Merge pull request #44 from CryptoPro/gost_xml_encrypt

Gost xml encrypt

Author: Fasjeit

appveyor.yml

@@ -76,6 +76,9 @@ for:
   - cmd: '"C:\Program Files\Crypto Pro\CSP\csptest" -enum -info -type PP_ENUMALGS'
   # getting patched nuget packages with gost support
   - cmd: git clone https://github.com/CryptoProLLC/NetStandard.Library
+  - cmd: cd NetStandard.Library
+  - cmd: git checkout %APPVEYOR_REPO_BRANCH%
+  - cmd: cd ..
   - ps: New-Item -ItemType Directory -Force -Path "$env:userprofile\.nuget\packages\netstandard.library"
   - ps: Copy-Item -Force -Recurse ".\NetStandard.Library\nugetReady\netstandard.library" -Destination "$env:userprofile\.nuget\packages\"
   # enable-rdp
@@ -104,7 +107,11 @@ for:
     - .\\.dotnet\\dotnet msbuild src\\System.Security.Cryptography.Csp\\tests /t:BuildAndTest "/p:XunitOptions=-class System.Security.Cryptography.Encryption.Gost3410.Tests.Gost3410_2012_256CryptoServiceProviderTests" /p:ForceRunTests=true
     - .\\.dotnet\\dotnet msbuild src\\System.Security.Cryptography.Csp\\tests /t:BuildAndTest "/p:XunitOptions=-class System.Security.Cryptography.Encryption.Gost3410.Tests.Gost3410_2012_512CryptoServiceProviderTests" /p:ForceRunTests=true
     - .\\.dotnet\\dotnet msbuild src\\System.Security.Cryptography.Csp\\tests /t:BuildAndTest "/p:XunitOptions=-class System.Security.Cryptography.Csp.Tests.Gost28147CryptoServiceProviderTest" /p:ForceRunTests=true
+    - .\\.dotnet\\dotnet msbuild src\\System.Security.Cryptography.Csp\\tests /t:BuildAndTest "/p:XunitOptions=-class System.Security.Cryptography.Encryption.KeyExchange.Tests.GostKeyWrapTest" /p:ForceRunTests=true
+    - .\\.dotnet\\dotnet msbuild src\\System.Security.Cryptography.Csp\\tests /t:BuildAndTest "/p:XunitOptions=-class System.Security.Cryptography.Encryption.KeyExchange.Tests.GostKeyExchange" /p:ForceRunTests=true
+    - .\\.dotnet\\dotnet msbuild src\\System.Security.Cryptography.Csp\\tests /t:BuildAndTest "/p:XunitOptions=-class System.Security.Cryptography.Encryption.KeyExchange.Tests.GostSharedSecretTest" /p:ForceRunTests=true
     - .\\.dotnet\\dotnet msbuild src\\System.Security.Cryptography.Xml\\tests /t:BuildAndTest "/p:XunitOptions=-class System.Security.Cryptography.Xml.Tests.GostSignedXmlTest"  /p:ForceRunTests=true
+    - .\\.dotnet\\dotnet msbuild src\\System.Security.Cryptography.Xml\\tests /t:BuildAndTest "/p:XunitOptions=-class System.Security.Cryptography.Xml.Tests.GostEncryptedXmlTest"  /p:ForceRunTests=true
     - .\\.dotnet\\dotnet msbuild src\\System.Security.Cryptography.X509Certificates\\tests /t:BuildAndTest "/p:XunitOptions=-class System.Security.Cryptography.X509Certificates.Tests.GostPfxTests"  /p:ForceRunTests=true
     - .\\.dotnet\\dotnet msbuild src\\System.Security.Cryptography.Pkcs\\tests /t:BuildAndTest "/p:XunitOptions=-class System.Security.Cryptography.Pkcs.Tests.GostNonPersistCmsTests"  /p:ForceRunTests=true
 
@@ -145,6 +152,9 @@ for:
   - sh: /opt/cprocsp/bin/amd64/csptest  -keyset -enum_c -verifyc -fqcn
   # getting patched nuget packages with gost support
   - sh: git clone https://github.com/CryptoProLLC/NetStandard.Library
+  - sh: cd NetStandard.Library
+  - sh: git checkout $APPVEYOR_REPO_BRANCH
+  - sh: cd ..
   - sh: mkdir -p ~/.nuget/packages/netstandard.library
   - sh: cp -r ./NetStandard.Library/nugetReady/netstandard.library ~/.nuget/packages/
   # disable warnings
@@ -172,7 +182,11 @@ for:
     - ./.dotnet/dotnet msbuild src\\System.Security.Cryptography.Csp\\tests /t:BuildAndTest "/p:XunitOptions=-class System.Security.Cryptography.Encryption.Gost3410.Tests.Gost3410_2012_256CryptoServiceProviderTests" /p:ForceRunTests=true
     - ./.dotnet/dotnet msbuild src\\System.Security.Cryptography.Csp\\tests /t:BuildAndTest "/p:XunitOptions=-class System.Security.Cryptography.Encryption.Gost3410.Tests.Gost3410_2012_512CryptoServiceProviderTests" /p:ForceRunTests=true
     - ./.dotnet/dotnet msbuild src\\System.Security.Cryptography.Csp\\tests /t:BuildAndTest "/p:XunitOptions=-class System.Security.Cryptography.Csp.Tests.Gost28147CryptoServiceProviderTest" /p:ForceRunTests=true
+    - ./.dotnet/dotnet msbuild src\\System.Security.Cryptography.Csp\\tests /t:BuildAndTest "/p:XunitOptions=-class System.Security.Cryptography.Encryption.KeyExchange.Tests.GostKeyWrapTest" /p:ForceRunTests=true
+    - ./.dotnet/dotnet msbuild src\\System.Security.Cryptography.Csp\\tests /t:BuildAndTest "/p:XunitOptions=-class System.Security.Cryptography.Encryption.KeyExchange.Tests.GostKeyExchange" /p:ForceRunTests=true
+    - ./.dotnet/dotnet msbuild src\\System.Security.Cryptography.Csp\\tests /t:BuildAndTest "/p:XunitOptions=-class System.Security.Cryptography.Encryption.KeyExchange.Tests.GostSharedSecretTest" /p:ForceRunTests=true
     - ./.dotnet/dotnet msbuild src\\System.Security.Cryptography.Xml\\tests /t:BuildAndTest "/p:XunitOptions=-class System.Security.Cryptography.Xml.Tests.GostSignedXmlTest"  /p:ForceRunTests=true
+    - ./.dotnet/dotnet msbuild src\\System.Security.Cryptography.Xml\\tests /t:BuildAndTest "/p:XunitOptions=-class System.Security.Cryptography.Xml.Tests.GostEncryptedXmlTest"  /p:ForceRunTests=true
     - ./.dotnet/dotnet msbuild src\\System.Security.Cryptography.X509Certificates\\tests /t:BuildAndTest "/p:XunitOptions=-class System.Security.Cryptography.X509Certificates.Tests.GostPfxTests"  /p:ForceRunTests=true
     - ./.dotnet/dotnet msbuild src\\System.Security.Cryptography.Pkcs\\tests /t:BuildAndTest "/p:XunitOptions=-class System.Security.Cryptography.Pkcs.Tests.GostNonPersistCmsTests"  /p:ForceRunTests=true
   artifacts:

cspTools/test_certs/README

@@ -0,0 +1,3 @@
+Нигде в явном виде файлы не используются, но используются их копии в виде массива байт в тестах.
+
+Пусть будут тут.

cspTools/test_certs/dotnet_core_2001_512_GOST R 34.10.2001.pfx

@@ -0,0 +1,117 @@
+namespace System.Security.Cryptography
+{
+    class Gost28147_89_BlobParameters : Asn1Type
+    {
+        public Gost28147_89_ParamSet encryptionParamSet;
+        public Asn1OpenExt extElem1;
+
+        public Gost28147_89_BlobParameters() : base()
+        {
+        }
+
+        /// <summary>
+        /// This constructor sets all elements to references to the 
+        /// given objects
+        /// </summary>
+        public Gost28147_89_BlobParameters(
+           Gost28147_89_ParamSet encryptionParamSet_
+        )
+           : base()
+        {
+            encryptionParamSet = encryptionParamSet_;
+        }
+
+        /// <summary>
+        /// This constructor allows primitive data to be passed for all 
+        /// primitive elements.  It will create new object wrappers for 
+        /// the primitive data and set other elements to references to 
+        /// the given objects 
+        /// </summary>
+        public Gost28147_89_BlobParameters(int[] encryptionParamSet_
+        )
+           : base()
+        {
+            encryptionParamSet = new Gost28147_89_ParamSet(encryptionParamSet_);
+        }
+
+        public void Init()
+        {
+            encryptionParamSet = null;
+            extElem1 = null;
+        }
+
+        public override void Decode
+           (Asn1BerDecodeBuffer buffer, bool explicitTagging, int implicitLength)
+        {
+            int llen = (explicitTagging) ?
+               MatchTag(buffer, Asn1Tag.Sequence) : implicitLength;
+
+            Init();
+
+            // decode SEQUENCE
+
+            Asn1BerDecodeContext context =
+               new Asn1BerDecodeContext(buffer, llen);
+
+            IntHolder elemLen = new IntHolder();
+
+            // decode encryptionParamSet
+
+            if (context.MatchElemTag(Asn1Tag.Universal, Asn1Tag.PRIM, 6, elemLen, false))
+            {
+                encryptionParamSet = new Gost28147_89_ParamSet();
+                encryptionParamSet.Decode(buffer, true, elemLen.Value);
+            }
+            else
+                throw new Exception("Asn1MissingRequiredException");
+
+            // decode extElem1
+
+            if (!context.Expired())
+            {
+                Asn1Tag _tag = buffer.PeekTag();
+                if (_tag.Equals(Asn1Tag.Universal, Asn1Tag.PRIM, 6))
+                {
+                    throw new Exception("Asn1SeqOrderException");
+                }
+                else
+                {
+                    extElem1 = new Asn1OpenExt();
+                    while (!context.Expired())
+                    {
+                        extElem1.DecodeComponent(buffer);
+                    }
+                }
+            }
+            else
+                extElem1 = null;
+
+        }
+
+        public override int Encode(Asn1BerEncodeBuffer buffer, bool explicitTagging)
+        {
+            int _aal = 0, len;
+
+            // encode extElem1
+
+            if (extElem1 != null)
+            {
+                len = extElem1.Encode(buffer, false);
+                _aal += len;
+            }
+
+            // encode encryptionParamSet
+
+            len = encryptionParamSet.Encode(buffer, true);
+            _aal += len;
+
+            if (explicitTagging)
+            {
+                _aal += buffer.EncodeTagAndLength(Asn1Tag.Sequence, _aal);
+            }
+
+            return (_aal);
+        }
+
+    }
+}

cspTools/test_certs/dotnet_core_2012_256_GOST R 34.10.2012-256.pfx

@@ -0,0 +1,171 @@
+namespace System.Security.Cryptography
+{
+
+    class Gost28147_89_EncryptedKey : Asn1Type
+    {
+        public Gost28147_89_Key encryptedKey;
+        public Gost28147_89_Key maskKey;  // optional
+        public Gost28147_89_MAC macKey;
+
+        public Gost28147_89_EncryptedKey() : base()
+        {
+        }
+
+        /// <summary>
+        /// This constructor sets all elements to references to the 
+        /// given objects
+        /// </summary>
+        public Gost28147_89_EncryptedKey(
+           Gost28147_89_Key encryptedKey_,
+           Gost28147_89_Key maskKey_,
+           Gost28147_89_MAC macKey_
+        )
+           : base()
+        {
+            encryptedKey = encryptedKey_;
+            maskKey = maskKey_;
+            macKey = macKey_;
+        }
+
+        /// <summary>
+        /// This constructor is for required elements only.  It sets 
+        /// all elements to references to the given objects
+        /// </summary>
+        public Gost28147_89_EncryptedKey(
+           Gost28147_89_Key encryptedKey_,
+           Gost28147_89_MAC macKey_
+        )
+           : base()
+        {
+            encryptedKey = encryptedKey_;
+            macKey = macKey_;
+        }
+
+        /// <summary>
+        /// This constructor allows primitive data to be passed for all 
+        /// primitive elements.  It will create new object wrappers for 
+        /// the primitive data and set other elements to references to 
+        /// the given objects 
+        /// </summary>
+        public Gost28147_89_EncryptedKey(byte[] encryptedKey_,
+           byte[] maskKey_,
+           byte[] macKey_
+        )
+           : base()
+        {
+            encryptedKey = new Gost28147_89_Key(encryptedKey_);
+            maskKey = new Gost28147_89_Key(maskKey_);
+            macKey = new Gost28147_89_MAC(macKey_);
+        }
+
+        /// <summary>
+        /// This constructor is for required elements only.  It allows 
+        /// primitive data to be passed for all primitive elements.  
+        /// It will create new object wrappers for the primitive data 
+        /// and set other elements to references to the given objects. 
+        /// </summary>
+        public Gost28147_89_EncryptedKey(
+           byte[] encryptedKey_,
+           byte[] macKey_
+        )
+           : base()
+        {
+            encryptedKey = new Gost28147_89_Key(encryptedKey_);
+            macKey = new Gost28147_89_MAC(macKey_);
+        }
+
+        public void Init()
+        {
+            encryptedKey = null;
+            maskKey = null;
+            macKey = null;
+        }
+
+        public override void Decode
+           (Asn1BerDecodeBuffer buffer, bool explicitTagging, int implicitLength)
+        {
+            int llen = (explicitTagging) ?
+               MatchTag(buffer, Asn1Tag.Sequence) : implicitLength;
+
+            Init();
+
+            // decode SEQUENCE
+
+            Asn1BerDecodeContext context =
+               new Asn1BerDecodeContext(buffer, llen);
+
+            IntHolder elemLen = new IntHolder();
+
+            // decode encryptedKey
+
+            if (context.MatchElemTag(Asn1Tag.Universal, Asn1Tag.PRIM, 4, elemLen, false))
+            {
+                encryptedKey = new Gost28147_89_Key();
+                encryptedKey.Decode(buffer, true, elemLen.Value);
+            }
+            else
+                throw new Exception("Asn1MissingRequiredException");
+
+            // decode maskKey
+
+            if (context.MatchElemTag(Asn1Tag.CTXT, Asn1Tag.PRIM, 0, elemLen, true))
+            {
+                maskKey = new Gost28147_89_Key();
+                maskKey.Decode(buffer, false, elemLen.Value);
+            }
+
+            // decode macKey
+
+            if (context.MatchElemTag(Asn1Tag.Universal, Asn1Tag.PRIM, 4, elemLen, false))
+            {
+                macKey = new Gost28147_89_MAC();
+                macKey.Decode(buffer, true, elemLen.Value);
+                if (!(macKey.Length == 4))
+                {
+                    throw new Exception("Asn1ConsVioException");
+                }
+
+            }
+            else
+                throw new Exception("Asn1MissingRequiredException");
+
+        }
+
+        public override int Encode(Asn1BerEncodeBuffer buffer, bool explicitTagging)
+        {
+            int _aal = 0, len;
+
+            // encode macKey
+
+            if (!(macKey.Length == 4))
+            {
+                throw new Exception("Asn1ConsVioException");
+            }
+
+            len = macKey.Encode(buffer, true);
+            _aal += len;
+
+            // encode maskKey
+
+            if (maskKey != null)
+            {
+                len = maskKey.Encode(buffer, false);
+                _aal += len;
+                _aal += buffer.EncodeTagAndLength(Asn1Tag.CTXT, Asn1Tag.PRIM, 0, len);
+            }
+
+            // encode encryptedKey
+
+            len = encryptedKey.Encode(buffer, true);
+            _aal += len;
+
+            if (explicitTagging)
+            {
+                _aal += buffer.EncodeTagAndLength(Asn1Tag.Sequence, _aal);
+            }
+
+            return (_aal);
+        }
+
+    }
+}