//
// (C) 2002, 2003 Motus Technologies Inc. (http://www.motus.com)
// Portions (C) 2003 Ben Maurer
-// Copyright (C) 2004 Novell, Inc (http://www.novell.com)
+// Copyright (C) 2004-2005 Novell, Inc (http://www.novell.com)
//
// Permission is hereby granted, free of charge, to any person obtaining
// a copy of this software and associated documentation files (the
// WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
//
+#if !MOONLIGHT
+
using System.IO;
using System.Runtime.InteropServices;
namespace System.Security.Cryptography {
-#if (NET_2_0)
+ [ComVisible (true)]
public sealed class RSACryptoServiceProvider : RSA, ICspAsymmetricAlgorithm {
-#else
- public sealed class RSACryptoServiceProvider : RSA {
-#endif
private const int PROV_RSA_FULL = 1; // from WinCrypt.h
private KeyPairPersistence store;
}
else {
store = new KeyPairPersistence (p);
- store.Load ();
+ bool exists = store.Load ();
+ bool required = (p.Flags & CspProviderFlags.UseExistingKey) != 0;
+
+ if (required && !exists)
+ throw new CryptographicException ("Keyset does not exist");
+
if (store.KeyValue != null) {
persisted = true;
this.FromXmlString (store.KeyValue);
}
}
-#if (NET_2_0)
[ComVisible (false)]
- public
-#else
- internal
-#endif
- bool PublicOnly {
+ public bool PublicOnly {
get { return rsa.PublicOnly; }
}
private string GetHashNameFromOID (string oid)
{
switch (oid) {
- case "1.3.14.3.2.26":
- return "SHA1";
- case "1.2.840.113549.2.5":
- return "MD5";
- default:
- throw new NotSupportedException (oid + " is an unsupported hash algorithm for RSA signing");
+ case "1.3.14.3.2.26":
+ return "SHA1";
+ case "1.2.840.113549.2.5":
+ return "MD5";
+ case "2.16.840.1.101.3.4.2.1":
+ return "SHA256";
+ case "2.16.840.1.101.3.4.2.2":
+ return "SHA384";
+ case "2.16.840.1.101.3.4.2.3":
+ return "SHA512";
+ default:
+ throw new CryptographicException (oid + " is an unsupported hash algorithm for RSA signing");
}
}
- // LAMESPEC: str is not the hash name but an OID
- // NOTE: this method is LIMITED to SHA1 and MD5 like the MS framework 1.0
- // and 1.1 because there's no method to get a hash algorithm from an OID.
- // However there's no such limit when using the [De]Formatter class.
public byte[] SignHash (byte[] rgbHash, string str)
{
if (rgbHash == null)
throw new ArgumentNullException ("rgbHash");
- if (str == null)
- throw new CryptographicException (Locale.GetText ("No OID specified"));
-
- HashAlgorithm hash = HashAlgorithm.Create (GetHashNameFromOID (str));
+ // Fx 2.0 defaults to the SHA-1
+ string hashName = (str == null) ? "SHA1" : GetHashNameFromOID (str);
+ HashAlgorithm hash = HashAlgorithm.Create (hashName);
return PKCS1.Sign_v15 (this, hash, rgbHash);
}
// HashAlgorithm descendant
public bool VerifyData (byte[] buffer, object halg, byte[] signature)
{
-#if NET_1_1
if (buffer == null)
throw new ArgumentNullException ("buffer");
-#endif
if (signature == null)
throw new ArgumentNullException ("signature");
return PKCS1.Verify_v15 (this, hash, toBeVerified, signature);
}
- // LAMESPEC: str is not the hash name but an OID
- // NOTE: this method is LIMITED to SHA1 and MD5 like the MS framework 1.0
- // and 1.1 because there's no method to get a hash algorithm from an OID.
- // However there's no such limit when using the [De]Formatter class.
public bool VerifyHash (byte[] rgbHash, string str, byte[] rgbSignature)
{
if (rgbHash == null)
throw new ArgumentNullException ("rgbHash");
if (rgbSignature == null)
throw new ArgumentNullException ("rgbSignature");
-
- HashAlgorithm hash = HashAlgorithm.Create (GetHashNameFromOID (str));
+ // Fx 2.0 defaults to the SHA-1
+ string hashName = (str == null) ? "SHA1" : GetHashNameFromOID (str);
+ HashAlgorithm hash = HashAlgorithm.Create (hashName);
return PKCS1.Verify_v15 (this, hash, rgbHash, rgbSignature);
}
persisted = true;
}
}
-#if NET_2_0
// ICspAsymmetricAlgorithm
- [MonoTODO ("call into KeyPairPersistence to get details")]
[ComVisible (false)]
public CspKeyContainerInfo CspKeyContainerInfo {
- get { return null; }
+ get {
+ return new CspKeyContainerInfo(store.Parameters);
+ }
}
- [MonoTODO ("call into CryptoConvert")]
[ComVisible (false)]
public byte[] ExportCspBlob (bool includePrivateParameters)
{
- return null;
+ byte[] blob = null;
+ if (includePrivateParameters)
+ blob = CryptoConvert.ToCapiPrivateKeyBlob (this);
+ else
+ blob = CryptoConvert.ToCapiPublicKeyBlob (this);
+
+ // ALGID (bytes 4-7) - default is KEYX
+ // 00 24 00 00 (for CALG_RSA_SIGN)
+ // 00 A4 00 00 (for CALG_RSA_KEYX)
+ blob [5] = 0xA4;
+ return blob;
}
- [MonoTODO ("call into CryptoConvert")]
[ComVisible (false)]
- public void ImportCspBlob (byte[] rawData)
+ public void ImportCspBlob (byte[] keyBlob)
{
+ if (keyBlob == null)
+ throw new ArgumentNullException ("keyBlob");
+
+ RSA rsa = CryptoConvert.FromCapiKeyBlob (keyBlob);
+ if (rsa is RSACryptoServiceProvider) {
+ // default (if no change are present in machine.config)
+ RSAParameters rsap = rsa.ExportParameters (!(rsa as RSACryptoServiceProvider).PublicOnly);
+ ImportParameters (rsap);
+ } else {
+ // we can't know from RSA if the private key is available
+ try {
+ // so we try it...
+ RSAParameters rsap = rsa.ExportParameters (true);
+ ImportParameters (rsap);
+ }
+ catch {
+ // and fall back
+ RSAParameters rsap = rsa.ExportParameters (false);
+ ImportParameters (rsap);
+ }
+ }
}
-#endif
}
}
+
+#endif
+