Domovská stránka Prehľadávať Pomoc
Registrovať Prihlásiť sa
upstreams
/
SSH.NET
zrkadlo https://github.com/sshnet/SSH.NET.git
2
0
Fork 0
Súbory Issues 0 Wiki
Strom: d06dfa5e4d
Branche Tagy
SSH.NET
/
src
/
Renci.SshNet
/
Security
/
Cryptography
/
RsaKey.cs

RsaKey.cs 8.5 KB
História Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279 
  1. #nullable enable
    2. 

  2. using System;
    3. 

  3. using System.Numerics;
    4. 

  4. using System.Security.Cryptography;
    5. 

  5. 

  6. using Renci.SshNet.Common;
    7. 

  7. using Renci.SshNet.Security.Cryptography;
    8. 

  8. 

  9. namespace Renci.SshNet.Security
    10. 

  10. {
    11. 

  11.     /// <summary>
    12. 

  12.     /// Contains the RSA private and public key.
    13. 

  13.     /// </summary>
    14. 

  14.     public class RsaKey : Key, IDisposable
    15. 

  15.     {
    16. 

  16.         private RsaDigitalSignature? _digitalSignature;
    17. 

  17. 

  18.         /// <summary>
    19. 

  19.         /// Gets the name of the key.
    20. 

  20.         /// </summary>
    21. 

  21.         /// <returns>
    22. 

  22.         /// The name of the key.
    23. 

  23.         /// </returns>
    24. 

  24.         public override string ToString()
    25. 

  25.         {
    26. 

  26.             return "ssh-rsa";
    27. 

  27.         }
    28. 

  28. 

  29.         internal RSA RSA { get; }
    30. 

  30. 

  31.         /// <summary>
    32. 

  32.         /// Gets the modulus.
    33. 

  33.         /// </summary>
    34. 

  34.         /// <value>
    35. 

  35.         /// The modulus.
    36. 

  36.         /// </value>
    37. 

  37.         public BigInteger Modulus { get; }
    38. 

  38. 

  39.         /// <summary>
    40. 

  40.         /// Gets the exponent.
    41. 

  41.         /// </summary>
    42. 

  42.         /// <value>
    43. 

  43.         /// The exponent.
    44. 

  44.         /// </value>
    45. 

  45.         public BigInteger Exponent { get; }
    46. 

  46. 

  47.         /// <summary>
    48. 

  48.         /// Gets the D.
    49. 

  49.         /// </summary>
    50. 

  50.         /// <value>
    51. 

  51.         /// The D.
    52. 

  52.         /// </value>
    53. 

  53.         public BigInteger D { get; }
    54. 

  54. 

  55.         /// <summary>
    56. 

  56.         /// Gets the P.
    57. 

  57.         /// </summary>
    58. 

  58.         /// <value>
    59. 

  59.         /// The P.
    60. 

  60.         /// </value>
    61. 

  61.         public BigInteger P { get; }
    62. 

  62. 

  63.         /// <summary>
    64. 

  64.         /// Gets the Q.
    65. 

  65.         /// </summary>
    66. 

  66.         /// <value>
    67. 

  67.         /// The Q.
    68. 

  68.         /// </value>
    69. 

  69.         public BigInteger Q { get; }
    70. 

  70. 

  71.         /// <summary>
    72. 

  72.         /// Gets the DP.
    73. 

  73.         /// </summary>
    74. 

  74.         /// <value>
    75. 

  75.         /// The DP.
    76. 

  76.         /// </value>
    77. 

  77.         public BigInteger DP { get; }
    78. 

  78. 

  79.         /// <summary>
    80. 

  80.         /// Gets the DQ.
    81. 

  81.         /// </summary>
    82. 

  82.         /// <value>
    83. 

  83.         /// The DQ.
    84. 

  84.         /// </value>
    85. 

  85.         public BigInteger DQ { get; }
    86. 

  86. 

  87.         /// <summary>
    88. 

  88.         /// Gets the inverse Q.
    89. 

  89.         /// </summary>
    90. 

  90.         /// <value>
    91. 

  91.         /// The inverse Q.
    92. 

  92.         /// </value>
    93. 

  93.         public BigInteger InverseQ { get; }
    94. 

  94. 

  95.         /// <inheritdoc/>
    96. 

  96.         public override int KeyLength
    97. 

  97.         {
    98. 

  98.             get
    99. 

  99.             {
    100. 

  100.                 return (int)Modulus.GetBitLength();
    101. 

  101.             }
    102. 

  102.         }
    103. 

  103. 

  104.         /// <summary>
    105. 

  105.         /// Gets the digital signature implementation for this key.
    106. 

  106.         /// </summary>
    107. 

  107.         /// <value>
    108. 

  108.         /// An implementation of an RSA digital signature using the SHA-1 hash algorithm.
    109. 

  109.         /// </value>
    110. 

  110.         protected internal override DigitalSignature DigitalSignature
    111. 

  111.         {
    112. 

  112.             get
    113. 

  113.             {
    114. 

  114.                 _digitalSignature ??= new RsaDigitalSignature(this);
    115. 

  115. 

  116.                 return _digitalSignature;
    117. 

  117.             }
    118. 

  118.         }
    119. 

  119. 

  120.         /// <summary>
    121. 

  121.         /// Gets the RSA public key.
    122. 

  122.         /// </summary>
    123. 

  123.         /// <value>
    124. 

  124.         /// An array with <see cref="Exponent"/> at index 0, and <see cref="Modulus"/>
    125. 

  125.         /// at index 1.
    126. 

  126.         /// </value>
    127. 

  127.         public override BigInteger[] Public
    128. 

  128.         {
    129. 

  129.             get
    130. 

  130.             {
    131. 

  131.                 return new[] { Exponent, Modulus };
    132. 

  132.             }
    133. 

  133.         }
    134. 

  134. 

  135.         /// <summary>
    136. 

  136.         /// Initializes a new instance of the <see cref="RsaKey"/> class.
    137. 

  137.         /// </summary>
    138. 

  138.         /// <param name="publicKeyData">The encoded public key data.</param>
    139. 

  139.         public RsaKey(SshKeyData publicKeyData)
    140. 

  140.         {
    141. 

  141.             if (publicKeyData is null)
    142. 

  142.             {
    143. 

  143.                 throw new ArgumentNullException(nameof(publicKeyData));
    144. 

  144.             }
    145. 

  145. 

  146.             if (publicKeyData.Name != "ssh-rsa" || publicKeyData.Keys.Length != 2)
    147. 

  147.             {
    148. 

  148.                 throw new ArgumentException($"Invalid RSA public key data. ({publicKeyData.Name}, {publicKeyData.Keys.Length}).", nameof(publicKeyData));
    149. 

  149.             }
    150. 

  150. 

  151.             Exponent = publicKeyData.Keys[0];
    152. 

  152.             Modulus = publicKeyData.Keys[1];
    153. 

  153. 

  154.             RSA = RSA.Create();
    155. 

  155.             RSA.ImportParameters(GetRSAParameters());
    156. 

  156.         }
    157. 

  157. 

  158.         /// <summary>
    159. 

  159.         /// Initializes a new instance of the <see cref="RsaKey"/> class.
    160. 

  160.         /// </summary>
    161. 

  161.         /// <param name="privateKeyData">DER encoded private key data.</param>
    162. 

  162.         public RsaKey(byte[] privateKeyData)
    163. 

  163.         {
    164. 

  164.             if (privateKeyData is null)
    165. 

  165.             {
    166. 

  166.                 throw new ArgumentNullException(nameof(privateKeyData));
    167. 

  167.             }
    168. 

  168. 

  169.             var der = new DerData(privateKeyData);
    170. 

  170.             _ = der.ReadBigInteger(); // skip version
    171. 

  171. 

  172.             Modulus = der.ReadBigInteger();
    173. 

  173.             Exponent = der.ReadBigInteger();
    174. 

  174.             D = der.ReadBigInteger();
    175. 

  175.             P = der.ReadBigInteger();
    176. 

  176.             Q = der.ReadBigInteger();
    177. 

  177.             DP = der.ReadBigInteger();
    178. 

  178.             DQ = der.ReadBigInteger();
    179. 

  179.             InverseQ = der.ReadBigInteger();
    180. 

  180. 

  181.             if (!der.IsEndOfData)
    182. 

  182.             {
    183. 

  183.                 throw new InvalidOperationException("Invalid private key (expected EOF).");
    184. 

  184.             }
    185. 

  185. 

  186.             RSA = RSA.Create();
    187. 

  187.             RSA.ImportParameters(GetRSAParameters());
    188. 

  188.         }
    189. 

  189. 

  190.         /// <summary>
    191. 

  191.         /// Initializes a new instance of the <see cref="RsaKey"/> class.
    192. 

  192.         /// </summary>
    193. 

  193.         /// <param name="modulus">The modulus.</param>
    194. 

  194.         /// <param name="exponent">The exponent.</param>
    195. 

  195.         /// <param name="d">The d.</param>
    196. 

  196.         /// <param name="p">The p.</param>
    197. 

  197.         /// <param name="q">The q.</param>
    198. 

  198.         /// <param name="inverseQ">The inverse Q.</param>
    199. 

  199.         public RsaKey(BigInteger modulus, BigInteger exponent, BigInteger d, BigInteger p, BigInteger q, BigInteger inverseQ)
    200. 

  200.         {
    201. 

  201.             Modulus = modulus;
    202. 

  202.             Exponent = exponent;
    203. 

  203.             D = d;
    204. 

  204.             P = p;
    205. 

  205.             Q = q;
    206. 

  206.             DP = PrimeExponent(d, p);
    207. 

  207.             DQ = PrimeExponent(d, q);
    208. 

  208.             InverseQ = inverseQ;
    209. 

  209. 

  210.             RSA = RSA.Create();
    211. 

  211.             RSA.ImportParameters(GetRSAParameters());
    212. 

  212.         }
    213. 

  213. 

  214.         internal RSAParameters GetRSAParameters()
    215. 

  215.         {
    216. 

  216.             // Specification of the RSAParameters fields (taken from the CryptographicException
    217. 

  217.             // thrown when not done correctly):
    218. 

  218. 

  219.             // Exponent and Modulus are required. If D is present, it must have the same length
    220. 

  220.             // as Modulus. If D is present, P, Q, DP, DQ, and InverseQ are required and must
    221. 

  221.             // have half the length of Modulus, rounded up, otherwise they must be omitted.
    222. 

  222. 

  223.             // See also https://github.com/dotnet/runtime/blob/9b57a265c7efd3732b035bade005561a04767128/src/libraries/Common/src/System/Security/Cryptography/RSAKeyFormatHelper.cs#L42
    224. 

  224. 

  225.             if (D.IsZero)
    226. 

  226.             {
    227. 

  227.                 // Public key
    228. 

  228.                 return new RSAParameters()
    229. 

  229.                 {
    230. 

  230.                     Modulus = Modulus.ToByteArray(isUnsigned: true, isBigEndian: true),
    231. 

  231.                     Exponent = Exponent.ToByteArray(isUnsigned: true, isBigEndian: true),
    232. 

  232.                 };
    233. 

  233.             }
    234. 

  234. 

  235.             var n = Modulus.ToByteArray(isUnsigned: true, isBigEndian: true);
    236. 

  236.             var halfModulusLength = (n.Length + 1) / 2;
    237. 

  237. 

  238.             return new RSAParameters()
    239. 

  239.             {
    240. 

  240.                 Modulus = n,
    241. 

  241.                 Exponent = Exponent.ToByteArray(isUnsigned: true, isBigEndian: true),
    242. 

  242.                 D = D.ExportKeyParameter(n.Length),
    243. 

  243.                 P = P.ExportKeyParameter(halfModulusLength),
    244. 

  244.                 Q = Q.ExportKeyParameter(halfModulusLength),
    245. 

  245.                 DP = DP.ExportKeyParameter(halfModulusLength),
    246. 

  246.                 DQ = DQ.ExportKeyParameter(halfModulusLength),
    247. 

  247.                 InverseQ = InverseQ.ExportKeyParameter(halfModulusLength),
    248. 

  248.             };
    249. 

  249.         }
    250. 

  250. 

  251.         private static BigInteger PrimeExponent(BigInteger privateExponent, BigInteger prime)
    252. 

  252.         {
    253. 

  253.             var pe = prime - BigInteger.One;
    254. 

  254.             return privateExponent % pe;
    255. 

  255.         }
    256. 

  256. 

  257.         /// <summary>
    258. 

  258.         /// Performs application-defined tasks associated with freeing, releasing, or resetting unmanaged resources.
    259. 

  259.         /// </summary>
    260. 

  260.         public void Dispose()
    261. 

  261.         {
    262. 

  262.             Dispose(disposing: true);
    263. 

  263.             GC.SuppressFinalize(this);
    264. 

  264.         }
    265. 

  265. 

  266.         /// <summary>
    267. 

  267.         /// Releases unmanaged and - optionally - managed resources.
    268. 

  268.         /// </summary>
    269. 

  269.         /// <param name="disposing"><see langword="true"/> to release both managed and unmanaged resources; <see langword="false"/> to release only unmanaged resources.</param>
    270. 

  270.         protected virtual void Dispose(bool disposing)
    271. 

  271.         {
    272. 

  272.             if (disposing)
    273. 

  273.             {
    274. 

  274.                 _digitalSignature?.Dispose();
    275. 

  275.                 RSA.Dispose();
    276. 

  276.             }
    277. 

  277.         }
    278. 

  278.     }
    279. 

  279. }
    280.