Merge pull request #2006 from bartonjs/enable-rsa-x509-unix-tests

Fix and enable RSA and X509Certificates tests on Unix

Author: bartonjs

src/System.Security.Cryptography.RSA/src/Internal/Cryptography/RsaOpenSsl.cs

@@ -145,6 +145,8 @@ public override RSAParameters ExportParameters(bool includePrivateParameters)
 
         public override unsafe void ImportParameters(RSAParameters parameters)
         {
+            ValidateParameters(ref parameters);
+
             SafeRsaHandle key = Interop.libcrypto.RSA_new();
             bool imported = false;
 
@@ -209,6 +211,35 @@ private void FreeKey()
             }
         }
 
+        private static void ValidateParameters(ref RSAParameters parameters)
+        {
+            if (parameters.Modulus == null || parameters.Exponent == null)
+                throw new CryptographicException(SR.Argument_InvalidValue);
+
+            if (parameters.D == null)
+            {
+                if (parameters.P != null ||
+                    parameters.DP != null ||
+                    parameters.Q != null ||
+                    parameters.DQ != null ||
+                    parameters.InverseQ != null)
+                {
+                    throw new CryptographicException(SR.Argument_InvalidValue);
+                }
+            }
+            else
+            {
+                if (parameters.P == null ||
+                    parameters.DP == null ||
+                    parameters.Q == null ||
+                    parameters.DQ == null ||
+                    parameters.InverseQ == null)
+                {
+                    throw new CryptographicException(SR.Argument_InvalidValue);
+                }
+            }
+        }
+
         private static void CheckInvalidKey(SafeRsaHandle key)
         {
             if (key == null || key.IsInvalid)

src/System.Security.Cryptography.RSA/tests/System.Security.Cryptography.RSA.Tests.csproj

@@ -8,8 +8,6 @@
     <OutputType>Library</OutputType>
     <AssemblyName>System.Security.Cryptography.RSA.Tests</AssemblyName>
     <RootNamespace>System.Security.Cryptography.Rsa.Tests</RootNamespace>
-	<!-- Disabled on Linux/OSX (Issue 1986) -->
-	<UnsupportedPlatforms>Linux;OSX</UnsupportedPlatforms>
   </PropertyGroup>
   <ItemGroup>
     <ProjectReference Include="..\src\System.Security.Cryptography.RSA.csproj">

src/System.Security.Cryptography.X509Certificates/src/Internal/Cryptography/Pal.Unix/OpenSslX509CertificateReader.cs

@@ -30,6 +30,11 @@ internal unsafe OpenSslX509CertificateReader(byte[] data)
 
                 _cert = Interop.libcrypto.d2i_X509(IntPtr.Zero, ppData, data.Length);
 
+                if (_cert.IsInvalid)
+                {
+                    throw new CryptographicException();
+                }
+
                 // X509_check_purpose has the effect of populating the sha1_hash value,
                 // and other "initialize" type things.
                 bool init = Interop.libcrypto.X509_check_purpose(_cert, -1, 0);
@@ -53,7 +58,7 @@ public AsymmetricAlgorithm PrivateKey
 
         public IntPtr Handle
         {
-            get { return IntPtr.Zero; }
+            get { return _cert == null ? IntPtr.Zero : _cert.DangerousGetHandle(); }
         }
 
         public string Issuer
@@ -135,7 +140,12 @@ public byte[] SerialNumber
             get
             {
                 IntPtr serialNumberPtr = Interop.libcrypto.X509_get_serialNumber(_cert);
-                return Interop.NativeCrypto.GetAsn1StringBytes(serialNumberPtr);
+                byte[] serial = Interop.NativeCrypto.GetAsn1StringBytes(serialNumberPtr);
+
+                // Windows returns this in BigInteger Little-Endian,
+                // OpenSSL returns this in BigInteger Big-Endian.
+                Array.Reverse(serial);
+                return serial;
             }
         }
 

src/System.Security.Cryptography.X509Certificates/tests/CertTests.cs

@@ -81,6 +81,7 @@ public static void X509Cert2Test()
         /// This test is for excerising X509Store and X509Chain code without actually installing any certificate 
         /// </summary>
         [Fact]
+        [ActiveIssue(1993, PlatformID.AnyUnix)]
         public static void X509CertStoreChain()
         {
             X509Store store = new X509Store("My", StoreLocation.LocalMachine);
@@ -104,6 +105,7 @@ public static void X509CertStoreChain()
         }
 
         [Fact]
+        [ActiveIssue(1993, PlatformID.AnyUnix)]
         public static void X509Cert2ToStringVerbose()
         {
             X509Store store = new X509Store("My", StoreLocation.CurrentUser);

src/System.Security.Cryptography.X509Certificates/tests/CollectionTests.cs

@@ -154,6 +154,7 @@ public static void ImportNull()
         }
 
         [Fact]
+        [ActiveIssue(1993, PlatformID.AnyUnix)]
         public static void ImportPfx()
         {
             using (var pfxCer = new X509Certificate2(TestData.PfxData, TestData.PfxDataPassword))
@@ -175,6 +176,7 @@ public static void ImportPfx()
         }
 
         [Fact]
+        [ActiveIssue(1993, PlatformID.AnyUnix)]
         public static void ImportStoreSavedAsCerData()
         {
             using (var pfxCer = new X509Certificate2(TestData.PfxData, TestData.PfxDataPassword))
@@ -196,6 +198,7 @@ public static void ImportStoreSavedAsCerData()
         }
 
         [Fact]
+        [ActiveIssue(1993, PlatformID.AnyUnix)]
         public static void ImportStoreSavedAsSerializedCerData()
         {
             using (var pfxCer = new X509Certificate2(TestData.PfxData, TestData.PfxDataPassword))
@@ -217,6 +220,7 @@ public static void ImportStoreSavedAsSerializedCerData()
         }
 
         [Fact]
+        [ActiveIssue(1993, PlatformID.AnyUnix)]
         public static void ImportStoreSavedAsSerializedStoreData()
         {
             using (var msCer = new X509Certificate2(TestData.MsCertificate))
@@ -241,6 +245,7 @@ public static void ImportStoreSavedAsSerializedStoreData()
         }
 
         [Fact]
+        [ActiveIssue(1993, PlatformID.AnyUnix)]
         public static void ImportStoreSavedAsPfxData()
         {
             using (var msCer = new X509Certificate2(TestData.MsCertificate))
@@ -285,24 +290,28 @@ public static void ImportFromFileTests()
         }
 
         [Fact]
+        [ActiveIssue(1993, PlatformID.AnyUnix)]
         public static void ExportCert()
         {
             TestExportSingleCert(X509ContentType.Cert);
         }
 
         [Fact]
+        [ActiveIssue(1993, PlatformID.AnyUnix)]
         public static void ExportSerializedCert()
         {
             TestExportSingleCert(X509ContentType.SerializedCert);
         }
 
         [Fact]
+        [ActiveIssue(1993, PlatformID.AnyUnix)]
         public static void ExportSerializedStore()
         {
             TestExportStore(X509ContentType.SerializedStore);
         }
 
         [Fact]
+        [ActiveIssue(1993, PlatformID.AnyUnix)]
         public static void ExportPkcs7()
         {
             TestExportStore(X509ContentType.Pkcs7);

src/System.Security.Cryptography.X509Certificates/tests/CtorTests.cs

@@ -71,6 +71,7 @@ public static void TestByteArrayConstructor()
             }
         }
 
+        [Fact]
         public static void TestNullConstructorArguments()
         {
             Assert.Throws<ArgumentException>(() => new X509Certificate2((byte[])null, (String)null));
@@ -98,5 +99,11 @@ public static void TestNullConstructorArguments()
                 }
             }
         }
+
+        [Fact]
+        public static void InvalidCertificateBlob()
+        {
+            Assert.Throws<CryptographicException>(() => new X509Certificate2(new byte[] { 0x01, 0x02, 0x03 }));
+        }
     }
 }

src/System.Security.Cryptography.X509Certificates/tests/ExportTests.cs

@@ -8,6 +8,7 @@ namespace System.Security.Cryptography.X509Certificates.Tests
     public static class ExportTests
     {
         [Fact]
+        [ActiveIssue(1993, PlatformID.AnyUnix)]
         public static void ExportAsCert()
         {
             using (X509Certificate2 c1 = new X509Certificate2(TestData.MsCertificate))
@@ -19,6 +20,7 @@ public static void ExportAsCert()
         }
 
         [Fact]
+        [ActiveIssue(1993, PlatformID.AnyUnix)]
         public static void ExportAsSerializedCert()
         {
             using (X509Certificate2 c1 = new X509Certificate2(TestData.MsCertificate))
@@ -36,6 +38,7 @@ public static void ExportAsSerializedCert()
         }
 
         [Fact]
+        [ActiveIssue(1993, PlatformID.AnyUnix)]
         public static void ExportAsPfx()
         {
             using (X509Certificate2 c1 = new X509Certificate2(TestData.MsCertificate))
@@ -52,6 +55,7 @@ public static void ExportAsPfx()
         }
 
         [Fact]
+        [ActiveIssue(1993, PlatformID.AnyUnix)]
         public static void ExportAsPfxWithPassword()
         {
             const string password = "Cotton";
@@ -70,6 +74,7 @@ public static void ExportAsPfxWithPassword()
         }
 
         [Fact]
+        [ActiveIssue(1993, PlatformID.AnyUnix)]
         public static void ExportAsPfxVerifyPassword()
         {
             const string password = "Cotton";