separate impl

DeagleGross · DeagleGross · commit 0e1dfd681a0c · 2025-08-02T11:22:29.000+02:00
diff --git a/src/DataProtection/DataProtection/src/KeyManagement/KeyRingBasedDataProtector.cs b/src/DataProtection/DataProtection/src/KeyManagement/KeyRingBasedDataProtector.cs
@@ -2,19 +2,22 @@
 // The .NET Foundation licenses this file to you under the MIT license.
 
 using System;
-using System.Buffers;
 using System.Buffers.Binary;
+using System.Buffers;
 using System.Collections.Generic;
 using System.Diagnostics;
+using System.Diagnostics.CodeAnalysis;
+using System.IO;
 using System.Linq;
 using System.Runtime.CompilerServices;
 using System.Threading;
 using Microsoft.AspNetCore.Cryptography;
 using Microsoft.AspNetCore.DataProtection.AuthenticatedEncryption;
-using Microsoft.AspNetCore.DataProtection.Internal;
 using Microsoft.AspNetCore.DataProtection.KeyManagement.Internal;
 using Microsoft.AspNetCore.Shared;
 using Microsoft.Extensions.Logging;
+using System.Buffers.Text;
+using Microsoft.AspNetCore.DataProtection.Internal;
 
 namespace Microsoft.AspNetCore.DataProtection.KeyManagement;
 
@@ -26,13 +29,12 @@ internal unsafe class KeyRingBasedDataProtector : IDataProtector, IPersistedData
     // can never appear in a well-formed UTF8 sequence, so attempts to treat a protected payload as a
     // UTF8-encoded string will fail, and devs can catch the mistake early.
     protected const uint MAGIC_HEADER_V0 = 0x09F0C9F0;
+    protected static readonly int _magicHeaderKeyIdSize = sizeof(uint) + sizeof(Guid);
 
     protected AdditionalAuthenticatedDataTemplate _aadTemplate;
     protected readonly IKeyRingProvider _keyRingProvider;
     protected readonly ILogger? _logger;
 
-    protected static readonly int _magicHeaderKeyIdSize = sizeof(uint) + sizeof(Guid);
-
     public KeyRingBasedDataProtector(IKeyRingProvider keyRingProvider, ILogger? logger, string[]? originalPurposes, string newPurpose)
     {
         Debug.Assert(keyRingProvider != null);
@@ -45,9 +47,6 @@ public KeyRingBasedDataProtector(IKeyRingProvider keyRingProvider, ILogger? logg
 
     internal string[] Purposes { get; }
 
-    protected IKeyRingProvider KeyRingProvider => _keyRingProvider;
-    protected ILogger? Logger => _logger;
-
     private static string[] ConcatPurposes(string[]? originalPurposes, string newPurpose)
     {
         if (originalPurposes != null && originalPurposes.Length > 0)
@@ -68,8 +67,8 @@ public virtual IDataProtector CreateProtector(string purpose)
         ArgumentNullThrowHelper.ThrowIfNull(purpose);
 
         return new KeyRingBasedDataProtector(
-            logger: Logger,
-            keyRingProvider: KeyRingProvider,
+            logger: _logger,
+            keyRingProvider: _keyRingProvider,
             originalPurposes: Purposes,
             newPurpose: purpose);
     }
@@ -79,31 +78,39 @@ protected static string JoinPurposesForLog(IEnumerable<string> purposes)
         return "(" + String.Join(", ", purposes.Select(p => "'" + p + "'")) + ")";
     }
 
-    protected byte[] GetAadForKey(Guid keyId, bool isProtecting)
+    // allows decrypting payloads whose keys have been revoked
+    public byte[] DangerousUnprotect(byte[] protectedData, bool ignoreRevocationErrors, out bool requiresMigration, out bool wasRevoked)
     {
-        return _aadTemplate.GetAadForKey(keyId, isProtecting);
+        // argument & state checking
+        ArgumentNullThrowHelper.ThrowIfNull(protectedData);
+
+        UnprotectStatus status;
+        var retVal = UnprotectCore(protectedData, ignoreRevocationErrors, status: out status);
+        requiresMigration = (status != UnprotectStatus.Ok);
+        wasRevoked = (status == UnprotectStatus.DecryptionKeyWasRevoked);
+        return retVal;
     }
 
-    protected byte[] ProtectCore(byte[] plaintext)
+    public byte[] Protect(byte[] plaintext)
     {
         ArgumentNullThrowHelper.ThrowIfNull(plaintext);
 
         try
         {
             // Perform the encryption operation using the current default encryptor.
-            var currentKeyRing = KeyRingProvider.GetCurrentKeyRing();
+            var currentKeyRing = _keyRingProvider.GetCurrentKeyRing();
             var defaultKeyId = currentKeyRing.DefaultKeyId;
             var defaultEncryptorInstance = currentKeyRing.DefaultAuthenticatedEncryptor;
             CryptoUtil.Assert(defaultEncryptorInstance != null, "defaultEncryptorInstance != null");
 
-            if (Logger.IsDebugLevelEnabled())
+            if (_logger.IsDebugLevelEnabled())
             {
-                Logger.PerformingProtectOperationToKeyWithPurposes(defaultKeyId, JoinPurposesForLog(Purposes));
+                _logger.PerformingProtectOperationToKeyWithPurposes(defaultKeyId, JoinPurposesForLog(Purposes));
             }
 
             // We'll need to apply the default key id to the template if it hasn't already been applied.
             // If the default key id has been updated since the last call to Protect, also write back the updated template.
-            var aad = GetAadForKey(defaultKeyId, isProtecting: true);
+            var aad = _aadTemplate.GetAadForKey(defaultKeyId, isProtecting: true);
 
             // We allocate a 20-byte pre-buffer so that we can inject the magic header and key id into the return value.
             var retVal = defaultEncryptorInstance.Encrypt(
@@ -134,29 +141,54 @@ protected byte[] ProtectCore(byte[] plaintext)
         }
     }
 
-    protected byte[] UnprotectCore(byte[] protectedData)
+    private static Guid ReadGuid(void* ptr)
     {
-        ArgumentNullThrowHelper.ThrowIfNull(protectedData);
+#if NETCOREAPP
+        // Performs appropriate endianness fixups
+        return new Guid(new ReadOnlySpan<byte>(ptr, sizeof(Guid)));
+#elif NETSTANDARD2_0 || NETFRAMEWORK
+        Debug.Assert(BitConverter.IsLittleEndian);
+        return Unsafe.ReadUnaligned<Guid>(ptr);
+#else
+#error Update target frameworks
+#endif
+    }
 
-        // Argument checking will be done by the callee
-        UnprotectStatus status;
-        var retVal = UnprotectCoreInternal(protectedData, allowOperationsOnRevokedKeys: false, status: out status);
-        return retVal;
+    private static uint ReadBigEndian32BitInteger(byte* ptr)
+    {
+        return ((uint)ptr[0] << 24)
+            | ((uint)ptr[1] << 16)
+            | ((uint)ptr[2] << 8)
+            | ((uint)ptr[3]);
     }
 
-    protected byte[] DangerousUnprotectCore(byte[] protectedData, bool ignoreRevocationErrors, out bool requiresMigration, out bool wasRevoked)
+    private static bool TryGetVersionFromMagicHeader(uint magicHeader, out int version)
+    {
+        const uint MAGIC_HEADER_VERSION_MASK = 0xFU;
+        if ((magicHeader & ~MAGIC_HEADER_VERSION_MASK) == MAGIC_HEADER_V0)
+        {
+            version = (int)(magicHeader & MAGIC_HEADER_VERSION_MASK);
+            return true;
+        }
+        else
+        {
+            version = default(int);
+            return false;
+        }
+    }
+
+    public byte[] Unprotect(byte[] protectedData)
     {
-        // argument & state checking
         ArgumentNullThrowHelper.ThrowIfNull(protectedData);
 
-        UnprotectStatus status;
-        var retVal = UnprotectCoreInternal(protectedData, ignoreRevocationErrors, status: out status);
-        requiresMigration = (status != UnprotectStatus.Ok);
-        wasRevoked = (status == UnprotectStatus.DecryptionKeyWasRevoked);
-        return retVal;
+        // Argument checking will be done by the callee
+        return DangerousUnprotect(protectedData,
+            ignoreRevocationErrors: false,
+            requiresMigration: out _,
+            wasRevoked: out _);
     }
 
-    protected byte[] UnprotectCoreInternal(byte[] protectedData, bool allowOperationsOnRevokedKeys, out UnprotectStatus status)
+    private byte[] UnprotectCore(byte[] protectedData, bool allowOperationsOnRevokedKeys, out UnprotectStatus status)
     {
         Debug.Assert(protectedData != null);
 
@@ -262,58 +294,6 @@ protected byte[] UnprotectCoreInternal(byte[] protectedData, bool allowOperation
         }
     }
 
-    // allows decrypting payloads whose keys have been revoked
-    public byte[] DangerousUnprotect(byte[] protectedData, bool ignoreRevocationErrors, out bool requiresMigration, out bool wasRevoked)
-    {
-        return DangerousUnprotectCore(protectedData, ignoreRevocationErrors, out requiresMigration, out wasRevoked);
-    }
-
-    public byte[] Protect(byte[] plaintext)
-    {
-        return ProtectCore(plaintext);
-    }
-
-    public byte[] Unprotect(byte[] protectedData)
-    {
-        return UnprotectCore(protectedData);
-    }
-
-    protected static Guid ReadGuid(void* ptr)
-    {
-#if NETCOREAPP
-        // Performs appropriate endianness fixups
-        return new Guid(new ReadOnlySpan<byte>(ptr, sizeof(Guid)));
-#elif NETSTANDARD2_0 || NETFRAMEWORK
-        Debug.Assert(BitConverter.IsLittleEndian);
-        return Unsafe.ReadUnaligned<Guid>(ptr);
-#else
-#error Update target frameworks
-#endif
-    }
-
-    protected static uint ReadBigEndian32BitInteger(byte* ptr)
-    {
-        return ((uint)ptr[0] << 24)
-            | ((uint)ptr[1] << 16)
-            | ((uint)ptr[2] << 8)
-            | ((uint)ptr[3]);
-    }
-
-    protected static bool TryGetVersionFromMagicHeader(uint magicHeader, out int version)
-    {
-        const uint MAGIC_HEADER_VERSION_MASK = 0xFU;
-        if ((magicHeader & ~MAGIC_HEADER_VERSION_MASK) == MAGIC_HEADER_V0)
-        {
-            version = (int)(magicHeader & MAGIC_HEADER_VERSION_MASK);
-            return true;
-        }
-        else
-        {
-            version = default(int);
-            return false;
-        }
-    }
-
     protected static void WriteGuid(void* ptr, Guid value)
     {
 #if NETCOREAPP
@@ -338,13 +318,6 @@ protected static void WriteBigEndianInteger(byte* ptr, uint value)
         ptr[3] = (byte)(value);
     }
 
-    protected enum UnprotectStatus
-    {
-        Ok,
-        DefaultEncryptionKeyChanged,
-        DecryptionKeyWasRevoked
-    }
-
     internal struct AdditionalAuthenticatedDataTemplate
     {
         private byte[] _aadTemplate;
@@ -440,4 +413,11 @@ internal static byte[] BuildAadTemplateBytes(string[] purposes)
             return targetArr;
         }
     }
+
+    private enum UnprotectStatus
+    {
+        Ok,
+        DefaultEncryptionKeyChanged,
+        DecryptionKeyWasRevoked
+    }
 }
diff --git a/src/DataProtection/DataProtection/src/KeyManagement/KeyRingBasedSpanDataProtector.cs b/src/DataProtection/DataProtection/src/KeyManagement/KeyRingBasedSpanDataProtector.cs
@@ -24,58 +24,47 @@ public override IDataProtector CreateProtector(string purpose)
         ArgumentNullThrowHelper.ThrowIfNull(purpose);
 
         return new KeyRingBasedDataProtector(
-            logger: Logger,
-            keyRingProvider: KeyRingProvider,
+            logger: _logger,
+            keyRingProvider: _keyRingProvider,
             originalPurposes: Purposes,
             newPurpose: purpose);
     }
 
-    public bool TryGetProtectedSize(ReadOnlySpan<byte> plainText, out int cipherTextLength)
+    public int GetProtectedSize(ReadOnlySpan<byte> plainText)
     {
-        cipherTextLength = default;
-
         // Get the current key ring to access the encryptor
-        var currentKeyRing = KeyRingProvider.GetCurrentKeyRing();
-        var defaultEncryptor = currentKeyRing.DefaultAuthenticatedEncryptor;
-        if (defaultEncryptor is not ISpanAuthenticatedEncryptor optimizedAuthenticatedEncryptor)
-        {
-            return false;
-        }
-        CryptoUtil.Assert(optimizedAuthenticatedEncryptor != null, "optimizedAuthenticatedEncryptor != null");
+        var currentKeyRing = _keyRingProvider.GetCurrentKeyRing();
+        var defaultEncryptor = (ISpanAuthenticatedEncryptor)currentKeyRing.DefaultAuthenticatedEncryptor!;
+        CryptoUtil.Assert(defaultEncryptor != null, "DefaultAuthenticatedEncryptor != null");
 
         // We allocate a 20-byte pre-buffer so that we can inject the magic header and key id into the return value.
         // See Protect() / TryProtect() for details
-        cipherTextLength = _magicHeaderKeyIdSize + optimizedAuthenticatedEncryptor.GetEncryptedSize(plainText.Length);
-        return true;
+        return _magicHeaderKeyIdSize + defaultEncryptor.GetEncryptedSize(plainText.Length);
     }
 
     public bool TryProtect(ReadOnlySpan<byte> plaintext, Span<byte> destination, out int bytesWritten)
     {
         try
         {
             // Perform the encryption operation using the current default encryptor.
-            var currentKeyRing = KeyRingProvider.GetCurrentKeyRing();
+            var currentKeyRing = _keyRingProvider.GetCurrentKeyRing();
             var defaultKeyId = currentKeyRing.DefaultKeyId;
-            var defaultEncryptor = currentKeyRing.DefaultAuthenticatedEncryptor;
-            if (defaultEncryptor is not ISpanAuthenticatedEncryptor spanEncryptor)
-            {
-                throw new NotSupportedException("The current default encryptor does not support optimized protection.");
-            }
-            CryptoUtil.Assert(spanEncryptor != null, "optimizedAuthenticatedEncryptor != null");
+            var defaultEncryptor = (ISpanAuthenticatedEncryptor)currentKeyRing.DefaultAuthenticatedEncryptor!;
+            CryptoUtil.Assert(defaultEncryptor != null, "DefaultAuthenticatedEncryptor != null");
 
-            if (Logger.IsDebugLevelEnabled())
+            if (_logger.IsDebugLevelEnabled())
             {
-                Logger.PerformingProtectOperationToKeyWithPurposes(defaultKeyId, JoinPurposesForLog(Purposes));
+                _logger.PerformingProtectOperationToKeyWithPurposes(defaultKeyId, JoinPurposesForLog(Purposes));
             }
 
             // We'll need to apply the default key id to the template if it hasn't already been applied.
             // If the default key id has been updated since the last call to Protect, also write back the updated template.
-            var aad = GetAadForKey(defaultKeyId, isProtecting: true);
+            var aad = _aadTemplate.GetAadForKey(defaultKeyId, isProtecting: true);
 
             var preBufferSize = _magicHeaderKeyIdSize;
             var postBufferSize = 0;
             var destinationBufferOffsets = destination.Slice(preBufferSize, destination.Length - (preBufferSize + postBufferSize));
-            var success = spanEncryptor.TryEncrypt(plaintext, aad, destinationBufferOffsets, out bytesWritten);
+            var success = defaultEncryptor.TryEncrypt(plaintext, aad, destinationBufferOffsets, out bytesWritten);
 
             // At this point: destination := { 000..000 || encryptorSpecificProtectedPayload },
             // where 000..000 is a placeholder for our magic header and key id.
@@ -105,13 +94,4 @@ public bool TryProtect(ReadOnlySpan<byte> plaintext, Span<byte> destination, out
             throw Error.Common_EncryptionFailed(ex);
         }
     }
-
-    public int GetProtectedSize(ReadOnlySpan<byte> plainText)
-    {
-        if (!TryGetProtectedSize(plainText, out int cipherTextLength))
-        {
-            throw new NotSupportedException("The current default encryptor does not support optimized protection.");
-        }
-        return cipherTextLength;
-    }
 }
