Apply code review feedback

* Added TODO items referencing issues for NotImplementedExceptions
* Changed LowLevelList<T> usages to List<T>
* Added comments as requested.

Author: bartonjs

src/System.Security.Cryptography.X509Certificates/src/Internal/Cryptography/Pal.Unix/CertificatePolicy.cs

@@ -20,7 +20,7 @@ internal sealed class CertificatePolicy
         public bool SpecifiedAnyApplicationPolicy { get; set; }
         public ISet<string> DeclaredApplicationPolicies { get; set; }
         public int? InhibitAnyDepth { get; set; }
-        public LowLevelList<CertificatePolicyMapping> PolicyMapping { get; set; }
+        public List<CertificatePolicyMapping> PolicyMapping { get; set; }
         public int? InhibitMappingDepth { get; set; }
         public int? RequireExplicitPolicyDepth { get; set; }
 
@@ -356,10 +356,10 @@ private static ISet<string> ReadCertPolicyExtension(X509Extension extension)
             return policies;
         }
 
-        private static LowLevelList<CertificatePolicyMapping> ReadCertPolicyMappingsExtension(X509Extension extension)
+        private static List<CertificatePolicyMapping> ReadCertPolicyMappingsExtension(X509Extension extension)
         {
             DerSequenceReader reader = new DerSequenceReader(extension.RawData);
-            LowLevelList<CertificatePolicyMapping> mappings = new LowLevelList<CertificatePolicyMapping>();
+            List<CertificatePolicyMapping> mappings = new List<CertificatePolicyMapping>();
 
             while (reader.HasData)
             {

src/System.Security.Cryptography.X509Certificates/src/Internal/Cryptography/Pal.Unix/ChainPal.cs

@@ -43,6 +43,7 @@ private static void CheckRevocationMode(X509RevocationMode revocationMode)
         {
             if (revocationMode != X509RevocationMode.NoCheck)
             {
+                // TODO (#2203): Add support for revocation once networking is ready.
                 throw new NotImplementedException(SR.WorkInProgress);
             }
         }

src/System.Security.Cryptography.X509Certificates/src/Internal/Cryptography/Pal.Unix/DerSequenceReader.cs

@@ -106,6 +106,9 @@ internal string ReadOidAsString()
             // and avoid re-alloc.
             StringBuilder builder = new StringBuilder(contentLength * 4);
 
+            // The first byte is ((X * 40) + Y), where X is the first segment and Y the second.
+            // ISO/IEC 8825-1:2003 section 8.19.4
+
             byte firstByte = _data[_position];
             byte first = (byte)(firstByte / 40);
             byte second = (byte)(firstByte % 40);
@@ -114,6 +117,12 @@ internal string ReadOidAsString()
             builder.Append('.');
             builder.Append(second);
 
+            // For the rest of the segments, the high bit on the byte is a continuation marker,
+            // and data is loaded into a BigInteger 7 bits at a time.
+            //
+            // When the high bit is 0, the segment ends, so emit a '.' between it and the next one.
+            //
+            // ISO/IEC 8825-1:2003 section 8.19.2, and the .NET representation of Oid.Value.
             bool needDot = true;
             BigInteger bigInt = new BigInteger(0);
 
@@ -167,6 +176,8 @@ internal string ReadIA5String()
             EatTag(DerTag.IA5String);
             int contentLength = EatLength();
 
+            // IA5 (International Alphabet - 5) is functionally equivalent to 7-bit ASCII.
+
             string ia5String = Encoding.ASCII.GetString(_data, _position, contentLength);
             _position += contentLength;
 

src/System.Security.Cryptography.X509Certificates/src/Internal/Cryptography/Pal.Unix/OpenSslX509CertificateReader.cs

@@ -56,7 +56,7 @@ internal unsafe OpenSslX509CertificateReader(byte[] data)
 
             if (cert.IsInvalid)
             {
-                throw new CryptographicException();
+                throw new CryptographicException(Interop.libcrypto.GetOpenSslErrorString());
             }
 
             // X509_check_purpose has the effect of populating the sha1_hash value,

src/System.Security.Cryptography.X509Certificates/src/Internal/Cryptography/Pal.Unix/OpenSslX509ChainProcessor.cs

@@ -20,6 +20,7 @@ public void Dispose()
         {
             if (flags != X509VerificationFlags.NoFlag)
             {
+                // TODO (#2204): Add support for X509VerificationFlags, or throw PlatformNotSupportedException.
                 throw new NotSupportedException(SR.WorkInProgress);
             }
 
@@ -43,7 +44,7 @@ public static IChainPal BuildChain(
             DateTime verificationTime)
         {
             X509ChainElement[] elements;
-            LowLevelList<X509ChainStatus> overallStatus = new LowLevelList<X509ChainStatus>();
+            List<X509ChainStatus> overallStatus = new List<X509ChainStatus>();
 
             // An X509_STORE is more comparable to Cryptography.X509Certificate2Collection than to
             // Cryptography.X509Store. So read this with OpenSSL eyes, not CAPI/CNG eyes.
@@ -104,7 +105,7 @@ public static IChainPal BuildChain(
 
                     for (int i = 0; i < chainSize; i++)
                     {
-                        LowLevelList<X509ChainStatus> status = new LowLevelList<X509ChainStatus>();
+                        List<X509ChainStatus> status = new List<X509ChainStatus>();
 
                         if (i == errorDepth)
                         {
@@ -173,7 +174,7 @@ public static IChainPal BuildChain(
                         StatusInformation = SR.Chain_NoPolicyMatch,
                     };
 
-                    var elementStatus = new LowLevelList<X509ChainStatus>(leafElement.ChainElementStatus.Length + 1);
+                    var elementStatus = new List<X509ChainStatus>(leafElement.ChainElementStatus.Length + 1);
                     elementStatus.AddRange(leafElement.ChainElementStatus);
 
                     AddUniqueStatus(elementStatus, ref chainStatus);
@@ -193,7 +194,7 @@ public static IChainPal BuildChain(
             };
         }
 
-        private static void AddUniqueStatus(LowLevelList<X509ChainStatus> list, ref X509ChainStatus status)
+        private static void AddUniqueStatus(IList<X509ChainStatus> list, ref X509ChainStatus status)
         {
             X509ChainStatusFlags statusCode = status.Status;
 
@@ -275,11 +276,13 @@ private static X509ChainStatusFlags MapVerifyErrorToChainStatus(Interop.libcrypt
                     return X509ChainStatusFlags.HasNotSupportedCriticalExtension;
 
                 case Interop.libcrypto.X509VerifyStatusCode.X509_V_ERR_CERT_CHAIN_TOO_LONG:
-                case Interop.libcrypto.X509VerifyStatusCode.X509_V_ERR_OUT_OF_MEM:
                     throw new CryptographicException();
 
+                case Interop.libcrypto.X509VerifyStatusCode.X509_V_ERR_OUT_OF_MEM:
+                    throw new OutOfMemoryException();
+
                 default:
-                    Debug.Assert(false, "Unrecognized X509VerifyStatusCode:" + code);
+                    Debug.Fail("Unrecognized X509VerifyStatusCode:" + code);
                     throw new CryptographicException();
             }
         }
@@ -301,6 +304,13 @@ internal static X509Certificate2Collection FindCandidates(
                 X509Certificate2Collection rootCerts = rootStore.Certificates;
                 X509Certificate2Collection intermediateCerts = intermediateStore.Certificates;
 
+                X509Certificate2Collection[] storesToCheck =
+                {
+                    extraStore,
+                    intermediateCerts,
+                    rootCerts,
+                };
+
                 while (toProcess.Count > 0)
                 {
                     X509Certificate2 current = toProcess.Dequeue();
@@ -312,20 +322,15 @@ internal static X509Certificate2Collection FindCandidates(
 
                     X509Certificate2Collection results = FindIssuer(
                         current,
-                        extraStore,
-                        intermediateCerts,
-                        rootCerts);
+                        storesToCheck);
 
                     if (results != null)
                     {
                         foreach (X509Certificate2 result in results)
                         {
-                            if (result != null)
+                            if (!candidates.Contains(result))
                             {
-                                if (!candidates.Contains(result))
-                                {
-                                    toProcess.Enqueue(result);
-                                }
+                                toProcess.Enqueue(result);
                             }
                         }
                     }
@@ -337,7 +342,7 @@ internal static X509Certificate2Collection FindCandidates(
 
         private static X509Certificate2Collection FindIssuer(
             X509Certificate2 cert,
-            params X509Certificate2Collection[] stores)
+            X509Certificate2Collection[] stores)
         {
             if (StringComparer.Ordinal.Equals(cert.Subject, cert.Issuer))
             {

src/System.Security.Cryptography.X509Certificates/src/Internal/Cryptography/Pal.Unix/StorePal.cs

@@ -2,9 +2,12 @@
 // Licensed under the MIT license. See LICENSE file in the project root for full license information.
 
 using System;
+using System.Collections.Generic;
+using System.Diagnostics;
 using System.IO;
 using System.Security.Cryptography;
 using System.Security.Cryptography.X509Certificates;
+using System.Threading;
 
 namespace Internal.Cryptography.Pal
 {
@@ -37,14 +40,20 @@ public static IStorePal FromSystemStore(string storeName, StoreLocation storeLoc
         {
             if (storeLocation != StoreLocation.LocalMachine)
             {
+                // TODO (#2206): Support CurrentUser persisted stores.
                 throw new NotImplementedException();
             }
 
             if (openFlags.HasFlag(OpenFlags.ReadWrite))
             {
+                // TODO (#2206): Support CurrentUser persisted stores
+                // (they'd not be very useful without the ability to add/remove content)
                 throw new NotImplementedException();
             }
 
+            // The static store approach here is making an optimization based on not
+            // having write support.  Once writing is permitted the stores would need
+            // to fresh-read whenever being requested (or use FileWatcher/etc).
             if (s_machineRootStore == null)
             {
                 lock (s_machineIntermediateStore)
@@ -66,6 +75,7 @@ public static IStorePal FromSystemStore(string storeName, StoreLocation storeLoc
                 return CloneStore(s_machineIntermediateStore);
             }
 
+            // TODO (#2207): Support the rest of the stores, or throw PlatformNotSupportedException.
             throw new NotImplementedException();
         }
 
@@ -84,6 +94,10 @@ private static IStorePal CloneStore(X509Certificate2Collection seed)
 
         private static void LoadMachineStores()
         {
+            Debug.Assert(
+                Monitor.IsEntered(s_machineIntermediateStore),
+                "LoadMachineStores assumes a lock(s_machineIntermediateStore)");
+
             X509Certificate2Collection rootStore = new X509Certificate2Collection();
 
             DirectoryInfo directoryInfo;
@@ -106,6 +120,9 @@ private static void LoadMachineStores()
                 return;
             }
 
+            HashSet<X509Certificate2> uniqueRootCerts = new HashSet<X509Certificate2>();
+            HashSet<X509Certificate2> uniqueIntermediateCerts = new HashSet<X509Certificate2>();
+
             foreach (FileInfo file in directoryInfo.EnumerateFiles())
             {
                 byte[] bytes;
@@ -116,6 +133,18 @@ private static void LoadMachineStores()
                 }
                 catch (IOException)
                 {
+                    // Broken symlink, symlink to a network file share that's timing out,
+                    // file was deleted since being enumerated, etc.
+                    //
+                    // Skip anything that we can't read, we'll just be a bit restrictive
+                    // on our trust model, that's all.
+                    continue;
+                }
+                catch (UnauthorizedAccessException)
+                {
+                    // If, for some reason, one of the files is not world-readable,
+                    // and this user doesn't have access to read it, just pretend it
+                    // isn't there.
                     continue;
                 }
 
@@ -127,19 +156,23 @@ private static void LoadMachineStores()
                 }
                 catch (CryptographicException)
                 {
+                    // The data was in a format we didn't understand. Maybe it was a text file,
+                    // or just a certificate type we don't know how to read. Either way, let's load
+                    // what we can.
                     continue;
                 }
 
+                // The HashSets are just used for uniqueness filters, they do not survive this method.
                 if (StringComparer.Ordinal.Equals(cert.Subject, cert.Issuer))
                 {
-                    if (!rootStore.Contains(cert))
+                    if (uniqueRootCerts.Add(cert))
                     {
                         rootStore.Add(cert);
                     }
                 }
                 else
                 {
-                    if (!s_machineIntermediateStore.Contains(cert))
+                    if (uniqueIntermediateCerts.Add(cert))
                     {
                         s_machineIntermediateStore.Add(cert);
                     }

src/System.Security.Cryptography.X509Certificates/src/Resources/Strings.resx

@@ -207,4 +207,4 @@
   <data name="Chain_NoPolicyMatch" xml:space="preserve">
     <value>The certificate has invalid policy.</value>
   </data>
-</root>
+</root>