Yubico
diff --git a/‎Yubico.Core/src/Yubico/Core/Tlv/TlvObject.cs
Lines changed: 1 addition & 2 deletions b/‎Yubico.Core/src/Yubico/Core/Tlv/TlvObject.cs
Lines changed: 1 addition & 2 deletions
diff --git a/‎Yubico.NET.SDK.sln
Lines changed: 0 additions & 1 deletion b/‎Yubico.NET.SDK.sln
Lines changed: 0 additions & 1 deletion
diff --git a/‎Yubico.YubiKey/src/Yubico/YubiKey/Cryptography/AsnPrivateKeyReader.cs
Lines changed: 56 additions & 22 deletions b/‎Yubico.YubiKey/src/Yubico/YubiKey/Cryptography/AsnPrivateKeyReader.cs
Lines changed: 56 additions & 22 deletions
diff --git a/‎Yubico.YubiKey/src/Yubico/YubiKey/Cryptography/AsnPrivateKeyWriter.cs
Lines changed: 17 additions & 16 deletions b/‎Yubico.YubiKey/src/Yubico/YubiKey/Cryptography/AsnPrivateKeyWriter.cs
Lines changed: 17 additions & 16 deletions
diff --git a/‎Yubico.YubiKey/src/Yubico/YubiKey/Cryptography/AsnPublicKeyReader.cs
Lines changed: 18 additions & 15 deletions b/‎Yubico.YubiKey/src/Yubico/YubiKey/Cryptography/AsnPublicKeyReader.cs
Lines changed: 18 additions & 15 deletions
@@ -116,10 +116,9 @@ public static TlvObject Parse(ReadOnlySpan<byte> data)
         }
 
         /// <inheritdoc cref="TlvObject.Parse(ReadOnlySpan{byte})"/> 
-        // public static TlvObject Parse(ReadOnlyMemory<byte> data) => Parse(data.Span);
-        
         public static bool TryParse(ReadOnlySpan<byte> data, [NotNullWhen(true)] out TlvObject? tlvObject)
         {
+            // Poor man's TryParse
             tlvObject = null;
             try
             {
 
@@ -251,7 +251,6 @@ Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "contributordocs", "contribu
 		contributordocs\allowed-dotnet-things-and-versions.md = contributordocs\allowed-dotnet-things-and-versions.md
 		contributordocs\code-flow-and-pull-requests.md = contributordocs\code-flow-and-pull-requests.md
 		contributordocs\getting-started.md = contributordocs\getting-started.md
-		contributordocs\polyfills.md = contributordocs\polyfills.md
 		contributordocs\README.md = contributordocs\README.md
 		contributordocs\testing.md = contributordocs\testing.md
 		contributordocs\useful-links.md = contributordocs\useful-links.md
 
@@ -22,7 +22,7 @@ namespace Yubico.YubiKey.Cryptography;
 
 internal class AsnPrivateKeyReader
 {
-    public static IPrivateKeyParameters CreateKeyParameters(ReadOnlyMemory<byte> pkcs8EncodedKey)
+    public static IPrivateKey CreateKey(ReadOnlyMemory<byte> pkcs8EncodedKey)
     {
         var reader = new AsnReader(pkcs8EncodedKey, AsnEncodingRules.DER);
         var seqPrivateKeyInfo = reader.ReadSequence();
@@ -38,7 +38,7 @@ public static IPrivateKeyParameters CreateKeyParameters(ReadOnlyMemory<byte> pkc
         string oidAlgorithm = seqAlgorithmIdentifier.ReadObjectIdentifier();
         switch (oidAlgorithm)
         {
-            case KeyDefinitions.Oids.RSA:
+            case Oids.RSA:
                 {
                     if (seqAlgorithmIdentifier.HasData)
                     {
@@ -47,17 +47,17 @@ public static IPrivateKeyParameters CreateKeyParameters(ReadOnlyMemory<byte> pkc
                     }
 
                     var rsaParameters = CreateRSAParameters(pkcs8EncodedKey);
-                    return RSAPrivateKeyParameters.CreateFromParameters(rsaParameters);
+                    return RSAPrivateKey.CreateFromParameters(rsaParameters);
                 }
-            case KeyDefinitions.Oids.ECDSA:
+            case Oids.ECDSA:
                 {
                     var ecParams = CreateECParameters(pkcs8EncodedKey);
-                    return ECPrivateKeyParameters.CreateFromParameters(ecParams);
+                    return ECPrivateKey.CreateFromParameters(ecParams);
                 }
-            case KeyDefinitions.Oids.X25519:
-            case KeyDefinitions.Oids.Ed25519:
+            case Oids.X25519:
+            case Oids.Ed25519:
                 {
-                    return Curve25519PrivateKeyParameters.CreateFromPkcs8(pkcs8EncodedKey);
+                    return Curve25519PrivateKey.CreateFromPkcs8(pkcs8EncodedKey);
                 }
         }
 
@@ -67,9 +67,47 @@ public static IPrivateKeyParameters CreateKeyParameters(ReadOnlyMemory<byte> pkc
                 ExceptionMessages.UnsupportedAlgorithm));
     }
 
-    public static Curve25519PrivateKeyParameters CreateCurve25519Parameters(ReadOnlyMemory<byte> pkcs8EncodedKey) =>
-        Curve25519PrivateKeyParameters.CreateFromPkcs8(pkcs8EncodedKey);
+    public static Curve25519PrivateKey CreateCurve25519Key(ReadOnlyMemory<byte> pkcs8EncodedKey) =>
+        Curve25519PrivateKey.CreateFromPkcs8(pkcs8EncodedKey);
 
+    public static (byte[], KeyType) GetCurve25519PrivateKeyData(ReadOnlyMemory<byte> pkcs8EncodedKey)
+    {
+        var reader = new AsnReader(pkcs8EncodedKey, AsnEncodingRules.DER);
+        var seqPrivateKeyInfo = reader.ReadSequence();
+        var version = seqPrivateKeyInfo.ReadInteger();
+        if (version != 0)
+        {
+            throw new CryptographicException("Invalid PKCS#8 private key format: unexpected version");
+        }
+
+        var seqAlgorithmIdentifier = seqPrivateKeyInfo.ReadSequence();
+        string algorithmOid = seqAlgorithmIdentifier.ReadObjectIdentifier();
+        if (!Oids.IsCurve25519Algorithm(algorithmOid))
+        {
+            throw new ArgumentException(
+                "Invalid curve OID. Must be: " + Oids.X25519 + " or " +
+                Oids.Ed25519);
+        }
+
+        using var privateKeyDataHandle = new ZeroingMemoryHandle(seqPrivateKeyInfo.ReadOctetString());
+        var seqPrivateKey = new AsnReader(privateKeyDataHandle.Data, AsnEncodingRules.DER);
+        var tag = seqPrivateKey.PeekTag();
+        if (tag.TagValue != 4 || tag.TagClass != TagClass.Universal)
+        {
+            throw new CryptographicException("Invalid Curve25519 private key");
+        }
+
+        byte[] privateKey = seqPrivateKey.ReadOctetString();
+        if (privateKey.Length != 32)
+        {
+            throw new CryptographicException("Invalid Curve25519 private key: incorrect length");
+        }
+        seqPrivateKeyInfo.ThrowIfNotEmpty();
+
+
+        var keyDefinition = KeyDefinitions.GetByOid(algorithmOid);
+        return (privateKey, keyDefinition.KeyType);
+    }
     public static ECParameters CreateECParameters(ReadOnlyMemory<byte> pkcs8EncodedKey)
     {
         var reader = new AsnReader(pkcs8EncodedKey, AsnEncodingRules.DER);
@@ -84,7 +122,7 @@ public static ECParameters CreateECParameters(ReadOnlyMemory<byte> pkcs8EncodedK
 
         var seqAlgorithmIdentifier = seqPrivateKeyInfo.ReadSequence();
         string oidAlgorithm = seqAlgorithmIdentifier.ReadObjectIdentifier();
-        if (oidAlgorithm != KeyDefinitions.Oids.ECDSA)
+        if (oidAlgorithm != Oids.ECDSA)
         {
             throw new InvalidOperationException(
                 string.Format(
@@ -94,9 +132,9 @@ public static ECParameters CreateECParameters(ReadOnlyMemory<byte> pkcs8EncodedK
 
         string curveOid = seqAlgorithmIdentifier.ReadObjectIdentifier();
         if (curveOid is not (
-            KeyDefinitions.Oids.P256 or
-            KeyDefinitions.Oids.P384 or
-            KeyDefinitions.Oids.P521))
+            Oids.ECP256 or
+            Oids.ECP384 or
+            Oids.ECP521))
         {
             throw new InvalidOperationException(
                 string.Format(
@@ -160,16 +198,12 @@ KeyDefinitions.Oids.P384 or
             }
         }
 
-        var curve = ECCurve.CreateFromValue(curveOid);
-        byte[] privateKey = privateKeyHandle.Data.ToArray();
-        var ecParams = new ECParameters
+        return new ECParameters
         {
-            Curve = curve,
-            D = privateKey,
+            Curve = ECCurve.CreateFromValue(curveOid),
+            D = privateKeyHandle.Data.ToArray(),
             Q = point
         };
-
-        return ecParams;
     }
 
     public static RSAParameters CreateRSAParameters(ReadOnlyMemory<byte> pkcs8EncodedKey)
@@ -186,7 +220,7 @@ public static RSAParameters CreateRSAParameters(ReadOnlyMemory<byte> pkcs8Encode
 
         var seqAlgorithmIdentifier = seqPrivateKeyInfo.ReadSequence();
         string oidAlgorithm = seqAlgorithmIdentifier.ReadObjectIdentifier();
-        if (oidAlgorithm != KeyDefinitions.Oids.RSA)
+        if (oidAlgorithm != Oids.RSA)
         {
             throw new InvalidOperationException(
                 string.Format(
 
@@ -37,11 +37,11 @@ public static byte[] EncodeToPkcs8(
     {
         return keyType switch
         {
-            KeyType.P256 => EncodeECKey(privateKey, KeyDefinitions.Oids.P256, publicPoint),
-            KeyType.P384 => EncodeECKey(privateKey, KeyDefinitions.Oids.P384, publicPoint),
-            KeyType.P521 => EncodeECKey(privateKey, KeyDefinitions.Oids.P521, publicPoint),
-            KeyType.X25519 => EncodeCurve25519Key(privateKey.Span, KeyDefinitions.Oids.X25519),
-            KeyType.Ed25519 => EncodeCurve25519Key(privateKey.Span, KeyDefinitions.Oids.Ed25519),
+            KeyType.ECP256 => EncodeECKey(privateKey, Oids.ECP256, publicPoint),
+            KeyType.ECP384 => EncodeECKey(privateKey, Oids.ECP384, publicPoint),
+            KeyType.ECP521 => EncodeECKey(privateKey, Oids.ECP521, publicPoint),
+            KeyType.X25519 => EncodeCurve25519Key(privateKey.Span, Oids.X25519),
+            KeyType.Ed25519 => EncodeCurve25519Key(privateKey.Span, Oids.Ed25519),
             _ => throw new NotSupportedException($"Key type {keyType} is not supported for encoding.")
         };
     }
@@ -100,7 +100,7 @@ public static byte[] EncodeToPkcs8(RSAParameters parameters)
         writer.WriteInteger(0);
 
         _ = writer.PushSequence();
-        writer.WriteObjectIdentifier(KeyDefinitions.Oids.RSA);
+        writer.WriteObjectIdentifier(Oids.RSA);
         writer.WriteNull();
         writer.PopSequence();
 
@@ -116,9 +116,9 @@ public static byte[] EncodeToPkcs8(RSAParameters parameters)
     /// </summary>
     /// <param name="parameters">The EC parameters including private key value.</param>
     /// <returns>A byte array containing the ASN.1 DER encoded private key in PKCS#8 format.</returns>
+    /// <exception cref="ArgumentException">Thrown when the private key parameter D is null.</exception>
     public static byte[] EncodeToPkcs8(ECParameters parameters)
     {
-        // Ensure parameters include private key part
         if (parameters.D == null)
         {
             throw new ArgumentException("Private key parameter D must be provided.");
@@ -185,7 +185,7 @@ private static byte[] EncodeECKey(
 
         // Algorithm Identifier SEQUENCE
         _ = writer.PushSequence();
-        writer.WriteObjectIdentifier(KeyDefinitions.Oids.ECDSA);
+        writer.WriteObjectIdentifier(Oids.ECDSA);
         writer.WriteObjectIdentifier(curveOid);
         writer.PopSequence();
 
@@ -196,24 +196,24 @@ private static byte[] EncodeECKey(
         return writer.Encode();
     }
 
-    private static byte[] EncodeCurve25519Key(ReadOnlySpan<byte> privateKey, string curveOid)
+    private static byte[] EncodeCurve25519Key(ReadOnlySpan<byte> privateKey, string algorithmOid)
     {
         if (privateKey.Length != 32)
         {
             throw new ArgumentException("Curve25519 key must be 32 bytes.");
         }
 
-        if (curveOid == null)
+        if (algorithmOid == null)
         {
             throw new ArgumentException("Curve OID is null.");
         }
 
-        if (curveOid is not (KeyDefinitions.Oids.X25519 or KeyDefinitions.Oids.Ed25519))
+        if (!Oids.IsCurve25519Algorithm(algorithmOid))
         {
-            throw new ArgumentException("Curve OID is not supported.", nameof(curveOid));
+            throw new ArgumentException("Algorithm OID is not supported.", nameof(algorithmOid));
         }
 
-        if (curveOid == KeyDefinitions.Oids.X25519)
+        if (algorithmOid == Oids.X25519)
         {
             AsnUtilities.VerifyX25519PrivateKey(privateKey);
         }
@@ -229,14 +229,15 @@ private static byte[] EncodeCurve25519Key(ReadOnlySpan<byte> privateKey, string
 
         // Algorithm Identifier SEQUENCE
         _ = writer.PushSequence();
-        writer.WriteObjectIdentifier(curveOid);
+        writer.WriteObjectIdentifier(algorithmOid);
         writer.PopSequence();
 
         // PrivateKey as OCTET STRING
         var privateKeyWriter = new AsnWriter(AsnEncodingRules.DER);
         privateKeyWriter.WriteOctetString(privateKey);
-        ReadOnlySpan<byte> privateKeySpan = privateKeyWriter.Encode();
-        writer.WriteOctetString(privateKeySpan);
+        
+        using var privateKeyBytesHandle = new ZeroingMemoryHandle(privateKeyWriter.Encode());
+        writer.WriteOctetString(privateKeyBytesHandle.Data);
 
         // End PrivateKeyInfo SEQUENCE
         writer.PopSequence();
 
@@ -21,7 +21,7 @@ namespace Yubico.YubiKey.Cryptography;
 
 internal class AsnPublicKeyReader
 {
-    public static IPublicKeyParameters CreateKeyParameters(ReadOnlyMemory<byte> pkcs8EncodedKey)
+    public static IPublicKey CreateKey(ReadOnlyMemory<byte> pkcs8EncodedKey)
     {
         var reader = new AsnReader(pkcs8EncodedKey, AsnEncodingRules.DER);
         var seqSubjectPublicKeyInfo = reader.ReadSequence();
@@ -36,28 +36,28 @@ public static IPublicKeyParameters CreateKeyParameters(ReadOnlyMemory<byte> pkcs
 
         switch (oidAlgorithm)
         {
-            case KeyDefinitions.Oids.RSA:
+            case Oids.RSA:
                 {
                     if (seqAlgorithmIdentifier.HasData)
                     {
                         seqAlgorithmIdentifier.ReadNull();
                         seqAlgorithmIdentifier.ThrowIfNotEmpty();
                     }
 
-                    return CreateRSAPublicKeyParameters(subjectPublicKey);
+                    return CreateRSAPublicKey(subjectPublicKey);
                 }
-            case KeyDefinitions.Oids.ECDSA:
+            case Oids.ECDSA:
                 {
                     string oidCurve = seqAlgorithmIdentifier.ReadObjectIdentifier();
-                    return CreateECPublicKeyParameters(oidCurve, subjectPublicKey);
+                    return CreateECPublicKey(oidCurve, subjectPublicKey);
                 }
-            case KeyDefinitions.Oids.X25519:
+            case Oids.X25519:
                 {
-                    return Curve25519PublicKeyParameters.CreateFromValue(subjectPublicKey, KeyType.X25519);
+                    return Curve25519PublicKey.CreateFromValue(subjectPublicKey, KeyType.X25519);
                 }
-            case KeyDefinitions.Oids.Ed25519:
+            case Oids.Ed25519:
                 {
-                    return Curve25519PublicKeyParameters.CreateFromValue(subjectPublicKey, KeyType.Ed25519);
+                    return Curve25519PublicKey.CreateFromValue(subjectPublicKey, KeyType.Ed25519);
                 }
         }
 
@@ -67,7 +67,7 @@ public static IPublicKeyParameters CreateKeyParameters(ReadOnlyMemory<byte> pkcs
                 ExceptionMessages.UnsupportedAlgorithm));
     }
 
-    private static RSAPublicKeyParameters CreateRSAPublicKeyParameters(byte[] subjectPublicKey)
+    private static RSAPublicKey CreateRSAPublicKey(byte[] subjectPublicKey)
     {
         var subjectPublicKeyReader = new AsnReader(subjectPublicKey, AsnEncodingRules.DER);
         var seqSubjectPublicKey = subjectPublicKeyReader.ReadSequence();
@@ -84,13 +84,12 @@ private static RSAPublicKeyParameters CreateRSAPublicKeyParameters(byte[] subjec
             Exponent = exponent.ToArray()
         };
 
-        return RSAPublicKeyParameters.CreateFromParameters(rsaParameters);
+        return RSAPublicKey.CreateFromParameters(rsaParameters);
     }
 
-    private static ECPublicKeyParameters CreateECPublicKeyParameters(string curveOid, byte[] subjectPublicKey)
+    private static ECPublicKey CreateECPublicKey(string curveOid, byte[] subjectPublicKey)
     {
-        if (curveOid is not (KeyDefinitions.Oids.P256 or KeyDefinitions.Oids.P384
-            or KeyDefinitions.Oids.P521))
+        if (!Oids.IsECDsaCurve(curveOid))
         {
             throw new NotSupportedException(
                 string.Format(
@@ -106,6 +105,10 @@ private static ECPublicKeyParameters CreateECPublicKeyParameters(string curveOid
         }
 
         int coordinateSize = AsnUtilities.GetCoordinateSizeFromCurve(curveOid);
+        if (subjectPublicKey.Length != 1 + (2 * coordinateSize))
+        {
+            throw new CryptographicException("Invalid EC public key encoding");
+        }
         byte[] xCoordinate = new byte[coordinateSize];
         byte[] yCoordinate = new byte[coordinateSize];
 
@@ -124,6 +127,6 @@ private static ECPublicKeyParameters CreateECPublicKeyParameters(string curveOid
             }
         };
 
-        return ECPublicKeyParameters.CreateFromParameters(ecParams);
+        return ECPublicKey.CreateFromParameters(ecParams);
     }
 }
Original file line number	Diff line number	Diff line change
`@@ -116,10 +116,9 @@ public static TlvObject Parse(ReadOnlySpan<byte> data)`
`116`	`116`	`}`
`117`	`117`
`118`	`118`	`/// <inheritdoc cref="TlvObject.Parse(ReadOnlySpan{byte})"/>`
`119`		`- // public static TlvObject Parse(ReadOnlyMemory<byte> data) => Parse(data.Span);`
`120`		`-`
`121`	`119`	`public static bool TryParse(ReadOnlySpan<byte> data, [NotNullWhen(true)] out TlvObject? tlvObject)`
`122`	`120`	`{`
	`121`	`+ // Poor man's TryParse`
`123`	`122`	`tlvObject = null;`
`124`	`123`	`try`
`125`	`124`	`{`
Original file line number	Diff line number	Diff line change
`@@ -37,11 +37,11 @@ public static byte[] EncodeToPkcs8(`
`37`	`37`	`{`
`38`	`38`	`return keyType switch`
`39`	`39`	`{`
`40`		`- KeyType.P256 => EncodeECKey(privateKey, KeyDefinitions.Oids.P256, publicPoint),`
`41`		`- KeyType.P384 => EncodeECKey(privateKey, KeyDefinitions.Oids.P384, publicPoint),`
`42`		`- KeyType.P521 => EncodeECKey(privateKey, KeyDefinitions.Oids.P521, publicPoint),`
`43`		`- KeyType.X25519 => EncodeCurve25519Key(privateKey.Span, KeyDefinitions.Oids.X25519),`
`44`		`- KeyType.Ed25519 => EncodeCurve25519Key(privateKey.Span, KeyDefinitions.Oids.Ed25519),`
	`40`	`+ KeyType.ECP256 => EncodeECKey(privateKey, Oids.ECP256, publicPoint),`
	`41`	`+ KeyType.ECP384 => EncodeECKey(privateKey, Oids.ECP384, publicPoint),`
	`42`	`+ KeyType.ECP521 => EncodeECKey(privateKey, Oids.ECP521, publicPoint),`
	`43`	`+ KeyType.X25519 => EncodeCurve25519Key(privateKey.Span, Oids.X25519),`
	`44`	`+ KeyType.Ed25519 => EncodeCurve25519Key(privateKey.Span, Oids.Ed25519),`
`45`	`45`	`_ => throw new NotSupportedException($"Key type {keyType} is not supported for encoding.")`
`46`	`46`	`};`
`47`	`47`	`}`
`@@ -100,7 +100,7 @@ public static byte[] EncodeToPkcs8(RSAParameters parameters)`
`100`	`100`	`writer.WriteInteger(0);`
`101`	`101`
`102`	`102`	`_ = writer.PushSequence();`
`103`		`- writer.WriteObjectIdentifier(KeyDefinitions.Oids.RSA);`
	`103`	`+ writer.WriteObjectIdentifier(Oids.RSA);`
`104`	`104`	`writer.WriteNull();`
`105`	`105`	`writer.PopSequence();`
`106`	`106`
`@@ -116,9 +116,9 @@ public static byte[] EncodeToPkcs8(RSAParameters parameters)`
`116`	`116`	`/// </summary>`
`117`	`117`	`/// <param name="parameters">The EC parameters including private key value.</param>`
`118`	`118`	`/// <returns>A byte array containing the ASN.1 DER encoded private key in PKCS#8 format.</returns>`
	`119`	`+ /// <exception cref="ArgumentException">Thrown when the private key parameter D is null.</exception>`
`119`	`120`	`public static byte[] EncodeToPkcs8(ECParameters parameters)`
`120`	`121`	`{`
`121`		`- // Ensure parameters include private key part`
`122`	`122`	`if (parameters.D == null)`
`123`	`123`	`{`
`124`	`124`	`throw new ArgumentException("Private key parameter D must be provided.");`
`@@ -185,7 +185,7 @@ private static byte[] EncodeECKey(`
`185`	`185`
`186`	`186`	`// Algorithm Identifier SEQUENCE`
`187`	`187`	`_ = writer.PushSequence();`
`188`		`- writer.WriteObjectIdentifier(KeyDefinitions.Oids.ECDSA);`
	`188`	`+ writer.WriteObjectIdentifier(Oids.ECDSA);`
`189`	`189`	`writer.WriteObjectIdentifier(curveOid);`
`190`	`190`	`writer.PopSequence();`
`191`	`191`
`@@ -196,24 +196,24 @@ private static byte[] EncodeECKey(`
`196`	`196`	`return writer.Encode();`
`197`	`197`	`}`
`198`	`198`
`199`		`- private static byte[] EncodeCurve25519Key(ReadOnlySpan<byte> privateKey, string curveOid)`
	`199`	`+ private static byte[] EncodeCurve25519Key(ReadOnlySpan<byte> privateKey, string algorithmOid)`
`200`	`200`	`{`
`201`	`201`	`if (privateKey.Length != 32)`
`202`	`202`	`{`
`203`	`203`	`throw new ArgumentException("Curve25519 key must be 32 bytes.");`
`204`	`204`	`}`
`205`	`205`
`206`		`- if (curveOid == null)`
	`206`	`+ if (algorithmOid == null)`
`207`	`207`	`{`
`208`	`208`	`throw new ArgumentException("Curve OID is null.");`
`209`	`209`	`}`
`210`	`210`
`211`		`- if (curveOid is not (KeyDefinitions.Oids.X25519 or KeyDefinitions.Oids.Ed25519))`
	`211`	`+ if (!Oids.IsCurve25519Algorithm(algorithmOid))`
`212`	`212`	`{`
`213`		`- throw new ArgumentException("Curve OID is not supported.", nameof(curveOid));`
	`213`	`+ throw new ArgumentException("Algorithm OID is not supported.", nameof(algorithmOid));`
`214`	`214`	`}`
`215`	`215`
`216`		`- if (curveOid == KeyDefinitions.Oids.X25519)`
	`216`	`+ if (algorithmOid == Oids.X25519)`
`217`	`217`	`{`
`218`	`218`	`AsnUtilities.VerifyX25519PrivateKey(privateKey);`
`219`	`219`	`}`
`@@ -229,14 +229,15 @@ private static byte[] EncodeCurve25519Key(ReadOnlySpan<byte> privateKey, string`
`229`	`229`
`230`	`230`	`// Algorithm Identifier SEQUENCE`
`231`	`231`	`_ = writer.PushSequence();`
`232`		`- writer.WriteObjectIdentifier(curveOid);`
	`232`	`+ writer.WriteObjectIdentifier(algorithmOid);`
`233`	`233`	`writer.PopSequence();`
`234`	`234`
`235`	`235`	`// PrivateKey as OCTET STRING`
`236`	`236`	`var privateKeyWriter = new AsnWriter(AsnEncodingRules.DER);`
`237`	`237`	`privateKeyWriter.WriteOctetString(privateKey);`
`238`		`- ReadOnlySpan<byte> privateKeySpan = privateKeyWriter.Encode();`
`239`		`- writer.WriteOctetString(privateKeySpan);`
	`238`	`+`
	`239`	`+ using var privateKeyBytesHandle = new ZeroingMemoryHandle(privateKeyWriter.Encode());`
	`240`	`+ writer.WriteOctetString(privateKeyBytesHandle.Data);`
`240`	`241`
`241`	`242`	`// End PrivateKeyInfo SEQUENCE`
`242`	`243`	`writer.PopSequence();`
Original file line number	Diff line number	Diff line change
`@@ -21,7 +21,7 @@ namespace Yubico.YubiKey.Cryptography;`
`21`	`21`
`22`	`22`	`internal class AsnPublicKeyReader`
`23`	`23`	`{`
`24`		`- public static IPublicKeyParameters CreateKeyParameters(ReadOnlyMemory<byte> pkcs8EncodedKey)`
	`24`	`+ public static IPublicKey CreateKey(ReadOnlyMemory<byte> pkcs8EncodedKey)`
`25`	`25`	`{`
`26`	`26`	`var reader = new AsnReader(pkcs8EncodedKey, AsnEncodingRules.DER);`
`27`	`27`	`var seqSubjectPublicKeyInfo = reader.ReadSequence();`
`@@ -36,28 +36,28 @@ public static IPublicKeyParameters CreateKeyParameters(ReadOnlyMemory<byte> pkcs`
`36`	`36`
`37`	`37`	`switch (oidAlgorithm)`
`38`	`38`	`{`
`39`		`- case KeyDefinitions.Oids.RSA:`
	`39`	`+ case Oids.RSA:`
`40`	`40`	`{`
`41`	`41`	`if (seqAlgorithmIdentifier.HasData)`
`42`	`42`	`{`
`43`	`43`	`seqAlgorithmIdentifier.ReadNull();`
`44`	`44`	`seqAlgorithmIdentifier.ThrowIfNotEmpty();`
`45`	`45`	`}`
`46`	`46`
`47`		`- return CreateRSAPublicKeyParameters(subjectPublicKey);`
	`47`	`+ return CreateRSAPublicKey(subjectPublicKey);`
`48`	`48`	`}`
`49`		`- case KeyDefinitions.Oids.ECDSA:`
	`49`	`+ case Oids.ECDSA:`
`50`	`50`	`{`
`51`	`51`	`string oidCurve = seqAlgorithmIdentifier.ReadObjectIdentifier();`
`52`		`- return CreateECPublicKeyParameters(oidCurve, subjectPublicKey);`
	`52`	`+ return CreateECPublicKey(oidCurve, subjectPublicKey);`
`53`	`53`	`}`
`54`		`- case KeyDefinitions.Oids.X25519:`
	`54`	`+ case Oids.X25519:`
`55`	`55`	`{`
`56`		`- return Curve25519PublicKeyParameters.CreateFromValue(subjectPublicKey, KeyType.X25519);`
	`56`	`+ return Curve25519PublicKey.CreateFromValue(subjectPublicKey, KeyType.X25519);`
`57`	`57`	`}`
`58`		`- case KeyDefinitions.Oids.Ed25519:`
	`58`	`+ case Oids.Ed25519:`
`59`	`59`	`{`
`60`		`- return Curve25519PublicKeyParameters.CreateFromValue(subjectPublicKey, KeyType.Ed25519);`
	`60`	`+ return Curve25519PublicKey.CreateFromValue(subjectPublicKey, KeyType.Ed25519);`
`61`	`61`	`}`
`62`	`62`	`}`
`63`	`63`
`@@ -67,7 +67,7 @@ public static IPublicKeyParameters CreateKeyParameters(ReadOnlyMemory<byte> pkcs`
`67`	`67`	`ExceptionMessages.UnsupportedAlgorithm));`
`68`	`68`	`}`
`69`	`69`
`70`		`- private static RSAPublicKeyParameters CreateRSAPublicKeyParameters(byte[] subjectPublicKey)`
	`70`	`+ private static RSAPublicKey CreateRSAPublicKey(byte[] subjectPublicKey)`
`71`	`71`	`{`
`72`	`72`	`var subjectPublicKeyReader = new AsnReader(subjectPublicKey, AsnEncodingRules.DER);`
`73`	`73`	`var seqSubjectPublicKey = subjectPublicKeyReader.ReadSequence();`
`@@ -84,13 +84,12 @@ private static RSAPublicKeyParameters CreateRSAPublicKeyParameters(byte[] subjec`
`84`	`84`	`Exponent = exponent.ToArray()`
`85`	`85`	`};`
`86`	`86`
`87`		`- return RSAPublicKeyParameters.CreateFromParameters(rsaParameters);`
	`87`	`+ return RSAPublicKey.CreateFromParameters(rsaParameters);`
`88`	`88`	`}`
`89`	`89`
`90`		`- private static ECPublicKeyParameters CreateECPublicKeyParameters(string curveOid, byte[] subjectPublicKey)`
	`90`	`+ private static ECPublicKey CreateECPublicKey(string curveOid, byte[] subjectPublicKey)`
`91`	`91`	`{`
`92`		`- if (curveOid is not (KeyDefinitions.Oids.P256 or KeyDefinitions.Oids.P384`
`93`		`- or KeyDefinitions.Oids.P521))`
	`92`	`+ if (!Oids.IsECDsaCurve(curveOid))`
`94`	`93`	`{`
`95`	`94`	`throw new NotSupportedException(`
`96`	`95`	`string.Format(`
`@@ -106,6 +105,10 @@ private static ECPublicKeyParameters CreateECPublicKeyParameters(string curveOid`
`106`	`105`	`}`
`107`	`106`
`108`	`107`	`int coordinateSize = AsnUtilities.GetCoordinateSizeFromCurve(curveOid);`
	`108`	`+ if (subjectPublicKey.Length != 1 + (2 * coordinateSize))`
	`109`	`+ {`
	`110`	`+ throw new CryptographicException("Invalid EC public key encoding");`
	`111`	`+ }`
`109`	`112`	`byte[] xCoordinate = new byte[coordinateSize];`
`110`	`113`	`byte[] yCoordinate = new byte[coordinateSize];`
`111`	`114`
`@@ -124,6 +127,6 @@ private static ECPublicKeyParameters CreateECPublicKeyParameters(string curveOid`
`124`	`127`	`}`
`125`	`128`	`};`
`126`	`129`
`127`		`- return ECPublicKeyParameters.CreateFromParameters(ecParams);`
	`130`	`+ return ECPublicKey.CreateFromParameters(ecParams);`
`128`	`131`	`}`
`129`	`132`	`}`