[PQC] Update tests for latest Win11 Insiders (#118612)

Author: PranavSenthilnathan

src/libraries/Common/src/System/Security/Cryptography/MLDsaCng.Windows.cs

@@ -4,7 +4,6 @@
 using System.Diagnostics;
 using System.Formats.Asn1;
 using System.Security.Cryptography.Asn1;
-using System.Runtime.InteropServices;
 using System.Runtime.Versioning;
 using Microsoft.Win32.SafeHandles;
 
@@ -373,16 +372,6 @@ internal static MLDsaCng ImportPkcs8PrivateKey(byte[] source, out int bytesRead)
                 {
                     key = CngKey.Import(pkcs8Source, CngKeyBlobFormat.Pkcs8PrivateBlob);
                 }
-                catch (CryptographicException)
-                {
-                    // TODO: Once Windows moves to new PKCS#8 format, we can remove this conversion.
-                    byte[] newPkcs8Source = MLDsaPkcs8.ConvertToOldChoicelessFormat(pkcs8Source);
-
-                    using (PinAndClear.Track(newPkcs8Source))
-                    {
-                        key = CngKey.Import(newPkcs8Source, CngKeyBlobFormat.Pkcs8PrivateBlob);
-                    }
-                }
                 catch (AsnContentException e)
                 {
                     throw new CryptographicException(SR.Cryptography_Der_Invalid_Encoding, e);
@@ -491,13 +480,6 @@ private void ExportKeyWithEncryptedOnlyExport(KeySelectorFunc keySelector, MLDsa
                 {
                     mldsaPrivateKeyAsn = MLDsaPrivateKeyAsn.Decode(privateKey, AsnEncodingRules.BER);
                 }
-                catch (CryptographicException)
-                {
-                    // TODO: Once Windows moves to new PKCS#8 format, we can remove this conversion.
-                    newPkcs8 = MLDsaPkcs8.ConvertFromOldChoicelessFormat(pkcs8);
-                    ReadOnlyMemory<byte> newPrivateKey = KeyFormatHelper.ReadPkcs8(KnownOids, newPkcs8, out _);
-                    mldsaPrivateKeyAsn = MLDsaPrivateKeyAsn.Decode(newPrivateKey, AsnEncodingRules.BER);
-                }
                 catch (AsnContentException e)
                 {
                     throw new CryptographicException(SR.Cryptography_Der_Invalid_Encoding, e);

src/libraries/Common/src/System/Security/Cryptography/MLDsaPkcs8.cs

@@ -1,10 +1,7 @@
 // Licensed to the .NET Foundation under one or more agreements.
 // The .NET Foundation licenses this file to you under the MIT license.
 
-using System.Buffers;
-using System.Diagnostics;
 using System.Formats.Asn1;
-using System.Runtime.InteropServices;
 using System.Security.Cryptography.Asn1;
 
 namespace System.Security.Cryptography
@@ -72,74 +69,5 @@ internal static bool TryExportPkcs8PrivateKey(
                 }
             }
         }
-
-        // TODO: Remove this once Windows moves to the new format.
-        internal static unsafe byte[] ConvertToOldChoicelessFormat(ReadOnlySpan<byte> pkcs8WithChoice)
-        {
-            fixed (byte* ptr = &MemoryMarshal.GetReference(pkcs8WithChoice))
-            {
-                using (MemoryManager<byte> manager = new PointerMemoryManager<byte>(ptr, pkcs8WithChoice.Length))
-                {
-                    PrivateKeyInfoAsn privateKeyInfo = PrivateKeyInfoAsn.Decode(manager.Memory, AsnEncodingRules.BER);
-                    AlgorithmIdentifierAsn privateAlgorithm = privateKeyInfo.PrivateKeyAlgorithm;
-
-                    if (privateAlgorithm.Algorithm is not (Oids.MLDsa44 or Oids.MLDsa65 or Oids.MLDsa87))
-                    {
-                        Debug.Fail("Unexpected algorithm");
-                        throw new CryptographicException();
-                    }
-
-                    MLDsaPrivateKeyAsn mldsaPrivateKeyAsn = MLDsaPrivateKeyAsn.Decode(privateKeyInfo.PrivateKey, AsnEncodingRules.BER);
-                    privateKeyInfo.PrivateKey = mldsaPrivateKeyAsn.Seed
-                        ?? mldsaPrivateKeyAsn.ExpandedKey.GetValueOrDefault(); // Old format does not support having both
-
-                    AsnWriter writer = new AsnWriter(AsnEncodingRules.DER);
-                    privateKeyInfo.Encode(writer);
-                    return writer.Encode();
-                }
-            }
-        }
-
-        // TODO: Remove this once Windows moves to the new format.
-        internal static unsafe byte[] ConvertFromOldChoicelessFormat(ReadOnlySpan<byte> pkcs8WithoutChoice)
-        {
-            fixed (byte* ptr = &MemoryMarshal.GetReference(pkcs8WithoutChoice))
-            {
-                using (MemoryManager<byte> manager = new PointerMemoryManager<byte>(ptr, pkcs8WithoutChoice.Length))
-                {
-                    PrivateKeyInfoAsn privateKeyInfo = PrivateKeyInfoAsn.Decode(manager.Memory, AsnEncodingRules.BER);
-                    AlgorithmIdentifierAsn privateAlgorithm = privateKeyInfo.PrivateKeyAlgorithm;
-
-                    int seedSize = privateAlgorithm.Algorithm switch
-                    {
-                        Oids.MLDsa44 => MLDsaAlgorithm.MLDsa44.PrivateSeedSizeInBytes,
-                        Oids.MLDsa65 => MLDsaAlgorithm.MLDsa65.PrivateSeedSizeInBytes,
-                        Oids.MLDsa87 => MLDsaAlgorithm.MLDsa87.PrivateSeedSizeInBytes,
-                        _ => throw new CryptographicException(),
-                    };
-
-                    ReadOnlyMemory<byte> key = privateKeyInfo.PrivateKey;
-
-                    MLDsaPrivateKeyAsn mldsaPrivateKeyAsn = default;
-
-                    if (key.Length == seedSize)
-                    {
-                        mldsaPrivateKeyAsn.Seed = key;
-                    }
-                    else
-                    {
-                        mldsaPrivateKeyAsn.ExpandedKey = key;
-                    }
-
-                    AsnWriter writer = new(AsnEncodingRules.DER);
-                    mldsaPrivateKeyAsn.Encode(writer);
-                    privateKeyInfo.PrivateKey = writer.Encode();
-
-                    writer = new AsnWriter(AsnEncodingRules.DER);
-                    privateKeyInfo.Encode(writer);
-                    return writer.Encode();
-                }
-            }
-        }
     }
 }

src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/MLDsa/MLDsaCngTests.Windows.cs

@@ -144,7 +144,7 @@ public void ImportPrivateSeed_Persisted()
             }
         }
 
-        [Fact]
+        [ConditionalFact(typeof(MLDsaTestHelpers), nameof(MLDsaTestHelpers.SupportsExportingPrivateKeyPkcs8))]
         public void ImportPrivateKey_Persisted()
         {
             CngKey key = PqcBlobHelpers.EncodeMLDsaBlob(

src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/MLDsa/MLDsaTestHelpers.cs

@@ -14,11 +14,8 @@ internal static partial class MLDsaTestHelpers
     {
         internal static bool MLDsaIsNotSupported => !MLDsa.IsSupported;
 
-        // TODO: Windows does not support draft 10 PKCS#8 format yet. Remove this and use MLDsa.IsSupported (or remove condition) when it does.
-        internal static bool SupportsDraft10Pkcs8 => MLDsa.IsSupported && !PlatformDetection.IsWindows;
-
-        // TODO: Windows does not support signing empty data. Remove this and use MLDsa.IsSupported (or remove condition) when it does.
-        internal static bool SigningEmptyDataIsSupported => MLDsa.IsSupported && !PlatformDetection.IsWindows;
+        // TODO (https://github.com/dotnet/runtime/issues/118609): Windows currently does not support PKCS#8 export when imported as private key.
+        internal static bool SupportsExportingPrivateKeyPkcs8 => MLDsa.IsSupported && !PlatformDetection.IsWindows;
 
         internal static bool ExternalMuIsSupported => MLDsa.IsSupported && !PlatformDetection.IsWindows;
 
@@ -305,28 +302,11 @@ internal static void AssertExportMLDsaPrivateKey(Action<Func<MLDsa, byte[]>> dir
 
             AssertExportPkcs8PrivateKey(exportPkcs8 =>
                 indirectCallback(mldsa =>
-                    DecodeExpandedKey(
-                        mldsa,
+                    MLDsaPrivateKeyAsn.Decode(
                         PrivateKeyInfoAsn.Decode(
                             exportPkcs8(mldsa), AsnEncodingRules.DER).PrivateKey, AsnEncodingRules.DER).ExpandedKey?.ToArray()));
         }
 
-        // TODO remove this when windows supports draft 10 PKCS#8 format
-        internal static MLDsaPrivateKeyAsn DecodeExpandedKey(MLDsa mldsa, ReadOnlyMemory<byte> encoded, AsnEncodingRules ruleSet)
-        {
-            try
-            {
-                return MLDsaPrivateKeyAsn.Decode(encoded, ruleSet);
-            }
-            catch (CryptographicException) when (!SupportsDraft10Pkcs8)
-            {
-                return new MLDsaPrivateKeyAsn
-                {
-                    ExpandedKey = (mldsa.Algorithm.PrivateKeySizeInBytes == encoded.Length) ? encoded : default(ReadOnlyMemory<byte>?),
-                };
-            }
-        }
-
         internal static void AssertExportMLDsaPrivateSeed(Action<Func<MLDsa, byte[]>> callback) =>
             AssertExportMLDsaPrivateSeed(callback, callback);
 
@@ -341,28 +321,11 @@ internal static void AssertExportMLDsaPrivateSeed(Action<Func<MLDsa, byte[]>> di
 
             AssertExportPkcs8PrivateKey(exportPkcs8 =>
                 indirectCallback(mldsa =>
-                    DecodePrivateSeed(
-                        mldsa,
+                    MLDsaPrivateKeyAsn.Decode(
                         PrivateKeyInfoAsn.Decode(
                             exportPkcs8(mldsa), AsnEncodingRules.DER).PrivateKey, AsnEncodingRules.DER).Seed?.ToArray()));
         }
 
-        // TODO remove this when windows supports draft 10 PKCS#8 format
-        internal static MLDsaPrivateKeyAsn DecodePrivateSeed(MLDsa mldsa, ReadOnlyMemory<byte> encoded, AsnEncodingRules ruleSet)
-        {
-            try
-            {
-                return MLDsaPrivateKeyAsn.Decode(encoded, ruleSet);
-            }
-            catch (CryptographicException) when (!SupportsDraft10Pkcs8)
-            {
-                return new MLDsaPrivateKeyAsn
-                {
-                    Seed = (mldsa.Algorithm.PrivateSeedSizeInBytes == encoded.Length) ? encoded : default(ReadOnlyMemory<byte>?),
-                };
-            }
-        }
-
         internal static void AssertExportPkcs8PrivateKey(MLDsa mldsa, Action<byte[]> callback) =>
             AssertExportPkcs8PrivateKey(export => callback(export(mldsa)));
 

src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/MLDsa/MLDsaTestsBase.cs

@@ -89,8 +89,7 @@ public void GenerateSignVerifyExternalMuWithContext(MLDsaAlgorithm algorithm)
             SignAndVerifyExternalMu(mldsa, data, context);
         }
 
-        [ConditionalTheory(typeof(MLDsaTestHelpers), nameof(MLDsaTestHelpers.SigningEmptyDataIsSupported))]
-        [ActiveIssue("https://github.com/dotnet/runtime/issues/116461", TestPlatforms.Windows)]
+        [Theory]
         [MemberData(nameof(MLDsaTestsData.AllMLDsaAlgorithms), MemberType = typeof(MLDsaTestsData))]
         public void GenerateSignVerifyEmptyMessageNoContext(MLDsaAlgorithm algorithm)
         {
@@ -99,8 +98,7 @@ public void GenerateSignVerifyEmptyMessageNoContext(MLDsaAlgorithm algorithm)
             ExerciseSuccessfulVerify(mldsa, [], signature, []);
         }
 
-        [ConditionalTheory(typeof(MLDsaTestHelpers), nameof(MLDsaTestHelpers.SigningEmptyDataIsSupported))]
-        [ActiveIssue("https://github.com/dotnet/runtime/issues/116461", TestPlatforms.Windows)]
+        [Theory]
         [MemberData(nameof(MLDsaTestsData.AllMLDsaAlgorithms), MemberType = typeof(MLDsaTestsData))]
         public void GenerateSignVerifyEmptyMessageWithContext(MLDsaAlgorithm algorithm)
         {
@@ -110,19 +108,15 @@ public void GenerateSignVerifyEmptyMessageWithContext(MLDsaAlgorithm algorithm)
             ExerciseSuccessfulVerify(mldsa, [], signature, context);
         }
 
-        [ConditionalTheory(
-            typeof(MLDsaTestHelpers),
-            [nameof(MLDsaTestHelpers.SigningEmptyDataIsSupported), nameof(MLDsaTestHelpers.ExternalMuIsSupported)])]
+        [ConditionalTheory(typeof(MLDsaTestHelpers), nameof(MLDsaTestHelpers.ExternalMuIsSupported))]
         [MemberData(nameof(MLDsaTestsData.AllMLDsaAlgorithms), MemberType = typeof(MLDsaTestsData))]
         public void GenerateSignVerifyEmptyMessageExternalMuNoContext(MLDsaAlgorithm algorithm)
         {
             using MLDsa mldsa = GenerateKey(algorithm);
             SignAndVerifyExternalMu(mldsa, [], []);
         }
 
-        [ConditionalTheory(
-            typeof(MLDsaTestHelpers),
-            [nameof(MLDsaTestHelpers.SigningEmptyDataIsSupported), nameof(MLDsaTestHelpers.ExternalMuIsSupported)])]
+        [ConditionalTheory(typeof(MLDsaTestHelpers), nameof(MLDsaTestHelpers.ExternalMuIsSupported))]
         [MemberData(nameof(MLDsaTestsData.AllMLDsaAlgorithms), MemberType = typeof(MLDsaTestsData))]
         public void GenerateSignVerifyEmptyMessageExternalMuWithContext(MLDsaAlgorithm algorithm)
         {
@@ -228,7 +222,7 @@ public void GenerateExportPrivateSeedSignAndVerify(MLDsaAlgorithm algorithm)
             }
         }
 
-        [Fact]
+        [ConditionalFact(typeof(MLDsaTestHelpers), nameof(MLDsaTestHelpers.SupportsExportingPrivateKeyPkcs8))]
         public void ImportPrivateKey_CannotReconstructSeed()
         {
             byte[] privateKey;
@@ -295,7 +289,7 @@ public void NistImportPublicKeyVerifyExternalMu(MLDsaNistTestCase testCase)
             Assert.Equal(testCase.ShouldPass, mldsa.VerifyMu(testCase.Mu, testCase.Signature));
         }
 
-        [Theory]
+        [ConditionalTheory(typeof(MLDsaTestHelpers), nameof(MLDsaTestHelpers.SupportsExportingPrivateKeyPkcs8))]
         [MemberData(nameof(MLDsaTestsData.AllPureMLDsaNistTestCases), MemberType = typeof(MLDsaTestsData))]
         public void NistImportPrivateKeyVerifyExportsAndSignature(MLDsaNistTestCase testCase)
         {
@@ -332,7 +326,7 @@ public void ImportPublicKey_Export(MLDsaKeyInfo info)
                 export => AssertExportPkcs8FromPublicKey(() => export(mldsa)));
         }
 
-        [Theory]
+        [ConditionalTheory(typeof(MLDsaTestHelpers), nameof(MLDsaTestHelpers.SupportsExportingPrivateKeyPkcs8))]
         [MemberData(nameof(MLDsaTestsData.IetfMLDsaAlgorithms), MemberType = typeof(MLDsaTestsData))]
         public void ImportPrivateKey_Export(MLDsaKeyInfo info)
         {

src/libraries/System.Security.Cryptography/tests/X509Certificates/ExportTests.cs

@@ -1,9 +1,7 @@
 // Licensed to the .NET Foundation under one or more agreements.
 // The .NET Foundation licenses this file to you under the MIT license.
 
-using System.Collections.Generic;
 using System.Formats.Asn1;
-using System.Linq;
 using System.Security.Cryptography.Tests;
 using System.Security.Cryptography.Dsa.Tests;
 using System.Security.Cryptography.EcDsa.Tests;
@@ -370,7 +368,7 @@ public static void ExportPkcs12_MLKem_Roundtrip(MLKemAlgorithm algorithm)
 
             PbeParameters pbeParameters = new(PbeEncryptionAlgorithm.Aes256Cbc, HashAlgorithmName.SHA256, 32);
 
-            using (X509Certificate2 cert = X509CertificateLoader.LoadPkcs12(pfxBytes, pfxPassword))
+            using (X509Certificate2 cert = X509CertificateLoader.LoadPkcs12(pfxBytes, pfxPassword, X509KeyStorageFlags.Exportable))
             {
                 byte[] pkcs12 = cert.ExportPkcs12(pbeParameters, password);
                 (int certs, int keys) = VerifyPkcs12(
@@ -382,7 +380,7 @@ public static void ExportPkcs12_MLKem_Roundtrip(MLKemAlgorithm algorithm)
                 Assert.Equal(1, certs);
                 Assert.Equal(1, keys);
 
-                using (X509Certificate2 reLoaded = X509CertificateLoader.LoadPkcs12(pkcs12, password))
+                using (X509Certificate2 reLoaded = X509CertificateLoader.LoadPkcs12(pkcs12, password, X509KeyStorageFlags.Exportable))
                 using (MLKem kem = reLoaded.GetMLKemPrivateKey())
                 {
                     Assert.NotNull(kem);
@@ -392,15 +390,14 @@ public static void ExportPkcs12_MLKem_Roundtrip(MLKemAlgorithm algorithm)
             }
         }
 
-        [ConditionalTheory(typeof(MLDsaTestHelpers), nameof(MLDsaTestHelpers.SupportsDraft10Pkcs8))]
-        [ActiveIssue("https://github.com/dotnet/runtime/issues/116463", TestPlatforms.Windows)]
+        [ConditionalTheory(typeof(MLDsa), nameof(MLDsa.IsSupported))]
         [MemberData(nameof(MLDsaTestsData.IetfMLDsaAlgorithms), MemberType = typeof(MLDsaTestsData))]
         public static void ExportPkcs12_MLDsa_Generated_Roundtrip(MLDsaKeyInfo info)
         {
             string password = info.EncryptionPassword;
             PbeParameters pbeParameters = info.EncryptionParameters;
 
-            using (X509Certificate2 cert = X509CertificateLoader.LoadPkcs12(info.Pfx_Seed, password))
+            using (X509Certificate2 cert = X509CertificateLoader.LoadPkcs12(info.Pfx_Seed, password, X509KeyStorageFlags.Exportable))
             {
                 byte[] pkcs12 = cert.ExportPkcs12(pbeParameters, password);
                 (int certs, int keys) = VerifyPkcs12(
@@ -412,7 +409,7 @@ public static void ExportPkcs12_MLDsa_Generated_Roundtrip(MLDsaKeyInfo info)
                 Assert.Equal(1, certs);
                 Assert.Equal(1, keys);
 
-                using (X509Certificate2 reLoaded = X509CertificateLoader.LoadPkcs12(pkcs12, password))
+                using (X509Certificate2 reLoaded = X509CertificateLoader.LoadPkcs12(pkcs12, password, X509KeyStorageFlags.Exportable))
                 using (MLDsa mldsa = reLoaded.GetMLDsaPrivateKey())
                 {
                     Assert.NotNull(mldsa);
@@ -433,7 +430,7 @@ public static void ExportPkcs12_SlhDsa_Ietf_Roundtrip()
 
             PbeParameters pbeParameters = new(PbeEncryptionAlgorithm.Aes256Cbc, HashAlgorithmName.SHA256, 32);
 
-            using (X509Certificate2 cert = X509CertificateLoader.LoadPkcs12(pfxBytes, password))
+            using (X509Certificate2 cert = X509CertificateLoader.LoadPkcs12(pfxBytes, password, X509KeyStorageFlags.Exportable))
             {
                 byte[] pkcs12 = cert.ExportPkcs12(pbeParameters, password);
                 (int certs, int keys) = VerifyPkcs12(
@@ -445,7 +442,7 @@ public static void ExportPkcs12_SlhDsa_Ietf_Roundtrip()
                 Assert.Equal(1, certs);
                 Assert.Equal(1, keys);
 
-                using (X509Certificate2 reLoaded = X509CertificateLoader.LoadPkcs12(pkcs12, password))
+                using (X509Certificate2 reLoaded = X509CertificateLoader.LoadPkcs12(pkcs12, password, X509KeyStorageFlags.Exportable))
                 using (SlhDsa slhDsa = reLoaded.GetSlhDsaPrivateKey())
                 {
                     Assert.NotNull(slhDsa);
@@ -462,7 +459,7 @@ public static void ExportPkcs12_SlhDsa_Generated_Roundtrip(SlhDsaTestData.SlhDsa
             string password = info.EncryptionPassword;
             PbeParameters pbeParameters = new(PbeEncryptionAlgorithm.Aes256Cbc, HashAlgorithmName.SHA256, 32);
 
-            using (X509Certificate2 cert = X509CertificateLoader.LoadPkcs12(info.SelfSignedCertificatePfx, password))
+            using (X509Certificate2 cert = X509CertificateLoader.LoadPkcs12(info.SelfSignedCertificatePfx, password, X509KeyStorageFlags.Exportable))
             {
                 byte[] pkcs12 = cert.ExportPkcs12(pbeParameters, password);
                 (int certs, int keys) = VerifyPkcs12(
@@ -474,7 +471,7 @@ public static void ExportPkcs12_SlhDsa_Generated_Roundtrip(SlhDsaTestData.SlhDsa
                 Assert.Equal(1, certs);
                 Assert.Equal(1, keys);
 
-                using (X509Certificate2 reLoaded = X509CertificateLoader.LoadPkcs12(pkcs12, password))
+                using (X509Certificate2 reLoaded = X509CertificateLoader.LoadPkcs12(pkcs12, password, X509KeyStorageFlags.Exportable))
                 using (SlhDsa slhDsa = reLoaded.GetSlhDsaPrivateKey())
                 {
                     Assert.NotNull(slhDsa);