Add CreateOpenSslCryptographicException helper method and use it.

bartonjs · bartonjs · commit d490291be4e6 · 2015-07-07T14:41:49.000-07:00
CreateOpenSslCryptographicException will drain out the error stack, using the first reported error for the exception.  If the error was an ERR_R_MALLOC_FAILURE code, use an OutOfMemoryException, otherwise a CryptographicException.

A pass was made over the code, and any throw statements which were preceded by a call into libcrypto use the new helper method.  Calls into NativeCrypto throw an unadorned CryptographicException.

This change also introduces CheckValidOpenSslHandle to make the handle checks easier on the eyes, and a few locations were noticed which did not check handle validity with the same thoroughness as the rest of the code.
diff --git a/src/Common/src/Interop/Unix/libcrypto/Interop.ASN1.cs b/src/Common/src/Interop/Unix/libcrypto/Interop.ASN1.cs
@@ -78,7 +78,7 @@ internal static string OBJ_obj2txt_helper(IntPtr asn1ObjectPtr)
 
             if (bytesNeeded < 0)
             {
-                throw new CryptographicException(GetOpenSslErrorString());
+                throw CreateOpenSslCryptographicException();
             }
 
             Debug.Assert(bytesNeeded != 0, "OBJ_obj2txt reported a zero-length response");
@@ -95,7 +95,7 @@ internal static string OBJ_obj2txt_helper(IntPtr asn1ObjectPtr)
 
                 if (bytesNeeded < 0)
                 {
-                    throw new CryptographicException(GetOpenSslErrorString());
+                    throw CreateOpenSslCryptographicException();
                 }
 
                 Debug.Assert(
diff --git a/src/Common/src/Interop/Unix/libcrypto/Interop.ERR.cs b/src/Common/src/Interop/Unix/libcrypto/Interop.ERR.cs
@@ -1,7 +1,9 @@
 ﻿// Copyright (c) Microsoft. All rights reserved.
 // Licensed under the MIT license. See LICENSE file in the project root for full license information.
 
+using System;
 using System.Runtime.InteropServices;
+using System.Security.Cryptography;
 using System.Text;
 
 internal static partial class Interop
@@ -17,13 +19,56 @@ internal static partial class libcrypto
         [DllImport(Libraries.LibCrypto, CharSet = CharSet.Ansi)]
         private static extern void ERR_error_string_n(uint e, StringBuilder buf, int len);
 
-        internal static string GetOpenSslErrorString()
+        private static string ERR_error_string_n(uint error)
         {
-            uint error = ERR_get_error();
             StringBuilder buf = new StringBuilder(1024);
-            
+
             ERR_error_string_n(error, buf, buf.Capacity);
             return buf.ToString();
         }
+
+        internal static Exception CreateOpenSslCryptographicException()
+        {
+            const uint ReasonMask = 0x0FFF;
+            const uint ERR_R_MALLOC_FAILURE = 64 | 1;
+
+            uint error = ERR_get_error();
+            uint last = error;
+
+            while (last != 0)
+            {
+                last = ERR_get_error();
+            }
+
+            if (error == 0)
+            {
+                return new CryptographicException();
+            }
+
+            uint reason = error & ReasonMask;
+
+            if (reason == ERR_R_MALLOC_FAILURE)
+            {
+                return new OutOfMemoryException();
+            }
+
+            return new CryptographicException(ERR_error_string_n(error));
+        }
+
+        internal static void CheckValidOpenSslHandle(SafeHandle handle)
+        {
+            if (handle == null || handle.IsInvalid)
+            {
+                throw CreateOpenSslCryptographicException();
+            }
+        }
+
+        internal static void CheckValidOpenSslHandle(IntPtr handle)
+        {
+            if (handle == IntPtr.Zero)
+            {
+                throw CreateOpenSslCryptographicException();
+            }
+        }
     }
 }
diff --git a/src/Common/src/Interop/Unix/libcrypto/Interop.d2i.cs b/src/Common/src/Interop/Unix/libcrypto/Interop.d2i.cs
@@ -27,10 +27,7 @@ internal static unsafe THandle OpenSslD2I<THandle>(D2IFunc<THandle> d2i, byte[]
 
                 THandle handle = d2i(IntPtr.Zero, ppData, data.Length);
 
-                if (handle.IsInvalid)
-                {
-                    throw new CryptographicException(GetOpenSslErrorString());
-                }
+                CheckValidOpenSslHandle(handle);
 
                 return handle;
             }
diff --git a/src/System.Security.Cryptography.Encryption.Aes/src/Internal/Cryptography/AesOpenSslCryptoTransform.cs b/src/System.Security.Cryptography.Encryption.Aes/src/Internal/Cryptography/AesOpenSslCryptoTransform.cs
@@ -305,12 +305,7 @@ private static void CheckBoolReturn(bool returnValue)
                 return;
             }
 
-            throw CreateOpenSslException();
-        }
-
-        private static Exception CreateOpenSslException()
-        {
-            return new CryptographicException(Interop.libcrypto.GetOpenSslErrorString());
+            throw Interop.libcrypto.CreateOpenSslCryptographicException();
         }
     }
 }
diff --git a/src/System.Security.Cryptography.Hashing.Algorithms/src/Internal/Cryptography/HashProviderDispenser.Unix.cs b/src/System.Security.Cryptography.Hashing.Algorithms/src/Internal/Cryptography/HashProviderDispenser.Unix.cs
@@ -177,7 +177,7 @@ private static void Check(int result)
             if (result != Success)
             {
                 Debug.Assert(result == 0);
-                throw new CryptographicException(Interop.libcrypto.GetOpenSslErrorString());
+                throw Interop.libcrypto.CreateOpenSslCryptographicException();
             }
         }
     }
diff --git a/src/System.Security.Cryptography.RSA/src/Internal/Cryptography/RsaOpenSsl.cs b/src/System.Security.Cryptography.RSA/src/Internal/Cryptography/RsaOpenSsl.cs
@@ -160,7 +160,7 @@ public override unsafe void ImportParameters(RSAParameters parameters)
             SafeRsaHandle key = Interop.libcrypto.RSA_new();
             bool imported = false;
 
-            CheckInvalidNewKey(key);
+            Interop.libcrypto.CheckValidOpenSslHandle(key);
 
             try
             {
@@ -266,19 +266,11 @@ private static void CheckInvalidKey(SafeRsaHandle key)
             }
         }
 
-        private static void CheckInvalidNewKey(SafeRsaHandle key)
-        {
-            if (key == null || key.IsInvalid)
-            {
-                throw CreateOpenSslException();
-            }
-        }
-
         private static void CheckReturn(int returnValue)
         {
             if (returnValue == -1)
             {
-                throw CreateOpenSslException();
+                throw Interop.libcrypto.CreateOpenSslCryptographicException();
             }
         }
 
@@ -289,15 +281,15 @@ private static void CheckBoolReturn(int returnValue)
                 return;
             }
 
-            throw CreateOpenSslException();
+            throw Interop.libcrypto.CreateOpenSslCryptographicException();
         }
 
         private SafeRsaHandle GenerateKey()
         {
             SafeRsaHandle key = Interop.libcrypto.RSA_new();
             bool generated = false;
 
-            CheckInvalidNewKey(key);
+            Interop.libcrypto.CheckValidOpenSslHandle(key);
 
             try
             {
@@ -327,11 +319,6 @@ private SafeRsaHandle GenerateKey()
             return key;
         }
 
-        private static Exception CreateOpenSslException()
-        {
-            return new CryptographicException(Interop.libcrypto.GetOpenSslErrorString());
-        }
-
         internal byte[] HashData(byte[] buffer, int offset, int count, HashAlgorithmName hashAlgorithmName)
         {
             using (HashAlgorithm hasher = GetHashAlgorithm(hashAlgorithmName))
@@ -365,7 +352,7 @@ internal byte[] SignHash(byte[] hash, HashAlgorithmName hashAlgorithmName)
 
             if (!success)
             {
-                throw CreateOpenSslException();
+                throw Interop.libcrypto.CreateOpenSslCryptographicException();
             }
 
             Debug.Assert(
diff --git a/src/System.Security.Cryptography.RandomNumberGenerator/src/System/Security/Cryptography/RNGCryptoServiceProvider.Unix.cs b/src/System.Security.Cryptography.RandomNumberGenerator/src/System/Security/Cryptography/RNGCryptoServiceProvider.Unix.cs
@@ -14,7 +14,7 @@ public sealed override unsafe void GetBytes(byte[] data)
                 {
                     if (Interop.libcrypto.RAND_pseudo_bytes(buf, data.Length) == -1)
                     {
-                        throw new CryptographicException();
+                        throw Interop.libcrypto.CreateOpenSslCryptographicException();
                     }
                 }
             }
diff --git a/src/System.Security.Cryptography.X509Certificates/src/Internal/Cryptography/Pal.Unix/OpenSslX509CertificateReader.cs b/src/System.Security.Cryptography.X509Certificates/src/Internal/Cryptography/Pal.Unix/OpenSslX509CertificateReader.cs
@@ -29,7 +29,7 @@ internal OpenSslX509CertificateReader(SafeX509Handle handle)
 
             if (!init)
             {
-                throw new CryptographicException(Interop.libcrypto.GetOpenSslErrorString());
+                throw Interop.libcrypto.CreateOpenSslCryptographicException();
             }
 
             _cert = handle;
@@ -45,6 +45,8 @@ internal unsafe OpenSslX509CertificateReader(byte[] data)
             {
                 using (SafeBioHandle bio = Interop.libcrypto.BIO_new(Interop.libcrypto.BIO_s_mem()))
                 {
+                    Interop.libcrypto.CheckValidOpenSslHandle(bio);
+
                     Interop.libcrypto.BIO_write(bio, data, data.Length);
                     cert = Interop.libcrypto.PEM_read_bio_X509_AUX(bio, IntPtr.Zero, IntPtr.Zero, IntPtr.Zero);
                 }
@@ -54,18 +56,15 @@ internal unsafe OpenSslX509CertificateReader(byte[] data)
                 cert = Interop.libcrypto.OpenSslD2I(Interop.libcrypto.d2i_X509, data);
             }
 
-            if (cert.IsInvalid)
-            {
-                throw new CryptographicException(Interop.libcrypto.GetOpenSslErrorString());
-            }
+            Interop.libcrypto.CheckValidOpenSslHandle(cert);
 
             // X509_check_purpose has the effect of populating the sha1_hash value,
             // and other "initialize" type things.
             bool init = Interop.libcrypto.X509_check_purpose(cert, -1, 0);
 
             if (!init)
             {
-                throw new CryptographicException(Interop.libcrypto.GetOpenSslErrorString());
+                throw Interop.libcrypto.CreateOpenSslCryptographicException();
             }
 
             _cert = cert;
@@ -275,28 +274,18 @@ public IEnumerable<X509Extension> Extensions
                 {
                     IntPtr ext = Interop.libcrypto.X509_get_ext(_cert, i);
 
-                    if (ext == IntPtr.Zero)
-                    {
-                        // This would happen on a bounds violation, but no error code is set.
-                        throw new CryptographicException();
-                    }
+                    Interop.libcrypto.CheckValidOpenSslHandle(ext);
 
                     IntPtr oidPtr = Interop.libcrypto.X509_EXTENSION_get_object(ext);
 
-                    if (oidPtr == IntPtr.Zero)
-                    {
-                        throw new CryptographicException();
-                    }
+                    Interop.libcrypto.CheckValidOpenSslHandle(oidPtr);
 
                     string oidValue = Interop.libcrypto.OBJ_obj2txt_helper(oidPtr);
                     Oid oid = new Oid(oidValue);
 
                     IntPtr dataPtr = Interop.libcrypto.X509_EXTENSION_get_data(ext);
 
-                    if (dataPtr == IntPtr.Zero)
-                    {
-                        throw new CryptographicException();
-                    }
+                    Interop.libcrypto.CheckValidOpenSslHandle(dataPtr);
 
                     byte[] extData = Interop.NativeCrypto.GetAsn1StringBytes(dataPtr);
                     bool critical = Interop.libcrypto.X509_EXTENSION_get_critical(ext);
@@ -330,7 +319,7 @@ public string GetNameInfo(X509NameType nameType, bool forIssuer)
 
                 if (read < 0)
                 {
-                    throw new CryptographicException(Interop.libcrypto.GetOpenSslErrorString());
+                    throw Interop.libcrypto.CreateOpenSslCryptographicException();
                 }
 
                 return builder.ToString();
@@ -352,10 +341,7 @@ public void Dispose()
 
         private static X500DistinguishedName LoadX500Name(IntPtr namePtr)
         {
-            if (namePtr == IntPtr.Zero)
-            {
-                throw new CryptographicException();
-            }
+            Interop.libcrypto.CheckValidOpenSslHandle(namePtr);
 
             int negativeSize = Interop.NativeCrypto.GetX509NameRawBytes(namePtr, null, 0);
 
diff --git a/src/System.Security.Cryptography.X509Certificates/src/Internal/Cryptography/Pal.Unix/OpenSslX509ChainProcessor.cs b/src/System.Security.Cryptography.X509Certificates/src/Internal/Cryptography/Pal.Unix/OpenSslX509ChainProcessor.cs
@@ -53,18 +53,16 @@ public static IChainPal BuildChain(
             using (SafeX509StoreHandle store = Interop.libcrypto.X509_STORE_new())
             using (SafeX509StoreCtxHandle storeCtx = Interop.libcrypto.X509_STORE_CTX_new())
             {
-                if (store.IsInvalid || storeCtx.IsInvalid)
-                {
-                    throw new CryptographicException();
-                }
+                Interop.libcrypto.CheckValidOpenSslHandle(store);
+                Interop.libcrypto.CheckValidOpenSslHandle(storeCtx);
 
                 foreach (X509Certificate2 cert in candidates)
                 {
                     OpenSslX509CertificateReader pal = (OpenSslX509CertificateReader)cert.Pal;
 
                     if (!Interop.libcrypto.X509_STORE_add_cert(store, pal.SafeHandle))
                     {
-                        throw new CryptographicException();
+                        throw Interop.libcrypto.CreateOpenSslCryptographicException();
                     }
                 }
 
@@ -75,7 +73,7 @@ public static IChainPal BuildChain(
 
                 if (!Interop.libcrypto.X509_STORE_CTX_init(storeCtx, store, leafHandle, IntPtr.Zero))
                 {
-                    throw new CryptographicException(Interop.libcrypto.GetOpenSslErrorString());
+                    throw Interop.libcrypto.CreateOpenSslCryptographicException();
                 }
 
                 Interop.NativeCrypto.SetX509ChainVerifyTime(storeCtx, verificationTime);
@@ -84,7 +82,7 @@ public static IChainPal BuildChain(
 
                 if (verify < 0)
                 {
-                    throw new CryptographicException(Interop.libcrypto.GetOpenSslErrorString());
+                    throw Interop.libcrypto.CreateOpenSslCryptographicException();
                 }
 
                 using (SafeX509StackHandle chainStack = Interop.libcrypto.X509_STORE_CTX_get1_chain(storeCtx))
diff --git a/src/System.Security.Cryptography.X509Certificates/src/Internal/Cryptography/Pal.Unix/OpenSslX509Encoder.cs b/src/System.Security.Cryptography.X509Certificates/src/Internal/Cryptography/Pal.Unix/OpenSslX509Encoder.cs

Original file line number	Diff line number	Diff line change
`@@ -78,7 +78,7 @@ internal static string OBJ_obj2txt_helper(IntPtr asn1ObjectPtr)`
`78`	`78`
`79`	`79`	`if (bytesNeeded < 0)`
`80`	`80`	`{`
`81`		`- throw new CryptographicException(GetOpenSslErrorString());`
	`81`	`+ throw CreateOpenSslCryptographicException();`
`82`	`82`	`}`
`83`	`83`
`84`	`84`	`Debug.Assert(bytesNeeded != 0, "OBJ_obj2txt reported a zero-length response");`
`@@ -95,7 +95,7 @@ internal static string OBJ_obj2txt_helper(IntPtr asn1ObjectPtr)`
`95`	`95`
`96`	`96`	`if (bytesNeeded < 0)`
`97`	`97`	`{`
`98`		`- throw new CryptographicException(GetOpenSslErrorString());`
	`98`	`+ throw CreateOpenSslCryptographicException();`
`99`	`99`	`}`
`100`	`100`
`101`	`101`	`Debug.Assert(`
Original file line number	Diff line number	Diff line change
`@@ -27,10 +27,7 @@ internal static unsafe THandle OpenSslD2I<THandle>(D2IFunc<THandle> d2i, byte[]`
`27`	`27`
`28`	`28`	`THandle handle = d2i(IntPtr.Zero, ppData, data.Length);`
`29`	`29`
`30`		`- if (handle.IsInvalid)`
`31`		`- {`
`32`		`- throw new CryptographicException(GetOpenSslErrorString());`
`33`		`- }`
	`30`	`+ CheckValidOpenSslHandle(handle);`
`34`	`31`
`35`	`32`	`return handle;`
`36`	`33`	`}`
Original file line number	Diff line number	Diff line change
`@@ -305,12 +305,7 @@ private static void CheckBoolReturn(bool returnValue)`
`305`	`305`	`return;`
`306`	`306`	`}`
`307`	`307`
`308`		`- throw CreateOpenSslException();`
`309`		`- }`
`310`		`-`
`311`		`- private static Exception CreateOpenSslException()`
`312`		`- {`
`313`		`- return new CryptographicException(Interop.libcrypto.GetOpenSslErrorString());`
	`308`	`+ throw Interop.libcrypto.CreateOpenSslCryptographicException();`
`314`	`309`	`}`
`315`	`310`	`}`
`316`	`311`	`}`
Original file line number	Diff line number	Diff line change
`@@ -177,7 +177,7 @@ private static void Check(int result)`
`177`	`177`	`if (result != Success)`
`178`	`178`	`{`
`179`	`179`	`Debug.Assert(result == 0);`
`180`		`- throw new CryptographicException(Interop.libcrypto.GetOpenSslErrorString());`
	`180`	`+ throw Interop.libcrypto.CreateOpenSslCryptographicException();`
`181`	`181`	`}`
`182`	`182`	`}`
`183`	`183`	`}`
Original file line number	Diff line number	Diff line change
`@@ -160,7 +160,7 @@ public override unsafe void ImportParameters(RSAParameters parameters)`
`160`	`160`	`SafeRsaHandle key = Interop.libcrypto.RSA_new();`
`161`	`161`	`bool imported = false;`
`162`	`162`
`163`		`- CheckInvalidNewKey(key);`
	`163`	`+ Interop.libcrypto.CheckValidOpenSslHandle(key);`
`164`	`164`
`165`	`165`	`try`
`166`	`166`	`{`
`@@ -266,19 +266,11 @@ private static void CheckInvalidKey(SafeRsaHandle key)`
`266`	`266`	`}`
`267`	`267`	`}`
`268`	`268`
`269`		`- private static void CheckInvalidNewKey(SafeRsaHandle key)`
`270`		`- {`
`271`		`- if (key == null \|\| key.IsInvalid)`
`272`		`- {`
`273`		`- throw CreateOpenSslException();`
`274`		`- }`
`275`		`- }`
`276`		`-`
`277`	`269`	`private static void CheckReturn(int returnValue)`
`278`	`270`	`{`
`279`	`271`	`if (returnValue == -1)`
`280`	`272`	`{`
`281`		`- throw CreateOpenSslException();`
	`273`	`+ throw Interop.libcrypto.CreateOpenSslCryptographicException();`
`282`	`274`	`}`
`283`	`275`	`}`
`284`	`276`
`@@ -289,15 +281,15 @@ private static void CheckBoolReturn(int returnValue)`
`289`	`281`	`return;`
`290`	`282`	`}`
`291`	`283`
`292`		`- throw CreateOpenSslException();`
	`284`	`+ throw Interop.libcrypto.CreateOpenSslCryptographicException();`
`293`	`285`	`}`
`294`	`286`
`295`	`287`	`private SafeRsaHandle GenerateKey()`
`296`	`288`	`{`
`297`	`289`	`SafeRsaHandle key = Interop.libcrypto.RSA_new();`
`298`	`290`	`bool generated = false;`
`299`	`291`
`300`		`- CheckInvalidNewKey(key);`
	`292`	`+ Interop.libcrypto.CheckValidOpenSslHandle(key);`
`301`	`293`
`302`	`294`	`try`
`303`	`295`	`{`
`@@ -327,11 +319,6 @@ private SafeRsaHandle GenerateKey()`
`327`	`319`	`return key;`
`328`	`320`	`}`
`329`	`321`
`330`		`- private static Exception CreateOpenSslException()`
`331`		`- {`
`332`		`- return new CryptographicException(Interop.libcrypto.GetOpenSslErrorString());`
`333`		`- }`
`334`		`-`
`335`	`322`	`internal byte[] HashData(byte[] buffer, int offset, int count, HashAlgorithmName hashAlgorithmName)`
`336`	`323`	`{`
`337`	`324`	`using (HashAlgorithm hasher = GetHashAlgorithm(hashAlgorithmName))`
`@@ -365,7 +352,7 @@ internal byte[] SignHash(byte[] hash, HashAlgorithmName hashAlgorithmName)`
`365`	`352`
`366`	`353`	`if (!success)`
`367`	`354`	`{`
`368`		`- throw CreateOpenSslException();`
	`355`	`+ throw Interop.libcrypto.CreateOpenSslCryptographicException();`
`369`	`356`	`}`
`370`	`357`
`371`	`358`	`Debug.Assert(`
Original file line number	Diff line number	Diff line change
`@@ -14,7 +14,7 @@ public sealed override unsafe void GetBytes(byte[] data)`
`14`	`14`	`{`
`15`	`15`	`if (Interop.libcrypto.RAND_pseudo_bytes(buf, data.Length) == -1)`
`16`	`16`	`{`
`17`		`- throw new CryptographicException();`
	`17`	`+ throw Interop.libcrypto.CreateOpenSslCryptographicException();`
`18`	`18`	`}`
`19`	`19`	`}`
`20`	`20`	`}`
Original file line number	Diff line number	Diff line change
`@@ -53,18 +53,16 @@ public static IChainPal BuildChain(`
`53`	`53`	`using (SafeX509StoreHandle store = Interop.libcrypto.X509_STORE_new())`
`54`	`54`	`using (SafeX509StoreCtxHandle storeCtx = Interop.libcrypto.X509_STORE_CTX_new())`
`55`	`55`	`{`
`56`		`- if (store.IsInvalid \|\| storeCtx.IsInvalid)`
`57`		`- {`
`58`		`- throw new CryptographicException();`
`59`		`- }`
	`56`	`+ Interop.libcrypto.CheckValidOpenSslHandle(store);`
	`57`	`+ Interop.libcrypto.CheckValidOpenSslHandle(storeCtx);`
`60`	`58`
`61`	`59`	`foreach (X509Certificate2 cert in candidates)`
`62`	`60`	`{`
`63`	`61`	`OpenSslX509CertificateReader pal = (OpenSslX509CertificateReader)cert.Pal;`
`64`	`62`
`65`	`63`	`if (!Interop.libcrypto.X509_STORE_add_cert(store, pal.SafeHandle))`
`66`	`64`	`{`
`67`		`- throw new CryptographicException();`
	`65`	`+ throw Interop.libcrypto.CreateOpenSslCryptographicException();`
`68`	`66`	`}`
`69`	`67`	`}`
`70`	`68`
`@@ -75,7 +73,7 @@ public static IChainPal BuildChain(`
`75`	`73`
`76`	`74`	`if (!Interop.libcrypto.X509_STORE_CTX_init(storeCtx, store, leafHandle, IntPtr.Zero))`
`77`	`75`	`{`
`78`		`- throw new CryptographicException(Interop.libcrypto.GetOpenSslErrorString());`
	`76`	`+ throw Interop.libcrypto.CreateOpenSslCryptographicException();`
`79`	`77`	`}`
`80`	`78`
`81`	`79`	`Interop.NativeCrypto.SetX509ChainVerifyTime(storeCtx, verificationTime);`
`@@ -84,7 +82,7 @@ public static IChainPal BuildChain(`
`84`	`82`
`85`	`83`	`if (verify < 0)`
`86`	`84`	`{`
`87`		`- throw new CryptographicException(Interop.libcrypto.GetOpenSslErrorString());`
	`85`	`+ throw Interop.libcrypto.CreateOpenSslCryptographicException();`
`88`	`86`	`}`
`89`	`87`
`90`	`88`	`using (SafeX509StackHandle chainStack = Interop.libcrypto.X509_STORE_CTX_get1_chain(storeCtx))`