public unsafe void DecodeX509SubjectKeyIdentifierExtension(byte[] encoded, out byte[] subjectKeyIdentifier)
{
using (SafeAsn1OctetStringHandle octetString = Interop.libcrypto.OpenSslD2I(Interop.libcrypto.d2i_ASN1_OCTET_STRING, encoded))
{
subjectKeyIdentifier = Interop.NativeCrypto.GetAsn1StringBytes(octetString.DangerousGetHandle());
}
}
internal static unsafe byte[] DecodeX509SubjectKeyIdentifierExtension(byte[] encoded)
{
using (SafeAsn1OctetStringHandle octetString = Interop.libcrypto.OpenSslD2I(Interop.libcrypto.d2i_ASN1_OCTET_STRING, encoded))
{
Interop.libcrypto.CheckValidOpenSslHandle(octetString);
return(Interop.Crypto.GetAsn1StringBytes(octetString.DangerousGetHandle()));
}
}
internal static byte[] DecodeX509SubjectKeyIdentifierExtension(byte[] encoded)
{
using (SafeAsn1OctetStringHandle octetString = Interop.Crypto.DecodeAsn1OctetString(encoded, encoded.Length))
{
Interop.Crypto.CheckValidOpenSslHandle(octetString);
return(Interop.Crypto.GetAsn1StringBytes(octetString.DangerousGetHandle()));
}
}
protected override string FormatNative(Oid oid, byte[] rawData, bool multiLine)
{
if (oid == null || string.IsNullOrEmpty(oid.Value))
{
return(EncodeHexString(rawData, true));
}
// The established behavior for this method is to return the native answer, if possible,
// or to return null and let rawData get hex-encoded. CryptographicException should not
// be raised.
using (SafeAsn1ObjectHandle asnOid = Interop.Crypto.ObjTxt2Obj(oid.Value))
using (SafeAsn1OctetStringHandle octetString = Interop.Crypto.Asn1OctetStringNew())
{
if (asnOid.IsInvalid || octetString.IsInvalid)
{
return(null);
}
if (!Interop.Crypto.Asn1OctetStringSet(octetString, rawData, rawData.Length))
{
return(null);
}
using (SafeBioHandle bio = Interop.Crypto.CreateMemoryBio())
using (SafeX509ExtensionHandle x509Ext = Interop.Crypto.X509ExtensionCreateByObj(asnOid, false, octetString))
{
if (bio.IsInvalid || x509Ext.IsInvalid)
{
return(null);
}
if (!Interop.Crypto.X509V3ExtPrint(bio, x509Ext))
{
return(null);
}
int printLen = Interop.Crypto.GetMemoryBioSize(bio);
// Account for the null terminator that it'll want to write.
var buf = new byte[printLen + 1];
int read = Interop.Crypto.BioGets(bio, buf, buf.Length);
if (read < 0)
{
throw Interop.Crypto.CreateOpenSslCryptographicException();
}
return(Encoding.UTF8.GetString(buf, 0, read));
}
}
}
protected override string FormatNative(Oid oid, byte[] rawData, bool multiLine)
{
if (oid == null || string.IsNullOrEmpty(oid.Value))
{
return(EncodeHexString(rawData, true));
}
// The established behavior for this method is to return the native answer, if possible,
// or to return null and let rawData get hex-encoded. CryptographicException should not
// be raised.
using (SafeAsn1ObjectHandle asnOid = Interop.libcrypto.OBJ_txt2obj(oid.Value, true))
using (SafeAsn1OctetStringHandle octetString = Interop.libcrypto.ASN1_OCTET_STRING_new())
{
if (asnOid.IsInvalid || octetString.IsInvalid)
{
return(null);
}
if (!Interop.libcrypto.ASN1_OCTET_STRING_set(octetString, rawData, rawData.Length))
{
return(null);
}
using (SafeBioHandle bio = Interop.libcrypto.BIO_new(Interop.libcrypto.BIO_s_mem()))
using (SafeX509ExtensionHandle x509Ext = Interop.libcrypto.X509_EXTENSION_create_by_OBJ(IntPtr.Zero, asnOid, false, octetString))
{
if (bio.IsInvalid || x509Ext.IsInvalid)
{
return(null);
}
if (!Interop.libcrypto.X509V3_EXT_print(bio, x509Ext, Interop.libcrypto.X509V3ExtPrintFlags.None, 0))
{
return(null);
}
int printLen = Interop.libcrypto.GetMemoryBioSize(bio);
// Account for the null terminator that it'll want to write.
StringBuilder builder = new StringBuilder(printLen + 1);
Interop.libcrypto.BIO_gets(bio, builder, builder.Capacity);
return(builder.ToString());
}
}
}
protected override string FormatNative(Oid oid, byte[] rawData, bool multiLine)
{
if (oid == null || string.IsNullOrEmpty(oid.Value))
{
return(EncodeHexString(rawData, true));
}
// The established behavior for this method is to return the native answer, if possible,
// or to return null and let rawData get hex-encoded. CryptographicException should not
// be raised.
bool clearErrors = true;
try
{
using (SafeAsn1ObjectHandle asnOid = Interop.Crypto.ObjTxt2Obj(oid.Value))
using (SafeAsn1OctetStringHandle octetString = Interop.Crypto.Asn1OctetStringNew())
{
if (asnOid.IsInvalid || octetString.IsInvalid)
{
return(null);
}
if (!Interop.Crypto.Asn1OctetStringSet(octetString, rawData, rawData.Length))
{
return(null);
}
using (SafeBioHandle bio = Interop.Crypto.CreateMemoryBio())
using (SafeX509ExtensionHandle x509Ext = Interop.Crypto.X509ExtensionCreateByObj(asnOid, false, octetString))
{
if (bio.IsInvalid || x509Ext.IsInvalid)
{
return(null);
}
if (!Interop.Crypto.X509V3ExtPrint(bio, x509Ext))
{
return(null);
}
// X509V3ExtPrint might contaminate the error queue on success, always clear now.
Interop.Crypto.ErrClearError();
// Errors past here are handled by throws, don't need to double-lock
// the success path.
clearErrors = false;
int printLen = Interop.Crypto.GetMemoryBioSize(bio);
// Account for the null terminator that it'll want to write.
var buf = new byte[printLen + 1];
int read = Interop.Crypto.BioGets(bio, buf, buf.Length);
if (read < 0)
{
throw Interop.Crypto.CreateOpenSslCryptographicException();
}
return(Encoding.UTF8.GetString(buf, 0, read));
}
}
}
finally
{
// All of the return null paths might have errors that we are ignoring.
if (clearErrors)
{
Interop.Crypto.ErrClearError();
}
}
}
internal static extern bool Asn1OctetStringSet(SafeAsn1OctetStringHandle o, byte[] d, int len);
internal static extern bool ASN1_OCTET_STRING_set(SafeAsn1OctetStringHandle o, byte[] d, int len);
internal static extern SafeX509ExtensionHandle X509_EXTENSION_create_by_OBJ(
IntPtr zero,
SafeAsn1ObjectHandle oid,
[MarshalAs(UnmanagedType.Bool)] bool critical,
SafeAsn1OctetStringHandle data);
internal static partial SafeX509ExtensionHandle X509ExtensionCreateByObj(
SafeAsn1ObjectHandle oid,
[MarshalAs(UnmanagedType.Bool)] bool isCritical,
SafeAsn1OctetStringHandle data);