2 // X509Certificate.cs: Handles X.509 certificates.
5 // Sebastien Pouliot <sebastien@ximian.com>
7 // (C) 2002, 2003 Motus Technologies Inc. (http://www.motus.com)
8 // Copyright (C) 2004-2006 Novell, Inc (http://www.novell.com)
10 // Permission is hereby granted, free of charge, to any person obtaining
11 // a copy of this software and associated documentation files (the
12 // "Software"), to deal in the Software without restriction, including
13 // without limitation the rights to use, copy, modify, merge, publish,
14 // distribute, sublicense, and/or sell copies of the Software, and to
15 // permit persons to whom the Software is furnished to do so, subject to
16 // the following conditions:
18 // The above copyright notice and this permission notice shall be
19 // included in all copies or substantial portions of the Software.
21 // THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
22 // EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
23 // MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
24 // NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
25 // LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
26 // OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
27 // WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
31 using System.Runtime.InteropServices;
32 using System.Security.Permissions;
36 using Mono.Security.X509;
38 using System.Runtime.Serialization;
39 using Mono.Security.Authenticode;
41 namespace System.Security.Cryptography.X509Certificates {
44 // a. Internet X.509 Public Key Infrastructure Certificate and CRL Profile
45 // http://www.ietf.org/rfc/rfc3280.txt
47 // LAMESPEC: the MSDN docs always talks about X509v3 certificates
48 // and/or Authenticode certs. However this class works with older
49 // X509v1 certificates and non-authenticode (code signing) certs.
52 public partial class X509Certificate {
54 public partial class X509Certificate : IDeserializationCallback, ISerializable {
56 X509CertificateImpl impl;
58 private bool hideDates;
62 public static X509Certificate CreateFromCertFile (string filename)
64 byte[] data = File.ReadAllBytes (filename);
65 return new X509Certificate (data);
68 [MonoTODO ("Incomplete - minimal validation in this version")]
69 public static X509Certificate CreateFromSignedFile (string filename)
72 AuthenticodeDeformatter a = new AuthenticodeDeformatter (filename);
73 if (a.SigningCertificate != null) {
74 return new X509Certificate (a.SigningCertificate.RawData);
77 catch (SecurityException) {
78 // don't wrap SecurityException into a COMException
82 string msg = Locale.GetText ("Couldn't extract digital signature from {0}.", filename);
83 throw new COMException (msg, e);
85 throw new CryptographicException (Locale.GetText ("{0} isn't signed.", filename));
90 // special constructor for Publisher (and related classes).
91 // Dates strings are null
92 internal X509Certificate (byte[] data, bool dates)
95 Import (data, (string)null, X509KeyStorageFlags.DefaultKeySet);
100 public X509Certificate (byte[] data) : this (data, true)
104 public X509Certificate (IntPtr handle)
106 if (handle == IntPtr.Zero)
107 throw new ArgumentException ("Invalid handle.");
109 impl = X509Helper.InitFromHandle (handle);
112 public X509Certificate (System.Security.Cryptography.X509Certificates.X509Certificate cert)
115 throw new ArgumentNullException ("cert");
117 X509Helper.ThrowIfContextInvalid (cert.impl);
119 impl = X509Helper.InitFromCertificate (cert.impl);
126 public virtual bool Equals (System.Security.Cryptography.X509Certificates.X509Certificate other)
131 if (!X509Helper.IsValid (other.impl)) {
132 if (!X509Helper.IsValid (impl))
134 throw new CryptographicException (Locale.GetText ("Certificate instance is empty."));
137 return X509CertificateImpl.Equals (impl, other.impl);
141 // LAMESPEC: This is the equivalent of the "thumbprint" that can be seen
142 // in the certificate viewer of Windows. This is ALWAYS the SHA1 hash of
143 // the certificate (i.e. it has nothing to do with the actual hash
144 // algorithm used to sign the certificate).
145 public virtual byte[] GetCertHash ()
147 X509Helper.ThrowIfContextInvalid (impl);
148 return impl.GetCertHash ();
151 public virtual string GetCertHashString ()
153 // must call GetCertHash (not variable) or optimization wont work
154 return X509Helper.ToHexString (GetCertHash ());
157 // strangly there are no DateTime returning function
158 public virtual string GetEffectiveDateString ()
162 X509Helper.ThrowIfContextInvalid (impl);
164 return impl.GetEffectiveDateString ().ToString ();
167 // strangly there are no DateTime returning function
168 public virtual string GetExpirationDateString ()
172 X509Helper.ThrowIfContextInvalid (impl);
174 return impl.GetExpirationDateString ().ToString ();
177 // well maybe someday there'll be support for PGP or SPKI ?
178 public virtual string GetFormat ()
180 return "X509"; // DO NOT TRANSLATE
183 public override int GetHashCode ()
185 if (!X509Helper.IsValid (impl))
187 return impl.GetHashCode ();
190 [Obsolete ("Use the Issuer property.")]
191 public virtual string GetIssuerName ()
193 X509Helper.ThrowIfContextInvalid (impl);
194 return impl.GetIssuerName (true);
197 public virtual string GetKeyAlgorithm ()
199 X509Helper.ThrowIfContextInvalid (impl);
200 return impl.GetKeyAlgorithm ();
203 public virtual byte[] GetKeyAlgorithmParameters ()
205 X509Helper.ThrowIfContextInvalid (impl);
207 byte[] kap = impl.GetKeyAlgorithmParameters ();
209 throw new CryptographicException (Locale.GetText ("Parameters not part of the certificate"));
214 public virtual string GetKeyAlgorithmParametersString ()
216 return X509Helper.ToHexString (GetKeyAlgorithmParameters ());
219 [Obsolete ("Use the Subject property.")]
220 public virtual string GetName ()
222 X509Helper.ThrowIfContextInvalid (impl);
223 return impl.GetSubjectName (true);
226 public virtual byte[] GetPublicKey ()
228 X509Helper.ThrowIfContextInvalid (impl);
229 return impl.GetPublicKey ();
232 public virtual string GetPublicKeyString ()
234 return X509Helper.ToHexString (GetPublicKey ());
237 public virtual byte[] GetRawCertData ()
239 X509Helper.ThrowIfContextInvalid (impl);
240 return impl.GetRawCertData ();
243 public virtual string GetRawCertDataString ()
245 X509Helper.ThrowIfContextInvalid (impl);
246 return X509Helper.ToHexString (impl.GetRawCertData ());
249 public virtual byte[] GetSerialNumber ()
251 X509Helper.ThrowIfContextInvalid (impl);
252 return impl.GetSerialNumber ();
255 public virtual string GetSerialNumberString ()
257 byte[] sn = GetSerialNumber ();
259 return X509Helper.ToHexString (sn);
262 // to please corcompare ;-)
263 public override string ToString ()
265 return base.ToString ();
268 public virtual string ToString (bool fVerbose)
270 if (!fVerbose || !X509Helper.IsValid (impl))
271 return base.ToString ();
273 return impl.ToString (true);
276 protected static string FormatDate (DateTime date)
278 throw new NotImplementedException ();