::Interop.BCrypt.KeyBlobMagicNumber.BCRYPT_RSAPRIVATE_MAGIC && magic != global::Interop.BCrypt.KeyBlobMagicNumber.BCRYPT_RSAFULLPRIVATE_MAGIC)
555 {
556 throw new CryptographicException(System.SR.Cryptography_NotValidPrivateKey);
557 }
558 }
559 else if (magic != global::Interop.BCrypt.KeyBlobMagicNumber.BCRYPT_RSAPUBLIC_MAGIC && magic != global::Interop.BCrypt.KeyBlobMagicNumber.BCRYPT_RSAPRIVATE_MAGIC && magic != global::Interop.BCrypt.KeyBlobMagicNumber.BCRYPT_RSAFULLPRIVATE_MAGIC)
560 {
561 throw new CryptographicException(System.SR.Cryptography_NotValidPublicOrPrivateKey);
562 }
563 }
564
565 private static int GetHashSizeInBytes(HashAlgorithmName hashAlgorithm)
566 {
567 return s_hashSizes.GetOrAdd(hashAlgorithm, delegate(HashAlgorithmName hashAlgorithm)
568 {
569 using HashProviderCng hashProviderCng = new HashProviderCng(hashAlgorithm.Name, null);
570 return hashProviderCng.HashSizeInBytes;
571 });
572 }
573
574 public unsafe override byte[] SignHash(byte[] hash, HashAlgorithmName hashAlgorithm, RSASignaturePadding padding)
575 {
576 if (hash == null)
577 {
578 throw new ArgumentNullException("hash");
579 }
580 string name = hashAlgorithm.Name;
581 if (string.IsNullOrEmpty(name))
582 {
583 throw new ArgumentException(System.SR.Cryptography_HashAlgorithmNameNullOrEmpty, "hashAlgorithm");
584 }
585 if (padding == null)
586 {
587 throw new ArgumentNullException("padding");
588 }
589 if (hash.Length != GetHashSizeInBytes(hashAlgorithm))
590 {
591 throw new CryptographicException(System.SR.Cryptography_SignHash_WrongSize);
592 }
593 using SafeNCryptKeyHandle keyHandle = GetDuplicatedKeyHandle();
594 IntPtr intPtr = Marshal.StringToHGlobalUni(name);
595 try
596 {
597 int estimatedSize = KeySize / 8;
598 switch (padding.Mode)
599 {
600 case RSASignaturePaddingMode.Pkcs1:
601 {
602 global::Interop.BCrypt.BCRYPT_PKCS1_PADDING_INFO bCRYPT_PKCS1_PADDING_INFO = default(global::Interop.BCrypt.BCRYPT_PKCS1_PADDING_INFO);
603 bCRYPT_PKCS1_PADDING_INFO.pszAlgId = intPtr;
604 global::Interop.BCrypt.BCRYPT_PKCS1_PADDING_INFO bCRYPT_PKCS1_PADDING_INFO2 = bCRYPT_PKCS1_PADDING_INFO;
605 return keyHandle.SignHash(hash, global::Interop.NCrypt.AsymmetricPaddingMode.NCRYPT_PAD_PKCS1_FLAG, &bCRYPT_PKCS1_PADDING_INFO2, estimatedSize);
606 }
607 case RSASignaturePaddingMode.Pss:
608 {
609 global::Interop.BCrypt.BCRYPT_PSS_PADDING_INFO bCRYPT_PSS_PADDING_INFO = default(global::Interop.BCrypt.BCRYPT_PSS_PADDING_INFO);
610 bCRYPT_PSS_PADDING_INFO.pszAlgId = intPtr;
611 bCRYPT_PSS_PADDING_INFO.cbSalt = hash.Length;
612 global::Interop.BCrypt.BCRYPT_PSS_PADDING_INFO bCRYPT_PSS_PADDING_INFO2 = bCRYPT_PSS_PADDING_INFO;
613 return keyHandle.SignHash(hash, global::Interop.NCrypt.AsymmetricPaddingMode.NCRYPT_PAD_PSS_FLAG, &bCRYPT_PSS_PADDING_INFO2, estimatedSize);
614 }
615 default:
616 throw new CryptographicException(System.SR.Cryptography_UnsupportedPaddingMode);
617 }
618 }
619 finally
620 {
621 Marshal.FreeHGlobal(intPtr);
622 }
623 }
624
625 public unsafe override bool TrySignHash(ReadOnlySpan<byte> hash, Span<byte> destination, HashAlgorithmName hashAlgorithm, RSASignaturePadding padding, out int bytesWritten)
626 {
627 string name = hashAlgorithm.Name;
628 if (string.IsNullOrEmpty(name))
629 {
630 throw new ArgumentException(System.SR.Cryptography_HashAlgorithmNameNullOrEmpty, "hashAlgorithm");
631 }
632 if (padding == null)
633 {
634 throw new ArgumentNullException("padding");
635 }
636 using SafeNCryptKeyHandle keyHandle = GetDuplicatedKeyHandle();
637 if (hash.Length != GetHashSizeInBytes(hashAlgorithm))
638 {
639 throw new CryptographicException(System.SR.Cryptography_SignHash_WrongSize);
640 }
641 IntPtr intPtr = Marshal.StringToHGlobalUni(name);
642 try
643 {
644 switch (padding.Mode)
645 {
646 case RSASignaturePaddingMode.Pkcs1:
647 {
648 global::Interop.BCrypt.BCRYPT_PKCS1_PADDING_INFO bCRYPT_PKCS1_PADDING_INFO = default(global::Interop.BCrypt.BCRYPT_PKCS1_PADDING_INFO);
649 bCRYPT_PKCS1_PADDING_INFO.pszAlgId = intPtr;
650 global::Interop.BCrypt.BCRYPT_PKCS1_PADDING_INFO bCRYPT_PKCS1_PADDING_INFO2 = bCRYPT_PKCS1_PADDING_INFO;
651 return keyHandle.TrySignHash(hash, destination, global::Interop.NCrypt.AsymmetricPaddingMode.NCRYPT_PAD_PKCS1_FLAG, &bCRYPT_PKCS1_PADDING_INFO2, out bytesWritten);
652 }
653 case RSASignaturePaddingMode.Pss:
654 {
655 global::Interop.BCrypt.BCRYPT_PSS_PADDING_INFO bCRYPT_PSS_PADDING_INFO = default(global::Interop.BCrypt.BCRYPT_PSS_PADDING_INFO);
656 bCRYPT_PSS_PADDING_INFO.pszAlgId = intPtr;
657 bCRYPT_PSS_PADDING_INFO.cbSalt = hash.Length;
658 global::Interop.BCrypt.BCRYPT_PSS_PADDING_INFO bCRYPT_PSS_PADDING_INFO2 = bCRYPT_PSS_PADDING_INFO;
659 return keyHandle.TrySignHash(hash, destination, global::Interop.NCrypt.AsymmetricPaddingMode.NCRYPT_PAD_PSS_FLAG, &bCRYPT_PSS_PADDING_INFO2, out bytesWritten);
660 }
661 default:
662 throw new CryptographicException(System.SR.Cryptography_UnsupportedPaddingMode);
663 }
664 }
665 finally
666 {
667 Marshal.FreeHGlobal(intPtr);
668 }
669 }
670
671 public override bool VerifyHash(byte[] hash, byte[] signature, HashAlgorithmName hashAlgorithm, RSASignaturePadding padding)
672 {
673 if (hash == null)
674 {
675 throw new ArgumentNullException("hash");
676 }
677 if (signature == null)
678 {
679 throw new ArgumentNullException("signature");
680 }
681 return VerifyHash((ReadOnlySpan<byte>)hash, (ReadOnlySpan<byte>)signature, hashAlgorithm, padding);
682 }
683
684 public unsafe override bool VerifyHash(ReadOnlySpan<byte> hash, ReadOnlySpan<byte> signature, HashAlgorithmName hashAlgorithm, RSASignaturePadding padding)
685 {
686 string name = hashAlgorithm.Name;
687 if (string.IsNullOrEmpty(name))
688 {
689 throw new ArgumentException(System.SR.Cryptography_HashAlgorithmNameNullOrEmpty, "hashAlgorithm");
690 }
691 if (padding == null)
692 {
693 throw new ArgumentNullException("padding");
694 }
695 using SafeNCryptKeyHandle keyHandle = GetDuplicatedKeyHandle();
696 if (hash.Length != GetHashSizeInBytes(hashAlgorithm))
697 {
698 return false;
699 }
700 IntPtr intPtr = Marshal.StringToHGlobalUni(name);
701 try
702 {
703 switch (padding.Mode)
704 {
705 case RSASignaturePaddingMode.Pkcs1:
706 {
707 global::Interop.BCrypt.BCRYPT_PKCS1_PADDING_INFO bCRYPT_PKCS1_PADDING_INFO = default(global::Interop.BCrypt.BCRYPT_PKCS1_PADDING_INFO);
708 bCRYPT_PKCS1_PADDING_INFO.pszAlgId = intPtr;
709 global::Interop.BCrypt.BCRYPT_PKCS1_PADDING_INFO bCRYPT_PKCS1_PADDING_INFO2 = bCRYPT_PKCS1_PADDING_INFO;
710 return keyHandle.VerifyHash(hash, signature, global::Interop.NCrypt.AsymmetricPaddingMode.NCRYPT_PAD_PKCS1_FLAG, &bCRYPT_PKCS1_PADDING_INFO2);
711 }
712 case RSASignaturePaddingMode.Pss:
713 {
714 global::Interop.BCrypt.BCRYPT_PSS_PADDING_INFO bCRYPT_PSS_PADDING_INFO = default(global::Interop.BCrypt.BCRYPT_PSS_PADDING_INFO);
715 bCRYPT_PSS_PADDING_INFO.pszAlgId = intPtr;
716 bCRYPT_PSS_PADDING_INFO.cbSalt = hash.Length;
717 global::Interop.BCrypt.BCRYPT_PSS_PADDING_INFO bCRYPT_PSS_PADDING_INFO2 = bCRYPT_PSS_PADDING_INFO;
718 return keyHandle.VerifyHash(hash, signature, global::Interop.NCrypt.AsymmetricPaddingMode.NCRYPT_PAD_PSS_FLAG, &bCRYPT_PSS_PADDING_INFO2);
719 }
720 default:
721 throw new CryptographicException(System.SR.Cryptography_UnsupportedPaddingMode);
722 }
723 }
724 finally
725 {
726 Marshal.FreeHGlobal(intPtr);
727 }
728 }
729 }
730}
Internal.Cryptography.CngCommon.HashData
static byte[] HashData(byte[] data, int offset, int count, HashAlgorithmName hashAlgorithm)
Definition CngCommon.cs:10
Internal.Cryptography.CngCommon.TryHashData
static bool TryHashData(ReadOnlySpan< byte > source, Span< byte > destination, HashAlgorithmName hashAlgorithm, out int bytesWritten)
Definition CngCommon.cs:17
System.BitConverter.ToInt32
static int ToInt32(byte[] value, int startIndex)
Definition BitConverter.cs:247
System.Runtime.InteropServices.Marshal.FreeHGlobal
static void FreeHGlobal(IntPtr hglobal)
Definition Marshal.cs:1680
System.Runtime.InteropServices.Marshal.StringToHGlobalUni
static unsafe IntPtr StringToHGlobalUni(string? s)
Definition Marshal.cs:1310
System.SR.Cryptography_NotValidPrivateKey
static string Cryptography_NotValidPrivateKey
Definition SR.cs:120
System.SR.Cryptography_RSA_DecryptWrongSize
static string Cryptography_RSA_DecryptWrongSize
Definition SR.cs:138
System.SR.Cryptography_InvalidRsaParameters
static string Cryptography_InvalidRsaParameters
Definition SR.cs:108
System.SR.Format
static string Format(string resourceFormat, object p1)
Definition SR.cs:118
System.SR.Cryptography_NotValidPublicOrPrivateKey
static string Cryptography_NotValidPublicOrPrivateKey
Definition SR.cs:122
System.SR.Cryptography_UnsupportedPaddingMode
static string Cryptography_UnsupportedPaddingMode
Definition SR.cs:160
System.SR.Cryptography_SignHash_WrongSize
static string Cryptography_SignHash_WrongSize
Definition SR.cs:142
System.SR.Cryptography_Encryption_MessageTooLong
static string Cryptography_Encryption_MessageTooLong
Definition SR.cs:52
System.SR.Cryptography_HashAlgorithmNameNullOrEmpty
static string Cryptography_HashAlgorithmNameNullOrEmpty
Definition SR.cs:60
System.SR
Definition SR.cs:7
System.Security.Cryptography.CngKeyLite.TryExportPkcs8KeyBlob
static bool TryExportPkcs8KeyBlob(SafeNCryptKeyHandle keyHandle, ReadOnlySpan< char > password, int kdfCount, Span< byte > destination, out int bytesWritten)
Definition CngKeyLite.cs:93
System.Security.Cryptography.CngKeyLite.ExportPkcs8KeyBlob
static byte[] ExportPkcs8KeyBlob(SafeNCryptKeyHandle keyHandle, ReadOnlySpan< char > password, int kdfCount)
Definition CngKeyLite.cs:85
System.Security.Cryptography.CngKeyLite.ImportKeyBlob
static unsafe SafeNCryptKeyHandle ImportKeyBlob(string blobType, ReadOnlySpan< byte > keyBlob, bool encrypted=false, ReadOnlySpan< char > password=default(ReadOnlySpan< char >))
Definition CngKeyLite.cs:14
System.Security.Cryptography.CngKeyLite.ExportKeyBlob
static byte[] ExportKeyBlob(SafeNCryptKeyHandle keyHandle, string blobType)
Definition CngKeyLite.cs:58
System.Security.Cryptography.CngKeyLite.GetKeyLength
static int GetKeyLength(SafeNCryptKeyHandle keyHandle)
Definition CngKeyLite.cs:241
System.Security.Cryptography.CngKeyLite.GenerateNewExportableKey
static SafeNCryptKeyHandle GenerateNewExportableKey(string algorithm, int keySize)
Definition CngKeyLite.cs:170
System.Security.Cryptography.CngPkcs8.IsPlatformScheme
static bool IsPlatformScheme(PbeParameters pbeParameters)
Definition CngPkcs8.cs:44
System.Security.Cryptography.CngPkcs8.ImportEncryptedPkcs8PrivateKey
static unsafe Pkcs8Response ImportEncryptedPkcs8PrivateKey(ReadOnlySpan< byte > passwordBytes, ReadOnlySpan< byte > source, out int bytesRead)
Definition CngPkcs8.cs:134
System.Security.Cryptography.CngPkcs8.ExportEncryptedPkcs8PrivateKey
static byte[] ExportEncryptedPkcs8PrivateKey(AsymmetricAlgorithm key, ReadOnlySpan< byte > passwordBytes, PbeParameters pbeParameters)
Definition CngPkcs8.cs:53
System.Security.Cryptography.CngPkcs8.ImportPkcs8PrivateKey
static Pkcs8Response ImportPkcs8PrivateKey(ReadOnlySpan< byte > source, out int bytesRead)
Definition CngPkcs8.cs:90
System.Security.Cryptography.CngPkcs8.TryExportEncryptedPkcs8PrivateKey
static bool TryExportEncryptedPkcs8PrivateKey(AsymmetricAlgorithm key, ReadOnlySpan< byte > passwordBytes, PbeParameters pbeParameters, Span< byte > destination, out int bytesWritten)
Definition CngPkcs8.cs:68
System.Security.Cryptography.CryptoPool.Return
static void Return(byte[] array, int clearSize=-1)
Definition CryptoPool.cs:12
System.Security.Cryptography.CryptoPool.Rent
static byte[] Rent(int minimumLength)
Definition CryptoPool.cs:7
System.Security.Cryptography.PasswordBasedEncryption.ValidatePbeParameters
static void ValidatePbeParameters(PbeParameters pbeParameters, ReadOnlySpan< char > password, ReadOnlySpan< byte > passwordBytes)
Definition PasswordBasedEncryption.cs:17
System.Security.Cryptography.RSAImplementation.RSACng.ExportKeyBlob
byte[] ExportKeyBlob(bool includePrivateParameters)
Definition RSAImplementation.cs:56
System.Security.Cryptography.RSAImplementation.RSACng.TryDecrypt
override bool TryDecrypt(ReadOnlySpan< byte > data, Span< byte > destination, RSAEncryptionPadding padding, out int bytesWritten)
Definition RSAImplementation.cs:154
System.Security.Cryptography.RSAImplementation.RSACng.TryHashData
override bool TryHashData(ReadOnlySpan< byte > data, Span< byte > destination, HashAlgorithmName hashAlgorithm, out int bytesWritten)
Definition RSAImplementation.cs:124
System.Security.Cryptography.RSAImplementation.RSACng.TryExportEncryptedPkcs8
bool TryExportEncryptedPkcs8(ReadOnlySpan< char > pkcs8Password, int kdfCount, Span< byte > destination, out int bytesWritten)
Definition RSAImplementation.cs:69
System.Security.Cryptography.RSAImplementation.RSACng.AcceptImport
void AcceptImport(CngPkcs8.Pkcs8Response response)
Definition RSAImplementation.cs:83
System.Security.Cryptography.RSAImplementation.RSACng.ProcessPkcs8Response
void ProcessPkcs8Response(CngPkcs8.Pkcs8Response response)
Definition RSAImplementation.cs:459
System.Security.Cryptography.RSAImplementation.RSACng.TrySignHash
unsafe override bool TrySignHash(ReadOnlySpan< byte > hash, Span< byte > destination, HashAlgorithmName hashAlgorithm, RSASignaturePadding padding, out int bytesWritten)
Definition RSAImplementation.cs:625
System.Security.Cryptography.RSAImplementation.RSACng.HashData
override byte[] HashData(byte[] data, int offset, int count, HashAlgorithmName hashAlgorithm)
Definition RSAImplementation.cs:119
System.Security.Cryptography.RSAImplementation.RSACng.TryEncryptOrDecrypt
unsafe bool TryEncryptOrDecrypt(SafeNCryptKeyHandle key, ReadOnlySpan< byte > input, Span< byte > output, global::Interop.NCrypt.AsymmetricPaddingMode paddingMode, void *paddingInfo, bool encrypt, out int bytesWritten)
Definition RSAImplementation.cs:341
System.Security.Cryptography.RSAImplementation.RSACng.ImportEncryptedPkcs8PrivateKey
override void ImportEncryptedPkcs8PrivateKey(ReadOnlySpan< char > password, ReadOnlySpan< byte > source, out int bytesRead)
Definition RSAImplementation.cs:450
System.Security.Cryptography.RSAImplementation.RSACng.EncryptOrDecrypt
unsafe byte[] EncryptOrDecrypt(byte[] data, RSAEncryptionPadding padding, bool encrypt)
Definition RSAImplementation.cs:159
System.Security.Cryptography.RSAImplementation.RSACng.VerifyHash
override bool VerifyHash(byte[] hash, byte[] signature, HashAlgorithmName hashAlgorithm, RSASignaturePadding padding)
Definition RSAImplementation.cs:671
System.Security.Cryptography.RSAImplementation.RSACng.ImportPkcs8PrivateKey
override void ImportPkcs8PrivateKey(ReadOnlySpan< byte > source, out int bytesRead)
Definition RSAImplementation.cs:432
System.Security.Cryptography.RSAImplementation.RSACng.HashData
override byte[] HashData(Stream data, HashAlgorithmName hashAlgorithm)
Definition RSAImplementation.cs:129
System.Security.Cryptography.RSAImplementation.RSACng.GetHashSizeInBytes
static int GetHashSizeInBytes(HashAlgorithmName hashAlgorithm)
Definition RSAImplementation.cs:565
System.Security.Cryptography.RSAImplementation.RSACng.ExportEncryptedPkcs8
byte[] ExportEncryptedPkcs8(ReadOnlySpan< char > pkcs8Password, int kdfCount)
Definition RSAImplementation.cs:63
System.Security.Cryptography.RSAImplementation.RSACng.TryEncrypt
override bool TryEncrypt(ReadOnlySpan< byte > data, Span< byte > destination, RSAEncryptionPadding padding, out int bytesWritten)
Definition RSAImplementation.cs:149
System.Security.Cryptography.RSAImplementation.RSACng.ExportParameters
static unsafe void ExportParameters(ref RSAParameters rsaParams, byte[] rsaBlob, bool includePrivateParameters)
Definition RSAImplementation.cs:524
System.Security.Cryptography.RSAImplementation.RSACng.CheckMagicValueOfKey
static void CheckMagicValueOfKey(global::Interop.BCrypt.KeyBlobMagicNumber magic, bool includePrivateParameters)
Definition RSAImplementation.cs:550
System.Security.Cryptography.RSAImplementation.RSACng.Decrypt
override byte[] Decrypt(byte[] data, RSAEncryptionPadding padding)
Definition RSAImplementation.cs:144
System.Security.Cryptography.RSAImplementation.RSACng.EncryptOrDecrypt
static unsafe global::Interop.NCrypt.ErrorCode EncryptOrDecrypt(SafeNCryptKeyHandle key, ReadOnlySpan< byte > input, Span< byte > output, global::Interop.NCrypt.AsymmetricPaddingMode paddingMode, void *paddingInfo, bool encrypt, out int bytesNeeded)
Definition RSAImplementation.cs:364
System.Security.Cryptography.RSAImplementation.RSACng.VerifyHash
unsafe override bool VerifyHash(ReadOnlySpan< byte > hash, ReadOnlySpan< byte > signature, HashAlgorithmName hashAlgorithm, RSASignaturePadding padding)
Definition RSAImplementation.cs:684
System.Security.Cryptography.RSAImplementation.RSACng.ExportEncryptedPkcs8PrivateKey
override byte[] ExportEncryptedPkcs8PrivateKey(ReadOnlySpan< byte > passwordBytes, PbeParameters pbeParameters)
Definition RSAImplementation.cs:469
System.Security.Cryptography.RSAImplementation.RSACng.ImportParameters
unsafe override void ImportParameters(RSAParameters parameters)
Definition RSAImplementation.cs:374
System.Security.Cryptography.RSAImplementation.RSACng.Encrypt
override byte[] Encrypt(byte[] data, RSAEncryptionPadding padding)
Definition RSAImplementation.cs:139
System.Security.Cryptography.RSAImplementation.RSACng.TryEncryptOrDecrypt
unsafe bool TryEncryptOrDecrypt(ReadOnlySpan< byte > data, Span< byte > destination, RSAEncryptionPadding padding, bool encrypt, out int bytesWritten)
Definition RSAImplementation.cs:232
System.Security.Cryptography.RSAImplementation.RSACng.ImportKeyBlob
void ImportKeyBlob(byte[] rsaBlob, bool includePrivate)
Definition RSAImplementation.cs:75
System.Security.Cryptography.RSAImplementation.RSACng.ExportEncryptedPkcs8PrivateKey
override byte[] ExportEncryptedPkcs8PrivateKey(ReadOnlySpan< char > password, PbeParameters pbeParameters)
Definition RSAImplementation.cs:478
System.Security.Cryptography.RSAImplementation.RSACng.ExportParameters
override RSAParameters ExportParameters(bool includePrivateParameters)
Definition RSAImplementation.cs:516
System.Security.Cryptography.RSAImplementation.RSACng.TryExportEncryptedPkcs8PrivateKey
override bool TryExportEncryptedPkcs8PrivateKey(ReadOnlySpan< byte > passwordBytes, PbeParameters pbeParameters, Span< byte > destination, out int bytesWritten)
Definition RSAImplementation.cs:492
System.Security.Cryptography.RSAImplementation.RSACng.ImportEncryptedPkcs8PrivateKey
override void ImportEncryptedPkcs8PrivateKey(ReadOnlySpan< byte > passwordBytes, ReadOnlySpan< byte > source, out int bytesRead)
Definition RSAImplementation.cs:441
System.Security.Cryptography.RSAImplementation.RSACng.TryExportEncryptedPkcs8PrivateKey
override bool TryExportEncryptedPkcs8PrivateKey(ReadOnlySpan< char > password, PbeParameters pbeParameters, Span< byte > destination, out int bytesWritten)
Definition RSAImplementation.cs:502
System.Security.Cryptography.RSAImplementation.RSACng.s_hashSizes
static readonly ConcurrentDictionary< HashAlgorithmName, int > s_hashSizes
Definition RSAImplementation.cs:20
System.Security.Cryptography.RSAImplementation.RSACng.SignHash
unsafe override byte[] SignHash(byte[] hash, HashAlgorithmName hashAlgorithm, RSASignaturePadding padding)
Definition RSAImplementation.cs:574
System.Security.Cryptography.RSAImplementation.RSACng.EncryptOrDecrypt
unsafe byte[] EncryptOrDecrypt(SafeNCryptKeyHandle key, ReadOnlySpan< byte > input, global::Interop.NCrypt.AsymmetricPaddingMode paddingMode, void *paddingInfo, bool encrypt)
Definition RSAImplementation.cs:301
System.Security.Cryptography.RsaPaddingProcessor.PadPkcs1Encryption
static void PadPkcs1Encryption(ReadOnlySpan< byte > source, Span< byte > destination)
Definition RsaPaddingProcessor.cs:98
System.Security.Cryptography.RsaPaddingProcessor.OpenProcessor
static RsaPaddingProcessor OpenProcessor(HashAlgorithmName hashAlgorithmName)
Definition RsaPaddingProcessor.cs:58
System.IntPtr.Zero
static readonly IntPtr Zero
Definition IntPtr.cs:18