Make a helper method for invoking the negative-size NativeCrypto methods.

bartonjs · bartonjs · commit f5452f9adfc0 · 2015-07-08T11:01:18.000-07:00
GetDynamicBuffer uses CreateOpenSslCryptographicException to allow OpenSSL errors to propagate through NativeCrypto.
diff --git a/src/Common/src/Interop/Unix/System.Security.Cryptography.Native/Interop.NativeCrypto.cs b/src/Common/src/Interop/Unix/System.Security.Cryptography.Native/Interop.NativeCrypto.cs
@@ -2,21 +2,21 @@
 // Licensed under the MIT license. See LICENSE file in the project root for full license information.
 
 using System;
-using System.Diagnostics;
 using System.Runtime.InteropServices;
-using System.Security.Cryptography;
 
 using Microsoft.Win32.SafeHandles;
 
 internal static partial class Interop
 {
     internal static partial class NativeCrypto
     {
+        private delegate int NegativeSizeReadMethod<in THandle>(THandle handle, byte[] buf, int cBuf);
+
         [DllImport(Libraries.CryptoInterop)]
-        internal static extern int GetX509Thumbprint(SafeX509Handle x509, byte[] buf, int cBuf);
+        private static extern int GetX509Thumbprint(SafeX509Handle x509, byte[] buf, int cBuf);
 
         [DllImport(Libraries.CryptoInterop)]
-        internal static extern int GetX509NameRawBytes(IntPtr x509Name, byte[] buf, int cBuf);
+        private static extern int GetX509NameRawBytes(IntPtr x509Name, byte[] buf, int cBuf);
 
         [DllImport(Libraries.CryptoInterop)]
         internal static extern IntPtr GetX509NotBefore(SafeX509Handle x509);
@@ -34,7 +34,7 @@ internal static partial class NativeCrypto
         internal static extern IntPtr GetX509PublicKeyAlgorithm(SafeX509Handle x509);
 
         [DllImport(Libraries.CryptoInterop)]
-        internal static extern int GetX509PublicKeyParameterBytes(SafeX509Handle x509, byte[] buf, int cBuf);
+        private static extern int GetX509PublicKeyParameterBytes(SafeX509Handle x509, byte[] buf, int cBuf);
 
         [DllImport(Libraries.CryptoInterop)]
         internal static extern IntPtr GetX509PublicKeyBytes(SafeX509Handle x509);
@@ -80,23 +80,22 @@ private static extern int SetX509ChainVerifyTime(
 
         internal static byte[] GetAsn1StringBytes(IntPtr asn1)
         {
-            int negativeSize = GetAsn1StringBytes(asn1, null, 0);
-
-            if (negativeSize > 0)
-            {
-                throw new CryptographicException();
-            }
-
-            byte[] bytes = new byte[-negativeSize];
+            return GetDynamicBuffer(GetAsn1StringBytes, asn1);
+        }
 
-            int ret = GetAsn1StringBytes(asn1, bytes, bytes.Length);
+        internal static byte[] GetX509Thumbprint(SafeX509Handle x509)
+        {
+            return GetDynamicBuffer(GetX509Thumbprint, x509);
+        }
 
-            if (ret != 1)
-            {
-                throw new CryptographicException();
-            }
+        internal static byte[] GetX509NameRawBytes(IntPtr x509Name)
+        {
+            return GetDynamicBuffer(GetX509NameRawBytes, x509Name);
+        }
 
-            return bytes;
+        internal static byte[] GetX509PublicKeyParameterBytes(SafeX509Handle x509)
+        {
+            return GetDynamicBuffer(GetX509PublicKeyParameterBytes, x509);
         }
 
         internal static void SetX509ChainVerifyTime(SafeX509StoreCtxHandle ctx, DateTime verifyTime)
@@ -119,8 +118,29 @@ internal static void SetX509ChainVerifyTime(SafeX509StoreCtxHandle ctx, DateTime
 
             if (succeeded != 1)
             {
-                throw new CryptographicException();
+                throw Interop.libcrypto.CreateOpenSslCryptographicException();
             }
         }
+
+        private static byte[] GetDynamicBuffer<THandle>(NegativeSizeReadMethod<THandle> method, THandle handle)
+        {
+            int negativeSize = method(handle, null, 0);
+
+            if (negativeSize > 0)
+            {
+                throw Interop.libcrypto.CreateOpenSslCryptographicException();
+            }
+
+            byte[] bytes = new byte[-negativeSize];
+
+            int ret = method(handle, bytes, bytes.Length);
+
+            if (ret != 1)
+            {
+                throw Interop.libcrypto.CreateOpenSslCryptographicException();
+            }
+
+            return bytes;
+        }
     }
 }
diff --git a/src/System.Security.Cryptography.X509Certificates/src/Internal/Cryptography/Pal.Unix/OpenSslX509CertificateReader.cs b/src/System.Security.Cryptography.X509Certificates/src/Internal/Cryptography/Pal.Unix/OpenSslX509CertificateReader.cs
@@ -104,22 +104,7 @@ public byte[] Thumbprint
         {
             get
             {
-                int negativeSize = Interop.NativeCrypto.GetX509Thumbprint(_cert, null, 0);
-
-                if (negativeSize >= 0)
-                {
-                    throw new CryptographicException();
-                }
-
-                byte[] buf = new byte[-negativeSize];
-                int ret = Interop.NativeCrypto.GetX509Thumbprint(_cert, buf, buf.Length);
-
-                if (ret != 1)
-                {
-                    throw new CryptographicException();
-                }
-
-                return buf;
+                return Interop.NativeCrypto.GetX509Thumbprint(_cert);
             }
         }
 
@@ -136,22 +121,7 @@ public byte[] KeyAlgorithmParameters
         {
             get
             {
-                int negativeLen = Interop.NativeCrypto.GetX509PublicKeyParameterBytes(_cert, null, 0);
-
-                if (negativeLen >= 0)
-                {
-                    throw new CryptographicException();
-                }
-
-                byte[] buf = new byte[-negativeLen];
-                int ret = Interop.NativeCrypto.GetX509PublicKeyParameterBytes(_cert, buf, buf.Length);
-
-                if (ret != 1)
-                {
-                    throw new CryptographicException();
-                }
-
-                return buf;
+                return Interop.NativeCrypto.GetX509PublicKeyParameterBytes(_cert);
             }
         }
 
@@ -343,21 +313,7 @@ private static X500DistinguishedName LoadX500Name(IntPtr namePtr)
         {
             Interop.libcrypto.CheckValidOpenSslHandle(namePtr);
 
-            int negativeSize = Interop.NativeCrypto.GetX509NameRawBytes(namePtr, null, 0);
-
-            if (negativeSize > 0)
-            {
-                throw new CryptographicException();
-            }
-
-            byte[] buf = new byte[-negativeSize];
-            int ret = Interop.NativeCrypto.GetX509NameRawBytes(namePtr, buf, buf.Length);
-
-            if (ret != 1)
-            {
-                throw new CryptographicException();
-            }
-
+            byte[] buf = Interop.NativeCrypto.GetX509NameRawBytes(namePtr);
             return new X500DistinguishedName(buf);
         }
 
