mcs/class/System/System.Security.Cryptography.X509Certificates/PublicKey.cs

   1 //
   2 // PublicKey.cs - System.Security.Cryptography.PublicKey
   3 //
   4 // Author:
   5 //      Sebastien Pouliot  <sebastien@ximian.com>
   6 //      Tim Coleman (tim@timcoleman.com)
   7 //
   8 // (C) 2003 Motus Technologies Inc. (http://www.motus.com)
   9 // Copyright (C) Tim Coleman, 2004
  10 // Copyright (C) 2005 Novell, Inc (http://www.novell.com)
  11 //
  12 // Permission is hereby granted, free of charge, to any person obtaining
  13 // a copy of this software and associated documentation files (the
  14 // "Software"), to deal in the Software without restriction, including
  15 // without limitation the rights to use, copy, modify, merge, publish,
  16 // distribute, sublicense, and/or sell copies of the Software, and to
  17 // permit persons to whom the Software is furnished to do so, subject to
  18 // the following conditions:
  19 //
  20 // The above copyright notice and this permission notice shall be
  21 // included in all copies or substantial portions of the Software.
  22 //
  23 // THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
  24 // EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
  25 // MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
  26 // NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
  27 // LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
  28 // OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
  29 // WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
  30 //
  31
  32 #if SECURITY_DEP
  33
  34 using Mono.Security;
  35 using Mono.Security.Cryptography;
  36 using MSX = Mono.Security.X509;
  37
  38 namespace System.Security.Cryptography.X509Certificates {
  39
  40         public sealed class PublicKey {
  41
  42                 private const string rsaOid = "1.2.840.113549.1.1.1";
  43                 private const string dsaOid = "1.2.840.10040.4.1";
  44
  45                 private AsymmetricAlgorithm _key;
  46                 private AsnEncodedData _keyValue;
  47                 private AsnEncodedData _params;
  48                 private Oid _oid;
  49
  50                 static byte[] Empty = new byte [0];
  51
  52                 public PublicKey (Oid oid, AsnEncodedData parameters, AsnEncodedData keyValue)
  53                 {
  54                         if (oid == null)
  55                                 throw new ArgumentNullException ("oid");
  56                         if (parameters == null)
  57                                 throw new ArgumentNullException ("parameters");
  58                         if (keyValue == null)
  59                                 throw new ArgumentNullException ("keyValue");
  60
  61                         _oid = new Oid (oid);
  62                         _params = new AsnEncodedData (parameters);
  63                         _keyValue = new AsnEncodedData (keyValue);
  64                 }
  65
  66                 internal PublicKey (MSX.X509Certificate certificate)
  67                 {
  68                         // note: _key MUSTonly contains the public part of the key
  69                         bool export_required = true;
  70
  71                         if (certificate.KeyAlgorithm == rsaOid) {
  72                                 // shortcut export/import in the case the private key isn't available
  73                                 RSACryptoServiceProvider rcsp = (certificate.RSA as RSACryptoServiceProvider);
  74                                 if ((rcsp != null) && rcsp.PublicOnly) {
  75                                         _key = certificate.RSA;
  76                                         export_required = false;
  77                                 } else
  78                                 {
  79                                         RSAManaged rsam = (certificate.RSA as RSAManaged);
  80                                         if ((rsam != null) && rsam.PublicOnly) {
  81                                                 _key = certificate.RSA;
  82                                                 export_required = false;
  83                                         }
  84                                 }
  85
  86                                 if (export_required) {
  87                                         RSAParameters rsap = certificate.RSA.ExportParameters (false);
  88                                         _key = RSA.Create ();
  89                                         (_key as RSA).ImportParameters (rsap);
  90                                 }
  91                         } else {
  92                                 // shortcut export/import in the case the private key isn't available
  93                                 DSACryptoServiceProvider dcsp = (certificate.DSA as DSACryptoServiceProvider);
  94                                 if ((dcsp != null) && dcsp.PublicOnly) {
  95                                         _key = certificate.DSA;
  96                                         export_required = false;
  97                                 }
  98                                 // note: DSAManaged isn't available in Mono.Security due to a bug in Fx 1.x
  99
 100                                 if (export_required) {
 101                                         DSAParameters rsap = certificate.DSA.ExportParameters (false);
 102                                         _key = DSA.Create ();
 103                                         (_key as DSA).ImportParameters (rsap);
 104                                 }
 105                         }
 106
 107                         _oid = new Oid (certificate.KeyAlgorithm);
 108                         _keyValue = new AsnEncodedData (_oid, certificate.PublicKey);
 109                         _params = new AsnEncodedData (_oid, certificate.KeyAlgorithmParameters ?? Empty);
 110                 }
 111
 112                 // properties
 113
 114                 public AsnEncodedData EncodedKeyValue {
 115                         get { return _keyValue; }
 116                 }
 117
 118                 public AsnEncodedData EncodedParameters {
 119                         get { return _params; }
 120                 }
 121
 122                 public AsymmetricAlgorithm Key {
 123                         get {
 124                                 if (_key == null) {
 125                                         switch (_oid.Value) {
 126                                         case rsaOid:
 127                                                 _key = DecodeRSA (_keyValue.RawData);
 128                                                 break;
 129                                         case dsaOid:
 130                                                 _key = DecodeDSA (_keyValue.RawData, _params.RawData);
 131                                                 break;
 132                                         default:
 133                                                 string msg = Locale.GetText ("Cannot decode public key from unknown OID '{0}'.", _oid.Value);
 134                                                 throw new NotSupportedException (msg);
 135                                         }
 136                                 }
 137                                 return _key;
 138                         }
 139                 }
 140
 141                 public Oid Oid {
 142                         get { return _oid; }
 143                 }
 144
 145                 // private stuff
 146
 147                 static private byte[] GetUnsignedBigInteger (byte[] integer)
 148                 {
 149                         if (integer [0] != 0x00)
 150                                 return integer;
 151
 152                         // this first byte is added so we're sure it's an unsigned integer
 153                         // however we can't feed it into RSAParameters or DSAParameters
 154                         int length = integer.Length - 1;
 155                         byte[] uinteger = new byte [length];
 156                         Buffer.BlockCopy (integer, 1, uinteger, 0, length);
 157                         return uinteger;
 158                 }
 159
 160                 static internal DSA DecodeDSA (byte[] rawPublicKey, byte[] rawParameters)
 161                 {
 162                         DSAParameters dsaParams = new DSAParameters ();
 163                         try {
 164                                 // for DSA rawPublicKey contains 1 ASN.1 integer - Y
 165                                 ASN1 pubkey = new ASN1 (rawPublicKey);
 166                                 if (pubkey.Tag != 0x02)
 167                                         throw new CryptographicException (Locale.GetText ("Missing DSA Y integer."));
 168                                 dsaParams.Y = GetUnsignedBigInteger (pubkey.Value);
 169
 170                                 ASN1 param = new ASN1 (rawParameters);
 171                                 if ((param == null) || (param.Tag != 0x30) || (param.Count < 3))
 172                                         throw new CryptographicException (Locale.GetText ("Missing DSA parameters."));
 173                                 if ((param [0].Tag != 0x02) || (param [1].Tag != 0x02) || (param [2].Tag != 0x02))
 174                                         throw new CryptographicException (Locale.GetText ("Invalid DSA parameters."));
 175
 176                                 dsaParams.P = GetUnsignedBigInteger (param [0].Value);
 177                                 dsaParams.Q = GetUnsignedBigInteger (param [1].Value);
 178                                 dsaParams.G = GetUnsignedBigInteger (param [2].Value);
 179                         }
 180                         catch (Exception e) {
 181                                 string msg = Locale.GetText ("Error decoding the ASN.1 structure.");
 182                                 throw new CryptographicException (msg, e);
 183                         }
 184
 185                         DSA dsa = (DSA) new DSACryptoServiceProvider (dsaParams.Y.Length << 3);
 186                         dsa.ImportParameters (dsaParams);
 187                         return dsa;
 188                 }
 189
 190                 static internal RSA DecodeRSA (byte[] rawPublicKey)
 191                 {
 192                         RSAParameters rsaParams = new RSAParameters ();
 193                         try {
 194                                 // for RSA rawPublicKey contains 2 ASN.1 integers
 195                                 // the modulus and the public exponent
 196                                 ASN1 pubkey = new ASN1 (rawPublicKey);
 197                                 if (pubkey.Count == 0)
 198                                         throw new CryptographicException (Locale.GetText ("Missing RSA modulus and exponent."));
 199                                 ASN1 modulus = pubkey [0];
 200                                 if ((modulus == null) || (modulus.Tag != 0x02))
 201                                         throw new CryptographicException (Locale.GetText ("Missing RSA modulus."));
 202                                 ASN1 exponent = pubkey [1];
 203                                 if (exponent.Tag != 0x02)
 204                                         throw new CryptographicException (Locale.GetText ("Missing RSA public exponent."));
 205
 206                                 rsaParams.Modulus = GetUnsignedBigInteger (modulus.Value);
 207                                 rsaParams.Exponent = exponent.Value;
 208                         }
 209                         catch (Exception e) {
 210                                 string msg = Locale.GetText ("Error decoding the ASN.1 structure.");
 211                                 throw new CryptographicException (msg, e);
 212                         }
 213
 214                         int keySize = (rsaParams.Modulus.Length << 3);
 215                         RSA rsa = (RSA) new RSACryptoServiceProvider (keySize);
 216                         rsa.ImportParameters (rsaParams);
 217                         return rsa;
 218                 }
 219         }
 220 }
 221
 222 #endif