Fix obsolete method calls

vcsjones · vcsjones · commit edf204abcb0e · 2025-11-21T10:07:45.000-05:00
diff --git a/src/AzureSignTool/KeyVaultConfigurationDiscoverer.cs b/src/AzureSignTool/KeyVaultConfigurationDiscoverer.cs
@@ -64,7 +64,7 @@ public async Task<ErrorOr<AzureKeyVaultMaterializedConfiguration>> Materialize(A
                 }
                 _logger.LogTrace($"Retrieved certificate with Id {azureCertificate.Id}.");
 
-                certificate = new X509Certificate2(azureCertificate.Cer);
+                certificate = X509CertificateLoader.LoadCertificate(azureCertificate.Cer);
             }
             catch (Exception e)
             {
diff --git a/src/AzureSignTool/Program.cs b/src/AzureSignTool/Program.cs
@@ -563,7 +563,7 @@ private static ErrorOr<X509Certificate2Collection> GetAdditionalCertificates(IEn
                         case X509ContentType.Cert:
                         case X509ContentType.Authenticode:
                         case X509ContentType.SerializedCert:
-                            var certificate = new X509Certificate2(path);
+                            var certificate = X509CertificateLoader.LoadCertificateFromFile(path);
                             logger.LogTrace("Including additional certificate {thumbprint}.", certificate.Thumbprint);
                             collection.Add(certificate);
                             break;
diff --git a/test/AzureSign.Core.Tests/AuthenticodeKeyVaultSignerTests.cs b/test/AzureSign.Core.Tests/AuthenticodeKeyVaultSignerTests.cs
@@ -22,7 +22,7 @@ public AuthenticodeKeyVaultSignerTests()
         [MemberData(nameof(RsaCertificates))]
         public void ShouldSignExeWithRSASigningCertificates_Sha1FileDigest(string certificate)
         {
-            var signingCert = new X509Certificate2(certificate, "test", X509KeyStorageFlags.EphemeralKeySet);
+            var signingCert = X509CertificateLoader.LoadPkcs12FromFile(certificate, "test", X509KeyStorageFlags.EphemeralKeySet);
             var signer = new AuthenticodeKeyVaultSigner(signingCert.GetRSAPrivateKey(), signingCert, HashAlgorithmName.SHA1, TimeStampConfiguration.None);
             var fileToSign = GetFileToSign();
             var result = signer.SignFile(fileToSign, null, null, null);
@@ -40,7 +40,7 @@ public void ShouldSignExeWithRSASigningCertificates_Sha1FileDigest(string certif
         [MemberData(nameof(RsaCertificates))]
         public void ShouldSignExeWithRSASigningCertificates_Sha256FileDigest(string certificate)
         {
-            var signingCert = new X509Certificate2(certificate, "test", X509KeyStorageFlags.EphemeralKeySet);
+            var signingCert = X509CertificateLoader.LoadPkcs12FromFile(certificate, "test", X509KeyStorageFlags.EphemeralKeySet);
             var signer = new AuthenticodeKeyVaultSigner(signingCert.GetRSAPrivateKey(), signingCert, HashAlgorithmName.SHA256, TimeStampConfiguration.None);
             var fileToSign = GetFileToSign();
             var result = signer.SignFile(fileToSign, null, null, null);
@@ -59,7 +59,7 @@ public void ShouldSignExeWithRSASigningCertificates_Sha256FileDigest(string cert
         [MemberData(nameof(ECDsaCertificates))]
         public void ShouldSignExeWithECDsaSigningCertificates_Sha256FileDigest(string certificate)
         {
-            var signingCert = new X509Certificate2(certificate, "test", X509KeyStorageFlags.EphemeralKeySet);
+            var signingCert = X509CertificateLoader.LoadPkcs12FromFile(certificate, "test", X509KeyStorageFlags.EphemeralKeySet);
             var signer = new AuthenticodeKeyVaultSigner(signingCert.GetECDsaPrivateKey(), signingCert, HashAlgorithmName.SHA256, TimeStampConfiguration.None);
             var fileToSign = GetFileToSign();
             var result = signer.SignFile(fileToSign, null, null, null);
@@ -77,7 +77,7 @@ public void ShouldSignExeWithECDsaSigningCertificates_Sha256FileDigest(string ce
         [MemberData(nameof(ECDsaCertificates))]
         public void ShouldSignExeWithECDsaSigningCertificates_Sha256FileDigest_WithTimestamps(string certificate)
         {
-            var signingCert = new X509Certificate2(certificate, "test", X509KeyStorageFlags.EphemeralKeySet);
+            var signingCert = X509CertificateLoader.LoadPkcs12FromFile(certificate, "test", X509KeyStorageFlags.EphemeralKeySet);
             var timestampConfig = new TimeStampConfiguration("http://timestamp.digicert.com", HashAlgorithmName.SHA256, TimeStampType.RFC3161);
             var signer = new AuthenticodeKeyVaultSigner(signingCert.GetECDsaPrivateKey(), signingCert, HashAlgorithmName.SHA256, timestampConfig);
             var fileToSign = GetFileToSign();
@@ -97,7 +97,7 @@ public void ShouldSignExeWithECDsaSigningCertificates_Sha256FileDigest_WithTimes
         [MemberData(nameof(RsaCertificates))]
         public void ShouldSignExeWithRSASigningCertificates_Sha256FileDigest_WithTimestamps(string certificate)
         {
-            var signingCert = new X509Certificate2(certificate, "test", X509KeyStorageFlags.EphemeralKeySet);
+            var signingCert = X509CertificateLoader.LoadPkcs12FromFile(certificate, "test", X509KeyStorageFlags.EphemeralKeySet);
             var timestampConfig = new TimeStampConfiguration("http://timestamp.digicert.com", HashAlgorithmName.SHA256, TimeStampType.RFC3161);
             var signer = new AuthenticodeKeyVaultSigner(signingCert.GetRSAPrivateKey(), signingCert, HashAlgorithmName.SHA256, timestampConfig);
             var fileToSign = GetFileToSign();
diff --git a/test/AzureSign.Core.Tests/MemoryCertificateStoreTests.cs b/test/AzureSign.Core.Tests/MemoryCertificateStoreTests.cs
@@ -29,7 +29,7 @@ public void ShouldAddCertificate()
         {
             using (var store = MemoryCertificateStore.Create())
             {
-                using (var cert = new X509Certificate2("testcerts\\kevin_jones.cer"))
+                using (var cert = X509CertificateLoader.LoadCertificateFromFile("testcerts\\kevin_jones.cer"))
                 {
                     Assert.Empty(store.Certificates);
                     store.Add(cert);

Original file line number	Diff line number	Diff line change
`@@ -64,7 +64,7 @@ public async Task<ErrorOr<AzureKeyVaultMaterializedConfiguration>> Materialize(A`
`64`	`64`	`}`
`65`	`65`	`_logger.LogTrace($"Retrieved certificate with Id {azureCertificate.Id}.");`
`66`	`66`
`67`		`- certificate = new X509Certificate2(azureCertificate.Cer);`
	`67`	`+ certificate = X509CertificateLoader.LoadCertificate(azureCertificate.Cer);`
`68`	`68`	`}`
`69`	`69`	`catch (Exception e)`
`70`	`70`	`{`
Original file line number	Diff line number	Diff line change
`@@ -29,7 +29,7 @@ public void ShouldAddCertificate()`
`29`	`29`	`{`
`30`	`30`	`using (var store = MemoryCertificateStore.Create())`
`31`	`31`	`{`
`32`		`- using (var cert = new X509Certificate2("testcerts\\kevin_jones.cer"))`
	`32`	`+ using (var cert = X509CertificateLoader.LoadCertificateFromFile("testcerts\\kevin_jones.cer"))`
`33`	`33`	`{`
`34`	`34`	`Assert.Empty(store.Certificates);`
`35`	`35`	`store.Add(cert);`