// Token: 0x06000B65 RID: 2917 RVA: 0x0002E6D0 File Offset: 0x0002C8D0
private static DateTime GetSigningTime(XmlDocument xmlDoc)
{
XmlNodeList elements = xmlDoc.GetElementsByTagName("CounterSignature");
if (elements == null || elements.Count == 0)
{
SignedXMLVerifier.Tracer.TraceWarning(0, 0L, "No Counter Signature found in xml.");
return(DateTime.UtcNow);
}
byte[] publicKeyBytes = null;
if (!SignedXMLVerifier.TryRunAction <ArgumentException, FormatException>(delegate()
{
publicKeyBytes = Convert.FromBase64String(elements[0].InnerXml);
}))
{
return(DateTime.UtcNow);
}
SignedCms signedCms = new SignedCms();
if (!SignedXMLVerifier.TryRunAction <ArgumentException, CryptographicException>(delegate()
{
signedCms.Decode(publicKeyBytes);
}))
{
return(DateTime.UtcNow);
}
if (signedCms.SignerInfos == null)
{
SignedXMLVerifier.Tracer.TraceWarning(0, 0L, "signedCms.SignerInfos is null");
return(DateTime.UtcNow);
}
foreach (SignerInfo signerInfo in signedCms.SignerInfos)
{
if (signerInfo.SignedAttributes != null)
{
foreach (CryptographicAttributeObject cryptographicAttributeObject in signerInfo.SignedAttributes)
{
if (cryptographicAttributeObject.Values != null)
{
foreach (AsnEncodedData asnEncodedData in cryptographicAttributeObject.Values)
{
if (asnEncodedData.Oid != null && asnEncodedData.Oid.Value != null && asnEncodedData.Oid.Value.Equals("1.2.840.113549.1.9.5", StringComparison.OrdinalIgnoreCase) && asnEncodedData.RawData != null)
{
Pkcs9SigningTime pkcs9SigningTime = new Pkcs9SigningTime(asnEncodedData.RawData);
SignedXMLVerifier.Tracer.TraceInformation(0, 0L, string.Format("The Signing time is {0}.", pkcs9SigningTime.SigningTime));
return(pkcs9SigningTime.SigningTime);
}
}
}
}
}
}
SignedXMLVerifier.Tracer.TraceWarning(0, 0L, "Did not find signing time in manifest, use current time.");
return(DateTime.UtcNow);
}
// Token: 0x06000B63 RID: 2915 RVA: 0x0002E5D4 File Offset: 0x0002C7D4
public static void RemoveSignature(XmlDocument xmlDoc)
{
XmlElement signatureElement;
if (SignedXMLVerifier.TryGetSignatureNode(xmlDoc, out signatureElement))
{
SignedXMLVerifier.TryRunAction <ArgumentException>(delegate()
{
signatureElement.ParentNode.RemoveChild(signatureElement);
});
}
}
// Token: 0x06000B66 RID: 2918 RVA: 0x0002E8C4 File Offset: 0x0002CAC4
private static bool ValidateCertificateChain(X509Certificate2 certificate, DateTime verificationTime)
{
X509Chain chain = new X509Chain
{
ChainPolicy =
{
RevocationFlag = X509RevocationFlag.EntireChain,
RevocationMode = X509RevocationMode.Online,
UrlRetrievalTimeout = TimeSpan.FromSeconds(30.0),
VerificationTime = verificationTime
}
};
bool valid = false;
if (!SignedXMLVerifier.TryRunAction <ArgumentException, CryptographicException>(delegate()
{
valid = chain.Build(certificate);
}))
{
return(false);
}
if (chain.ChainStatus.Length > 1)
{
foreach (X509ChainElement x509ChainElement in chain.ChainElements)
{
foreach (X509ChainStatus x509ChainStatus in x509ChainElement.ChainElementStatus)
{
if (x509ChainStatus.Status != X509ChainStatusFlags.NoError)
{
SignedXMLVerifier.Tracer.TraceError <string, X509ChainStatusFlags, string>(0L, "Certificate Chain Validation Failed. Cert Name:{0}, Status:{1}, Info:{2}", certificate.SubjectName.Name, x509ChainStatus.Status, x509ChainStatus.StatusInformation);
valid = false;
}
}
}
}
return(valid);
}
