mcs/class/System/System.Security.Cryptography.X509Certificates/PublicKey.cs

   1 //
   2 // PublicKey.cs - System.Security.Cryptography.PublicKey
   3 //
   4 // Author:
   5 //      Sebastien Pouliot  <sebastien@ximian.com>
   6 //      Tim Coleman (tim@timcoleman.com)
   7 //
   8 // (C) 2003 Motus Technologies Inc. (http://www.motus.com)
   9 // Copyright (C) Tim Coleman, 2004
  10 // Copyright (C) 2005 Novell, Inc (http://www.novell.com)
  11 //
  12 // Permission is hereby granted, free of charge, to any person obtaining
  13 // a copy of this software and associated documentation files (the
  14 // "Software"), to deal in the Software without restriction, including
  15 // without limitation the rights to use, copy, modify, merge, publish,
  16 // distribute, sublicense, and/or sell copies of the Software, and to
  17 // permit persons to whom the Software is furnished to do so, subject to
  18 // the following conditions:
  19 //
  20 // The above copyright notice and this permission notice shall be
  21 // included in all copies or substantial portions of the Software.
  22 //
  23 // THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
  24 // EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
  25 // MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
  26 // NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
  27 // LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
  28 // OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
  29 // WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
  30 //
  31
  32 #if SECURITY_DEP || MOONLIGHT
  33
  34 using Mono.Security;
  35 using Mono.Security.Cryptography;
  36 using MSX = Mono.Security.X509;
  37
  38 namespace System.Security.Cryptography.X509Certificates {
  39
  40         public sealed class PublicKey {
  41
  42                 private const string rsaOid = "1.2.840.113549.1.1.1";
  43                 private const string dsaOid = "1.2.840.10040.4.1";
  44
  45                 private AsymmetricAlgorithm _key;
  46                 private AsnEncodedData _keyValue;
  47                 private AsnEncodedData _params;
  48                 private Oid _oid;
  49
  50                 public PublicKey (Oid oid, AsnEncodedData parameters, AsnEncodedData keyValue)
  51                 {
  52                         if (oid == null)
  53                                 throw new ArgumentNullException ("oid");
  54                         if (parameters == null)
  55                                 throw new ArgumentNullException ("parameters");
  56                         if (keyValue == null)
  57                                 throw new ArgumentNullException ("keyValue");
  58
  59                         _oid = new Oid (oid);
  60                         _params = new AsnEncodedData (parameters);
  61                         _keyValue = new AsnEncodedData (keyValue);
  62                 }
  63
  64                 internal PublicKey (MSX.X509Certificate certificate)
  65                 {
  66                         // note: _key MUSTonly contains the public part of the key
  67                         bool export_required = true;
  68
  69                         if (certificate.KeyAlgorithm == rsaOid) {
  70 #if !MOONLIGHT
  71                                 // shortcut export/import in the case the private key isn't available
  72                                 RSACryptoServiceProvider rcsp = (certificate.RSA as RSACryptoServiceProvider);
  73                                 if ((rcsp != null) && rcsp.PublicOnly) {
  74                                         _key = certificate.RSA;
  75                                         export_required = false;
  76                                 } else
  77 #endif
  78                                 {
  79                                         RSAManaged rsam = (certificate.RSA as RSAManaged);
  80                                         if ((rsam != null) && rsam.PublicOnly) {
  81                                                 _key = certificate.RSA;
  82                                                 export_required = false;
  83                                         }
  84                                 }
  85
  86                                 if (export_required) {
  87                                         RSAParameters rsap = certificate.RSA.ExportParameters (false);
  88                                         _key = RSA.Create ();
  89                                         (_key as RSA).ImportParameters (rsap);
  90                                 }
  91                         } else {
  92 #if !MOONLIGHT
  93                                 // shortcut export/import in the case the private key isn't available
  94                                 DSACryptoServiceProvider dcsp = (certificate.DSA as DSACryptoServiceProvider);
  95                                 if ((dcsp != null) && dcsp.PublicOnly) {
  96                                         _key = certificate.DSA;
  97                                         export_required = false;
  98                                 }
  99                                 // note: DSAManaged isn't available in Mono.Security due to a bug in Fx 1.x
 100
 101                                 if (export_required) {
 102                                         DSAParameters rsap = certificate.DSA.ExportParameters (false);
 103                                         _key = DSA.Create ();
 104                                         (_key as DSA).ImportParameters (rsap);
 105                                 }
 106 #endif
 107                         }
 108
 109                         _oid = new Oid (certificate.KeyAlgorithm);
 110                         _keyValue = new AsnEncodedData (_oid, certificate.PublicKey);
 111                         _params = new AsnEncodedData (_oid, certificate.KeyAlgorithmParameters);
 112                 }
 113
 114                 // properties
 115
 116                 public AsnEncodedData EncodedKeyValue {
 117                         get { return _keyValue; }
 118                 }
 119
 120                 public AsnEncodedData EncodedParameters {
 121                         get { return _params; }
 122                 }
 123
 124                 public AsymmetricAlgorithm Key {
 125                         get {
 126                                 if (_key == null) {
 127                                         switch (_oid.Value) {
 128                                         case rsaOid:
 129                                                 _key = DecodeRSA (_keyValue.RawData);
 130                                                 break;
 131                                         case dsaOid:
 132                                                 _key = DecodeDSA (_keyValue.RawData, _params.RawData);
 133                                                 break;
 134                                         default:
 135                                                 string msg = Locale.GetText ("Cannot decode public key from unknown OID '{0}'.", _oid.Value);
 136                                                 throw new NotSupportedException (msg);
 137                                         }
 138                                 }
 139                                 return _key;
 140                         }
 141                 }
 142
 143                 public Oid Oid {
 144                         get { return _oid; }
 145                 }
 146
 147                 // private stuff
 148
 149                 static private byte[] GetUnsignedBigInteger (byte[] integer)
 150                 {
 151                         if (integer [0] != 0x00)
 152                                 return integer;
 153
 154                         // this first byte is added so we're sure it's an unsigned integer
 155                         // however we can't feed it into RSAParameters or DSAParameters
 156                         int length = integer.Length - 1;
 157                         byte[] uinteger = new byte [length];
 158                         Buffer.BlockCopy (integer, 1, uinteger, 0, length);
 159                         return uinteger;
 160                 }
 161
 162                 static internal DSA DecodeDSA (byte[] rawPublicKey, byte[] rawParameters)
 163                 {
 164                         DSAParameters dsaParams = new DSAParameters ();
 165                         try {
 166                                 // for DSA rawPublicKey contains 1 ASN.1 integer - Y
 167                                 ASN1 pubkey = new ASN1 (rawPublicKey);
 168                                 if (pubkey.Tag != 0x02)
 169                                         throw new CryptographicException (Locale.GetText ("Missing DSA Y integer."));
 170                                 dsaParams.Y = GetUnsignedBigInteger (pubkey.Value);
 171
 172                                 ASN1 param = new ASN1 (rawParameters);
 173                                 if ((param == null) || (param.Tag != 0x30) || (param.Count < 3))
 174                                         throw new CryptographicException (Locale.GetText ("Missing DSA parameters."));
 175                                 if ((param [0].Tag != 0x02) || (param [1].Tag != 0x02) || (param [2].Tag != 0x02))
 176                                         throw new CryptographicException (Locale.GetText ("Invalid DSA parameters."));
 177
 178                                 dsaParams.P = GetUnsignedBigInteger (param [0].Value);
 179                                 dsaParams.Q = GetUnsignedBigInteger (param [1].Value);
 180                                 dsaParams.G = GetUnsignedBigInteger (param [2].Value);
 181                         }
 182                         catch (Exception e) {
 183                                 string msg = Locale.GetText ("Error decoding the ASN.1 structure.");
 184                                 throw new CryptographicException (msg, e);
 185                         }
 186
 187 #if MOONLIGHT
 188                         DSA dsa = (DSA) new DSAManaged (dsaParams.Y.Length << 3);
 189 #else
 190                         DSA dsa = (DSA) new DSACryptoServiceProvider (dsaParams.Y.Length << 3);
 191 #endif
 192                         dsa.ImportParameters (dsaParams);
 193                         return dsa;
 194                 }
 195
 196                 static internal RSA DecodeRSA (byte[] rawPublicKey)
 197                 {
 198                         RSAParameters rsaParams = new RSAParameters ();
 199                         try {
 200                                 // for RSA rawPublicKey contains 2 ASN.1 integers
 201                                 // the modulus and the public exponent
 202                                 ASN1 pubkey = new ASN1 (rawPublicKey);
 203                                 if (pubkey.Count == 0)
 204                                         throw new CryptographicException (Locale.GetText ("Missing RSA modulus and exponent."));
 205                                 ASN1 modulus = pubkey [0];
 206                                 if ((modulus == null) || (modulus.Tag != 0x02))
 207                                         throw new CryptographicException (Locale.GetText ("Missing RSA modulus."));
 208                                 ASN1 exponent = pubkey [1];
 209                                 if (exponent.Tag != 0x02)
 210                                         throw new CryptographicException (Locale.GetText ("Missing RSA public exponent."));
 211
 212                                 rsaParams.Modulus = GetUnsignedBigInteger (modulus.Value);
 213                                 rsaParams.Exponent = exponent.Value;
 214                         }
 215                         catch (Exception e) {
 216                                 string msg = Locale.GetText ("Error decoding the ASN.1 structure.");
 217                                 throw new CryptographicException (msg, e);
 218                         }
 219
 220                         int keySize = (rsaParams.Modulus.Length << 3);
 221 #if MOONLIGHT
 222                         RSA rsa = (RSA) new RSAManaged (keySize);
 223 #else
 224                         RSA rsa = (RSA) new RSACryptoServiceProvider (keySize);
 225 #endif
 226                         rsa.ImportParameters (rsaParams);
 227                         return rsa;
 228                 }
 229         }
 230 }
 231
 232 #endif