tests: fix testkeys loading legacy pivprivatekeys

DennisDyallo · DennisDyallo · commit 3d816f3328c7 · 2025-04-07T12:05:59.000+02:00
diff --git a/Yubico.YubiKey/tests/unit/Yubico/YubiKey/Piv/PivPublicKeyTests.cs b/Yubico.YubiKey/tests/unit/Yubico/YubiKey/Piv/PivPublicKeyTests.cs
@@ -49,7 +49,7 @@ public void Create_ReturnsPivPublicKey(
         {
             ReadOnlyMemory<byte> keyData = GetKeyData(keyType);
 
-            var keyObject = PivPublicKey.Create(keyData);
+            var keyObject = PivPublicKey.Create(keyData, keyType.GetPivAlgorithm());
 
             Assert.True(keyObject is PivPublicKey);
         }
@@ -64,7 +64,7 @@ public void Create_SetsAlgorithmCorrectly(
         {
             ReadOnlyMemory<byte> keyData = GetKeyData(keyType);
 
-            var keyObject = PivPublicKey.Create(keyData);
+            var keyObject = PivPublicKey.Create(keyData, keyType.GetPivAlgorithm());
 
             Assert.NotNull(keyObject);
             Assert.Equal(keyType.GetPivAlgorithm(), keyObject.Algorithm);
@@ -81,7 +81,7 @@ public void Create_SetsEncodedCorrectly(
             ReadOnlyMemory<byte> keyData = GetKeyData(keyType);
             ReadOnlyMemory<byte> encoding = GetCorrectEncoding(keyType);
 
-            var keyObject = PivPublicKey.Create(keyData);
+            var keyObject = PivPublicKey.Create(keyData, keyType.GetPivAlgorithm());
             Assert.NotNull(keyObject);
 
             ReadOnlyMemory<byte> getKeyData = keyObject.PivEncodedPublicKey;
@@ -101,7 +101,7 @@ public void Create_SetsMetadataEncodedCorrectly(
             ReadOnlyMemory<byte> keyData = GetKeyData(keyType);
             ReadOnlyMemory<byte> encoding = GetCorrectMetadataEncoding(keyType);
 
-            var keyObject = PivPublicKey.Create(keyData);
+            var keyObject = PivPublicKey.Create(keyData, keyType.GetPivAlgorithm());
             Assert.NotNull(keyObject);
 
             ReadOnlyMemory<byte> getKeyData = keyObject.YubiKeyEncodedPublicKey;
@@ -120,7 +120,7 @@ public void CreateRsa_SetsModulusCorrectly(
             ReadOnlyMemory<byte> keyData = GetKeyData(keyType);
             ReadOnlyMemory<byte> modulus = GetModulus(keyType);
 
-            var keyObject = PivPublicKey.Create(keyData);
+            var keyObject = PivPublicKey.Create(keyData, keyType.GetPivAlgorithm());
 
             Assert.NotNull(keyObject);
             Assert.True(keyObject is PivRsaPublicKey);
@@ -145,7 +145,7 @@ public void CreateRsa_SetsExponentCorrectly(
             ReadOnlyMemory<byte> keyData = SampleKeyPairs.GetPivPublicKey(keyType).PivEncodedPublicKey;
             ReadOnlyMemory<byte> exponent = GetExponent();
 
-            var keyObject = PivPublicKey.Create(keyData);
+            var keyObject = PivPublicKey.Create(keyData, keyType.GetPivAlgorithm());
 
             Assert.NotNull(keyObject);
             Assert.True(keyObject is PivRsaPublicKey);
@@ -168,7 +168,7 @@ public void CreateEcc_SetsPublicPointCorrectly(
             ReadOnlyMemory<byte> keyData = GetKeyData(keyType);
             ReadOnlyMemory<byte> publicPoint = GetPoint(keyType);
 
-            var keyObject = PivPublicKey.Create(keyData);
+            var keyObject = PivPublicKey.Create(keyData, keyType.GetPivAlgorithm());
 
             Assert.NotNull(keyObject);
             Assert.True(keyObject is PivEccPublicKey);
@@ -224,23 +224,23 @@ public void EccConstructor_Components_BuildsEncoding(
         [Fact]
         public void Create_NullData_ThrowsException()
         {
-            _ = Assert.Throws<ArgumentException>(() => PivPublicKey.Create(null));
+            _ = Assert.Throws<ArgumentException>(() => PivPublicKey.Create(null, PivAlgorithm.EccP256));
         }
 
         [Fact]
         public void Create_BadTag_ThrowsExcpetion()
         {
             Memory<byte> keyData = GetKeyData(KeyType.P256);
             keyData.Span[0] = 0x84;
-            _ = Assert.Throws<ArgumentException>(() => PivPublicKey.Create(keyData));
+            _ = Assert.Throws<ArgumentException>(() => PivPublicKey.Create(keyData, KeyType.P256.GetPivAlgorithm()));
         }
 
         [Fact]
         public void Rsa_NoExpo_ThrowsExcpetion()
         {
             Memory<byte> keyData = GetKeyData(KeyType.RSA1024);
             Memory<byte> badData = keyData.Slice(keyData.Length - 6);
-            _ = Assert.Throws<ArgumentException>(() => PivPublicKey.Create(badData));
+            _ = Assert.Throws<ArgumentException>(() => PivPublicKey.Create(badData, PivAlgorithm.Rsa1024));
         }
 
         [Theory]
@@ -250,7 +250,7 @@ public void RsaConstructor_BadMod_ThrowsExcpetion(
             KeyType keyType)
         {
             Memory<byte> keyData = GetBadEncoding(keyType);
-            _ = Assert.Throws<ArgumentException>(() => PivPublicKey.Create(keyData));
+            _ = Assert.Throws<ArgumentException>(() => PivPublicKey.Create(keyData, keyType.GetPivAlgorithm()));
         }
 
         [Fact]
@@ -275,7 +275,7 @@ public void EccConstructor_BadPoint_ThrowsExcpetion(
             KeyType keyType)
         {
             Memory<byte> keyData = GetBadEncoding(keyType);
-            _ = Assert.Throws<ArgumentException>(() => PivPublicKey.Create(keyData));
+            _ = Assert.Throws<ArgumentException>(() => PivPublicKey.Create(keyData, keyType.GetPivAlgorithm()));
         }
 
         private static Memory<byte> GetModulus(
diff --git a/Yubico.YubiKey/tests/utilities/Yubico/YubiKey/TestUtilities/KeyConverter.cs b/Yubico.YubiKey/tests/utilities/Yubico/YubiKey/TestUtilities/KeyConverter.cs
@@ -150,7 +150,7 @@ public KeyConverter(
         {
             if (pivPublicKey.Algorithm != PivAlgorithm.None)
             {
-                _pivPublicKey = PivPublicKey.Create(pivPublicKey.PivEncodedPublicKey);
+                _pivPublicKey = PivPublicKey.Create(pivPublicKey.PivEncodedPublicKey, pivPublicKey.Algorithm);
             }
 
             SetProperties(true);
@@ -169,7 +169,7 @@ public KeyConverter(
         {
             if (pivPrivateKey.Algorithm != PivAlgorithm.None)
             {
-                _pivPrivateKey = PivPrivateKey.Create(pivPrivateKey.EncodedPrivateKey);
+                _pivPrivateKey = PivPrivateKey.Create(pivPrivateKey.EncodedPrivateKey, pivPrivateKey.Algorithm);
             }
 
             SetProperties(true);
@@ -348,17 +348,9 @@ public bool IsKeyAvailable(
         // an ECC private key.
         public PivPublicKey GetPivPublicKey()
         {
-            // if (_pivPublicKey.Algorithm == PivAlgorithm.EccX25519)
-            // {
-            //     var testPublicKey = TestKeys.GetPublicKey(_pivPublicKey.Algorithm);
-            //     var last32Bytes = testPublicKey.KeyBytes.AsSpan()[^32..];
-            //     var pivPublicKey = new PivEccPublicKey(last32Bytes, KeyType.Ed25519);
-            //     return pivPublicKey;
-            // }
-
             if (_pivPublicKey.Algorithm != PivAlgorithm.None)
             {
-                return PivPublicKey.Create(_pivPublicKey.PivEncodedPublicKey);
+                return PivPublicKey.Create(_pivPublicKey.PivEncodedPublicKey, Algorithm);
             }
 
             if (_pivPrivateKey.Algorithm == PivAlgorithm.Rsa1024 || _pivPrivateKey.Algorithm == PivAlgorithm.Rsa2048)
@@ -424,7 +416,7 @@ public PivPrivateKey GetPivPrivateKey()
 
             if (_pivPrivateKey.Algorithm != PivAlgorithm.None)
             {
-                return PivPrivateKey.Create(_pivPrivateKey.EncodedPrivateKey);
+                return PivPrivateKey.Create(_pivPrivateKey.EncodedPrivateKey, _pivPrivateKey.Algorithm);
             }
 
             throw new InvalidOperationException(
diff --git a/Yubico.YubiKey/tests/utilities/Yubico/YubiKey/TestUtilities/TestKeyExtensions.cs b/Yubico.YubiKey/tests/utilities/Yubico/YubiKey/TestUtilities/TestKeyExtensions.cs
@@ -10,28 +10,28 @@ public static class TestKeyExtensions
         /// Converts the key to a PIV private key format.
         /// </summary>
         /// <returns>PivPrivateKey instance</returns>
-        public static PivPrivateKey AsPivPrivateKey( // now we can renmove the parser reader classes
+        public static PivPrivateKey AsPivPrivateKey(
             this TestKey key)
         {
             var keyDefinition = key.KeyDefinition;
             if (keyDefinition.IsRsaKey)
             {
                 var rsaPrivateKey = RSAPrivateKeyParameters.CreateFromPkcs8(key.EncodedKey);
                 var rsaPivEncodedKey = rsaPrivateKey.ToPivEncodedPrivateKey();
-                return PivPrivateKey.Create(rsaPivEncodedKey);
+                return PivPrivateKey.Create(rsaPivEncodedKey, keyDefinition.KeyType.GetPivAlgorithm());
             }
 
             if (keyDefinition is { IsEcKey: true, AlgorithmOid: KeyDefinitions.CryptoOids.ECDSA })
             {
                 var ecPrivateKey = ECPrivateKeyParameters.CreateFromPkcs8(key.EncodedKey);
                 var ecPivEncodedKey = ecPrivateKey.ToPivEncodedPrivateKey();
-                return PivPrivateKey.Create(ecPivEncodedKey);
+                return PivPrivateKey.Create(ecPivEncodedKey, keyDefinition.KeyType.GetPivAlgorithm());
             }
 
             // Curve25519
             var cvPrivateKey = Curve25519PrivateKeyParameters.CreateFromPkcs8(key.EncodedKey);
             var cvPivEncodedKey = cvPrivateKey.ToPivEncodedPrivateKey();
-            return PivPrivateKey.Create(cvPivEncodedKey);
+            return PivPrivateKey.Create(cvPivEncodedKey, keyDefinition.KeyType.GetPivAlgorithm());
         }
 
         /// <summary>
@@ -46,14 +46,14 @@ public static PivPublicKey AsPivPublicKey(
             {
                 var rsaPublicKey = RSAPublicKeyParameters.CreateFromPkcs8(key.EncodedKey);
                 var rsaPivEncodedKey = rsaPublicKey.ToPivEncodedPublicKey();
-                return PivPublicKey.Create(rsaPivEncodedKey);
+                return PivPublicKey.Create(rsaPivEncodedKey, key.KeyType.GetPivAlgorithm());
             }
 
             if (keyDefinition is { IsEcKey: true, AlgorithmOid: KeyDefinitions.CryptoOids.ECDSA })
             {
                 var ecPublicKey = ECPublicKeyParameters.CreateFromPkcs8(key.EncodedKey);
                 var ecPivEncodedKey = ecPublicKey.ToPivEncodedPublicKey();
-                return PivPublicKey.Create(ecPivEncodedKey);
+                return PivPublicKey.Create(ecPivEncodedKey, key.KeyType.GetPivAlgorithm());
             }
 
             // Curve25519
diff --git a/Yubico.YubiKey/tests/utilities/Yubico/YubiKey/TestUtilities/TestKeys.cs b/Yubico.YubiKey/tests/utilities/Yubico/YubiKey/TestUtilities/TestKeys.cs
@@ -291,7 +291,7 @@ public static TestKey GetTestPrivateKey(
         public static TestKey GetTestPrivateKey(
             PivAlgorithm algorithm) => GetTestPrivateKey(algorithm.GetKeyType());
 
-        public static (TestKey publicKey, TestKey privateKey) GetKeyPair(
+        public static (TestKey testPublicKey, TestKey testPrivateKey) GetKeyPair(
             KeyType keyType) => (GetTestPublicKey(keyType), GetTestPrivateKey(keyType));
 
 

Original file line number	Diff line number	Diff line change
`@@ -150,7 +150,7 @@ public KeyConverter(`
`150`	`150`	`{`
`151`	`151`	`if (pivPublicKey.Algorithm != PivAlgorithm.None)`
`152`	`152`	`{`
`153`		`- _pivPublicKey = PivPublicKey.Create(pivPublicKey.PivEncodedPublicKey);`
	`153`	`+ _pivPublicKey = PivPublicKey.Create(pivPublicKey.PivEncodedPublicKey, pivPublicKey.Algorithm);`
`154`	`154`	`}`
`155`	`155`
`156`	`156`	`SetProperties(true);`
`@@ -169,7 +169,7 @@ public KeyConverter(`
`169`	`169`	`{`
`170`	`170`	`if (pivPrivateKey.Algorithm != PivAlgorithm.None)`
`171`	`171`	`{`
`172`		`- _pivPrivateKey = PivPrivateKey.Create(pivPrivateKey.EncodedPrivateKey);`
	`172`	`+ _pivPrivateKey = PivPrivateKey.Create(pivPrivateKey.EncodedPrivateKey, pivPrivateKey.Algorithm);`
`173`	`173`	`}`
`174`	`174`
`175`	`175`	`SetProperties(true);`
`@@ -348,17 +348,9 @@ public bool IsKeyAvailable(`
`348`	`348`	`// an ECC private key.`
`349`	`349`	`public PivPublicKey GetPivPublicKey()`
`350`	`350`	`{`
`351`		`- // if (_pivPublicKey.Algorithm == PivAlgorithm.EccX25519)`
`352`		`- // {`
`353`		`- // var testPublicKey = TestKeys.GetPublicKey(_pivPublicKey.Algorithm);`
`354`		`- // var last32Bytes = testPublicKey.KeyBytes.AsSpan()[^32..];`
`355`		`- // var pivPublicKey = new PivEccPublicKey(last32Bytes, KeyType.Ed25519);`
`356`		`- // return pivPublicKey;`
`357`		`- // }`
`358`		`-`
`359`	`351`	`if (_pivPublicKey.Algorithm != PivAlgorithm.None)`
`360`	`352`	`{`
`361`		`- return PivPublicKey.Create(_pivPublicKey.PivEncodedPublicKey);`
	`353`	`+ return PivPublicKey.Create(_pivPublicKey.PivEncodedPublicKey, Algorithm);`
`362`	`354`	`}`
`363`	`355`
`364`	`356`	`if (_pivPrivateKey.Algorithm == PivAlgorithm.Rsa1024 \|\| _pivPrivateKey.Algorithm == PivAlgorithm.Rsa2048)`
`@@ -424,7 +416,7 @@ public PivPrivateKey GetPivPrivateKey()`
`424`	`416`
`425`	`417`	`if (_pivPrivateKey.Algorithm != PivAlgorithm.None)`
`426`	`418`	`{`
`427`		`- return PivPrivateKey.Create(_pivPrivateKey.EncodedPrivateKey);`
	`419`	`+ return PivPrivateKey.Create(_pivPrivateKey.EncodedPrivateKey, _pivPrivateKey.Algorithm);`
`428`	`420`	`}`
`429`	`421`
`430`	`422`	`throw new InvalidOperationException(`
Original file line number	Diff line number	Diff line change
`@@ -10,28 +10,28 @@ public static class TestKeyExtensions`
`10`	`10`	`/// Converts the key to a PIV private key format.`
`11`	`11`	`/// </summary>`
`12`	`12`	`/// <returns>PivPrivateKey instance</returns>`
`13`		`- public static PivPrivateKey AsPivPrivateKey( // now we can renmove the parser reader classes`
	`13`	`+ public static PivPrivateKey AsPivPrivateKey(`
`14`	`14`	`this TestKey key)`
`15`	`15`	`{`
`16`	`16`	`var keyDefinition = key.KeyDefinition;`
`17`	`17`	`if (keyDefinition.IsRsaKey)`
`18`	`18`	`{`
`19`	`19`	`var rsaPrivateKey = RSAPrivateKeyParameters.CreateFromPkcs8(key.EncodedKey);`
`20`	`20`	`var rsaPivEncodedKey = rsaPrivateKey.ToPivEncodedPrivateKey();`
`21`		`- return PivPrivateKey.Create(rsaPivEncodedKey);`
	`21`	`+ return PivPrivateKey.Create(rsaPivEncodedKey, keyDefinition.KeyType.GetPivAlgorithm());`
`22`	`22`	`}`
`23`	`23`
`24`	`24`	`if (keyDefinition is { IsEcKey: true, AlgorithmOid: KeyDefinitions.CryptoOids.ECDSA })`
`25`	`25`	`{`
`26`	`26`	`var ecPrivateKey = ECPrivateKeyParameters.CreateFromPkcs8(key.EncodedKey);`
`27`	`27`	`var ecPivEncodedKey = ecPrivateKey.ToPivEncodedPrivateKey();`
`28`		`- return PivPrivateKey.Create(ecPivEncodedKey);`
	`28`	`+ return PivPrivateKey.Create(ecPivEncodedKey, keyDefinition.KeyType.GetPivAlgorithm());`
`29`	`29`	`}`
`30`	`30`
`31`	`31`	`// Curve25519`
`32`	`32`	`var cvPrivateKey = Curve25519PrivateKeyParameters.CreateFromPkcs8(key.EncodedKey);`
`33`	`33`	`var cvPivEncodedKey = cvPrivateKey.ToPivEncodedPrivateKey();`
`34`		`- return PivPrivateKey.Create(cvPivEncodedKey);`
	`34`	`+ return PivPrivateKey.Create(cvPivEncodedKey, keyDefinition.KeyType.GetPivAlgorithm());`
`35`	`35`	`}`
`36`	`36`
`37`	`37`	`/// <summary>`
`@@ -46,14 +46,14 @@ public static PivPublicKey AsPivPublicKey(`
`46`	`46`	`{`
`47`	`47`	`var rsaPublicKey = RSAPublicKeyParameters.CreateFromPkcs8(key.EncodedKey);`
`48`	`48`	`var rsaPivEncodedKey = rsaPublicKey.ToPivEncodedPublicKey();`
`49`		`- return PivPublicKey.Create(rsaPivEncodedKey);`
	`49`	`+ return PivPublicKey.Create(rsaPivEncodedKey, key.KeyType.GetPivAlgorithm());`
`50`	`50`	`}`
`51`	`51`
`52`	`52`	`if (keyDefinition is { IsEcKey: true, AlgorithmOid: KeyDefinitions.CryptoOids.ECDSA })`
`53`	`53`	`{`
`54`	`54`	`var ecPublicKey = ECPublicKeyParameters.CreateFromPkcs8(key.EncodedKey);`
`55`	`55`	`var ecPivEncodedKey = ecPublicKey.ToPivEncodedPublicKey();`
`56`		`- return PivPublicKey.Create(ecPivEncodedKey);`
	`56`	`+ return PivPublicKey.Create(ecPivEncodedKey, key.KeyType.GetPivAlgorithm());`
`57`	`57`	`}`
`58`	`58`
`59`	`59`	`// Curve25519`