diff --git a/src/libraries/Common/src/Interop/Android/System.Security.Cryptography.Native.Android/Interop.Evp.DigestAlgs.cs b/src/libraries/Common/src/Interop/Android/System.Security.Cryptography.Native.Android/Interop.Evp.DigestAlgs.cs
index 8ba0658735a297..d7325ca8e8574c 100644
--- a/src/libraries/Common/src/Interop/Android/System.Security.Cryptography.Native.Android/Interop.Evp.DigestAlgs.cs
+++ b/src/libraries/Common/src/Interop/Android/System.Security.Cryptography.Native.Android/Interop.Evp.DigestAlgs.cs
@@ -47,12 +47,33 @@ internal static IntPtr EvpSha512() =>
internal static IntPtr HashAlgorithmToEvp(string hashAlgorithmId) => hashAlgorithmId switch
{
- nameof(HashAlgorithmName.SHA1) => EvpSha1(),
- nameof(HashAlgorithmName.SHA256) => EvpSha256(),
- nameof(HashAlgorithmName.SHA384) => EvpSha384(),
- nameof(HashAlgorithmName.SHA512) => EvpSha512(),
- nameof(HashAlgorithmName.MD5) => EvpMd5(),
+ HashAlgorithmNames.SHA1 => EvpSha1(),
+ HashAlgorithmNames.SHA256 => EvpSha256(),
+ HashAlgorithmNames.SHA384 => EvpSha384(),
+ HashAlgorithmNames.SHA512 => EvpSha512(),
+ HashAlgorithmNames.MD5 => EvpMd5(),
+ HashAlgorithmNames.SHA3_256 or HashAlgorithmNames.SHA3_384 or HashAlgorithmNames.SHA3_512 =>
+ throw new PlatformNotSupportedException(),
_ => throw new CryptographicException(SR.Format(SR.Cryptography_UnknownHashAlgorithm, hashAlgorithmId))
};
+
+ internal static bool HashAlgorithmSupported(string hashAlgorithmId)
+ {
+ switch (hashAlgorithmId)
+ {
+ case HashAlgorithmNames.SHA1:
+ case HashAlgorithmNames.SHA256:
+ case HashAlgorithmNames.SHA384:
+ case HashAlgorithmNames.SHA512:
+ case HashAlgorithmNames.MD5:
+ return true;
+ case HashAlgorithmNames.SHA3_256:
+ case HashAlgorithmNames.SHA3_384:
+ case HashAlgorithmNames.SHA3_512:
+ return false;
+ default:
+ throw new CryptographicException(SR.Format(SR.Cryptography_UnknownHashAlgorithm, hashAlgorithmId));
+ }
+ }
}
}
diff --git a/src/libraries/Common/src/Interop/Unix/System.Security.Cryptography.Native/Interop.EVP.DigestAlgs.cs b/src/libraries/Common/src/Interop/Unix/System.Security.Cryptography.Native/Interop.EVP.DigestAlgs.cs
index abaefab1dab6fc..dec9bdd84a5ddf 100644
--- a/src/libraries/Common/src/Interop/Unix/System.Security.Cryptography.Native/Interop.EVP.DigestAlgs.cs
+++ b/src/libraries/Common/src/Interop/Unix/System.Security.Cryptography.Native/Interop.EVP.DigestAlgs.cs
@@ -14,45 +14,128 @@ internal static partial class Crypto
private static volatile IntPtr s_evpSha256;
private static volatile IntPtr s_evpSha384;
private static volatile IntPtr s_evpSha512;
+ private static volatile IntPtr s_evpSha3_256;
+ private static volatile IntPtr s_evpSha3_384;
+ private static volatile IntPtr s_evpSha3_512;
+ private static volatile bool s_evpSha3_256Cached;
+ private static volatile bool s_evpSha3_384Cached;
+ private static volatile bool s_evpSha3_512Cached;
[LibraryImport(Libraries.CryptoNative)]
private static partial IntPtr CryptoNative_EvpMd5();
- internal static IntPtr EvpMd5() =>
+ private static IntPtr EvpMd5() =>
s_evpMd5 != IntPtr.Zero ? s_evpMd5 : (s_evpMd5 = CryptoNative_EvpMd5());
[LibraryImport(Libraries.CryptoNative)]
- internal static partial IntPtr CryptoNative_EvpSha1();
+ private static partial IntPtr CryptoNative_EvpSha1();
- internal static IntPtr EvpSha1() =>
+ private static IntPtr EvpSha1() =>
s_evpSha1 != IntPtr.Zero ? s_evpSha1 : (s_evpSha1 = CryptoNative_EvpSha1());
[LibraryImport(Libraries.CryptoNative)]
- internal static partial IntPtr CryptoNative_EvpSha256();
+ private static partial IntPtr CryptoNative_EvpSha256();
- internal static IntPtr EvpSha256() =>
+ private static IntPtr EvpSha256() =>
s_evpSha256 != IntPtr.Zero ? s_evpSha256 : (s_evpSha256 = CryptoNative_EvpSha256());
[LibraryImport(Libraries.CryptoNative)]
- internal static partial IntPtr CryptoNative_EvpSha384();
+ private static partial IntPtr CryptoNative_EvpSha384();
- internal static IntPtr EvpSha384() =>
+ private static IntPtr EvpSha384() =>
s_evpSha384 != IntPtr.Zero ? s_evpSha384 : (s_evpSha384 = CryptoNative_EvpSha384());
[LibraryImport(Libraries.CryptoNative)]
- internal static partial IntPtr CryptoNative_EvpSha512();
+ private static partial IntPtr CryptoNative_EvpSha512();
- internal static IntPtr EvpSha512() =>
+ private static IntPtr EvpSha512() =>
s_evpSha512 != IntPtr.Zero ? s_evpSha512 : (s_evpSha512 = CryptoNative_EvpSha512());
- internal static IntPtr HashAlgorithmToEvp(string hashAlgorithmId) => hashAlgorithmId switch
+ [LibraryImport(Libraries.CryptoNative)]
+ private static partial IntPtr CryptoNative_EvpSha3_256();
+
+ private static IntPtr EvpSha3_256()
+ {
+ if (!s_evpSha3_256Cached)
+ {
+ s_evpSha3_256 = CryptoNative_EvpSha3_256();
+ s_evpSha3_256Cached = true;
+ }
+
+ return s_evpSha3_256;
+ }
+
+ [LibraryImport(Libraries.CryptoNative)]
+ private static partial IntPtr CryptoNative_EvpSha3_384();
+
+ private static IntPtr EvpSha3_384()
+ {
+ if (!s_evpSha3_384Cached)
+ {
+ s_evpSha3_384 = CryptoNative_EvpSha3_384();
+ s_evpSha3_384Cached = true;
+ }
+
+ return s_evpSha3_384;
+ }
+
+ [LibraryImport(Libraries.CryptoNative)]
+ private static partial IntPtr CryptoNative_EvpSha3_512();
+
+ private static IntPtr EvpSha3_512()
+ {
+ if (!s_evpSha3_512Cached)
+ {
+ s_evpSha3_512 = CryptoNative_EvpSha3_512();
+ s_evpSha3_512Cached = true;
+ }
+
+ return s_evpSha3_512;
+ }
+
+
+ internal static IntPtr HashAlgorithmToEvp(string hashAlgorithmId)
+ {
+ switch (hashAlgorithmId)
+ {
+ case HashAlgorithmNames.SHA1: return EvpSha1();
+ case HashAlgorithmNames.SHA256: return EvpSha256();
+ case HashAlgorithmNames.SHA384: return EvpSha384();
+ case HashAlgorithmNames.SHA512: return EvpSha512();
+ case HashAlgorithmNames.SHA3_256:
+ IntPtr sha3_256 = EvpSha3_256();
+ return sha3_256 != 0 ? sha3_256 : throw new PlatformNotSupportedException();
+ case HashAlgorithmNames.SHA3_384:
+ IntPtr sha3_384 = EvpSha3_384();
+ return sha3_384 != 0 ? sha3_384 : throw new PlatformNotSupportedException();
+ case HashAlgorithmNames.SHA3_512:
+ IntPtr sha3_512 = EvpSha3_512();
+ return sha3_512 != 0 ? sha3_512 : throw new PlatformNotSupportedException();
+ case nameof(HashAlgorithmName.MD5): return EvpMd5();
+ default:
+ throw new CryptographicException(SR.Format(SR.Cryptography_UnknownHashAlgorithm, hashAlgorithmId));
+ };
+ }
+
+ internal static bool HashAlgorithmSupported(string hashAlgorithmId)
{
- nameof(HashAlgorithmName.SHA1) => EvpSha1(),
- nameof(HashAlgorithmName.SHA256) => EvpSha256(),
- nameof(HashAlgorithmName.SHA384) => EvpSha384(),
- nameof(HashAlgorithmName.SHA512) => EvpSha512(),
- nameof(HashAlgorithmName.MD5) => EvpMd5(),
- _ => throw new CryptographicException(SR.Format(SR.Cryptography_UnknownHashAlgorithm, hashAlgorithmId))
- };
+ switch (hashAlgorithmId)
+ {
+ case HashAlgorithmNames.SHA1:
+ case HashAlgorithmNames.SHA256:
+ case HashAlgorithmNames.SHA384:
+ case HashAlgorithmNames.SHA512:
+ case HashAlgorithmNames.MD5:
+ return true;
+ case HashAlgorithmNames.SHA3_256:
+ return EvpSha3_256() != 0;
+ case HashAlgorithmNames.SHA3_384:
+ return EvpSha3_384() != 0;
+ case HashAlgorithmNames.SHA3_512:
+ return EvpSha3_512() != 0;
+ default:
+ throw new CryptographicException(SR.Format(SR.Cryptography_UnknownHashAlgorithm, hashAlgorithmId));
+ }
+ }
}
}
diff --git a/src/libraries/Common/src/Interop/Windows/BCrypt/BCryptAlgorithmCache.cs b/src/libraries/Common/src/Interop/Windows/BCrypt/BCryptAlgorithmCache.cs
index aec34aeb523478..5f060292a666c7 100644
--- a/src/libraries/Common/src/Interop/Windows/BCrypt/BCryptAlgorithmCache.cs
+++ b/src/libraries/Common/src/Interop/Windows/BCrypt/BCryptAlgorithmCache.cs
@@ -13,6 +13,7 @@ internal static partial class BCrypt
internal static class BCryptAlgorithmCache
{
private static readonly ConcurrentDictionary<(string HashAlgorithmId, BCryptOpenAlgorithmProviderFlags Flags), (SafeBCryptAlgorithmHandle Handle, int HashSizeInBytes)> s_handles = new();
+ private static readonly ConcurrentDictionary<(string HashAlgorithmId, BCryptOpenAlgorithmProviderFlags Flags), bool> s_supported = new();
///
/// Returns a SafeBCryptAlgorithmHandle of the desired algorithm and flags. This is a shared handle so do not dispose it!
@@ -43,6 +44,42 @@ public static unsafe SafeBCryptAlgorithmHandle GetCachedBCryptAlgorithmHandle(st
}
}
}
+
+ public static unsafe bool IsBCryptAlgorithmSupported(string hashAlgorithmId, BCryptOpenAlgorithmProviderFlags flags)
+ {
+ var key = (hashAlgorithmId, flags);
+
+ if (s_supported.TryGetValue(key, out bool supported))
+ {
+ return supported;
+ }
+
+ NTSTATUS status = BCryptOpenAlgorithmProvider(
+ out SafeBCryptAlgorithmHandle handle,
+ key.hashAlgorithmId,
+ null,
+ key.flags);
+
+ bool isSupported = status == NTSTATUS.STATUS_SUCCESS;
+
+ if (s_supported.TryAdd(key, isSupported) && isSupported)
+ {
+ // It's a valid algorithm. Let's prime the handle cache while we are here. Presumably it's
+ // going to get used if we're asking if it's supported.
+ int hashSize = BCryptGetDWordProperty(handle, BCryptPropertyStrings.BCRYPT_HASH_LENGTH);
+ Debug.Assert(hashSize > 0);
+
+ if (s_handles.TryAdd(key, (handle, hashSize)))
+ {
+ // If we added the handle to the cache, don't dispose of it and return our answer.
+ return isSupported;
+ }
+ }
+
+ // Either the algorithm isn't supported or we don't need it for priming the cache, so Dispose.
+ handle.Dispose();
+ return isSupported;
+ }
}
}
}
diff --git a/src/libraries/Common/src/Interop/Windows/BCrypt/Interop.BCryptAlgPseudoHandle.cs b/src/libraries/Common/src/Interop/Windows/BCrypt/Interop.BCryptAlgPseudoHandle.cs
index 57c508bf709479..d0a4e878f2764a 100644
--- a/src/libraries/Common/src/Interop/Windows/BCrypt/Interop.BCryptAlgPseudoHandle.cs
+++ b/src/libraries/Common/src/Interop/Windows/BCrypt/Interop.BCryptAlgPseudoHandle.cs
@@ -23,6 +23,12 @@ public enum BCryptAlgPseudoHandle : uint
BCRYPT_HMAC_SHA384_ALG_HANDLE = 0x000000c1,
BCRYPT_HMAC_SHA512_ALG_HANDLE = 0x000000d1,
BCRYPT_PBKDF2_ALG_HANDLE = 0x00000331,
+ BCRYPT_SHA3_256_ALG_HANDLE = 0x000003B1,
+ BCRYPT_SHA3_384_ALG_HANDLE = 0x000003C1,
+ BCRYPT_SHA3_512_ALG_HANDLE = 0x000003D1,
+ BCRYPT_HMAC_SHA3_256_ALG_HANDLE = 0x000003E1,
+ BCRYPT_HMAC_SHA3_384_ALG_HANDLE = 0x000003F1,
+ BCRYPT_HMAC_SHA3_512_ALG_HANDLE = 0x00000401,
}
internal static bool PseudoHandlesSupported { get; } =
diff --git a/src/libraries/Common/src/System/Security/Cryptography/HashOneShotHelpers.cs b/src/libraries/Common/src/System/Security/Cryptography/HashOneShotHelpers.cs
index debc16c329b1e5..f80e69c8bf53a8 100644
--- a/src/libraries/Common/src/System/Security/Cryptography/HashOneShotHelpers.cs
+++ b/src/libraries/Common/src/System/Security/Cryptography/HashOneShotHelpers.cs
@@ -12,28 +12,18 @@ internal static class HashOneShotHelpers
{
internal static byte[] HashData(HashAlgorithmName hashAlgorithm, ReadOnlySpan source)
{
- if (hashAlgorithm == HashAlgorithmName.SHA256)
- {
- return SHA256.HashData(source);
- }
- else if (hashAlgorithm == HashAlgorithmName.SHA1)
- {
- return SHA1.HashData(source);
- }
- else if (hashAlgorithm == HashAlgorithmName.SHA512)
- {
- return SHA512.HashData(source);
- }
- else if (hashAlgorithm == HashAlgorithmName.SHA384)
- {
- return SHA384.HashData(source);
- }
- else if (Helpers.HasMD5 && hashAlgorithm == HashAlgorithmName.MD5)
- {
- return MD5.HashData(source);
- }
-
- throw new CryptographicException(SR.Format(SR.Cryptography_UnknownHashAlgorithm, hashAlgorithm.Name));
+ return hashAlgorithm.Name switch
+ {
+ HashAlgorithmNames.SHA256 => SHA256.HashData(source),
+ HashAlgorithmNames.SHA1 => SHA1.HashData(source),
+ HashAlgorithmNames.SHA512 => SHA512.HashData(source),
+ HashAlgorithmNames.SHA384 => SHA384.HashData(source),
+ HashAlgorithmNames.SHA3_256 => SHA3_256.HashData(source),
+ HashAlgorithmNames.SHA3_384 => SHA3_384.HashData(source),
+ HashAlgorithmNames.SHA3_512 => SHA3_512.HashData(source),
+ HashAlgorithmNames.MD5 when Helpers.HasMD5 => MD5.HashData(source),
+ _ => throw new CryptographicException(SR.Format(SR.Cryptography_UnknownHashAlgorithm, hashAlgorithm.Name)),
+ };
}
internal static bool TryHashData(
@@ -42,54 +32,34 @@ internal static bool TryHashData(
Span destination,
out int bytesWritten)
{
- if (hashAlgorithm == HashAlgorithmName.SHA256)
- {
- return SHA256.TryHashData(source, destination, out bytesWritten);
- }
- else if (hashAlgorithm == HashAlgorithmName.SHA1)
- {
- return SHA1.TryHashData(source, destination, out bytesWritten);
- }
- else if (hashAlgorithm == HashAlgorithmName.SHA512)
- {
- return SHA512.TryHashData(source, destination, out bytesWritten);
- }
- else if (hashAlgorithm == HashAlgorithmName.SHA384)
- {
- return SHA384.TryHashData(source, destination, out bytesWritten);
- }
- else if (Helpers.HasMD5 && hashAlgorithm == HashAlgorithmName.MD5)
- {
- return MD5.TryHashData(source, destination, out bytesWritten);
- }
-
- throw new CryptographicException(SR.Format(SR.Cryptography_UnknownHashAlgorithm, hashAlgorithm.Name));
+ return hashAlgorithm.Name switch
+ {
+ HashAlgorithmNames.SHA256 => SHA256.TryHashData(source, destination, out bytesWritten),
+ HashAlgorithmNames.SHA1 => SHA1.TryHashData(source, destination, out bytesWritten),
+ HashAlgorithmNames.SHA512 => SHA512.TryHashData(source, destination, out bytesWritten),
+ HashAlgorithmNames.SHA384 => SHA384.TryHashData(source, destination, out bytesWritten),
+ HashAlgorithmNames.SHA3_256 => SHA3_256.TryHashData(source, destination, out bytesWritten),
+ HashAlgorithmNames.SHA3_384 => SHA3_384.TryHashData(source, destination, out bytesWritten),
+ HashAlgorithmNames.SHA3_512 => SHA3_512.TryHashData(source, destination, out bytesWritten),
+ HashAlgorithmNames.MD5 when Helpers.HasMD5 => MD5.TryHashData(source, destination, out bytesWritten),
+ _ => throw new CryptographicException(SR.Format(SR.Cryptography_UnknownHashAlgorithm, hashAlgorithm.Name)),
+ };
}
internal static byte[] HashData(HashAlgorithmName hashAlgorithm, Stream source)
{
- if (hashAlgorithm == HashAlgorithmName.SHA256)
- {
- return SHA256.HashData(source);
- }
- else if (hashAlgorithm == HashAlgorithmName.SHA1)
- {
- return SHA1.HashData(source);
- }
- else if (hashAlgorithm == HashAlgorithmName.SHA512)
- {
- return SHA512.HashData(source);
- }
- else if (hashAlgorithm == HashAlgorithmName.SHA384)
- {
- return SHA384.HashData(source);
- }
- else if (Helpers.HasMD5 && hashAlgorithm == HashAlgorithmName.MD5)
- {
- return MD5.HashData(source);
- }
-
- throw new CryptographicException(SR.Format(SR.Cryptography_UnknownHashAlgorithm, hashAlgorithm.Name));
+ return hashAlgorithm.Name switch
+ {
+ HashAlgorithmNames.SHA256 => SHA256.HashData(source),
+ HashAlgorithmNames.SHA1 => SHA1.HashData(source),
+ HashAlgorithmNames.SHA512 => SHA512.HashData(source),
+ HashAlgorithmNames.SHA384 => SHA384.HashData(source),
+ HashAlgorithmNames.SHA3_256 => SHA3_256.HashData(source),
+ HashAlgorithmNames.SHA3_384 => SHA3_384.HashData(source),
+ HashAlgorithmNames.SHA3_512 => SHA3_512.HashData(source),
+ HashAlgorithmNames.MD5 when Helpers.HasMD5 => MD5.HashData(source),
+ _ => throw new CryptographicException(SR.Format(SR.Cryptography_UnknownHashAlgorithm, hashAlgorithm.Name)),
+ };
}
internal static int MacData(
@@ -98,28 +68,18 @@ internal static int MacData(
ReadOnlySpan source,
Span destination)
{
- if (hashAlgorithm == HashAlgorithmName.SHA256)
- {
- return HMACSHA256.HashData(key, source, destination);
- }
- else if (hashAlgorithm == HashAlgorithmName.SHA1)
- {
- return HMACSHA1.HashData(key, source, destination);
- }
- else if (hashAlgorithm == HashAlgorithmName.SHA512)
- {
- return HMACSHA512.HashData(key, source, destination);
- }
- else if (hashAlgorithm == HashAlgorithmName.SHA384)
- {
- return HMACSHA384.HashData(key, source, destination);
- }
- else if (Helpers.HasMD5 && hashAlgorithm == HashAlgorithmName.MD5)
- {
- return HMACMD5.HashData(key, source, destination);
- }
-
- throw new CryptographicException(SR.Format(SR.Cryptography_UnknownHashAlgorithm, hashAlgorithm.Name));
+ return hashAlgorithm.Name switch
+ {
+ HashAlgorithmNames.SHA256 => HMACSHA256.HashData(key, source, destination),
+ HashAlgorithmNames.SHA1 => HMACSHA1.HashData(key, source, destination),
+ HashAlgorithmNames.SHA512 => HMACSHA512.HashData(key, source, destination),
+ HashAlgorithmNames.SHA384 => HMACSHA384.HashData(key, source, destination),
+ HashAlgorithmNames.SHA3_256 => HMACSHA3_256.HashData(key, source, destination),
+ HashAlgorithmNames.SHA3_384 => HMACSHA3_384.HashData(key, source, destination),
+ HashAlgorithmNames.SHA3_512 => HMACSHA3_512.HashData(key, source, destination),
+ HashAlgorithmNames.MD5 when Helpers.HasMD5 => HMACMD5.HashData(key, source, destination),
+ _ => throw new CryptographicException(SR.Format(SR.Cryptography_UnknownHashAlgorithm, hashAlgorithm.Name)),
+ };
}
}
}
diff --git a/src/libraries/Common/src/System/Security/Cryptography/Oids.cs b/src/libraries/Common/src/System/Security/Cryptography/Oids.cs
index 40e761dab09d4c..b7364108222ad1 100644
--- a/src/libraries/Common/src/System/Security/Cryptography/Oids.cs
+++ b/src/libraries/Common/src/System/Security/Cryptography/Oids.cs
@@ -24,6 +24,9 @@ internal static partial class Oids
internal const string RsaPkcs1Sha256 = "1.2.840.113549.1.1.11";
internal const string RsaPkcs1Sha384 = "1.2.840.113549.1.1.12";
internal const string RsaPkcs1Sha512 = "1.2.840.113549.1.1.13";
+ internal const string RsaPkcs1Sha3_256 = "2.16.840.1.101.3.4.3.14";
+ internal const string RsaPkcs1Sha3_384 = "2.16.840.1.101.3.4.3.15";
+ internal const string RsaPkcs1Sha3_512 = "2.16.840.1.101.3.4.3.16";
internal const string Esdh = "1.2.840.113549.1.9.16.3.5";
internal const string EcDiffieHellman = "1.3.132.1.12";
internal const string DiffieHellman = "1.2.840.10046.2.1";
@@ -65,6 +68,9 @@ internal static partial class Oids
internal const string Sha256 = "2.16.840.1.101.3.4.2.1";
internal const string Sha384 = "2.16.840.1.101.3.4.2.2";
internal const string Sha512 = "2.16.840.1.101.3.4.2.3";
+ internal const string Sha3_256 = "2.16.840.1.101.3.4.2.8";
+ internal const string Sha3_384 = "2.16.840.1.101.3.4.2.9";
+ internal const string Sha3_512 = "2.16.840.1.101.3.4.2.10";
// DSA CMS uses the combined signature+digest OID
internal const string DsaWithSha1 = "1.2.840.10040.4.3";
@@ -84,6 +90,10 @@ internal static partial class Oids
internal const string ECDsaWithSha384 = "1.2.840.10045.4.3.3";
internal const string ECDsaWithSha512 = "1.2.840.10045.4.3.4";
+ internal const string ECDsaWithSha3_256 = "2.16.840.1.101.3.4.3.10";
+ internal const string ECDsaWithSha3_384 = "2.16.840.1.101.3.4.3.11";
+ internal const string ECDsaWithSha3_512 = "2.16.840.1.101.3.4.3.12";
+
internal const string Mgf1 = "1.2.840.113549.1.1.8";
internal const string PSpecified = "1.2.840.113549.1.1.9";
diff --git a/src/libraries/Common/src/System/Security/Cryptography/RSAOpenSsl.cs b/src/libraries/Common/src/System/Security/Cryptography/RSAOpenSsl.cs
index dc002fdfd59732..34ad612323f2d7 100644
--- a/src/libraries/Common/src/System/Security/Cryptography/RSAOpenSsl.cs
+++ b/src/libraries/Common/src/System/Security/Cryptography/RSAOpenSsl.cs
@@ -873,6 +873,18 @@ private static void ValidatePadding(RSAEncryptionPadding padding)
{
throw PaddingModeNotSupported();
}
+
+ // If the hash algorithm is not supported by the platform, such as SHA3, then we don't support it for
+ // RSAOpenSsl, even if OpenSSL itself might support OAEP-SHA3. We use the platform's hashing in some
+ // places for RSA, regardless of what is implementing RSA. If RSAOpenSsl were used on macOS, then
+ // there would be some incongruence between what hashes OpenSSL supports and what macOS support. Signing
+ // for example, always uses the platform's implementation of hashing.
+ if (padding.Mode == RSAEncryptionPaddingMode.Oaep &&
+ padding.OaepHashAlgorithm.Name is string name &&
+ !HashProviderDispenser.HashSupported(name))
+ {
+ throw new PlatformNotSupportedException();
+ }
}
private static void ValidatePadding(RSASignaturePadding padding)
diff --git a/src/libraries/Common/src/System/Security/Cryptography/RsaPaddingProcessor.cs b/src/libraries/Common/src/System/Security/Cryptography/RsaPaddingProcessor.cs
index 4db95b2ff4d242..66256440b7e708 100644
--- a/src/libraries/Common/src/System/Security/Cryptography/RsaPaddingProcessor.cs
+++ b/src/libraries/Common/src/System/Security/Cryptography/RsaPaddingProcessor.cs
@@ -44,41 +44,62 @@ internal static class RsaPaddingProcessor
0x40,
};
+ private static ReadOnlySpan DigestInfoSha3_256 => new byte[]
+ {
+ 0x30, 0x31, 0x30, 0x0D, 0x06, 0x09, 0x60, 0x86, 0x48,
+ 0x01, 0x65, 0x03, 0x04, 0x02, 0x08, 0x05, 0x00, 0x04,
+ 0x20,
+ };
+
+ private static ReadOnlySpan DigestInfoSha3_384 => new byte[]
+ {
+ 0x30, 0x41, 0x30, 0x0D, 0x06, 0x09, 0x60, 0x86, 0x48,
+ 0x01, 0x65, 0x03, 0x04, 0x02, 0x09, 0x05, 0x00, 0x04,
+ 0x30,
+ };
+
+ private static ReadOnlySpan DigestInfoSha3_512 => new byte[]
+ {
+ 0x30, 0x51, 0x30, 0x0D, 0x06, 0x09, 0x60, 0x86, 0x48,
+ 0x01, 0x65, 0x03, 0x04, 0x02, 0x0A, 0x05, 0x00, 0x04,
+ 0x40,
+ };
+
private static ReadOnlySpan EightZeros => new byte[8];
private static ReadOnlySpan GetDigestInfoForAlgorithm(
HashAlgorithmName hashAlgorithmName,
out int digestLengthInBytes)
{
- if (hashAlgorithmName == HashAlgorithmName.MD5)
- {
- digestLengthInBytes = MD5.HashSizeInBytes;
- return DigestInfoMD5;
- }
- else if (hashAlgorithmName == HashAlgorithmName.SHA1)
- {
- digestLengthInBytes = SHA1.HashSizeInBytes;
- return DigestInfoSha1;
- }
- else if (hashAlgorithmName == HashAlgorithmName.SHA256)
- {
- digestLengthInBytes = SHA256.HashSizeInBytes;
- return DigestInfoSha256;
- }
- else if (hashAlgorithmName == HashAlgorithmName.SHA384)
+ switch (hashAlgorithmName.Name)
{
- digestLengthInBytes = SHA384.HashSizeInBytes;
- return DigestInfoSha384;
- }
- else if (hashAlgorithmName == HashAlgorithmName.SHA512)
- {
- digestLengthInBytes = SHA512.HashSizeInBytes;
- return DigestInfoSha512;
- }
- else
- {
- Debug.Fail("Unknown digest algorithm");
- throw new CryptographicException();
+ case HashAlgorithmNames.MD5:
+ digestLengthInBytes = MD5.HashSizeInBytes;
+ return DigestInfoMD5;
+ case HashAlgorithmNames.SHA1:
+ digestLengthInBytes = SHA1.HashSizeInBytes;
+ return DigestInfoSha1;
+ case HashAlgorithmNames.SHA256:
+ digestLengthInBytes = SHA256.HashSizeInBytes;
+ return DigestInfoSha256;
+ case HashAlgorithmNames.SHA384:
+ digestLengthInBytes = SHA384.HashSizeInBytes;
+ return DigestInfoSha384;
+ case HashAlgorithmNames.SHA512:
+ digestLengthInBytes = SHA512.HashSizeInBytes;
+ return DigestInfoSha512;
+ case HashAlgorithmNames.SHA3_256:
+ digestLengthInBytes = SHA3_256.HashSizeInBytes;
+ return DigestInfoSha3_256;
+ case HashAlgorithmNames.SHA3_384:
+ digestLengthInBytes = SHA3_384.HashSizeInBytes;
+ return DigestInfoSha3_384;
+ case HashAlgorithmNames.SHA3_512:
+ digestLengthInBytes = SHA3_512.HashSizeInBytes;
+ return DigestInfoSha3_512;
+ default:
+ Debug.Fail("Unknown digest algorithm");
+ throw new CryptographicException();
}
}
diff --git a/src/libraries/Common/src/System/Security/Cryptography/SP800108HmacCounterKdf.cs b/src/libraries/Common/src/System/Security/Cryptography/SP800108HmacCounterKdf.cs
index 6598136dfe7a77..a9f37b0fb11a4e 100644
--- a/src/libraries/Common/src/System/Security/Cryptography/SP800108HmacCounterKdf.cs
+++ b/src/libraries/Common/src/System/Security/Cryptography/SP800108HmacCounterKdf.cs
@@ -559,6 +559,26 @@ private static void CheckHashAlgorithm(HashAlgorithmName hashAlgorithm)
case HashAlgorithmNames.SHA384:
case HashAlgorithmNames.SHA512:
break;
+#if NET8_0_OR_GREATER
+ case HashAlgorithmNames.SHA3_256:
+ if (!HMACSHA3_256.IsSupported)
+ {
+ throw new PlatformNotSupportedException();
+ }
+ break;
+ case HashAlgorithmNames.SHA3_384:
+ if (!HMACSHA3_384.IsSupported)
+ {
+ throw new PlatformNotSupportedException();
+ }
+ break;
+ case HashAlgorithmNames.SHA3_512:
+ if (!HMACSHA3_512.IsSupported)
+ {
+ throw new PlatformNotSupportedException();
+ }
+ break;
+#endif
default:
throw new CryptographicException(SR.Format(SR.Cryptography_UnknownHashAlgorithm, hashAlgorithmName));
}
diff --git a/src/libraries/Common/src/System/Security/Cryptography/SP800108HmacCounterKdfImplementationCng.cs b/src/libraries/Common/src/System/Security/Cryptography/SP800108HmacCounterKdfImplementationCng.cs
index ca8f72c61428aa..46143f15c86acc 100644
--- a/src/libraries/Common/src/System/Security/Cryptography/SP800108HmacCounterKdfImplementationCng.cs
+++ b/src/libraries/Common/src/System/Security/Cryptography/SP800108HmacCounterKdfImplementationCng.cs
@@ -193,7 +193,7 @@ private static unsafe SafeBCryptKeyHandle CreateSymmetricKey(byte* symmetricKey,
private static int GetHashBlockSize(string hashAlgorithmName)
{
- // Block sizes per NIST FIPS pub 180-4.
+ // Block sizes per NIST FIPS pub 180-4 and FIPS 202.
switch (hashAlgorithmName)
{
case HashAlgorithmNames.SHA1:
@@ -202,6 +202,12 @@ private static int GetHashBlockSize(string hashAlgorithmName)
case HashAlgorithmNames.SHA384:
case HashAlgorithmNames.SHA512:
return 1024 / 8;
+ case HashAlgorithmNames.SHA3_256:
+ return 1088 / 8;
+ case HashAlgorithmNames.SHA3_384:
+ return 832 / 8;
+ case HashAlgorithmNames.SHA3_512:
+ return 576 / 8;
default:
Debug.Fail($"Unexpected hash algorithm '{hashAlgorithmName}'");
throw new CryptographicException();
diff --git a/src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/ECDiffieHellman/ECDiffieHellmanFactory.cs b/src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/ECDiffieHellman/ECDiffieHellmanFactory.cs
index 6497640809f3ab..84bbea4587eef4 100644
--- a/src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/ECDiffieHellman/ECDiffieHellmanFactory.cs
+++ b/src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/ECDiffieHellman/ECDiffieHellmanFactory.cs
@@ -14,6 +14,7 @@ public interface IECDiffieHellmanProvider
bool ExplicitCurvesSupported { get; }
bool CanDeriveNewPublicKey { get; }
bool SupportsRawDerivation { get; }
+ bool SupportsSha3 { get; }
}
public static partial class ECDiffieHellmanFactory
@@ -45,5 +46,7 @@ public static bool IsCurveValid(Oid oid)
public static bool CanDeriveNewPublicKey => s_provider.CanDeriveNewPublicKey;
public static bool SupportsRawDerivation => s_provider.SupportsRawDerivation;
+
+ public static bool SupportsSha3 => s_provider.SupportsSha3;
}
}
diff --git a/src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/ECDiffieHellman/ECDiffieHellmanTests.Hash.cs b/src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/ECDiffieHellman/ECDiffieHellmanTests.Hash.cs
index dfca203f4fa14c..0065092e52aad1 100644
--- a/src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/ECDiffieHellman/ECDiffieHellmanTests.Hash.cs
+++ b/src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/ECDiffieHellman/ECDiffieHellmanTests.Hash.cs
@@ -207,56 +207,87 @@ public static void DeriveKeyMaterialEquivalentToDeriveKeyFromHash()
public static IEnumerable HashDerivationTestCases()
{
- return new object[][]
+ yield return new object[]
{
- new object[]
- {
- HashAlgorithmName.SHA256,
- null,
- null,
- "595B71C33D9D40ACD9CA847C47267DAEE7498EEF0B553482FAA45791418AC679",
- },
+ HashAlgorithmName.SHA256,
+ null,
+ null,
+ "595B71C33D9D40ACD9CA847C47267DAEE7498EEF0B553482FAA45791418AC679",
+ };
- new object[]
- {
- HashAlgorithmName.SHA1,
- null,
- null,
- "25E464FAC33F4A5F8786627FB3685F4C31B26327",
- },
+ yield return new object[]
+ {
+ HashAlgorithmName.SHA1,
+ null,
+ null,
+ "25E464FAC33F4A5F8786627FB3685F4C31B26327",
+ };
- new object[]
- {
- HashAlgorithmName.SHA256,
- "02040608",
- null,
- "D0F4C42D61E794E508A079822F3069C9F89D9E3385C8E090425FF38927798017",
- },
+ yield return new object[]
+ {
+ HashAlgorithmName.SHA256,
+ "02040608",
+ null,
+ "D0F4C42D61E794E508A079822F3069C9F89D9E3385C8E090425FF38927798017",
+ };
+
+ yield return new object[]
+ {
+ HashAlgorithmName.SHA256,
+ null,
+ "010305",
+ "20DCB58E2AC4E70B1BF47362B0D1C8B728E27D6575EA9B85106CBE05E1F7D6DB",
+ };
- new object[]
+ yield return new object[]
+ {
+ HashAlgorithmName.SHA256,
+ "02040608",
+ "010305",
+ "EFC758D39896E9DE96C120B0A74FB751F140BD7F3F4FC3777DC2A530145E01EC",
+ };
+
+ yield return new object[]
+ {
+ HashAlgorithmName.SHA256,
+ "010305",
+ "02040608",
+ "7DB5520A5D6351595FC286CD53509D964FBB152C289F072581CB5E16EBF319E8",
+ };
+
+ if (ECDiffieHellmanFactory.SupportsSha3)
+ {
+ // Created with:
+ // (echo -n -e '\x01\x03\0x05'; openssl pkeyutl -derive -inkey private.key -peerkey public.key; echo -n -e '\x02\x04\0x06\0x08') | openssl dgst -sha3-256
+ yield return new object[]
{
- HashAlgorithmName.SHA256,
- null,
+ HashAlgorithmName.SHA3_256,
"010305",
- "20DCB58E2AC4E70B1BF47362B0D1C8B728E27D6575EA9B85106CBE05E1F7D6DB",
- },
+ "02040608",
+ "2AF6DA738DADF26607513ECB56451B5A476C7D42CFEC89872791B7A6C136A4F9",
+ };
- new object[]
+ // Created with:
+ // (echo -n -e '\x01\x03\0x05'; openssl pkeyutl -derive -inkey private.key -peerkey public.key; echo -n -e '\x02\x04\0x06\0x08') | openssl dgst -sha3-384
+ yield return new object[]
{
- HashAlgorithmName.SHA256,
- "02040608",
+ HashAlgorithmName.SHA3_384,
"010305",
- "EFC758D39896E9DE96C120B0A74FB751F140BD7F3F4FC3777DC2A530145E01EC",
- },
+ "02040608",
+ "EE9C10A3E60EA06296699195B3E338575DA529BA167A7520CA8BF50C86C4A08AB153DD7B97ADEE58CE5A9CAAC2F52ED1",
+ };
- new object[]
+ // Created with:
+ // (echo -n -e '\x01\x03\0x05'; openssl pkeyutl -derive -inkey private.key -peerkey public.key; echo -n -e '\x02\x04\0x06\0x08') | openssl dgst -sha3-512
+ yield return new object[]
{
- HashAlgorithmName.SHA256,
+ HashAlgorithmName.SHA3_512,
"010305",
"02040608",
- "7DB5520A5D6351595FC286CD53509D964FBB152C289F072581CB5E16EBF319E8",
- },
- };
+ "3614398AFC4A09B0490E095A7901FEA3C9C217E742064A371F2E04D6363EF864" +
+ "FE52EEEEA976FEC3FF98DE55D1E78E864F009FD834E1D301FA069BD44F6ECD52",
+ };
+ }
}
#if NETCOREAPP
diff --git a/src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/ECDiffieHellman/ECDiffieHellmanTests.Hmac.cs b/src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/ECDiffieHellman/ECDiffieHellmanTests.Hmac.cs
index b8ba791ddd7844..f95fb64aafd3a4 100644
--- a/src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/ECDiffieHellman/ECDiffieHellmanTests.Hmac.cs
+++ b/src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/ECDiffieHellman/ECDiffieHellmanTests.Hmac.cs
@@ -248,71 +248,105 @@ public static void SimpleHmacNullKeyForwardsNull()
public static IEnumerable HmacDerivationTestCases()
{
- return new object[][]
+ yield return new object[]
{
- new object[]
- {
- HashAlgorithmName.SHA256,
- null,
- null,
- null,
- "6D7D15C9A08FD47DFDABD3541BE3BBAF93B15FC65D30E6012CCC0B23ED5C43FF",
- },
-
- new object[]
- {
- HashAlgorithmName.SHA1,
- null,
- null,
- null,
- "39D4B035BC1A1E4108B965689E27BA98ACED8449",
- },
-
- new object[]
- {
- HashAlgorithmName.SHA256,
- "030609",
- null,
- null,
- "7A4F81BF065CC521AFB162DB4A45CEFC78227178A58632EA53D3E367AB7D1979",
- },
+ HashAlgorithmName.SHA256,
+ null,
+ null,
+ null,
+ "6D7D15C9A08FD47DFDABD3541BE3BBAF93B15FC65D30E6012CCC0B23ED5C43FF",
+ };
- new object[]
- {
- HashAlgorithmName.SHA256,
- null,
- "02040608",
- "010305",
- "DB39A6AC9334701D2DCD508C401C65BC69348F684C85EDDE506950F049668842",
- },
+ yield return new object[]
+ {
+ HashAlgorithmName.SHA1,
+ null,
+ null,
+ null,
+ "39D4B035BC1A1E4108B965689E27BA98ACED8449",
+ };
+
+ yield return new object[]
+ {
+ HashAlgorithmName.SHA256,
+ "030609",
+ null,
+ null,
+ "7A4F81BF065CC521AFB162DB4A45CEFC78227178A58632EA53D3E367AB7D1979",
+ };
+
+ yield return new object[]
+ {
+ HashAlgorithmName.SHA256,
+ null,
+ "02040608",
+ "010305",
+ "DB39A6AC9334701D2DCD508C401C65BC69348F684C85EDDE506950F049668842",
+ };
- new object[]
+ yield return new object[]
+ {
+ HashAlgorithmName.SHA256,
+ null,
+ "010305",
+ "02040608",
+ "66471DE2655DF9404636F9076F845F0B71A04DDA2BA6F1469EB0F2E9EF57DC33",
+ };
+
+ yield return new object[]
+ {
+ HashAlgorithmName.SHA256,
+ "030609",
+ "02040608",
+ "010305",
+ "2F7A31FF9118A6BBF92E268568C634A9F1E244CA8C1A74C864DECC50727B7DEE",
+ };
+
+ yield return new object[]
+ {
+ HashAlgorithmName.SHA256,
+ "030609",
+ "010305",
+ "02040608",
+ "AE3CD974F262B199B0859D9F933207D2F6E3E04434D60089FE0BE801ED38D370",
+ };
+
+ if (ECDiffieHellmanFactory.SupportsSha3)
+ {
+ // Created with:
+ // (echo -n -e '\x01\x03\0x05'; openssl pkeyutl -derive -inkey private.key -peerkey public.key; echo -n -e '\x02\x04\0x06\0x08') | openssl sha3-256 -mac HMAC -macopt hexkey:030609
+ yield return new object[]
{
- HashAlgorithmName.SHA256,
- null,
+ HashAlgorithmName.SHA3_256,
+ "030609",
"010305",
"02040608",
- "66471DE2655DF9404636F9076F845F0B71A04DDA2BA6F1469EB0F2E9EF57DC33",
- },
+ "23E7E5648EF46D537F4159F7F40E686279D89ADFD7EF6CFA110034F42EC8CEF7",
+ };
- new object[]
+ // Created with:
+ // (echo -n -e '\x01\x03\0x05'; openssl pkeyutl -derive -inkey private.key -peerkey public.key; echo -n -e '\x02\x04\0x06\0x08') | openssl sha3-384 -mac HMAC -macopt hexkey:030609
+ yield return new object[]
{
- HashAlgorithmName.SHA256,
+ HashAlgorithmName.SHA3_384,
"030609",
- "02040608",
"010305",
- "2F7A31FF9118A6BBF92E268568C634A9F1E244CA8C1A74C864DECC50727B7DEE",
- },
+ "02040608",
+ "FD0F7B11489F641DE0964F81D83EF90E33C46D1628C51FA79A85AD1034A9CAD36F8A38C3925704AC0E404BC6FE50ECA4",
+ };
- new object[]
+ // Created with:
+ // (echo -n -e '\x01\x03\0x05'; openssl pkeyutl -derive -inkey private.key -peerkey public.key; echo -n -e '\x02\x04\0x06\0x08') | openssl sha3-512 -mac HMAC -macopt hexkey:030609
+ yield return new object[]
{
- HashAlgorithmName.SHA256,
+ HashAlgorithmName.SHA3_512,
"030609",
"010305",
"02040608",
- "AE3CD974F262B199B0859D9F933207D2F6E3E04434D60089FE0BE801ED38D370",
- },
- };
+ "2C32BBFBF8A41118AAD3BAA94C8995B5B027246EA3D972937C1BFD9F460C6492" +
+ "44EEC68EF570B4BB74B0D3BBD463F18526400A77211B5CB39311CDE21104E209",
+ };
+ }
}
#if NETCOREAPP
diff --git a/src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/ECDsa/ECDsaTests.NistValidation.cs b/src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/ECDsa/ECDsaTests.NistValidation.cs
index aab3429ed745b7..d0c596935ef092 100644
--- a/src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/ECDsa/ECDsaTests.NistValidation.cs
+++ b/src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/ECDsa/ECDsaTests.NistValidation.cs
@@ -246,6 +246,112 @@ public void ValidateNistP521Sha512()
HashAlgorithmName.SHA512);
}
+ [ConditionalFact(typeof(PlatformDetection), nameof(PlatformDetection.SupportsSha3))]
+ public void ValidateNistP256Sha3_256()
+ {
+ // From https://csrc.nist.gov/CSRC/media/Projects/Cryptographic-Standards-and-Guidelines/documents/examples/P256_SHA3-256.pdf
+ byte[] msg = "4578616d706c65206f66204543445341207769746820502d323536".HexToByteArray();
+
+ ECParameters parameters = new ECParameters
+ {
+ Curve = ECCurve.NamedCurves.nistP256,
+ Q = new ECPoint
+ {
+ X = "b7e08afdfe94bad3f1dc8c734798ba1c62b3a0ad1e9ea2a38201cd0889bc7a19".HexToByteArray(),
+ Y = "3603f747959dbf7a4bb226e41928729063adc7ae43529e61b563bbc606cc5e09".HexToByteArray(),
+ },
+ D = "c477f9f65c22cce20657faa5b2d1d8122336f851a508a1ed04e479c34985bf96".HexToByteArray(),
+ };
+
+ byte[] signature = (
+ // r
+ "2b42f576d07f4165ff65d1f3b1500f81e44c316f1f0b3ef57325b69aca46104f" +
+ // s
+ "0a861c2526900245c73bacb9adaec1a5acb3ba1f7114a3c334fdcd5b7690dadd"
+ ).HexToByteArray();
+
+ Validate(
+ parameters,
+ EccTestData.GetNistP256ExplicitCurve(),
+ msg,
+ signature,
+ HashAlgorithmName.SHA3_256);
+ }
+
+ [ConditionalFact(typeof(PlatformDetection), nameof(PlatformDetection.SupportsSha3))]
+ public void ValidateNistP384Sha3_384()
+ {
+ // From https://csrc.nist.gov/CSRC/media/Projects/Cryptographic-Standards-and-Guidelines/documents/examples/P384_SHA3-384.pdf
+ byte[] msg = "4578616d706c65206f66204543445341207769746820502d333834".HexToByteArray();
+
+ ECParameters parameters = new ECParameters
+ {
+ Curve = ECCurve.NamedCurves.nistP384,
+ Q = new ECPoint
+ {
+ X = ("3bf701bc9e9d36b4d5f1455343f09126f2564390f2b48736" +
+ "5071243c61e6471fb9d2ab74657b82f9086489d9ef0f5cb5").HexToByteArray(),
+ Y = ("d1a358eafbf952e68d533855ccbdaa6ff75b137a51014431" +
+ "99325583552a6295ffe5382d00cfcda30344a9b5b68db855").HexToByteArray(),
+ },
+ D = ("f92c02ed629e4b48c0584b1c6ce3a3e3b4faae4afc6acb04" +
+ "55e73dfc392e6a0ae393a8565e6b9714d1224b57d83f8a08").HexToByteArray(),
+ };
+
+ byte[] signature = (
+ // r
+ "30ea514fc0d38d8208756f068113c7cada9f66a3b40ea3b3" +
+ "13d040d9b57dd41a332795d02cc7d507fcef9faf01a27088" +
+ // s
+ "691b9d4969451a98036d53aa725458602125de74881bbc33" +
+ "3012ca4fa55bde39d1bf16a6aae3fe4992c567c6e7892337"
+ ).HexToByteArray();
+
+ Validate(
+ parameters,
+ EccTestData.GetNistP384ExplicitCurve(),
+ msg,
+ signature,
+ HashAlgorithmName.SHA3_384);
+ }
+
+ [ConditionalFact(typeof(PlatformDetection), nameof(PlatformDetection.SupportsSha3))]
+ public void ValidateNistP521Sha3_512()
+ {
+ // From https://csrc.nist.gov/CSRC/media/Projects/Cryptographic-Standards-and-Guidelines/documents/examples/P521_SHA3-512.pdf
+ byte[] msg = "4578616d706c65206f66204543445341207769746820502d353231".HexToByteArray();
+
+ ECParameters parameters = new ECParameters
+ {
+ Curve = ECCurve.NamedCurves.nistP521,
+ Q = new ECPoint
+ {
+ X = ("0098e91eef9a68452822309c52fab453f5f117c1da8ed796b255e9ab8f6410cca1" +
+ "6e59df403a6bdc6ca467a37056b1e54b3005d8ac030decfeb68df18b171885d5c4").HexToByteArray(),
+ Y = ("0164350c321aecfc1cca1ba4364c9b15656150b4b78d6a48d7d28e7f31985ef17b" +
+ "e8554376b72900712c4b83ad668327231526e313f5f092999a4632fd50d946bc2e").HexToByteArray(),
+ },
+ D = ("0100085f47b8e1b8b11b7eb33028c0b2888e304bfc98501955b45bba1478dc184e" +
+ "eedf09b86a5f7c21994406072787205e69a63709fe35aa93ba333514b24f961722").HexToByteArray(),
+ };
+
+ byte[] signature = (
+ // r
+ "0140c8edca57108ce3f7e7a240ddd3ad74d81e2de62451fc1d558fdc79269adacd" +
+ "1c2526eeeef32f8c0432a9d56e2b4a8a732891c37c9b96641a9254ccfe5dc3e2ba" +
+ // s
+ "00b25188492d58e808edebd7bf440ed20db771ca7c618595d5398e1b1c0098e300" +
+ "d8c803ec69ec5f46c84fc61967a302d366c627fcfa56f87f241ef921b6e627adbf"
+ ).HexToByteArray();
+
+ Validate(
+ parameters,
+ EccTestData.GetNistP521ExplicitCurve(),
+ msg,
+ signature,
+ HashAlgorithmName.SHA3_512);
+ }
+
private static void Validate(
ECParameters parameters,
ECCurve explicitCurve,
diff --git a/src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/RSA/EncryptDecrypt.cs b/src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/RSA/EncryptDecrypt.cs
index c74a993e54a7b6..5b97f468a4271e 100644
--- a/src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/RSA/EncryptDecrypt.cs
+++ b/src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/RSA/EncryptDecrypt.cs
@@ -315,7 +315,19 @@ public void RsaCryptRoundtrip_OaepSHA384() =>
public void RsaCryptRoundtrip_OaepSHA512() =>
RsaCryptRoundtrip(RSAEncryptionPadding.OaepSHA512, RSAFactory.SupportsSha2Oaep);
- private void RsaCryptRoundtrip(RSAEncryptionPadding paddingMode, bool expectSuccess=true)
+ [Fact]
+ public void RsaCryptRoundtrip_OaepSHA3_256() =>
+ RsaCryptRoundtrip(RSAEncryptionPadding.OaepSHA3_256, RSAFactory.SupportsSha3);
+
+ [Fact]
+ public void RsaCryptRoundtrip_OaepSHA3_384() =>
+ RsaCryptRoundtrip(RSAEncryptionPadding.OaepSHA3_384, RSAFactory.SupportsSha3);
+
+ [Fact]
+ public void RsaCryptRoundtrip_OaepSHA3_512() =>
+ RsaCryptRoundtrip(RSAEncryptionPadding.OaepSHA3_512, RSAFactory.SupportsSha3);
+
+ private void RsaCryptRoundtrip(RSAEncryptionPadding paddingMode, bool expectSuccess = true)
{
byte[] crypt;
byte[] output;
@@ -324,9 +336,12 @@ private void RsaCryptRoundtrip(RSAEncryptionPadding paddingMode, bool expectSucc
{
if (!expectSuccess)
{
- Assert.ThrowsAny(
+ Exception ex = Assert.ThrowsAny(
() => Encrypt(rsa, TestData.HelloBytes, paddingMode));
+ Assert.True(ex is CryptographicException or PlatformNotSupportedException,
+ "exception is CryptographicException or PlatformNotSupportedException");
+
return;
}
@@ -370,6 +385,13 @@ void RoundtripEmpty(RSAEncryptionPadding paddingMode)
RoundtripEmpty(RSAEncryptionPadding.OaepSHA384);
RoundtripEmpty(RSAEncryptionPadding.OaepSHA512);
}
+
+ if (RSAFactory.SupportsSha3)
+ {
+ RoundtripEmpty(RSAEncryptionPadding.OaepSHA3_256);
+ RoundtripEmpty(RSAEncryptionPadding.OaepSHA3_384);
+ RoundtripEmpty(RSAEncryptionPadding.OaepSHA3_512);
+ }
}
}
@@ -715,6 +737,13 @@ public static IEnumerable OaepPaddingModes
yield return new object[] { RSAEncryptionPadding.OaepSHA384 };
yield return new object[] { RSAEncryptionPadding.OaepSHA512 };
}
+
+ if (RSAFactory.SupportsSha3)
+ {
+ yield return new object[] { RSAEncryptionPadding.OaepSHA3_256 };
+ yield return new object[] { RSAEncryptionPadding.OaepSHA3_384 };
+ yield return new object[] { RSAEncryptionPadding.OaepSHA3_512 };
+ }
}
}
}
diff --git a/src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/RSA/RSAFactory.cs b/src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/RSA/RSAFactory.cs
index 9a4b27348ab4a0..b13a6ee01d8e41 100644
--- a/src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/RSA/RSAFactory.cs
+++ b/src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/RSA/RSAFactory.cs
@@ -12,6 +12,7 @@ public interface IRSAProvider
bool SupportsSha2Oaep { get; }
bool SupportsPss { get; }
bool SupportsSha1Signatures { get; }
+ bool SupportsSha3 { get; }
}
public static partial class RSAFactory
@@ -42,5 +43,8 @@ public static RSA Create(RSAParameters rsaParameters)
public static bool SupportsPss => s_provider.SupportsPss;
public static bool SupportsSha1Signatures => s_provider.SupportsSha1Signatures;
+
+ public static bool SupportsSha3 => s_provider.SupportsSha3;
+ public static bool NoSupportsSha3 => !SupportsSha3;
}
}
diff --git a/src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/RSA/SignVerify.cs b/src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/RSA/SignVerify.cs
index 0bbdd7db7372da..6b0fd33bf89e7b 100644
--- a/src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/RSA/SignVerify.cs
+++ b/src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/RSA/SignVerify.cs
@@ -504,6 +504,84 @@ public void VerifySignature_SHA256_2048()
VerifySignature(signature, TestData.HelloBytes, "SHA256", TestData.RSA2048Params);
}
+ [ConditionalFact(typeof(RSAFactory), nameof(RSAFactory.SupportsSha3))]
+ public void VerifySignature_SHA3_256_RSA2048()
+ {
+ byte[] signature = new byte[]
+ {
+ 0x37, 0xfc, 0x5b, 0xa7, 0xcd, 0x72, 0x93, 0x55, 0x43, 0x6f, 0x2c, 0x5c, 0xce, 0x10, 0x20, 0x67,
+ 0x38, 0xbc, 0x82, 0x65, 0xad, 0x64, 0x41, 0x3d, 0x7b, 0xe1, 0x13, 0x6e, 0xbf, 0x7c, 0x0a, 0xa7,
+ 0xc7, 0x42, 0x57, 0xf3, 0x75, 0xec, 0xda, 0xf1, 0xa0, 0xeb, 0x6d, 0x61, 0x04, 0x07, 0x4b, 0x3c,
+ 0xf8, 0x0d, 0x1d, 0x7a, 0xb2, 0x1f, 0xb1, 0xa4, 0xae, 0x35, 0x85, 0x18, 0xe4, 0xe1, 0xa5, 0x66,
+ 0x3d, 0x0c, 0xcd, 0x60, 0xf6, 0x6c, 0x89, 0xf6, 0x49, 0x87, 0x19, 0x3a, 0xa2, 0x24, 0x8a, 0xd9,
+ 0x17, 0x58, 0x2e, 0x50, 0x69, 0xd4, 0xae, 0x92, 0x17, 0xc1, 0xf8, 0x8e, 0xae, 0xca, 0x05, 0xc0,
+ 0x9c, 0x9d, 0xda, 0x0c, 0x82, 0x16, 0xae, 0xa4, 0x73, 0xe7, 0x65, 0x90, 0xb9, 0x25, 0x89, 0xe8,
+ 0xae, 0x60, 0x74, 0x86, 0x2e, 0xd6, 0xa8, 0x8a, 0x05, 0xda, 0x6c, 0x2e, 0x3f, 0x32, 0x24, 0x84,
+ 0x23, 0x87, 0x10, 0x5b, 0x42, 0x79, 0xdd, 0x64, 0x2c, 0xe4, 0x60, 0x75, 0x38, 0x2b, 0x37, 0x43,
+ 0x1c, 0x9b, 0x75, 0x6a, 0xf2, 0xfa, 0xbf, 0x95, 0x7f, 0xdb, 0x64, 0xe0, 0xa6, 0xc0, 0xb1, 0x24,
+ 0xcb, 0xf9, 0xdc, 0x30, 0xcd, 0xba, 0x54, 0x9a, 0xd4, 0xea, 0x3d, 0xcf, 0x3b, 0x08, 0x97, 0x19,
+ 0xdd, 0xc1, 0xf0, 0x20, 0xf6, 0x02, 0x7c, 0x0e, 0x0c, 0x84, 0x70, 0x89, 0x78, 0x5c, 0x50, 0xc5,
+ 0xce, 0xe5, 0xdd, 0x03, 0xf4, 0xc5, 0x86, 0x0e, 0xb7, 0x98, 0xd5, 0x96, 0x98, 0x2e, 0x02, 0xc9,
+ 0xb0, 0x41, 0x84, 0xa9, 0xa1, 0xda, 0x75, 0x81, 0x1d, 0x5a, 0x6a, 0x00, 0x33, 0x0f, 0x94, 0xa4,
+ 0x20, 0x0c, 0x91, 0xae, 0xae, 0xa4, 0xd3, 0xa8, 0x95, 0x20, 0x5c, 0x0c, 0x3b, 0x6e, 0x32, 0x7e,
+ 0xd3, 0x5b, 0xf4, 0x9b, 0x0c, 0xe2, 0x97, 0xd4, 0x1c, 0xf7, 0x98, 0x96, 0x77, 0xda, 0x05, 0xf5,
+ };
+
+ VerifySignature(signature, TestData.HelloBytes, HashAlgorithmName.SHA3_256.Name, TestData.RSA2048Params);
+ }
+
+ [ConditionalFact(typeof(RSAFactory), nameof(RSAFactory.SupportsSha3))]
+ public void VerifySignature_SHA3_384_RSA2048()
+ {
+ byte[] signature = new byte[]
+ {
+ 0x96, 0x76, 0xdf, 0xa3, 0xd3, 0xac, 0x74, 0x08, 0x18, 0x41, 0x0a, 0xa1, 0x03, 0x6b, 0x28, 0x5d,
+ 0xf8, 0xf7, 0xe5, 0x72, 0xe1, 0x7e, 0xb0, 0x11, 0x2f, 0x91, 0xbf, 0xce, 0xba, 0xa1, 0x4e, 0xfa,
+ 0x6f, 0x20, 0xaa, 0xc7, 0x8d, 0xf4, 0x8a, 0xba, 0xd3, 0xa3, 0x07, 0xa0, 0x0f, 0x09, 0x44, 0x7d,
+ 0xcc, 0xa1, 0x7b, 0xe4, 0x17, 0xcb, 0xe9, 0xe0, 0x78, 0xff, 0xd0, 0xf2, 0xdf, 0xd1, 0xdb, 0xd3,
+ 0x4a, 0xfb, 0xa8, 0x11, 0xac, 0xd3, 0x27, 0xcc, 0x05, 0x59, 0xc8, 0x16, 0x5d, 0x15, 0x68, 0x4d,
+ 0x20, 0x17, 0xd2, 0x52, 0xa1, 0xee, 0x7f, 0xce, 0xdb, 0xd4, 0x1a, 0x18, 0x6a, 0xc1, 0x2e, 0x42,
+ 0x74, 0xcd, 0xc8, 0x31, 0x92, 0x24, 0x33, 0x7e, 0x41, 0x0b, 0x16, 0xf3, 0xd4, 0xa0, 0x30, 0x78,
+ 0x8e, 0x3a, 0x05, 0xfa, 0xcb, 0x5b, 0x9f, 0x71, 0xd4, 0xfb, 0x27, 0x17, 0x19, 0x66, 0xe1, 0x05,
+ 0x6d, 0x3a, 0xd8, 0x89, 0x27, 0x19, 0x4f, 0x28, 0x3f, 0x6c, 0xb9, 0xfe, 0xca, 0xfb, 0x77, 0xcc,
+ 0xf1, 0x46, 0x2a, 0x3a, 0x74, 0x17, 0x8a, 0xb1, 0x76, 0x3a, 0x1b, 0xc3, 0x2e, 0x29, 0x29, 0xa6,
+ 0xeb, 0x1e, 0xf5, 0x3d, 0x4a, 0x41, 0x39, 0x49, 0xc3, 0x87, 0xe6, 0xcb, 0x49, 0x81, 0x8c, 0xa9,
+ 0x8a, 0xd8, 0xf5, 0x9e, 0x1c, 0x96, 0x8f, 0xac, 0xc4, 0xac, 0xd3, 0x1b, 0x7a, 0x09, 0x33, 0x48,
+ 0x62, 0xcc, 0x13, 0x3b, 0xb6, 0x9c, 0x20, 0x55, 0xb3, 0x3c, 0x0b, 0x77, 0xc5, 0x0e, 0x3d, 0x26,
+ 0x41, 0x15, 0xbf, 0xf7, 0xea, 0xdf, 0x44, 0x9c, 0x35, 0x0b, 0xca, 0x2e, 0x6e, 0xac, 0x04, 0x34,
+ 0x52, 0x18, 0x68, 0xa0, 0xc8, 0x3b, 0x51, 0xfb, 0x67, 0xed, 0x89, 0x29, 0x1e, 0xe4, 0xfe, 0xb3,
+ 0x78, 0xb1, 0x40, 0xe3, 0xd3, 0x53, 0xf4, 0x3e, 0xa5, 0x07, 0x33, 0x83, 0xf7, 0x02, 0x39, 0x1b,
+ };
+
+ VerifySignature(signature, TestData.HelloBytes, HashAlgorithmName.SHA3_384.Name, TestData.RSA2048Params);
+ }
+
+ [ConditionalFact(typeof(RSAFactory), nameof(RSAFactory.SupportsSha3))]
+ public void VerifySignature_SHA3_512_RSA2048()
+ {
+ byte[] signature = new byte[]
+ {
+ 0x18, 0x83, 0xab, 0x01, 0xc1, 0xaf, 0x98, 0xa9, 0xc2, 0xde, 0x2d, 0x63, 0x4f, 0x8a, 0xf6, 0x47,
+ 0xd9, 0xd2, 0xd1, 0xa0, 0x5b, 0xf4, 0x14, 0x6a, 0x49, 0x14, 0x56, 0x90, 0x63, 0xf9, 0x2c, 0xf6,
+ 0xed, 0xc2, 0x19, 0x65, 0x80, 0x0b, 0xa9, 0x7a, 0xa9, 0xcc, 0x00, 0x93, 0xdc, 0x8c, 0xcd, 0xef,
+ 0xa1, 0x76, 0x4c, 0x56, 0x8c, 0x36, 0x25, 0xcb, 0xbe, 0xd2, 0xbf, 0x49, 0xe6, 0xac, 0xbe, 0x50,
+ 0x52, 0xf8, 0xd0, 0xf9, 0xb0, 0xcb, 0xfb, 0xae, 0x41, 0x8b, 0x94, 0xbc, 0x47, 0xee, 0x71, 0x1d,
+ 0x9e, 0x4b, 0xcc, 0x6b, 0xe2, 0x66, 0x01, 0x92, 0x16, 0x06, 0x43, 0x64, 0x65, 0x19, 0x3a, 0xed,
+ 0x5f, 0x60, 0x85, 0xb1, 0xa8, 0x29, 0x76, 0x17, 0x2d, 0xb3, 0xc5, 0xee, 0x6d, 0x76, 0xef, 0x14,
+ 0xf8, 0x47, 0x8b, 0x35, 0x32, 0x4e, 0x8f, 0x79, 0xa8, 0x02, 0xe1, 0xe6, 0x49, 0xda, 0x50, 0x98,
+ 0xd7, 0xb9, 0x71, 0xf6, 0x9d, 0x9b, 0xcd, 0xb6, 0x0d, 0xd3, 0xc8, 0x9d, 0xf2, 0xac, 0xfa, 0xad,
+ 0xd4, 0xb6, 0xc2, 0x72, 0x9f, 0x14, 0xce, 0x24, 0x87, 0x68, 0x47, 0x6d, 0x7a, 0x73, 0xce, 0x67,
+ 0xb2, 0xd5, 0x07, 0x69, 0x0d, 0xc3, 0xdd, 0xb4, 0xc2, 0x56, 0xbc, 0x10, 0xc2, 0xe5, 0x9d, 0xb3,
+ 0xf9, 0x4d, 0xcd, 0xef, 0x9f, 0xe3, 0x3b, 0x8c, 0x49, 0xdf, 0x4b, 0x1f, 0xc0, 0x0c, 0x2d, 0xf6,
+ 0xad, 0x6c, 0x0f, 0x83, 0x5c, 0x74, 0xb0, 0xff, 0x95, 0x7f, 0x37, 0x34, 0x7b, 0x07, 0x50, 0x91,
+ 0x7f, 0xd2, 0x26, 0x39, 0x1f, 0xad, 0x72, 0x8a, 0x47, 0x2e, 0x6c, 0xb4, 0xf2, 0xcd, 0x09, 0xfd,
+ 0x1b, 0xca, 0xf6, 0xbe, 0x70, 0x14, 0xe8, 0x51, 0x1e, 0xf4, 0x5b, 0xd9, 0x57, 0xa6, 0x73, 0xe2,
+ 0xa0, 0xde, 0xc4, 0x67, 0x7a, 0x4a, 0xe2, 0x24, 0x64, 0x79, 0xd5, 0xe7, 0x39, 0xfc, 0xb2, 0xd9,
+ };
+
+ VerifySignature(signature, TestData.HelloBytes, HashAlgorithmName.SHA3_512.Name, TestData.RSA2048Params);
+ }
+
[Theory]
[MemberData(nameof(RoundTripTheories))]
public void SignAndVerify_Roundtrip(string hashAlgorithm, RSAParameters rsaParameters)
@@ -877,19 +955,10 @@ public void VerifyHashSignature_SHA256_2048()
VerifyHashSignature(hashSignature, dataHash, "SHA256", TestData.RSA2048Params);
}
- [ConditionalTheory]
- [InlineData("SHA256")]
- [InlineData("SHA384")]
- [InlineData("SHA512")]
- [InlineData("MD5")]
- [InlineData("SHA1")]
+ [Theory]
+ [MemberData(nameof(HashAlgorithmNames))]
public void PssRoundtrip(string hashAlgorithmName)
{
- if (!RSAFactory.SupportsSha1Signatures && hashAlgorithmName == "SHA1")
- {
- throw new SkipTestException("Platform does not support RSA with SHA1 signatures.");
- }
-
RSAParameters privateParameters = TestData.RSA2048Params;
RSAParameters publicParameters = new RSAParameters
{
@@ -1062,6 +1131,150 @@ public void VerifyExpectedSignature_PssSha512()
helloSignature);
}
+ [ConditionalFact(typeof(RSAFactory), nameof(RSAFactory.SupportsSha3))]
+ public void VerifyExpectedSignature_PssSha3_256()
+ {
+ // Signature independently created with
+ // echo -n Hello | openssl dgst -sha3-256 -binary | openssl pkeyutl -sign -inkey key.pem -pkeyopt rsa_padding_mode:pss -pkeyopt digest:sha3-256 | xxd -i -c 16
+ byte[] helloSignature =
+ {
+ 0x0b, 0x02, 0x36, 0x0c, 0x56, 0x6b, 0x93, 0xa8, 0x4e, 0x4d, 0x0e, 0xa3, 0x67, 0x28, 0xc6, 0xea,
+ 0xdb, 0x05, 0xc8, 0x63, 0x64, 0xe5, 0xec, 0xf9, 0xc1, 0x25, 0x5a, 0x34, 0xe6, 0x3f, 0xe1, 0x38,
+ 0x49, 0x45, 0x0b, 0x34, 0x6b, 0xa7, 0x91, 0xe1, 0x22, 0xe0, 0x2c, 0x8d, 0x46, 0x23, 0x38, 0xb1,
+ 0x9e, 0x4c, 0xf3, 0xa0, 0xff, 0x57, 0x96, 0x01, 0xbb, 0xa4, 0x0f, 0x03, 0x27, 0xaf, 0x8e, 0x99,
+ 0x5e, 0x0e, 0x99, 0xfd, 0xc6, 0x55, 0x81, 0x65, 0x56, 0x83, 0x2d, 0x42, 0xa3, 0x60, 0xc3, 0x36,
+ 0x69, 0xb4, 0x39, 0x04, 0x70, 0xfe, 0x26, 0x9b, 0x65, 0x6a, 0x15, 0xaa, 0xfc, 0xc5, 0x70, 0x71,
+ 0xba, 0x01, 0x49, 0xae, 0x27, 0xd4, 0x52, 0x28, 0xe4, 0xce, 0x37, 0x8a, 0x7d, 0x16, 0x2f, 0x59,
+ 0x3a, 0x1d, 0x36, 0x44, 0x82, 0xba, 0x51, 0xa3, 0x2c, 0xf9, 0x7e, 0xad, 0x36, 0xd4, 0x24, 0xfb,
+ 0x77, 0xae, 0x55, 0x10, 0x6e, 0xbc, 0x9d, 0xc8, 0xd7, 0xf4, 0x2b, 0x07, 0x70, 0x20, 0x8e, 0xd4,
+ 0xc6, 0xb3, 0x7f, 0x72, 0x9e, 0xa7, 0x0e, 0xd5, 0x31, 0x5d, 0x8c, 0x0c, 0xca, 0xae, 0x5a, 0x5a,
+ 0x38, 0x10, 0x42, 0x9f, 0x4f, 0x64, 0xc8, 0xe3, 0xdb, 0x4c, 0x17, 0x0b, 0x7b, 0x97, 0x82, 0x1f,
+ 0x9c, 0x88, 0xcf, 0x5e, 0xe7, 0x19, 0x8f, 0xa9, 0x5f, 0xd0, 0x1b, 0x19, 0x21, 0x2a, 0x2d, 0x36,
+ 0x45, 0x4a, 0xb1, 0x4d, 0xc8, 0xe1, 0x5e, 0x53, 0x24, 0xe1, 0x0b, 0x03, 0x01, 0x5d, 0xd9, 0x8f,
+ 0xe3, 0x3a, 0xdb, 0x3f, 0xbf, 0xa4, 0x24, 0x16, 0x44, 0x3e, 0x52, 0x5c, 0x6c, 0xfd, 0x2d, 0x0e,
+ 0x22, 0x69, 0xcf, 0x2a, 0x58, 0x8f, 0xe7, 0x31, 0x88, 0x22, 0xb8, 0x21, 0x68, 0x56, 0x6b, 0xb6,
+ 0xab, 0x76, 0x81, 0x41, 0x59, 0xb9, 0xe5, 0xc2, 0x61, 0x06, 0xea, 0x9b, 0x5b, 0x57, 0xf7, 0xb0,
+ };
+
+ VerifyExpectedSignature_Pss(
+ TestData.RSA2048Params,
+ HashAlgorithmName.SHA3_256,
+ TestData.HelloBytes,
+ helloSignature);
+ }
+
+ [ConditionalFact(typeof(RSAFactory), nameof(RSAFactory.SupportsSha3))]
+ public void VerifyExpectedSignature_PssSha3_384()
+ {
+ // Signature independently created with
+ // echo -n Hello | openssl dgst -sha3-384 -binary | openssl pkeyutl -sign -inkey key.pem -pkeyopt rsa_padding_mode:pss -pkeyopt digest:sha3-384 | xxd -i -c 16
+ byte[] helloSignature =
+ {
+ 0x75, 0x00, 0x1d, 0xa9, 0x3b, 0xfa, 0x79, 0x57, 0x4a, 0x3c, 0x9f, 0xec, 0x7b, 0xa4, 0x1f, 0x17,
+ 0x3a, 0x32, 0x20, 0x90, 0x62, 0x16, 0x25, 0xae, 0x80, 0x54, 0x71, 0xb0, 0xf5, 0x28, 0x5c, 0x97,
+ 0xfc, 0x4c, 0x21, 0x18, 0xb0, 0xfb, 0x90, 0xae, 0xca, 0xa6, 0x76, 0xf5, 0x14, 0x7a, 0x23, 0x47,
+ 0x39, 0x1c, 0xf4, 0x62, 0x23, 0x82, 0x18, 0x72, 0x58, 0x64, 0x9a, 0xe2, 0x3b, 0x4e, 0x5a, 0xe5,
+ 0xf1, 0x16, 0x77, 0xe4, 0xbe, 0xb5, 0x90, 0x54, 0x34, 0x38, 0x24, 0xe4, 0xe1, 0x59, 0xd2, 0x58,
+ 0x82, 0xc3, 0x68, 0x95, 0xb0, 0x1a, 0x0e, 0x1a, 0x67, 0x4a, 0x28, 0x1e, 0x7e, 0x5c, 0x67, 0xd2,
+ 0x2e, 0x9c, 0xb6, 0x12, 0x29, 0xf4, 0x57, 0x62, 0xaa, 0xf6, 0x46, 0x00, 0x90, 0xee, 0xc1, 0xb8,
+ 0x06, 0x40, 0x41, 0x8d, 0xc4, 0x69, 0x68, 0x75, 0xc5, 0xfc, 0xbc, 0x73, 0x40, 0x7c, 0xd6, 0xef,
+ 0xd0, 0x28, 0xe7, 0x32, 0x52, 0x34, 0x2d, 0x43, 0xca, 0xb8, 0x1e, 0x80, 0x07, 0x1c, 0xe6, 0x54,
+ 0xd9, 0x03, 0x06, 0xc0, 0xc7, 0x1a, 0x5a, 0xaf, 0x1a, 0xf3, 0xaa, 0xce, 0xa4, 0x02, 0xff, 0xf5,
+ 0xed, 0x7e, 0x0b, 0x2a, 0x68, 0x7d, 0x65, 0x98, 0xf4, 0xf4, 0x82, 0x3f, 0x54, 0x2a, 0x18, 0x02,
+ 0xf9, 0x3e, 0x3d, 0xed, 0x18, 0x98, 0xd5, 0xb2, 0x5f, 0x7f, 0xee, 0x26, 0xa1, 0x8f, 0xf5, 0x39,
+ 0x97, 0xeb, 0x71, 0x18, 0xf1, 0x3c, 0x10, 0x49, 0x34, 0x2e, 0xa8, 0x92, 0x50, 0x17, 0xb7, 0x91,
+ 0x6b, 0x66, 0x67, 0x2b, 0xd1, 0x73, 0x0b, 0x73, 0xa3, 0xc5, 0xef, 0x03, 0x70, 0xbc, 0x38, 0x59,
+ 0x1d, 0x23, 0xa2, 0xf8, 0x2d, 0xae, 0x43, 0xc8, 0x6d, 0x10, 0x2c, 0x56, 0x48, 0x2a, 0xc7, 0xef,
+ 0xf2, 0x4e, 0x5c, 0x30, 0x75, 0xbc, 0xd3, 0xd6, 0x4c, 0xfd, 0x45, 0xc6, 0x43, 0xca, 0xe8, 0x73,
+ };
+
+ VerifyExpectedSignature_Pss(
+ TestData.RSA2048Params,
+ HashAlgorithmName.SHA3_384,
+ TestData.HelloBytes,
+ helloSignature);
+ }
+
+ [ConditionalFact(typeof(RSAFactory), nameof(RSAFactory.SupportsSha3))]
+ public void VerifyExpectedSignature_PssSha3_512()
+ {
+ // Signature independently created with
+ // echo -n Hello | openssl dgst -sha3-512 -binary | openssl pkeyutl -sign -inkey key.pem -pkeyopt rsa_padding_mode:pss -pkeyopt digest:sha3-512 | xxd -i -c 16
+ byte[] helloSignature =
+ {
+ 0x2b, 0x02, 0x93, 0xd1, 0x56, 0x1d, 0x03, 0xce, 0xc7, 0xe0, 0xd0, 0x76, 0xf7, 0xce, 0x76, 0xd7,
+ 0xd6, 0xf1, 0xeb, 0xc2, 0xc4, 0x97, 0xee, 0x16, 0xdb, 0x04, 0x9c, 0x51, 0xd3, 0xc4, 0x76, 0xcd,
+ 0xdb, 0x77, 0x3f, 0x82, 0xf1, 0x31, 0x56, 0x77, 0xc8, 0x44, 0xfd, 0x29, 0x42, 0xf0, 0x68, 0x5d,
+ 0x27, 0x11, 0x74, 0xc1, 0x44, 0x4e, 0x30, 0x6e, 0xfc, 0x3c, 0xa8, 0x61, 0x14, 0x1d, 0x84, 0xec,
+ 0x92, 0x2c, 0x80, 0xeb, 0x57, 0xd0, 0x81, 0xe7, 0xae, 0xf7, 0x83, 0xe1, 0xe6, 0xfb, 0xc6, 0xed,
+ 0x5e, 0x0a, 0xd8, 0x67, 0x01, 0xf4, 0xc8, 0x8d, 0x27, 0x7c, 0x5f, 0xff, 0xb7, 0x9d, 0xb4, 0xd4,
+ 0x70, 0x18, 0xd4, 0x94, 0x7d, 0x36, 0xa7, 0x63, 0xe1, 0xa2, 0x30, 0x53, 0x6a, 0xef, 0x6e, 0xfa,
+ 0xad, 0xf4, 0xfd, 0xea, 0xba, 0x81, 0xd9, 0x73, 0x75, 0x90, 0xff, 0x98, 0x4c, 0xdb, 0x7d, 0xc6,
+ 0x91, 0xd9, 0x83, 0xdf, 0x31, 0xa3, 0xb4, 0x05, 0x91, 0xf9, 0xbe, 0x96, 0xfc, 0xed, 0xfd, 0x8b,
+ 0x8e, 0x9a, 0xee, 0xe5, 0xaf, 0xfd, 0x7e, 0x7e, 0xe0, 0xe1, 0x65, 0xa4, 0xf1, 0xdb, 0x4f, 0x01,
+ 0x47, 0x00, 0xee, 0x03, 0xb7, 0x96, 0x4c, 0x73, 0xdc, 0x6f, 0xf8, 0xf9, 0xac, 0xce, 0x1e, 0x4b,
+ 0xb8, 0x3d, 0x5b, 0xd5, 0xea, 0xf1, 0x4b, 0xd9, 0x63, 0x45, 0x2a, 0x49, 0x22, 0x2d, 0x6c, 0xc5,
+ 0x48, 0xe3, 0x1d, 0xbd, 0x92, 0xed, 0x42, 0x5a, 0x0c, 0xde, 0xb3, 0x2b, 0x91, 0xbd, 0x8e, 0x74,
+ 0x59, 0x6c, 0x9c, 0x39, 0x24, 0x43, 0xe4, 0x5c, 0xf6, 0x26, 0xd6, 0x30, 0xa0, 0x53, 0xb5, 0x2a,
+ 0x0d, 0x0d, 0xfc, 0x68, 0xb5, 0xae, 0x8d, 0x7e, 0xdf, 0x45, 0xfc, 0x66, 0x43, 0x93, 0x8d, 0x40,
+ 0x42, 0x29, 0xe1, 0xe9, 0xe3, 0xff, 0xda, 0xd8, 0x7d, 0x64, 0x9a, 0x26, 0xea, 0xb3, 0xba, 0x7d,
+ };
+
+ VerifyExpectedSignature_Pss(
+ TestData.RSA2048Params,
+ HashAlgorithmName.SHA3_512,
+ TestData.HelloBytes,
+ helloSignature);
+ }
+
+ [ConditionalTheory(typeof(RSAFactory), nameof(RSAFactory.NoSupportsSha3))]
+ [InlineData("SHA3-256")]
+ [InlineData("SHA3-384")]
+ [InlineData("SHA3-512")]
+ public void Pkcs1UnsupportedHashAlgorithm(string hashAlgorithm)
+ {
+ using (RSA rsa = RSAFactory.Create())
+ {
+ Exception ex = Assert.ThrowsAny(() =>
+ SignData(rsa, new byte[] { 1 }, new HashAlgorithmName(hashAlgorithm), RSASignaturePadding.Pkcs1));
+
+ Assert.True(
+ ex is PlatformNotSupportedException or CryptographicException,
+ "ex is PlatformNotSupportedException or CryptographicException");
+
+ ex = Assert.ThrowsAny(() =>
+ VerifyData(rsa, new byte[] { 1 }, new byte[] { 1 }, new HashAlgorithmName(hashAlgorithm), RSASignaturePadding.Pkcs1));
+
+ Assert.True(
+ ex is PlatformNotSupportedException or CryptographicException,
+ "ex is PlatformNotSupportedException or CryptographicException");
+ }
+ }
+
+ [ConditionalTheory(typeof(RSAFactory), nameof(RSAFactory.NoSupportsSha3))]
+ [InlineData("SHA3-256")]
+ [InlineData("SHA3-384")]
+ [InlineData("SHA3-512")]
+ public void PssUnsupportedHashAlgorithm(string hashAlgorithm)
+ {
+ using (RSA rsa = RSAFactory.Create())
+ {
+ Exception ex = Assert.ThrowsAny(() =>
+ SignData(rsa, new byte[] { 1 }, new HashAlgorithmName(hashAlgorithm), RSASignaturePadding.Pss));
+
+ Assert.True(
+ ex is CryptographicException or PlatformNotSupportedException,
+ "ex is CryptographicException or PlatformNotSupportedException");
+
+ ex = Assert.ThrowsAny(() =>
+ VerifyData(rsa, new byte[] { 1 }, new byte[] { 1 }, new HashAlgorithmName(hashAlgorithm), RSASignaturePadding.Pss));
+
+ Assert.True(
+ ex is CryptographicException or PlatformNotSupportedException,
+ "ex is CryptographicException or PlatformNotSupportedException");
+ }
+ }
+
private void VerifyExpectedSignature_Pss(
RSAParameters keyParameters,
HashAlgorithmName hashAlgorithm,
@@ -1314,5 +1527,28 @@ private void SignAndVerify(byte[] data, string hashAlgorithmName, RSAParameters
Assert.True(signatureMatched);
}
}
+
+ public static IEnumerable HashAlgorithmNames
+ {
+ get
+ {
+ yield return new object[] { HashAlgorithmName.SHA256.Name };
+ yield return new object[] { HashAlgorithmName.SHA384.Name };
+ yield return new object[] { HashAlgorithmName.SHA512.Name };
+ yield return new object[] { HashAlgorithmName.MD5.Name };
+
+ if (RSAFactory.SupportsSha1Signatures)
+ {
+ yield return new object[] { HashAlgorithmName.SHA1.Name };
+ }
+
+ if (RSAFactory.SupportsSha3)
+ {
+ yield return new object[] { HashAlgorithmName.SHA3_256.Name };
+ yield return new object[] { HashAlgorithmName.SHA3_384.Name };
+ yield return new object[] { HashAlgorithmName.SHA3_512.Name };
+ }
+ }
+ }
}
}
diff --git a/src/libraries/Common/tests/System/Security/Cryptography/SP800108HmacCounterKdfTests.Functional.cs b/src/libraries/Common/tests/System/Security/Cryptography/SP800108HmacCounterKdfTests.Functional.cs
index 338ffc7a2a6527..5eb6d097026c65 100644
--- a/src/libraries/Common/tests/System/Security/Cryptography/SP800108HmacCounterKdfTests.Functional.cs
+++ b/src/libraries/Common/tests/System/Security/Cryptography/SP800108HmacCounterKdfTests.Functional.cs
@@ -3,6 +3,7 @@
using System.Collections.Generic;
using System.Globalization;
+using Microsoft.DotNet.XUnitExtensions;
using Xunit;
namespace System.Security.Cryptography.Tests
@@ -81,7 +82,7 @@ public static void EmptyTests(byte[] key, string label, string context, byte[] e
VerifyKbkdf(expected, key, HashAlgorithmName.SHA256, label.ToCharArray(), context.ToCharArray());
}
- [Theory]
+ [ConditionalTheory]
[InlineData(nameof(HashAlgorithmName.SHA1), 512 / 8 - 1, new byte[] { 0xc9, 0x0f, 0x9d, 0x91, 0x85, 0xe5, 0xeb, 0x9b })]
[InlineData(nameof(HashAlgorithmName.SHA1), 512 / 8, new byte[] { 0x7b, 0xdb, 0x38, 0x28, 0xc0, 0x9f, 0x49, 0x05 })]
[InlineData(nameof(HashAlgorithmName.SHA1), 512 / 8 + 1, new byte[] { 0x6c, 0x3a, 0xba, 0x28, 0x38, 0xad, 0x51, 0x2c })]
@@ -94,8 +95,28 @@ public static void EmptyTests(byte[] key, string label, string context, byte[] e
[InlineData(nameof(HashAlgorithmName.SHA512), 1024 / 8 - 1, new byte[] { 0xa4, 0xe5, 0x24, 0xe8, 0x56, 0x2b, 0x48, 0xa4 })]
[InlineData(nameof(HashAlgorithmName.SHA512), 1024 / 8, new byte[] { 0xba, 0xf6, 0xed, 0xa7, 0x3a, 0xf7, 0x12, 0x27 })]
[InlineData(nameof(HashAlgorithmName.SHA512), 1024 / 8 + 1, new byte[] { 0x34, 0xdf, 0x2d, 0x21, 0xfd, 0xf1, 0x0e, 0x13 })]
+#if NET8_0_OR_GREATER
+ [InlineData("SHA3-256", 1088 / 8 - 1, new byte[] { 0xa1, 0x96, 0xae, 0x83, 0x56, 0xf4, 0x2a, 0x4b })]
+ [InlineData("SHA3-256", 1088 / 8, new byte[] { 0xe7, 0xe9, 0xe0, 0x98, 0x09, 0x54, 0x54, 0x2d })]
+ [InlineData("SHA3-256", 1088 / 8 + 1, new byte[] { 0x7d, 0x7a, 0x71, 0xdf, 0x1f, 0x5d, 0x5b, 0x44 })]
+ [InlineData("SHA3-384", 832 / 8 - 1, new byte[] { 0xd6, 0x08, 0x69, 0xd0, 0x99, 0x98, 0x6d, 0xcc })]
+ [InlineData("SHA3-384", 832 / 8, new byte[] { 0x49, 0x83, 0x06, 0x4e, 0x08, 0xf8, 0x93, 0x62 })]
+ [InlineData("SHA3-384", 832 / 8 + 1, new byte[] { 0xcc, 0x03, 0x1f, 0x57, 0x5e, 0x0c, 0xe1, 0xe8 })]
+ [InlineData("SHA3-512", 576 / 8 - 1, new byte[] { 0x47, 0xd2, 0x7e, 0x61, 0x01, 0x61, 0x9a, 0xd0 })]
+ [InlineData("SHA3-512", 576 / 8, new byte[] { 0xda, 0x56, 0x5b, 0x08, 0x73, 0xbc, 0x4d, 0x33 })]
+ [InlineData("SHA3-512", 576 / 8 + 1, new byte[] { 0xd3, 0xa1, 0xfd, 0x76, 0xc4, 0xf9, 0x62, 0xc3 })]
+#endif
public static void Kdk_HmacBlockBoundarySizes(string hashAlgorithmName, int kdkSize, byte[] expected)
{
+#if NET8_0_OR_GREATER
+ if ((hashAlgorithmName == "SHA3-256" && !SHA3_256.IsSupported) ||
+ (hashAlgorithmName == "SHA3-384" && !SHA3_384.IsSupported) ||
+ (hashAlgorithmName == "SHA3-512" && !SHA3_512.IsSupported))
+ {
+ throw new SkipTestException($"Algorithm '{hashAlgorithmName}' is not supported on the current platform.");
+ }
+#endif
+
// We do HMAC key adjust for the CNG implementation when the kdk exceeds the block size of the HMAC algorithm.
// This tests one byte below, at, and above the block size for each HMAC algorithm.
// Verified against OpenSSL 3. Example command used below. Adjust the digest and the seq upper boundary as needed.
@@ -306,6 +327,149 @@ public static IEnumerable GetOutputLengthBoundaries()
0x61,
}
};
+
+#if NET8_0_OR_GREATER
+ if (HMACSHA3_256.IsSupported)
+ {
+ // HMACSHA3_256 output size is 32 bytes
+ yield return new object[]
+ {
+ "SHA3-256",
+ new byte[63]
+ {
+ 0x25, 0xb6, 0xc5, 0xba, 0x60, 0x47, 0x95, 0xb6, 0x5c, 0x92, 0xcb, 0x8f, 0xd2, 0x4d, 0x40, 0xfa,
+ 0x68, 0xa9, 0xa6, 0xd3, 0x2c, 0x7f, 0x3c, 0xcd, 0x88, 0x89, 0xdc, 0x45, 0x10, 0xeb, 0x16, 0x38,
+ 0xf3, 0xe2, 0xe0, 0x26, 0xb5, 0xbc, 0x61, 0x9f, 0x56, 0x66, 0x7d, 0xbd, 0x55, 0x4e, 0x6b, 0x70,
+ 0x84, 0xc1, 0x9c, 0x95, 0x1e, 0x8f, 0x1b, 0xdc, 0xc2, 0x68, 0xc3, 0x10, 0x9c, 0x13, 0xf8,
+ }
+ };
+
+ yield return new object[]
+ {
+ "SHA3-256",
+ new byte[64]
+ {
+ 0xc8, 0x8a, 0xfe, 0xd4, 0x62, 0xa6, 0x9e, 0xa6, 0x90, 0xa7, 0xb1, 0xe2, 0x01, 0xff, 0x67, 0x52,
+ 0x5d, 0xca, 0xa9, 0x13, 0xa2, 0x92, 0x3c, 0xc0, 0x42, 0xd1, 0x1b, 0xe2, 0xff, 0xe0, 0xa2, 0xb9,
+ 0x48, 0x3d, 0xb1, 0x17, 0x73, 0x76, 0x3d, 0x37, 0x0f, 0xc6, 0x6f, 0x65, 0xa5, 0xb9, 0x23, 0xcf,
+ 0xc0, 0xd4, 0x5f, 0xdf, 0x46, 0x0e, 0xab, 0xce, 0x8e, 0x7d, 0x2c, 0x9d, 0x71, 0x40, 0xf0, 0x89,
+ }
+ };
+
+ yield return new object[]
+ {
+ "SHA3-256",
+ new byte[65]
+ {
+ 0xcc, 0x3a, 0x45, 0x55, 0x26, 0x1e, 0x56, 0xf4, 0x3c, 0x18, 0x66, 0x1d, 0xa8, 0xe3, 0x91, 0xe7,
+ 0xbc, 0xc3, 0x93, 0x1f, 0x85, 0xbe, 0x0c, 0xfb, 0xab, 0x10, 0xa1, 0x52, 0x93, 0xc7, 0x3c, 0xac,
+ 0x20, 0x09, 0xfb, 0x40, 0x95, 0xb9, 0x0f, 0x0a, 0x35, 0x50, 0xe2, 0x05, 0x33, 0x20, 0xdd, 0xb0,
+ 0xb7, 0xca, 0xda, 0x15, 0xa8, 0xc8, 0x73, 0x5d, 0xb7, 0x22, 0x5f, 0x23, 0xef, 0xcd, 0x33, 0x41,
+ 0xa2,
+ }
+ };
+ }
+
+ if (HMACSHA3_384.IsSupported)
+ {
+ // HMACSHA3_384 output size is 48 bytes
+ yield return new object[]
+ {
+ "SHA3-384",
+ new byte[95]
+ {
+ 0x80, 0x3b, 0x0a, 0x83, 0xe5, 0xae, 0xab, 0xff, 0x16, 0x7a, 0x04, 0x60, 0x97, 0x74, 0x39, 0xcf,
+ 0x8b, 0xeb, 0xbb, 0x57, 0x89, 0x62, 0x24, 0xab, 0x01, 0x61, 0xce, 0x23, 0xbc, 0xc1, 0xe0, 0xc4,
+ 0x9e, 0x73, 0xd1, 0x21, 0xdc, 0x21, 0xee, 0x30, 0xdb, 0xec, 0xb0, 0xbf, 0xec, 0xaa, 0x24, 0x18,
+ 0xf9, 0x93, 0xda, 0xd1, 0xaf, 0xfe, 0xbb, 0x1c, 0x7f, 0xcd, 0xea, 0x8f, 0x57, 0x41, 0x3c, 0x01,
+ 0xa8, 0x94, 0x06, 0x27, 0x8d, 0x95, 0x5d, 0x62, 0x61, 0xe7, 0x67, 0x60, 0xc4, 0xa2, 0xc4, 0xf5,
+ 0x7e, 0x38, 0x6e, 0x30, 0x38, 0x83, 0x7d, 0x5e, 0xf4, 0x0f, 0xdf, 0xd3, 0xac, 0x65, 0x48,
+ }
+ };
+
+ yield return new object[]
+ {
+ "SHA3-384",
+ new byte[96]
+ {
+ 0xb8, 0xea, 0xbd, 0xcb, 0x67, 0xcb, 0xd7, 0xf5, 0x12, 0xdf, 0xc2, 0x35, 0x89, 0x66, 0x80, 0x6f,
+ 0xc4, 0x7c, 0x28, 0xf2, 0x4b, 0xf5, 0xd1, 0x4d, 0x54, 0x4c, 0x78, 0xae, 0xde, 0xc2, 0xae, 0xb0,
+ 0x7d, 0xfc, 0x02, 0x6e, 0x0e, 0x08, 0x2b, 0xfc, 0xd2, 0x2b, 0xae, 0xfc, 0xa1, 0x55, 0xf7, 0xc7,
+ 0xd5, 0x77, 0xe4, 0x84, 0xbb, 0x53, 0x1d, 0x3d, 0xd2, 0x7a, 0x61, 0x97, 0x8a, 0xd3, 0xae, 0x1b,
+ 0x47, 0xbe, 0xa9, 0x40, 0x02, 0xac, 0x55, 0x1b, 0x74, 0x72, 0x02, 0x5b, 0xa8, 0xa8, 0xd4, 0xfe,
+ 0xcf, 0xd1, 0xb2, 0x44, 0x01, 0xec, 0xb7, 0xef, 0x63, 0x0f, 0x16, 0xae, 0xa9, 0x63, 0xb1, 0x56,
+ }
+ };
+
+ yield return new object[]
+ {
+ "SHA3-384",
+ new byte[97]
+ {
+ 0x62, 0x93, 0xa5, 0x45, 0x03, 0x7a, 0x2f, 0x50, 0xfe, 0x6b, 0xe6, 0x85, 0x56, 0x88, 0x8c, 0x78,
+ 0xbd, 0x4f, 0x08, 0x68, 0xdd, 0x33, 0xab, 0x18, 0x05, 0x81, 0x79, 0x70, 0x24, 0xe0, 0x3f, 0x94,
+ 0x40, 0x9b, 0xc3, 0x41, 0xa2, 0xe0, 0xfd, 0x02, 0xe8, 0xb8, 0x41, 0x53, 0x2e, 0x95, 0x59, 0xc5,
+ 0xf7, 0xab, 0x5b, 0xe9, 0x2d, 0x15, 0x0a, 0xcc, 0xb8, 0xc0, 0x87, 0xbd, 0x78, 0x39, 0xb9, 0xb8,
+ 0x83, 0x2c, 0x49, 0x7b, 0x45, 0x9b, 0x81, 0xed, 0x33, 0xdc, 0x75, 0xf1, 0x7d, 0xbd, 0x44, 0xce,
+ 0xa5, 0xf3, 0xbe, 0x43, 0xa5, 0x15, 0x7c, 0x7e, 0xcd, 0x06, 0x09, 0xb0, 0x4a, 0x17, 0x48, 0xf3,
+ 0x51,
+ }
+ };
+ }
+
+ if (HMACSHA3_512.IsSupported)
+ {
+ // HMACSHA3_512 output size is 64 bytes
+ yield return new object[]
+ {
+ "SHA3-512",
+ new byte[127]
+ {
+ 0x41, 0xe4, 0xb5, 0xe6, 0x5b, 0x8c, 0xce, 0x14, 0xa8, 0x39, 0xd3, 0xdf, 0xb4, 0x27, 0x0f, 0xff,
+ 0x1f, 0x9a, 0xca, 0x24, 0x03, 0x59, 0x4b, 0x86, 0x40, 0x66, 0xf0, 0xae, 0xdc, 0x59, 0x44, 0x0e,
+ 0x6a, 0x87, 0xa5, 0x38, 0x5a, 0x79, 0x27, 0xa5, 0x61, 0x91, 0x1a, 0x9d, 0x39, 0xca, 0x80, 0xe0,
+ 0x11, 0x3b, 0xd0, 0xfa, 0x2e, 0x48, 0x70, 0x83, 0x31, 0xa7, 0xa6, 0x6c, 0x5f, 0xf2, 0x2f, 0x09,
+ 0x5b, 0x1e, 0xad, 0x8b, 0x4f, 0xbd, 0x63, 0x26, 0x6f, 0xcd, 0xc6, 0xce, 0xff, 0xa6, 0x86, 0xbe,
+ 0xf6, 0x4b, 0x81, 0x63, 0x65, 0x24, 0x48, 0xbc, 0x59, 0x6a, 0x4f, 0x00, 0xb5, 0x9e, 0x9b, 0xbd,
+ 0x85, 0xbc, 0xf6, 0xf1, 0xf1, 0xaa, 0xd3, 0x91, 0x9b, 0x7b, 0x26, 0xfe, 0xd0, 0xd7, 0x4c, 0x34,
+ 0xdd, 0x2c, 0x57, 0x2e, 0x10, 0x09, 0x76, 0x32, 0xed, 0x3a, 0x95, 0x7d, 0x88, 0x2b, 0xdc,
+ }
+ };
+
+ yield return new object[]
+ {
+ "SHA3-512",
+ new byte[128]
+ {
+ 0xbe, 0x9f, 0x29, 0xd7, 0x9d, 0x11, 0x7e, 0xd7, 0x33, 0xd4, 0xcf, 0x66, 0xed, 0x1a, 0x61, 0xfd,
+ 0xb0, 0x68, 0x3b, 0x03, 0xd1, 0x7c, 0x1a, 0x69, 0xd0, 0x33, 0x1c, 0xf4, 0x7a, 0xf0, 0x4a, 0x46,
+ 0xed, 0x4a, 0x33, 0xbf, 0x2b, 0x18, 0x16, 0x4b, 0xda, 0x30, 0x96, 0x11, 0xee, 0x52, 0x4b, 0x0e,
+ 0x22, 0xa0, 0x8f, 0xb0, 0xdc, 0xe6, 0x8c, 0x57, 0xd0, 0x6e, 0x25, 0xd8, 0x29, 0xf7, 0xf9, 0x94,
+ 0xe3, 0x73, 0x20, 0x4e, 0x11, 0xc0, 0xa9, 0x3b, 0x00, 0xf0, 0x8e, 0xff, 0xb3, 0x07, 0x87, 0x4c,
+ 0x3b, 0x96, 0x09, 0xff, 0x14, 0x3b, 0x65, 0x17, 0x5f, 0x54, 0x16, 0xaf, 0x15, 0xe5, 0x59, 0x5b,
+ 0x75, 0xf5, 0x03, 0x61, 0x5b, 0xd9, 0xf3, 0x7c, 0x71, 0x96, 0xaa, 0x67, 0xef, 0xdd, 0x40, 0x4c,
+ 0xd2, 0x9e, 0xf6, 0x05, 0x02, 0x93, 0x23, 0x83, 0x33, 0xcc, 0x0f, 0xf2, 0xdd, 0x9c, 0xd6, 0x46,
+ }
+ };
+
+ yield return new object[]
+ {
+ "SHA3-512",
+ new byte[129]
+ {
+ 0x5f, 0xf7, 0xd9, 0x1e, 0x98, 0xb3, 0xa4, 0xab, 0x4d, 0xc8, 0x50, 0x9a, 0xd7, 0x50, 0x37, 0xba,
+ 0x10, 0xeb, 0x1b, 0x10, 0x5f, 0x6c, 0xfe, 0x81, 0x75, 0x5d, 0x6c, 0x63, 0x8a, 0xfe, 0x60, 0x4f,
+ 0xb3, 0x9e, 0xf4, 0x84, 0x5d, 0xa3, 0x88, 0xf7, 0x29, 0x5c, 0x30, 0xbb, 0xf7, 0x30, 0x69, 0x84,
+ 0xab, 0x9e, 0xc6, 0xb0, 0xc3, 0xce, 0x45, 0x7a, 0xf2, 0xac, 0x18, 0x0b, 0x09, 0x8c, 0xbb, 0xae,
+ 0x22, 0x12, 0xef, 0xd8, 0xec, 0x6f, 0x9f, 0xbf, 0x09, 0x7f, 0xe2, 0xb6, 0xc8, 0x6a, 0xf7, 0x5e,
+ 0x86, 0x27, 0x22, 0xeb, 0xa8, 0x7b, 0x1f, 0x54, 0x97, 0x16, 0x0f, 0x21, 0xad, 0xcd, 0xd9, 0x9d,
+ 0xd6, 0x01, 0x0b, 0x79, 0xe9, 0x16, 0xd8, 0xcd, 0xa6, 0x93, 0x25, 0xd1, 0xeb, 0xac, 0x9b, 0x5f,
+ 0x26, 0xf4, 0xad, 0x0a, 0xf2, 0xc6, 0x4d, 0xad, 0x69, 0x96, 0xb7, 0xc8, 0xcd, 0xe0, 0x13, 0xfb,
+ 0xf6,
+ }
+ };
+ }
+#endif
}
public static IEnumerable GetRfc8009TestVectors()
diff --git a/src/libraries/Common/tests/TestUtilities/System/PlatformDetection.cs b/src/libraries/Common/tests/TestUtilities/System/PlatformDetection.cs
index e26bbb982ec3df..e9dcadeeb90f50 100644
--- a/src/libraries/Common/tests/TestUtilities/System/PlatformDetection.cs
+++ b/src/libraries/Common/tests/TestUtilities/System/PlatformDetection.cs
@@ -303,6 +303,7 @@ private static bool GetAlpnSupport()
private static readonly Lazy s_supportsTls12 = new Lazy(GetTls12Support);
private static readonly Lazy s_supportsTls13 = new Lazy(GetTls13Support);
private static readonly Lazy s_sendsCAListByDefault = new Lazy(GetSendsCAListByDefault);
+ private static readonly Lazy s_supportsSha3 = new Lazy(GetSupportsSha3);
public static bool SupportsTls10 => s_supportsTls10.Value;
public static bool SupportsTls11 => s_supportsTls11.Value;
@@ -310,6 +311,8 @@ private static bool GetAlpnSupport()
public static bool SupportsTls13 => s_supportsTls13.Value;
public static bool SendsCAListByDefault => s_sendsCAListByDefault.Value;
public static bool SupportsSendingCustomCANamesInTls => UsesAppleCrypto || IsOpenSslSupported || (PlatformDetection.IsWindows8xOrLater && SendsCAListByDefault);
+ public static bool SupportsSha3 => s_supportsSha3.Value;
+ public static bool DoesNotSupportSha3 => !s_supportsSha3.Value;
private static readonly Lazy s_largeArrayIsNotSupported = new Lazy(IsLargeArrayNotSupported);
@@ -650,5 +653,25 @@ private static bool AssemblyConfigurationEquals(string configuration)
return assemblyConfigurationAttribute != null &&
string.Equals(assemblyConfigurationAttribute.Configuration, configuration, StringComparison.InvariantCulture);
}
+
+ private static bool GetSupportsSha3()
+ {
+ if (IsOpenSslSupported)
+ {
+ if (OpenSslVersion.Major >= 3)
+ {
+ return true;
+ }
+
+ return OpenSslVersion.Major == 1 && OpenSslVersion.Minor >= 1 && OpenSslVersion.Build >= 1;
+ }
+
+ if (IsWindowsVersionOrLater(10, 0, 25324))
+ {
+ return true;
+ }
+
+ return false;
+ }
}
}
diff --git a/src/libraries/Microsoft.Bcl.Cryptography/src/System/Security/Cryptography/HashAlgorithmNames.cs b/src/libraries/Microsoft.Bcl.Cryptography/src/System/Security/Cryptography/HashAlgorithmNames.cs
index 8f10590302e4bb..feb43d2caa487b 100644
--- a/src/libraries/Microsoft.Bcl.Cryptography/src/System/Security/Cryptography/HashAlgorithmNames.cs
+++ b/src/libraries/Microsoft.Bcl.Cryptography/src/System/Security/Cryptography/HashAlgorithmNames.cs
@@ -3,11 +3,15 @@
namespace System.Security.Cryptography
{
+ // Strings need to match CNG identifiers.
internal static class HashAlgorithmNames
{
internal const string SHA1 = nameof(SHA1);
internal const string SHA256 = nameof(SHA256);
internal const string SHA384 = nameof(SHA384);
internal const string SHA512 = nameof(SHA512);
+ internal const string SHA3_256 = "SHA3-256";
+ internal const string SHA3_384 = "SHA3-384";
+ internal const string SHA3_512 = "SHA3-512";
}
}
diff --git a/src/libraries/System.Security.Cryptography.Cng/tests/ECDiffieHellmanCngProvider.cs b/src/libraries/System.Security.Cryptography.Cng/tests/ECDiffieHellmanCngProvider.cs
index d805dbc6d2b813..1dc38e42bccce8 100644
--- a/src/libraries/System.Security.Cryptography.Cng/tests/ECDiffieHellmanCngProvider.cs
+++ b/src/libraries/System.Security.Cryptography.Cng/tests/ECDiffieHellmanCngProvider.cs
@@ -36,6 +36,7 @@ public bool ExplicitCurvesSupported
public bool CanDeriveNewPublicKey => true;
public bool SupportsRawDerivation => PlatformDetection.IsWindows10OrLater;
+ public bool SupportsSha3 => PlatformDetection.SupportsSha3;
private static bool NativeOidFriendlyNameExists(string oidFriendlyName)
{
diff --git a/src/libraries/System.Security.Cryptography.Cng/tests/RSACngProvider.cs b/src/libraries/System.Security.Cryptography.Cng/tests/RSACngProvider.cs
index 963bd925d800c7..d41df34b61404b 100644
--- a/src/libraries/System.Security.Cryptography.Cng/tests/RSACngProvider.cs
+++ b/src/libraries/System.Security.Cryptography.Cng/tests/RSACngProvider.cs
@@ -36,6 +36,8 @@ public bool Supports384PrivateKey
public bool SupportsPss => true;
public bool SupportsSha1Signatures => true;
+
+ public bool SupportsSha3 { get; } = SHA3_256.IsSupported; // If SHA3_256 is supported, assume 384 and 512 are, too.
}
public partial class RSAFactory
diff --git a/src/libraries/System.Security.Cryptography.Csp/tests/RSACryptoServiceProviderProvider.cs b/src/libraries/System.Security.Cryptography.Csp/tests/RSACryptoServiceProviderProvider.cs
index 7f4f3eb5b7d462..7cd358cd5d1213 100644
--- a/src/libraries/System.Security.Cryptography.Csp/tests/RSACryptoServiceProviderProvider.cs
+++ b/src/libraries/System.Security.Cryptography.Csp/tests/RSACryptoServiceProviderProvider.cs
@@ -23,6 +23,8 @@ public class RSACryptoServiceProviderProvider : IRSAProvider
public bool SupportsPss => false;
public bool SupportsSha1Signatures => _supportsSha1Signatures ??= SignatureSupport.CanProduceSha1Signature(Create());
+
+ public bool SupportsSha3 => false;
}
public partial class RSAFactory
diff --git a/src/libraries/System.Security.Cryptography.OpenSsl/tests/EcDiffieHellmanOpenSslProvider.cs b/src/libraries/System.Security.Cryptography.OpenSsl/tests/EcDiffieHellmanOpenSslProvider.cs
index ef4aa6f83881f5..0a7390c5b250ec 100644
--- a/src/libraries/System.Security.Cryptography.OpenSsl/tests/EcDiffieHellmanOpenSslProvider.cs
+++ b/src/libraries/System.Security.Cryptography.OpenSsl/tests/EcDiffieHellmanOpenSslProvider.cs
@@ -28,6 +28,7 @@ public ECDiffieHellman Create(ECCurve curve)
public bool CanDeriveNewPublicKey => true;
public bool SupportsRawDerivation => true;
+ public bool SupportsSha3 => PlatformDetection.SupportsSha3;
}
public partial class ECDiffieHellmanFactory
diff --git a/src/libraries/System.Security.Cryptography.OpenSsl/tests/RSAOpenSslProvider.cs b/src/libraries/System.Security.Cryptography.OpenSsl/tests/RSAOpenSslProvider.cs
index deeecbe7cb18bd..0adcda4bfad5ec 100644
--- a/src/libraries/System.Security.Cryptography.OpenSsl/tests/RSAOpenSslProvider.cs
+++ b/src/libraries/System.Security.Cryptography.OpenSsl/tests/RSAOpenSslProvider.cs
@@ -22,6 +22,8 @@ public class RSAOpenSslProvider : IRSAProvider
public bool SupportsPss => true;
public bool SupportsSha1Signatures => _supportsSha1Signatures ??= SignatureSupport.CanProduceSha1Signature(Create());
+
+ public bool SupportsSha3 => SHA3_256.IsSupported; // If SHA3_256 is supported, assume 384 and 512 are, too.
}
public partial class RSAFactory
diff --git a/src/libraries/System.Security.Cryptography.Pkcs/src/Internal/Cryptography/PkcsHelpers.cs b/src/libraries/System.Security.Cryptography.Pkcs/src/Internal/Cryptography/PkcsHelpers.cs
index 8679d34557cf6b..10c6727f125668 100644
--- a/src/libraries/System.Security.Cryptography.Pkcs/src/Internal/Cryptography/PkcsHelpers.cs
+++ b/src/libraries/System.Security.Cryptography.Pkcs/src/Internal/Cryptography/PkcsHelpers.cs
@@ -69,6 +69,17 @@ internal static HashAlgorithmName GetDigestAlgorithm(string? oidValue, bool forV
case Oids.Sha512:
case Oids.RsaPkcs1Sha512 when forVerification:
return HashAlgorithmName.SHA512;
+#if NET8_0_OR_GREATER
+ case Oids.Sha3_256:
+ case Oids.RsaPkcs1Sha3_256 when forVerification:
+ return HashAlgorithmName.SHA3_256;
+ case Oids.Sha3_384:
+ case Oids.RsaPkcs1Sha3_384 when forVerification:
+ return HashAlgorithmName.SHA3_384;
+ case Oids.Sha3_512:
+ case Oids.RsaPkcs1Sha3_512 when forVerification:
+ return HashAlgorithmName.SHA3_512;
+#endif
default:
throw new CryptographicException(SR.Cryptography_UnknownHashAlgorithm, oidValue);
}
@@ -86,6 +97,14 @@ internal static string GetOidFromHashAlgorithm(HashAlgorithmName algName)
return Oids.Sha384;
if (algName == HashAlgorithmName.SHA512)
return Oids.Sha512;
+#if NET8_0_OR_GREATER
+ if (algName == HashAlgorithmName.SHA3_256)
+ return Oids.Sha3_256;
+ if (algName == HashAlgorithmName.SHA3_384)
+ return Oids.Sha3_384;
+ if (algName == HashAlgorithmName.SHA3_512)
+ return Oids.Sha3_512;
+#endif
throw new CryptographicException(SR.Cryptography_Cms_UnknownAlgorithm, algName.Name);
}
diff --git a/src/libraries/System.Security.Cryptography.Pkcs/src/System/Security/Cryptography/Pkcs/CmsSignature.ECDsa.cs b/src/libraries/System.Security.Cryptography.Pkcs/src/System/Security/Cryptography/Pkcs/CmsSignature.ECDsa.cs
index 5fc08e0870e9b9..f9900fed9fb6a1 100644
--- a/src/libraries/System.Security.Cryptography.Pkcs/src/System/Security/Cryptography/Pkcs/CmsSignature.ECDsa.cs
+++ b/src/libraries/System.Security.Cryptography.Pkcs/src/System/Security/Cryptography/Pkcs/CmsSignature.ECDsa.cs
@@ -17,6 +17,11 @@ static partial void PrepareRegistrationECDsa(Dictionary lo
lookup.Add(Oids.ECDsaWithSha256, new ECDsaCmsSignature(Oids.ECDsaWithSha256, HashAlgorithmName.SHA256));
lookup.Add(Oids.ECDsaWithSha384, new ECDsaCmsSignature(Oids.ECDsaWithSha384, HashAlgorithmName.SHA384));
lookup.Add(Oids.ECDsaWithSha512, new ECDsaCmsSignature(Oids.ECDsaWithSha512, HashAlgorithmName.SHA512));
+#if NET8_0_OR_GREATER
+ lookup.Add(Oids.ECDsaWithSha3_256, new ECDsaCmsSignature(Oids.ECDsaWithSha3_256, HashAlgorithmName.SHA3_256));
+ lookup.Add(Oids.ECDsaWithSha3_384, new ECDsaCmsSignature(Oids.ECDsaWithSha3_384, HashAlgorithmName.SHA3_384));
+ lookup.Add(Oids.ECDsaWithSha3_512, new ECDsaCmsSignature(Oids.ECDsaWithSha3_512, HashAlgorithmName.SHA3_512));
+#endif
lookup.Add(Oids.EcPublicKey, new ECDsaCmsSignature(null, default));
}
@@ -131,6 +136,11 @@ protected override bool Sign(
hashAlgorithmName == HashAlgorithmName.SHA256 ? Oids.ECDsaWithSha256 :
hashAlgorithmName == HashAlgorithmName.SHA384 ? Oids.ECDsaWithSha384 :
hashAlgorithmName == HashAlgorithmName.SHA512 ? Oids.ECDsaWithSha512 :
+#if NET8_0_OR_GREATER
+ hashAlgorithmName == HashAlgorithmName.SHA3_256 ? Oids.ECDsaWithSha3_256 :
+ hashAlgorithmName == HashAlgorithmName.SHA3_384 ? Oids.ECDsaWithSha3_384 :
+ hashAlgorithmName == HashAlgorithmName.SHA3_512 ? Oids.ECDsaWithSha3_512 :
+#endif
null;
if (oidValue == null)
diff --git a/src/libraries/System.Security.Cryptography.Pkcs/src/System/Security/Cryptography/Pkcs/CmsSignature.RSA.cs b/src/libraries/System.Security.Cryptography.Pkcs/src/System/Security/Cryptography/Pkcs/CmsSignature.RSA.cs
index 12adeda2360f6e..51677662dd5219 100644
--- a/src/libraries/System.Security.Cryptography.Pkcs/src/System/Security/Cryptography/Pkcs/CmsSignature.RSA.cs
+++ b/src/libraries/System.Security.Cryptography.Pkcs/src/System/Security/Cryptography/Pkcs/CmsSignature.RSA.cs
@@ -20,6 +20,11 @@ static partial void PrepareRegistrationRsa(Dictionary look
lookup.Add(Oids.RsaPkcs1Sha256, new RSAPkcs1CmsSignature(Oids.RsaPkcs1Sha256, HashAlgorithmName.SHA256));
lookup.Add(Oids.RsaPkcs1Sha384, new RSAPkcs1CmsSignature(Oids.RsaPkcs1Sha384, HashAlgorithmName.SHA384));
lookup.Add(Oids.RsaPkcs1Sha512, new RSAPkcs1CmsSignature(Oids.RsaPkcs1Sha512, HashAlgorithmName.SHA512));
+#if NET8_0_OR_GREATER
+ lookup.Add(Oids.RsaPkcs1Sha3_256, new RSAPkcs1CmsSignature(Oids.RsaPkcs1Sha3_256, HashAlgorithmName.SHA3_256));
+ lookup.Add(Oids.RsaPkcs1Sha3_384, new RSAPkcs1CmsSignature(Oids.RsaPkcs1Sha3_384, HashAlgorithmName.SHA3_384));
+ lookup.Add(Oids.RsaPkcs1Sha3_512, new RSAPkcs1CmsSignature(Oids.RsaPkcs1Sha3_512, HashAlgorithmName.SHA3_512));
+#endif
lookup.Add(Oids.RsaPss, new RSAPssCmsSignature());
}
diff --git a/src/libraries/System.Security.Cryptography.Pkcs/src/System/Security/Cryptography/Pkcs/CmsSigner.cs b/src/libraries/System.Security.Cryptography.Pkcs/src/System/Security/Cryptography/Pkcs/CmsSigner.cs
index 0d2360240469ea..32d6262e18c085 100644
--- a/src/libraries/System.Security.Cryptography.Pkcs/src/System/Security/Cryptography/Pkcs/CmsSigner.cs
+++ b/src/libraries/System.Security.Cryptography.Pkcs/src/System/Security/Cryptography/Pkcs/CmsSigner.cs
@@ -185,7 +185,18 @@ internal SignerInfoAsn Sign(
newSignerInfo.DigestAlgorithm.Algorithm = DigestAlgorithm.Value!;
byte[] dataHash;
- using (IncrementalHash hasher = IncrementalHash.CreateHash(hashAlgorithmName))
+ IncrementalHash hasher;
+
+ try
+ {
+ hasher = IncrementalHash.CreateHash(hashAlgorithmName);
+ }
+ catch (PlatformNotSupportedException ex)
+ {
+ throw new CryptographicException(SR.Format(SR.Cryptography_UnknownHashAlgorithm, hashAlgorithmName), ex);
+ }
+
+ using (hasher)
{
hasher.AppendData(data.Span);
dataHash = hasher.GetHashAndReset();
diff --git a/src/libraries/System.Security.Cryptography.Pkcs/src/System/Security/Cryptography/Pkcs/SignerInfo.cs b/src/libraries/System.Security.Cryptography.Pkcs/src/System/Security/Cryptography/Pkcs/SignerInfo.cs
index 2ee1049b965d6e..021e1f8e9be2d4 100644
--- a/src/libraries/System.Security.Cryptography.Pkcs/src/System/Security/Cryptography/Pkcs/SignerInfo.cs
+++ b/src/libraries/System.Security.Cryptography.Pkcs/src/System/Security/Cryptography/Pkcs/SignerInfo.cs
@@ -550,7 +550,17 @@ private bool CheckHash(bool compatMode)
{
HashAlgorithmName hashAlgorithmName = GetDigestAlgorithm();
- IncrementalHash hasher = IncrementalHash.CreateHash(hashAlgorithmName);
+
+ IncrementalHash hasher;
+
+ try
+ {
+ hasher = IncrementalHash.CreateHash(hashAlgorithmName);
+ }
+ catch (PlatformNotSupportedException ex)
+ {
+ throw new CryptographicException(SR.Format(SR.Cryptography_UnknownHashAlgorithm, hashAlgorithmName), ex);
+ }
if (_parentSignerInfo == null)
{
diff --git a/src/libraries/System.Security.Cryptography.Pkcs/tests/Oids.cs b/src/libraries/System.Security.Cryptography.Pkcs/tests/Oids.cs
index eded07b0913ebd..bcaa73082ebfc7 100644
--- a/src/libraries/System.Security.Cryptography.Pkcs/tests/Oids.cs
+++ b/src/libraries/System.Security.Cryptography.Pkcs/tests/Oids.cs
@@ -63,6 +63,9 @@ internal static class Oids
public const string Sha256 = "2.16.840.1.101.3.4.2.1";
public const string Sha384 = "2.16.840.1.101.3.4.2.2";
public const string Sha512 = "2.16.840.1.101.3.4.2.3";
+ public const string Sha3_256 = "2.16.840.1.101.3.4.2.8";
+ public const string Sha3_384 = "2.16.840.1.101.3.4.2.9";
+ public const string Sha3_512 = "2.16.840.1.101.3.4.2.10";
// RFC3161 Timestamping
public const string TstInfo = "1.2.840.113549.1.9.16.1.4";
diff --git a/src/libraries/System.Security.Cryptography.Pkcs/tests/SignedCms/SignedCmsTests.netcoreapp.cs b/src/libraries/System.Security.Cryptography.Pkcs/tests/SignedCms/SignedCmsTests.netcoreapp.cs
index 8ede25072e17e9..355d9e5763557d 100644
--- a/src/libraries/System.Security.Cryptography.Pkcs/tests/SignedCms/SignedCmsTests.netcoreapp.cs
+++ b/src/libraries/System.Security.Cryptography.Pkcs/tests/SignedCms/SignedCmsTests.netcoreapp.cs
@@ -691,6 +691,138 @@ public static void ComputeSignature_PreservesAttributeCertificate()
Assert.Equal(countBefore + 1, countAfter);
}
+ [ConditionalTheory(typeof(PlatformDetection), nameof(PlatformDetection.SupportsSha3))]
+ [InlineData(Oids.Sha3_256)]
+ [InlineData(Oids.Sha3_384)]
+ [InlineData(Oids.Sha3_512)]
+ public static void ComputeSignature_Rsa_Sha3_Roundtrip(string hashAlgorithm)
+ {
+ ContentInfo content = new ContentInfo(new byte[] { 1, 2, 3 });
+ SignedCms cms = new SignedCms(content);
+ byte[] cmsBytes;
+
+ using (X509Certificate2 cert = Certificates.RSA2048SignatureOnly.TryGetCertificateWithPrivateKey())
+ {
+ CmsSigner signer = new CmsSigner(SubjectIdentifierType.IssuerAndSerialNumber, cert);
+ signer.DigestAlgorithm = new Oid(hashAlgorithm, null);
+
+ cms.ComputeSignature(signer);
+ cmsBytes = cms.Encode();
+ cms = new SignedCms();
+ cms.Decode(cmsBytes);
+ cms.CheckSignature(true); // Assert.NoThrow
+ Assert.Single(cms.SignerInfos);
+
+ SignerInfo signerInfo = cms.SignerInfos[0];
+ Assert.Equal(hashAlgorithm, signerInfo.DigestAlgorithm.Value);
+ }
+ }
+
+ [ConditionalTheory(typeof(PlatformDetection), nameof(PlatformDetection.SupportsSha3))]
+ [InlineData(Oids.Sha3_256)]
+ [InlineData(Oids.Sha3_384)]
+ [InlineData(Oids.Sha3_512)]
+ public static void ComputeSignature_Ecdsa_Sha3_Roundtrip(string hashAlgorithm)
+ {
+ ContentInfo content = new ContentInfo(new byte[] { 1, 2, 3 });
+ SignedCms cms = new SignedCms(content);
+ byte[] cmsBytes;
+
+ using (X509Certificate2 cert = Certificates.ECDsaP521Win.TryGetCertificateWithPrivateKey())
+ {
+ CmsSigner signer = new CmsSigner(SubjectIdentifierType.IssuerAndSerialNumber, cert);
+ signer.DigestAlgorithm = new Oid(hashAlgorithm, null);
+
+ cms.ComputeSignature(signer);
+ cmsBytes = cms.Encode();
+ cms = new SignedCms();
+ cms.Decode(cmsBytes);
+ cms.CheckSignature(true); // Assert.NoThrow
+ Assert.Single(cms.SignerInfos);
+
+ SignerInfo signerInfo = cms.SignerInfos[0];
+ Assert.Equal(hashAlgorithm, signerInfo.DigestAlgorithm.Value);
+ }
+ }
+
+ [ConditionalTheory(typeof(PlatformDetection), nameof(PlatformDetection.DoesNotSupportSha3))]
+ [InlineData(Oids.Sha3_256)]
+ [InlineData(Oids.Sha3_384)]
+ [InlineData(Oids.Sha3_512)]
+ public static void ComputeSignature_Sha3_NotSupported(string hashAlgorithm)
+ {
+ ContentInfo content = new ContentInfo(new byte[] { 1, 2, 3 });
+ SignedCms cms = new SignedCms(content);
+
+ using (X509Certificate2 cert = Certificates.RSA2048SignatureOnly.TryGetCertificateWithPrivateKey())
+ {
+ CmsSigner signer = new CmsSigner(SubjectIdentifierType.IssuerAndSerialNumber, cert);
+ signer.DigestAlgorithm = new Oid(hashAlgorithm, null);
+
+ Assert.Throws(() => cms.ComputeSignature(signer));
+ }
+ }
+
+ [Fact]
+ public static void ExistingDocument_Rsa_Sha3_256()
+ {
+ SignedCms cms = new SignedCms();
+ cms.Decode(SignedDocuments.Rsa_Sha3_256_SignedDocument);
+
+ if (PlatformDetection.SupportsSha3)
+ {
+ cms.CheckSignature(true); // Assert.NoThrow
+ Assert.Single(cms.SignerInfos);
+
+ SignerInfo signerInfo = cms.SignerInfos[0];
+ Assert.Equal(Oids.Sha3_256, signerInfo.DigestAlgorithm.Value);
+ }
+ else
+ {
+ Assert.Throws(() => cms.CheckSignature(true));
+ }
+ }
+
+ [Fact]
+ public static void ExistingDocument_Rsa_Sha3_384()
+ {
+ SignedCms cms = new SignedCms();
+ cms.Decode(SignedDocuments.Rsa_Sha3_384_SignedDocument);
+
+ if (PlatformDetection.SupportsSha3)
+ {
+ cms.CheckSignature(true); // Assert.NoThrow
+ Assert.Single(cms.SignerInfos);
+
+ SignerInfo signerInfo = cms.SignerInfos[0];
+ Assert.Equal(Oids.Sha3_384, signerInfo.DigestAlgorithm.Value);
+ }
+ else
+ {
+ Assert.Throws(() => cms.CheckSignature(true));
+ }
+ }
+
+ [Fact]
+ public static void ExistingDocument_Rsa_Sha3_512()
+ {
+ SignedCms cms = new SignedCms();
+ cms.Decode(SignedDocuments.Rsa_Sha3_512_SignedDocument);
+
+ if (PlatformDetection.SupportsSha3)
+ {
+ cms.CheckSignature(true); // Assert.NoThrow
+ Assert.Single(cms.SignerInfos);
+
+ SignerInfo signerInfo = cms.SignerInfos[0];
+ Assert.Equal(Oids.Sha3_512, signerInfo.DigestAlgorithm.Value);
+ }
+ else
+ {
+ Assert.Throws(() => cms.CheckSignature(true));
+ }
+ }
+
private static void VerifyWithExplicitPrivateKey(X509Certificate2 cert, AsymmetricAlgorithm key)
{
using (var pubCert = new X509Certificate2(cert.RawData))
diff --git a/src/libraries/System.Security.Cryptography.Pkcs/tests/SignedCms/SignedDocuments.cs b/src/libraries/System.Security.Cryptography.Pkcs/tests/SignedCms/SignedDocuments.cs
index cce3114824794e..7001b325cd4029 100644
--- a/src/libraries/System.Security.Cryptography.Pkcs/tests/SignedCms/SignedDocuments.cs
+++ b/src/libraries/System.Security.Cryptography.Pkcs/tests/SignedCms/SignedDocuments.cs
@@ -1626,5 +1626,168 @@ internal static class SignedDocuments
"6AB46C76047604BA7DF071EE0137B73F4D9DF616095C8F1CA9EB925B6D4C6ABC" +
"FFEB73A81903169C6B487B316AFC951F696831A4B29B9ABCEA7EBCD243A553D2" +
"F8B44FDA1B0AC0").HexToByteArray();
+
+ // produced with
+ // echo -n hello | openssl cms -sign -signer cert.pfx -md sha3-256 -nodetach
+ internal static readonly byte[] Rsa_Sha3_256_SignedDocument =(
+ "308205C806092A864886F70D010702A08205B9308205B5020101310D300B" +
+ "0609608648016503040208301406092A864886F70D010701A00704056865" +
+ "6C6C6FA08203303082032C30820214A003020102020900E0D8AB6819D730" +
+ "6E300D06092A864886F70D01010B05003038313630340603550403132D54" +
+ "776F2074686F7573616E6420666F7274792065696768742062697473206F" +
+ "662052534120676F6F646E657373301E170D313731313033323335313135" +
+ "5A170D3138313130333233353131355A3038313630340603550403132D54" +
+ "776F2074686F7573616E6420666F7274792065696768742062697473206F" +
+ "662052534120676F6F646E65737330820122300D06092A864886F70D0101" +
+ "0105000382010F003082010A028201010096C114A5898D09133EF859F89C" +
+ "1D848BA8CB5258793E05B92D499C55EEFACE274BBBC26803FB813B9C11C6" +
+ "898153CC1745DED2C4D2672F807F0B2D957BC4B65EBC9DDE26E2EA7B2A6F" +
+ "E9A7C4D8BD1EF6032B8F0BB6AA33C8B57248B3D5E3901D8A38A283D7E25F" +
+ "F8E6F522381EE5484234CFF7B30C174635418FA89E14C468AD89DCFCBBB5" +
+ "35E5AF53510F9EA7F9DA8C1B53375B6DAB95A291439A5648726EE1012E41" +
+ "388E100691642CF6917F5569D8351F2782F435A579014E8448EEA0C4AECA" +
+ "FF2F476799D88457E2C8BCB56E5E128782B4FE26AFF0720D91D52CCAFE34" +
+ "4255808F5271D09F784F787E8323182080915BE0AE15A71D66476D0F264D" +
+ "D084F30203010001A3393037301D0603551D0E04160414745B5F12EF962E" +
+ "84B897E246D399A2BADEA9C5AC30090603551D1304023000300B0603551D" +
+ "0F040403020780300D06092A864886F70D01010B0500038201010087A15D" +
+ "F37FBD6E9DED7A8FFF25E60B731F635469BA01DD14BC03B2A24D99EFD8B8" +
+ "94E9493D63EC88C496CB04B33DF25222544F23D43F4023612C4D97B719C1" +
+ "F9431E4DB7A580CDF66A3E5F0DAF89A267DD187ABFFB08361B1F79232376" +
+ "AA5FC5AD384CC2F98FE36C1CEA0B943E1E3961190648889C8ABE8397A5A3" +
+ "38843CBFB1D8B212BE46685ACE7B80475CC7C97FC0377936ABD5F664E9C0" +
+ "9C463897726650711A1110FA9866BC1C278D95E5636AB96FAE95CCD67FD5" +
+ "72A8C727E2C03E7B242457318BEC1BE52CA5BD9454A0A41140AE96ED1C56" +
+ "D220D1FD5DD3B1B4FB2AA0E04FC94F7E3C7D476F298962245563953AD722" +
+ "5EDCEAC8B8509E49292E62D8BF3182025530820251020101304530383136" +
+ "30340603550403132D54776F2074686F7573616E6420666F727479206569" +
+ "6768742062697473206F662052534120676F6F646E657373020900E0D8AB" +
+ "6819D7306E300B0609608648016503040208A081E4301806092A864886F7" +
+ "0D010903310B06092A864886F70D010701301C06092A864886F70D010905" +
+ "310F170D3233303531373139333732315A302F06092A864886F70D010904" +
+ "312204203338BE694F50C5F338814986CDF0686453A888B84F424D792AF4" +
+ "B9202398F392307906092A864886F70D01090F316C306A300B0609608648" +
+ "01650304012A300B0609608648016503040116300B060960864801650304" +
+ "0102300A06082A864886F70D0307300E06082A864886F70D030202020080" +
+ "300D06082A864886F70D0302020140300706052B0E030207300D06082A86" +
+ "4886F70D0302020128300D06092A864886F70D0101010500048201002CDE" +
+ "D12EA41BA5443CE742A804E754D00AA8A21B4B9022780DF59BD597EA44DD" +
+ "85EEE42AA531A645CD11CAA58297190C06A8193CE7AF16B1FD8B9DF4E2FA" +
+ "15024E8E845D0E3537577C6F27CEB3317D57781B618388FFB61926D24B1F" +
+ "75E0CC460C52FFB43D8DDA1B7AFBCD76C00EECF99F7F7D2A02B19A055C9B" +
+ "A5437ADE06537F4194F15AD0C5071F0275128B435B8883FE8E2E07F6B908" +
+ "33B9FB56015FE57B3BEC08A5B9031AB8D372C662DCA6E3CDEA5D3F3FC76E" +
+ "02F8E52045386B8D83D46C6300F5B54B2135F6392DD0B6A9C5531E7C9405" +
+ "B48BF1DA5C5C7B9D6E00937673C7C97DB3B2DB6945D7C8F0F8E455AAF4DF" +
+ "6F7D7A7726B09B6025ED6DE21864").HexToByteArray();
+
+ // produced with
+ // echo -n hello | openssl cms -sign -signer cert.pfx -md sha3-384 -nodetach
+ internal static readonly byte[] Rsa_Sha3_384_SignedDocument = (
+ "308205D806092A864886F70D010702A08205C9308205C5020101310D300B" +
+ "0609608648016503040209301406092A864886F70D010701A00704056865" +
+ "6C6C6FA08203303082032C30820214A003020102020900E0D8AB6819D730" +
+ "6E300D06092A864886F70D01010B05003038313630340603550403132D54" +
+ "776F2074686F7573616E6420666F7274792065696768742062697473206F" +
+ "662052534120676F6F646E657373301E170D313731313033323335313135" +
+ "5A170D3138313130333233353131355A3038313630340603550403132D54" +
+ "776F2074686F7573616E6420666F7274792065696768742062697473206F" +
+ "662052534120676F6F646E65737330820122300D06092A864886F70D0101" +
+ "0105000382010F003082010A028201010096C114A5898D09133EF859F89C" +
+ "1D848BA8CB5258793E05B92D499C55EEFACE274BBBC26803FB813B9C11C6" +
+ "898153CC1745DED2C4D2672F807F0B2D957BC4B65EBC9DDE26E2EA7B2A6F" +
+ "E9A7C4D8BD1EF6032B8F0BB6AA33C8B57248B3D5E3901D8A38A283D7E25F" +
+ "F8E6F522381EE5484234CFF7B30C174635418FA89E14C468AD89DCFCBBB5" +
+ "35E5AF53510F9EA7F9DA8C1B53375B6DAB95A291439A5648726EE1012E41" +
+ "388E100691642CF6917F5569D8351F2782F435A579014E8448EEA0C4AECA" +
+ "FF2F476799D88457E2C8BCB56E5E128782B4FE26AFF0720D91D52CCAFE34" +
+ "4255808F5271D09F784F787E8323182080915BE0AE15A71D66476D0F264D" +
+ "D084F30203010001A3393037301D0603551D0E04160414745B5F12EF962E" +
+ "84B897E246D399A2BADEA9C5AC30090603551D1304023000300B0603551D" +
+ "0F040403020780300D06092A864886F70D01010B0500038201010087A15D" +
+ "F37FBD6E9DED7A8FFF25E60B731F635469BA01DD14BC03B2A24D99EFD8B8" +
+ "94E9493D63EC88C496CB04B33DF25222544F23D43F4023612C4D97B719C1" +
+ "F9431E4DB7A580CDF66A3E5F0DAF89A267DD187ABFFB08361B1F79232376" +
+ "AA5FC5AD384CC2F98FE36C1CEA0B943E1E3961190648889C8ABE8397A5A3" +
+ "38843CBFB1D8B212BE46685ACE7B80475CC7C97FC0377936ABD5F664E9C0" +
+ "9C463897726650711A1110FA9866BC1C278D95E5636AB96FAE95CCD67FD5" +
+ "72A8C727E2C03E7B242457318BEC1BE52CA5BD9454A0A41140AE96ED1C56" +
+ "D220D1FD5DD3B1B4FB2AA0E04FC94F7E3C7D476F298962245563953AD722" +
+ "5EDCEAC8B8509E49292E62D8BF3182026530820261020101304530383136" +
+ "30340603550403132D54776F2074686F7573616E6420666F727479206569" +
+ "6768742062697473206F662052534120676F6F646E657373020900E0D8AB" +
+ "6819D7306E300B0609608648016503040209A081F4301806092A864886F7" +
+ "0D010903310B06092A864886F70D010701301C06092A864886F70D010905" +
+ "310F170D3233303531373139353133375A303F06092A864886F70D010904" +
+ "31320430720AEA11019EF06440FBF05D87AA24680A2153DF3907B23631E7" +
+ "177CE620FA1330FF07C0FDDEE54699A4C3EE0EE9D887307906092A864886" +
+ "F70D01090F316C306A300B060960864801650304012A300B060960864801" +
+ "6503040116300B0609608648016503040102300A06082A864886F70D0307" +
+ "300E06082A864886F70D030202020080300D06082A864886F70D03020201" +
+ "40300706052B0E030207300D06082A864886F70D0302020128300D06092A" +
+ "864886F70D010101050004820100208BB078601C3AA70070F74E70D34C73" +
+ "90CC21B06CB5566708C9287F191C08E71D476ABFBCE52AE21286D114746D" +
+ "B1CD32F5D1738347305CEEC67332F4B9B2B272183719212562FADFE4AD81" +
+ "1C257220EFB0E59C271D6006AA332175CAFEB295A53BC3148156D07312DB" +
+ "B215307DE92BC00BD45B3E819CF15F50F05AD34EC855A1387BBE11AF6200" +
+ "5E1AB04CE442BB9A14490D2BA96E8490E94BC10CFC0F32671443F9EB6E6C" +
+ "4AAE7F036D1CD4FB93AEFAFCFA98F705298157921304D1066A723671FF9A" +
+ "A63C6B06E2FA16763F1A8D5A9B048BBEF5C5BF6906615A9C279532FF6AAC" +
+ "45361541683350FF343D3496C79EE503F1D1BF60F9CBBB562F14DCC4B80A").HexToByteArray();
+
+ // produced with
+ // echo -n hello | openssl cms -sign -signer cert.pfx -md sha3-512 -nodetach
+ internal static readonly byte[] Rsa_Sha3_512_SignedDocument = (
+ "308205E906092A864886F70D010702A08205DA308205D6020101310D300B" +
+ "060960864801650304020A301406092A864886F70D010701A00704056865" +
+ "6C6C6FA08203303082032C30820214A003020102020900E0D8AB6819D730" +
+ "6E300D06092A864886F70D01010B05003038313630340603550403132D54" +
+ "776F2074686F7573616E6420666F7274792065696768742062697473206F" +
+ "662052534120676F6F646E657373301E170D313731313033323335313135" +
+ "5A170D3138313130333233353131355A3038313630340603550403132D54" +
+ "776F2074686F7573616E6420666F7274792065696768742062697473206F" +
+ "662052534120676F6F646E65737330820122300D06092A864886F70D0101" +
+ "0105000382010F003082010A028201010096C114A5898D09133EF859F89C" +
+ "1D848BA8CB5258793E05B92D499C55EEFACE274BBBC26803FB813B9C11C6" +
+ "898153CC1745DED2C4D2672F807F0B2D957BC4B65EBC9DDE26E2EA7B2A6F" +
+ "E9A7C4D8BD1EF6032B8F0BB6AA33C8B57248B3D5E3901D8A38A283D7E25F" +
+ "F8E6F522381EE5484234CFF7B30C174635418FA89E14C468AD89DCFCBBB5" +
+ "35E5AF53510F9EA7F9DA8C1B53375B6DAB95A291439A5648726EE1012E41" +
+ "388E100691642CF6917F5569D8351F2782F435A579014E8448EEA0C4AECA" +
+ "FF2F476799D88457E2C8BCB56E5E128782B4FE26AFF0720D91D52CCAFE34" +
+ "4255808F5271D09F784F787E8323182080915BE0AE15A71D66476D0F264D" +
+ "D084F30203010001A3393037301D0603551D0E04160414745B5F12EF962E" +
+ "84B897E246D399A2BADEA9C5AC30090603551D1304023000300B0603551D" +
+ "0F040403020780300D06092A864886F70D01010B0500038201010087A15D" +
+ "F37FBD6E9DED7A8FFF25E60B731F635469BA01DD14BC03B2A24D99EFD8B8" +
+ "94E9493D63EC88C496CB04B33DF25222544F23D43F4023612C4D97B719C1" +
+ "F9431E4DB7A580CDF66A3E5F0DAF89A267DD187ABFFB08361B1F79232376" +
+ "AA5FC5AD384CC2F98FE36C1CEA0B943E1E3961190648889C8ABE8397A5A3" +
+ "38843CBFB1D8B212BE46685ACE7B80475CC7C97FC0377936ABD5F664E9C0" +
+ "9C463897726650711A1110FA9866BC1C278D95E5636AB96FAE95CCD67FD5" +
+ "72A8C727E2C03E7B242457318BEC1BE52CA5BD9454A0A41140AE96ED1C56" +
+ "D220D1FD5DD3B1B4FB2AA0E04FC94F7E3C7D476F298962245563953AD722" +
+ "5EDCEAC8B8509E49292E62D8BF3182027630820272020101304530383136" +
+ "30340603550403132D54776F2074686F7573616E6420666F727479206569" +
+ "6768742062697473206F662052534120676F6F646E657373020900E0D8AB" +
+ "6819D7306E300B060960864801650304020AA0820104301806092A864886" +
+ "F70D010903310B06092A864886F70D010701301C06092A864886F70D0109" +
+ "05310F170D3233303531373139353830395A304F06092A864886F70D0109" +
+ "043142044075D527C368F2EFE848ECF6B073A36767800805E9EEF2B1857D" +
+ "5F984F036EB6DF891D75F72D9B154518C1CD58835286D1DA9A38DEBA3DE9" +
+ "8B5A53E5ED78A84976307906092A864886F70D01090F316C306A300B0609" +
+ "60864801650304012A300B0609608648016503040116300B060960864801" +
+ "6503040102300A06082A864886F70D0307300E06082A864886F70D030202" +
+ "020080300D06082A864886F70D0302020140300706052B0E030207300D06" +
+ "082A864886F70D0302020128300D06092A864886F70D0101010500048201" +
+ "002E3AA896EB261EE1E8A552B4D5F7A466332EBAF90B74E2E563EC939E2C" +
+ "C4494D8A6C27BE9D23FD009EA4CD3734E3E5BFED0845156FBC2D520A223D" +
+ "17113658948955A0D95B1B8D7683D1A5E1AD6C41C8E4572C1D74D1B56B3E" +
+ "5E17E2E05AF4AA34919F34B01EB93C6614D0781CCE28B3281C9E10FEB5CE" +
+ "D0280E1B86761E06A315F027577DA15EDBBA19FC2095AC4D970FE718EAE8" +
+ "7F4AD106E6F4C674FD1958EE16EE07C54DAB405EC7A7A55A6D3B665427D4" +
+ "F11C632B4F605A41821A3F15B4F537FD5F0EE3426A7A03732AC946C3B435" +
+ "776A873A3DAE93FB8312C681144CF51F05CE37A0DB4C1544E178F88E421C" +
+ "0B5456D18C13B335DA808CE60C4E35F507").HexToByteArray();
}
}
diff --git a/src/libraries/System.Security.Cryptography/ref/System.Security.Cryptography.cs b/src/libraries/System.Security.Cryptography/ref/System.Security.Cryptography.cs
index 425b0e39888d8f..780a37489a23ff 100644
--- a/src/libraries/System.Security.Cryptography/ref/System.Security.Cryptography.cs
+++ b/src/libraries/System.Security.Cryptography/ref/System.Security.Cryptography.cs
@@ -1321,6 +1321,9 @@ protected virtual void HashCore(System.ReadOnlySpan source) { }
public static System.Security.Cryptography.HashAlgorithmName SHA1 { get { throw null; } }
public static System.Security.Cryptography.HashAlgorithmName SHA256 { get { throw null; } }
public static System.Security.Cryptography.HashAlgorithmName SHA384 { get { throw null; } }
+ public static System.Security.Cryptography.HashAlgorithmName SHA3_256 { get { throw null; } }
+ public static System.Security.Cryptography.HashAlgorithmName SHA3_384 { get { throw null; } }
+ public static System.Security.Cryptography.HashAlgorithmName SHA3_512 { get { throw null; } }
public static System.Security.Cryptography.HashAlgorithmName SHA512 { get { throw null; } }
public override bool Equals([System.Diagnostics.CodeAnalysis.NotNullWhenAttribute(true)] object? obj) { throw null; }
public bool Equals(System.Security.Cryptography.HashAlgorithmName other) { throw null; }
@@ -1471,6 +1474,81 @@ public override void Initialize() { }
public static bool TryHashData(System.ReadOnlySpan key, System.ReadOnlySpan source, System.Span destination, out int bytesWritten) { throw null; }
protected override bool TryHashFinal(System.Span destination, out int bytesWritten) { throw null; }
}
+ public partial class HMACSHA3_256 : System.Security.Cryptography.HMAC
+ {
+ public const int HashSizeInBits = 256;
+ public const int HashSizeInBytes = 32;
+ public HMACSHA3_256() { }
+ public HMACSHA3_256(byte[] key) { }
+ public static bool IsSupported { get { throw null; } }
+ public override byte[] Key { get { throw null; } set { } }
+ protected override void Dispose(bool disposing) { }
+ protected override void HashCore(byte[] rgb, int ib, int cb) { }
+ protected override void HashCore(System.ReadOnlySpan source) { }
+ public static byte[] HashData(byte[] key, byte[] source) { throw null; }
+ public static byte[] HashData(byte[] key, System.IO.Stream source) { throw null; }
+ public static byte[] HashData(System.ReadOnlySpan key, System.IO.Stream source) { throw null; }
+ public static int HashData(System.ReadOnlySpan key, System.IO.Stream source, System.Span destination) { throw null; }
+ public static byte[] HashData(System.ReadOnlySpan key, System.ReadOnlySpan source) { throw null; }
+ public static int HashData(System.ReadOnlySpan key, System.ReadOnlySpan source, System.Span destination) { throw null; }
+ public static System.Threading.Tasks.ValueTask HashDataAsync(byte[] key, System.IO.Stream source, System.Threading.CancellationToken cancellationToken = default(System.Threading.CancellationToken)) { throw null; }
+ public static System.Threading.Tasks.ValueTask HashDataAsync(System.ReadOnlyMemory key, System.IO.Stream source, System.Memory destination, System.Threading.CancellationToken cancellationToken = default(System.Threading.CancellationToken)) { throw null; }
+ public static System.Threading.Tasks.ValueTask HashDataAsync(System.ReadOnlyMemory key, System.IO.Stream source, System.Threading.CancellationToken cancellationToken = default(System.Threading.CancellationToken)) { throw null; }
+ protected override byte[] HashFinal() { throw null; }
+ public override void Initialize() { }
+ public static bool TryHashData(System.ReadOnlySpan key, System.ReadOnlySpan source, System.Span destination, out int bytesWritten) { throw null; }
+ protected override bool TryHashFinal(System.Span destination, out int bytesWritten) { throw null; }
+ }
+ public partial class HMACSHA3_384 : System.Security.Cryptography.HMAC
+ {
+ public const int HashSizeInBits = 384;
+ public const int HashSizeInBytes = 48;
+ public HMACSHA3_384() { }
+ public HMACSHA3_384(byte[] key) { }
+ public static bool IsSupported { get { throw null; } }
+ public override byte[] Key { get { throw null; } set { } }
+ protected override void Dispose(bool disposing) { }
+ protected override void HashCore(byte[] rgb, int ib, int cb) { }
+ protected override void HashCore(System.ReadOnlySpan source) { }
+ public static byte[] HashData(byte[] key, byte[] source) { throw null; }
+ public static byte[] HashData(byte[] key, System.IO.Stream source) { throw null; }
+ public static byte[] HashData(System.ReadOnlySpan key, System.IO.Stream source) { throw null; }
+ public static int HashData(System.ReadOnlySpan key, System.IO.Stream source, System.Span destination) { throw null; }
+ public static byte[] HashData(System.ReadOnlySpan key, System.ReadOnlySpan source) { throw null; }
+ public static int HashData(System.ReadOnlySpan key, System.ReadOnlySpan source, System.Span destination) { throw null; }
+ public static System.Threading.Tasks.ValueTask HashDataAsync(byte[] key, System.IO.Stream source, System.Threading.CancellationToken cancellationToken = default(System.Threading.CancellationToken)) { throw null; }
+ public static System.Threading.Tasks.ValueTask HashDataAsync(System.ReadOnlyMemory key, System.IO.Stream source, System.Memory destination, System.Threading.CancellationToken cancellationToken = default(System.Threading.CancellationToken)) { throw null; }
+ public static System.Threading.Tasks.ValueTask HashDataAsync(System.ReadOnlyMemory key, System.IO.Stream source, System.Threading.CancellationToken cancellationToken = default(System.Threading.CancellationToken)) { throw null; }
+ protected override byte[] HashFinal() { throw null; }
+ public override void Initialize() { }
+ public static bool TryHashData(System.ReadOnlySpan key, System.ReadOnlySpan source, System.Span destination, out int bytesWritten) { throw null; }
+ protected override bool TryHashFinal(System.Span destination, out int bytesWritten) { throw null; }
+ }
+ public partial class HMACSHA3_512 : System.Security.Cryptography.HMAC
+ {
+ public const int HashSizeInBits = 512;
+ public const int HashSizeInBytes = 64;
+ public HMACSHA3_512() { }
+ public HMACSHA3_512(byte[] key) { }
+ public static bool IsSupported { get { throw null; } }
+ public override byte[] Key { get { throw null; } set { } }
+ protected override void Dispose(bool disposing) { }
+ protected override void HashCore(byte[] rgb, int ib, int cb) { }
+ protected override void HashCore(System.ReadOnlySpan source) { }
+ public static byte[] HashData(byte[] key, byte[] source) { throw null; }
+ public static byte[] HashData(byte[] key, System.IO.Stream source) { throw null; }
+ public static byte[] HashData(System.ReadOnlySpan key, System.IO.Stream source) { throw null; }
+ public static int HashData(System.ReadOnlySpan key, System.IO.Stream source, System.Span destination) { throw null; }
+ public static byte[] HashData(System.ReadOnlySpan key, System.ReadOnlySpan source) { throw null; }
+ public static int HashData(System.ReadOnlySpan key, System.ReadOnlySpan source, System.Span destination) { throw null; }
+ public static System.Threading.Tasks.ValueTask HashDataAsync(byte[] key, System.IO.Stream source, System.Threading.CancellationToken cancellationToken = default(System.Threading.CancellationToken)) { throw null; }
+ public static System.Threading.Tasks.ValueTask HashDataAsync(System.ReadOnlyMemory key, System.IO.Stream source, System.Memory destination, System.Threading.CancellationToken cancellationToken = default(System.Threading.CancellationToken)) { throw null; }
+ public static System.Threading.Tasks.ValueTask HashDataAsync(System.ReadOnlyMemory key, System.IO.Stream source, System.Threading.CancellationToken cancellationToken = default(System.Threading.CancellationToken)) { throw null; }
+ protected override byte[] HashFinal() { throw null; }
+ public override void Initialize() { }
+ public static bool TryHashData(System.ReadOnlySpan key, System.ReadOnlySpan source, System.Span destination, out int bytesWritten) { throw null; }
+ protected override bool TryHashFinal(System.Span destination, out int bytesWritten) { throw null; }
+ }
public partial class HMACSHA512 : System.Security.Cryptography.HMAC
{
public const int HashSizeInBits = 512;
@@ -2006,6 +2084,9 @@ internal RSAEncryptionPadding() { }
public static System.Security.Cryptography.RSAEncryptionPadding OaepSHA1 { get { throw null; } }
public static System.Security.Cryptography.RSAEncryptionPadding OaepSHA256 { get { throw null; } }
public static System.Security.Cryptography.RSAEncryptionPadding OaepSHA384 { get { throw null; } }
+ public static System.Security.Cryptography.RSAEncryptionPadding OaepSHA3_256 { get { throw null; } }
+ public static System.Security.Cryptography.RSAEncryptionPadding OaepSHA3_384 { get { throw null; } }
+ public static System.Security.Cryptography.RSAEncryptionPadding OaepSHA3_512 { get { throw null; } }
public static System.Security.Cryptography.RSAEncryptionPadding OaepSHA512 { get { throw null; } }
public static System.Security.Cryptography.RSAEncryptionPadding Pkcs1 { get { throw null; } }
public static System.Security.Cryptography.RSAEncryptionPadding CreateOaep(System.Security.Cryptography.HashAlgorithmName hashAlgorithm) { throw null; }
@@ -2292,6 +2373,54 @@ protected sealed override void HashCore(System.ReadOnlySpan source) { }
public sealed override void Initialize() { }
protected sealed override bool TryHashFinal(System.Span destination, out int bytesWritten) { throw null; }
}
+ public abstract partial class SHA3_256 : System.Security.Cryptography.HashAlgorithm
+ {
+ public const int HashSizeInBits = 256;
+ public const int HashSizeInBytes = 32;
+ protected SHA3_256() { }
+ public static bool IsSupported { get { throw null; } }
+ public static new System.Security.Cryptography.SHA3_256 Create() { throw null; }
+ public static byte[] HashData(byte[] source) { throw null; }
+ public static byte[] HashData(System.IO.Stream source) { throw null; }
+ public static int HashData(System.IO.Stream source, System.Span destination) { throw null; }
+ public static byte[] HashData(System.ReadOnlySpan source) { throw null; }
+ public static int HashData(System.ReadOnlySpan source, System.Span destination) { throw null; }
+ public static System.Threading.Tasks.ValueTask HashDataAsync(System.IO.Stream source, System.Memory destination, System.Threading.CancellationToken cancellationToken = default(System.Threading.CancellationToken)) { throw null; }
+ public static System.Threading.Tasks.ValueTask HashDataAsync(System.IO.Stream source, System.Threading.CancellationToken cancellationToken = default(System.Threading.CancellationToken)) { throw null; }
+ public static bool TryHashData(System.ReadOnlySpan source, System.Span destination, out int bytesWritten) { throw null; }
+ }
+ public abstract partial class SHA3_384 : System.Security.Cryptography.HashAlgorithm
+ {
+ public const int HashSizeInBits = 384;
+ public const int HashSizeInBytes = 48;
+ protected SHA3_384() { }
+ public static bool IsSupported { get { throw null; } }
+ public static new System.Security.Cryptography.SHA3_384 Create() { throw null; }
+ public static byte[] HashData(byte[] source) { throw null; }
+ public static byte[] HashData(System.IO.Stream source) { throw null; }
+ public static int HashData(System.IO.Stream source, System.Span destination) { throw null; }
+ public static byte[] HashData(System.ReadOnlySpan source) { throw null; }
+ public static int HashData(System.ReadOnlySpan source, System.Span destination) { throw null; }
+ public static System.Threading.Tasks.ValueTask HashDataAsync(System.IO.Stream source, System.Memory destination, System.Threading.CancellationToken cancellationToken = default(System.Threading.CancellationToken)) { throw null; }
+ public static System.Threading.Tasks.ValueTask HashDataAsync(System.IO.Stream source, System.Threading.CancellationToken cancellationToken = default(System.Threading.CancellationToken)) { throw null; }
+ public static bool TryHashData(System.ReadOnlySpan source, System.Span destination, out int bytesWritten) { throw null; }
+ }
+ public abstract partial class SHA3_512 : System.Security.Cryptography.HashAlgorithm
+ {
+ public const int HashSizeInBits = 512;
+ public const int HashSizeInBytes = 64;
+ protected SHA3_512() { }
+ public static bool IsSupported { get { throw null; } }
+ public static new System.Security.Cryptography.SHA3_512 Create() { throw null; }
+ public static byte[] HashData(byte[] source) { throw null; }
+ public static byte[] HashData(System.IO.Stream source) { throw null; }
+ public static int HashData(System.IO.Stream source, System.Span destination) { throw null; }
+ public static byte[] HashData(System.ReadOnlySpan source) { throw null; }
+ public static int HashData(System.ReadOnlySpan source, System.Span destination) { throw null; }
+ public static System.Threading.Tasks.ValueTask HashDataAsync(System.IO.Stream source, System.Memory destination, System.Threading.CancellationToken cancellationToken = default(System.Threading.CancellationToken)) { throw null; }
+ public static System.Threading.Tasks.ValueTask HashDataAsync(System.IO.Stream source, System.Threading.CancellationToken cancellationToken = default(System.Threading.CancellationToken)) { throw null; }
+ public static bool TryHashData(System.ReadOnlySpan source, System.Span destination, out int bytesWritten) { throw null; }
+ }
public abstract partial class SHA512 : System.Security.Cryptography.HashAlgorithm
{
public const int HashSizeInBits = 512;
diff --git a/src/libraries/System.Security.Cryptography/src/System.Security.Cryptography.csproj b/src/libraries/System.Security.Cryptography/src/System.Security.Cryptography.csproj
index 197dba5072bf5d..e572f791bf1b67 100644
--- a/src/libraries/System.Security.Cryptography/src/System.Security.Cryptography.csproj
+++ b/src/libraries/System.Security.Cryptography/src/System.Security.Cryptography.csproj
@@ -352,6 +352,9 @@
+
+
+
@@ -412,6 +415,9 @@
+
+
+
diff --git a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/CapiHelper.Unix.cs b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/CapiHelper.Unix.cs
index 831b76f1f07a14..b11ecc91e4c62a 100644
--- a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/CapiHelper.Unix.cs
+++ b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/CapiHelper.Unix.cs
@@ -37,6 +37,7 @@ internal static HashAlgorithmName NameOrOidToHashAlgorithmName(string? nameOrOid
///
private static HashAlgorithmName AlgorithmToHashAlgorithmName(HashAlgorithm hashAlgorithm)
{
+ // CAPI CSP doesn't support SHA-3, so don't add it here.
return hashAlgorithm switch
{
SHA256 => HashAlgorithmName.SHA256,
@@ -50,6 +51,7 @@ private static HashAlgorithmName AlgorithmToHashAlgorithmName(HashAlgorithm hash
private static HashAlgorithmName OidToHashAlgorithmName(string oid)
{
+ // CAPI CSP doesn't support SHA-3, so don't add it here.
return oid switch
{
Oids.Sha256 => HashAlgorithmName.SHA256,
@@ -63,6 +65,7 @@ private static HashAlgorithmName OidToHashAlgorithmName(string oid)
private static HashAlgorithmName HashAlgorithmTypeToHashAlgorithmName(Type hashAlgType)
{
+ // CAPI CSP doesn't support SHA-3, so don't add it here.
if (typeof(SHA1).IsAssignableFrom(hashAlgType))
return HashAlgorithmName.SHA1;
if (typeof(SHA256).IsAssignableFrom(hashAlgType))
diff --git a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HKDF.cs b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HKDF.cs
index abb85e9a972e8c..1de6138cc1ec92 100644
--- a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HKDF.cs
+++ b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HKDF.cs
@@ -286,6 +286,18 @@ private static int HashLength(HashAlgorithmName hashAlgorithmName)
{
return HMACSHA512.HashSizeInBytes;
}
+ else if (hashAlgorithmName == HashAlgorithmName.SHA3_256)
+ {
+ return HMACSHA3_256.HashSizeInBytes;
+ }
+ else if (hashAlgorithmName == HashAlgorithmName.SHA3_384)
+ {
+ return HMACSHA3_384.HashSizeInBytes;
+ }
+ else if (hashAlgorithmName == HashAlgorithmName.SHA3_512)
+ {
+ return HMACSHA3_512.HashSizeInBytes;
+ }
else if (hashAlgorithmName == HashAlgorithmName.MD5)
{
return HMACMD5.HashSizeInBytes;
diff --git a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HMACCommon.cs b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HMACCommon.cs
index fec3c37cd3c620..25210f555df861 100644
--- a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HMACCommon.cs
+++ b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HMACCommon.cs
@@ -57,14 +57,37 @@ public void ChangeKey(byte[] key)
if (key.Length > _blockSize && _blockSize > 0)
{
// Perform RFC 2104, section 2 key adjustment.
- modifiedKey = _hashAlgorithmId switch
+ switch (_hashAlgorithmId)
{
- HashAlgorithmNames.SHA256 => SHA256.HashData(key),
- HashAlgorithmNames.SHA384 => SHA384.HashData(key),
- HashAlgorithmNames.SHA512 => SHA512.HashData(key),
- HashAlgorithmNames.SHA1 => SHA1.HashData(key),
- HashAlgorithmNames.MD5 when Helpers.HasMD5 => MD5.HashData(key),
- _ => throw new CryptographicException(SR.Format(SR.Cryptography_UnknownHashAlgorithm, _hashAlgorithmId)),
+ case HashAlgorithmNames.SHA256:
+ modifiedKey = SHA256.HashData(key);
+ break;
+ case HashAlgorithmNames.SHA384:
+ modifiedKey = SHA384.HashData(key);
+ break;
+ case HashAlgorithmNames.SHA512:
+ modifiedKey = SHA512.HashData(key);
+ break;
+ case HashAlgorithmNames.SHA3_256:
+ Debug.Assert(SHA3_256.IsSupported);
+ modifiedKey = SHA3_256.HashData(key);
+ break;
+ case HashAlgorithmNames.SHA3_384:
+ Debug.Assert(SHA3_384.IsSupported);
+ modifiedKey = SHA3_384.HashData(key);
+ break;
+ case HashAlgorithmNames.SHA3_512:
+ Debug.Assert(SHA3_512.IsSupported);
+ modifiedKey = SHA3_512.HashData(key);
+ break;
+ case HashAlgorithmNames.SHA1:
+ modifiedKey = SHA1.HashData(key);
+ break;
+ case HashAlgorithmNames.MD5 when Helpers.HasMD5:
+ modifiedKey = MD5.HashData(key);
+ break;
+ default:
+ throw new CryptographicException(SR.Format(SR.Cryptography_UnknownHashAlgorithm, _hashAlgorithmId));
};
}
diff --git a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HMACSHA3_256.cs b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HMACSHA3_256.cs
new file mode 100644
index 00000000000000..d71c41bdf98540
--- /dev/null
+++ b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HMACSHA3_256.cs
@@ -0,0 +1,390 @@
+// Licensed to the .NET Foundation under one or more agreements.
+// The .NET Foundation licenses this file to you under the MIT license.
+
+using Internal.Cryptography;
+using System.Diagnostics;
+using System.IO;
+using System.Threading;
+using System.Threading.Tasks;
+
+namespace System.Security.Cryptography
+{
+ ///
+ /// Computes a Hash-based Message Authentication Code (HMAC) by using the SHA3-256 hash function.
+ ///
+ public class HMACSHA3_256 : HMAC
+ {
+ private HMACCommon _hMacCommon;
+ internal const int BlockSize = 136; // FIPS 202 Table 3.
+
+ ///
+ /// The hash size produced by the HMAC SHA3-256 algorithm, in bits.
+ ///
+ public const int HashSizeInBits = 256;
+
+ ///
+ /// The hash size produced by the HMAC SHA3-256 algorithm, in bytes.
+ ///
+ public const int HashSizeInBytes = HashSizeInBits / 8;
+
+ ///
+ /// Initializes a new instance of the class with a randomly generated key.
+ ///
+ ///
+ ///
+ /// is a type of keyed hash algorithm that is constructed from the SHA3-256 hash
+ /// function and used as a Hash-based Message Authentication Code (HMAC). The HMAC process mixes a secret key
+ /// with the message data, hashes the result with the hash function, mixes that hash value with the secret key
+ /// again, and then applies the hash function a second time. The output hash is 256 bits in length.
+ ///
+ ///
+ /// This constructor uses a 136-byte, randomly generated key.
+ ///
+ ///
+ public HMACSHA3_256()
+ : this(RandomNumberGenerator.GetBytes(BlockSize))
+ {
+ }
+
+ ///
+ /// Initializes a new instance of the class with the specified key data.
+ ///
+ ///
+ /// The secret key for . The key can be any length.
+ ///
+ ///
+ /// is .
+ ///
+ public HMACSHA3_256(byte[] key)
+ {
+ ArgumentNullException.ThrowIfNull(key);
+ CheckSha3Support();
+
+ this.HashName = HashAlgorithmNames.SHA3_256;
+ _hMacCommon = new HMACCommon(HashAlgorithmNames.SHA3_256, key, BlockSize);
+ base.Key = _hMacCommon.ActualKey!;
+ BlockSizeValue = BlockSize;
+ HashSizeValue = HashSizeInBits;
+ Debug.Assert(HashSizeValue == _hMacCommon.HashSizeInBits);
+ }
+
+ ///
+ /// Gets a value that indicates whether the algorithm is supported on the current platform.
+ ///
+ ///
+ /// if the algorithm is supported; otherwise, .
+ ///
+ public static bool IsSupported { get; } = HashProviderDispenser.MacSupported(HashAlgorithmNames.SHA3_256);
+
+ ///
+ public override byte[] Key
+ {
+ get
+ {
+ return base.Key;
+ }
+ set
+ {
+ ArgumentNullException.ThrowIfNull(value);
+ _hMacCommon.ChangeKey(value);
+ base.Key = _hMacCommon.ActualKey!;
+ }
+ }
+
+ ///
+ protected override void HashCore(byte[] rgb, int ib, int cb) =>
+ _hMacCommon.AppendHashData(rgb, ib, cb);
+
+ ///
+ protected override void HashCore(ReadOnlySpan source) =>
+ _hMacCommon.AppendHashData(source);
+
+ ///
+ protected override byte[] HashFinal() =>
+ _hMacCommon.FinalizeHashAndReset();
+
+ ///
+ protected override bool TryHashFinal(Span destination, out int bytesWritten) =>
+ _hMacCommon.TryFinalizeHashAndReset(destination, out bytesWritten);
+
+ ///
+ public override void Initialize() => _hMacCommon.Reset();
+
+ ///
+ /// Computes the HMAC of data using the SHA3-256 algorithm.
+ ///
+ /// The HMAC key.
+ /// The data to HMAC.
+ /// The HMAC of the data.
+ ///
+ /// or is .
+ ///
+ public static byte[] HashData(byte[] key, byte[] source)
+ {
+ ArgumentNullException.ThrowIfNull(key);
+ ArgumentNullException.ThrowIfNull(source);
+
+ return HashData(new ReadOnlySpan(key), new ReadOnlySpan(source));
+ }
+
+ ///
+ /// Computes the HMAC of data using the SHA3-256 algorithm.
+ ///
+ /// The HMAC key.
+ /// The data to HMAC.
+ /// The HMAC of the data.
+ public static byte[] HashData(ReadOnlySpan key, ReadOnlySpan source)
+ {
+ byte[] buffer = new byte[HashSizeInBytes];
+
+ int written = HashData(key, source, buffer.AsSpan());
+ Debug.Assert(written == buffer.Length);
+
+ return buffer;
+ }
+
+ ///
+ /// Computes the HMAC of data using the SHA3-256 algorithm.
+ ///
+ /// The HMAC key.
+ /// The data to HMAC.
+ /// The buffer to receive the HMAC value.
+ /// The total number of bytes written to .
+ ///
+ /// The buffer in is too small to hold the calculated hash
+ /// size. The SHA3-256 algorithm always produces a 256-bit HMAC, or 32 bytes.
+ ///
+ public static int HashData(ReadOnlySpan key, ReadOnlySpan source, Span destination)
+ {
+ if (!TryHashData(key, source, destination, out int bytesWritten))
+ {
+ throw new ArgumentException(SR.Argument_DestinationTooShort, nameof(destination));
+ }
+
+ return bytesWritten;
+ }
+
+ ///
+ /// Attempts to compute the HMAC of data using the SHA3-256 algorithm.
+ ///
+ /// The HMAC key.
+ /// The data to HMAC.
+ /// The buffer to receive the HMAC value.
+ ///
+ /// When this method returns, the total number of bytes written into .
+ ///
+ ///
+ /// if is too small to hold the
+ /// calculated hash, otherwise.
+ ///
+ public static bool TryHashData(ReadOnlySpan key, ReadOnlySpan source, Span destination, out int bytesWritten)
+ {
+ CheckSha3Support();
+
+ if (destination.Length < HashSizeInBytes)
+ {
+ bytesWritten = 0;
+ return false;
+ }
+
+ bytesWritten = HashProviderDispenser.OneShotHashProvider.MacData(HashAlgorithmNames.SHA3_256, key, source, destination);
+ Debug.Assert(bytesWritten == HashSizeInBytes);
+
+ return true;
+ }
+
+ ///
+ /// Computes the HMAC of a stream using the SHA3-256 algorithm.
+ ///
+ /// The HMAC key.
+ /// The stream to HMAC.
+ /// The buffer to receive the HMAC value.
+ /// The total number of bytes written to .
+ ///
+ /// is .
+ ///
+ ///
+ ///
+ /// The buffer in is too small to hold the calculated HMAC
+ /// size. The SHA3-256 algorithm always produces a 256-bit HMAC, or 32 bytes.
+ ///
+ /// -or-
+ ///
+ /// does not support reading.
+ ///
+ ///
+ public static int HashData(ReadOnlySpan key, Stream source, Span destination)
+ {
+ ArgumentNullException.ThrowIfNull(source);
+
+ if (destination.Length < HashSizeInBytes)
+ throw new ArgumentException(SR.Argument_DestinationTooShort, nameof(destination));
+
+ if (!source.CanRead)
+ throw new ArgumentException(SR.Argument_StreamNotReadable, nameof(source));
+
+ CheckSha3Support();
+ return LiteHashProvider.HmacStream(HashAlgorithmNames.SHA3_256, key, source, destination);
+ }
+
+ ///
+ /// Computes the HMAC of a stream using the SHA3-256 algorithm.
+ ///
+ /// The HMAC key.
+ /// The stream to HMAC.
+ /// The HMAC of the data.
+ ///
+ /// is .
+ ///
+ ///
+ /// does not support reading.
+ ///
+ public static byte[] HashData(ReadOnlySpan key, Stream source)
+ {
+ ArgumentNullException.ThrowIfNull(source);
+
+ if (!source.CanRead)
+ throw new ArgumentException(SR.Argument_StreamNotReadable, nameof(source));
+
+ CheckSha3Support();
+ return LiteHashProvider.HmacStream(HashAlgorithmNames.SHA3_256, HashSizeInBytes, key, source);
+ }
+
+ ///
+ /// Computes the HMAC of a stream using the SHA3-256 algorithm.
+ ///
+ /// The HMAC key.
+ /// The stream to HMAC.
+ /// The HMAC of the data.
+ ///
+ /// or is .
+ ///
+ ///
+ /// does not support reading.
+ ///
+ public static byte[] HashData(byte[] key, Stream source)
+ {
+ ArgumentNullException.ThrowIfNull(key);
+
+ return HashData(new ReadOnlySpan(key), source);
+ }
+
+ ///
+ /// Asynchronously computes the HMAC of a stream using the SHA3-256 algorithm.
+ ///
+ /// The HMAC key.
+ /// The stream to HMAC.
+ ///
+ /// The token to monitor for cancellation requests.
+ /// The default value is .
+ ///
+ /// The HMAC of the data.
+ ///
+ /// is .
+ ///
+ ///
+ /// does not support reading.
+ ///
+ public static ValueTask HashDataAsync(ReadOnlyMemory key, Stream source, CancellationToken cancellationToken = default)
+ {
+ ArgumentNullException.ThrowIfNull(source);
+
+ if (!source.CanRead)
+ throw new ArgumentException(SR.Argument_StreamNotReadable, nameof(source));
+
+ CheckSha3Support();
+ return LiteHashProvider.HmacStreamAsync(HashAlgorithmNames.SHA3_256, key.Span, source, cancellationToken);
+ }
+
+ ///
+ /// Asynchronously computes the HMAC of a stream using the SHA3-256 algorithm.
+ ///
+ /// The HMAC key.
+ /// The stream to HMAC.
+ ///
+ /// The token to monitor for cancellation requests.
+ /// The default value is .
+ ///
+ /// The HMAC of the data.
+ ///
+ /// or is .
+ ///
+ ///
+ /// does not support reading.
+ ///
+ public static ValueTask HashDataAsync(byte[] key, Stream source, CancellationToken cancellationToken = default)
+ {
+ ArgumentNullException.ThrowIfNull(key);
+
+ return HashDataAsync(new ReadOnlyMemory(key), source, cancellationToken);
+ }
+
+ ///
+ /// Asynchronously computes the HMAC of a stream using the SHA3-256 algorithm.
+ ///
+ /// The HMAC key.
+ /// The stream to HMAC.
+ /// The buffer to receive the HMAC value.
+ ///
+ /// The token to monitor for cancellation requests.
+ /// The default value is .
+ ///
+ /// The total number of bytes written to .
+ ///
+ /// is .
+ ///
+ ///
+ ///
+ /// The buffer in is too small to hold the calculated hash
+ /// size. The SHA3-256 algorithm always produces a 256-bit hash, or 32 bytes.
+ ///
+ /// -or-
+ ///
+ /// does not support reading.
+ ///
+ ///
+ public static ValueTask HashDataAsync(
+ ReadOnlyMemory key,
+ Stream source,
+ Memory destination,
+ CancellationToken cancellationToken = default)
+ {
+ ArgumentNullException.ThrowIfNull(source);
+
+ if (destination.Length < HashSizeInBytes)
+ throw new ArgumentException(SR.Argument_DestinationTooShort, nameof(destination));
+
+ if (!source.CanRead)
+ throw new ArgumentException(SR.Argument_StreamNotReadable, nameof(source));
+
+ CheckSha3Support();
+ return LiteHashProvider.HmacStreamAsync(
+ HashAlgorithmNames.SHA3_256,
+ key.Span,
+ source,
+ destination,
+ cancellationToken);
+ }
+
+ ///
+ protected override void Dispose(bool disposing)
+ {
+ if (disposing)
+ {
+ HMACCommon hMacCommon = _hMacCommon;
+ if (hMacCommon != null)
+ {
+ _hMacCommon = null!;
+ hMacCommon.Dispose(disposing);
+ }
+ }
+ base.Dispose(disposing);
+ }
+
+ private static void CheckSha3Support()
+ {
+ if (!IsSupported)
+ throw new PlatformNotSupportedException();
+ }
+ }
+}
diff --git a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HMACSHA3_384.cs b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HMACSHA3_384.cs
new file mode 100644
index 00000000000000..3e7497443098df
--- /dev/null
+++ b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HMACSHA3_384.cs
@@ -0,0 +1,390 @@
+// Licensed to the .NET Foundation under one or more agreements.
+// The .NET Foundation licenses this file to you under the MIT license.
+
+using Internal.Cryptography;
+using System.Diagnostics;
+using System.IO;
+using System.Threading;
+using System.Threading.Tasks;
+
+namespace System.Security.Cryptography
+{
+ ///
+ /// Computes a Hash-based Message Authentication Code (HMAC) by using the SHA3-384 hash function.
+ ///
+ public class HMACSHA3_384 : HMAC
+ {
+ private HMACCommon _hMacCommon;
+ internal const int BlockSize = 104; // FIPS 202 Table 3.
+
+ ///
+ /// The hash size produced by the HMAC SHA3-384 algorithm, in bits.
+ ///
+ public const int HashSizeInBits = 384;
+
+ ///
+ /// The hash size produced by the HMAC SHA3-384 algorithm, in bytes.
+ ///
+ public const int HashSizeInBytes = HashSizeInBits / 8;
+
+ ///
+ /// Initializes a new instance of the class with a randomly generated key.
+ ///
+ ///
+ ///
+ /// is a type of keyed hash algorithm that is constructed from the SHA3-384 hash
+ /// function and used as a Hash-based Message Authentication Code (HMAC). The HMAC process mixes a secret key
+ /// with the message data, hashes the result with the hash function, mixes that hash value with the secret key
+ /// again, and then applies the hash function a second time. The output hash is 384 bits in length.
+ ///
+ ///
+ /// This constructor uses a 104-byte, randomly generated key.
+ ///
+ ///
+ public HMACSHA3_384()
+ : this(RandomNumberGenerator.GetBytes(BlockSize))
+ {
+ }
+
+ ///
+ /// Initializes a new instance of the class with the specified key data.
+ ///
+ ///
+ /// The secret key for . The key can be any length.
+ ///
+ ///
+ /// is .
+ ///
+ public HMACSHA3_384(byte[] key)
+ {
+ ArgumentNullException.ThrowIfNull(key);
+ CheckSha3Support();
+
+ this.HashName = HashAlgorithmNames.SHA3_384;
+ _hMacCommon = new HMACCommon(HashAlgorithmNames.SHA3_384, key, BlockSize);
+ base.Key = _hMacCommon.ActualKey!;
+ BlockSizeValue = BlockSize;
+ HashSizeValue = HashSizeInBits;
+ Debug.Assert(HashSizeValue == _hMacCommon.HashSizeInBits);
+ }
+
+ ///
+ /// Gets a value that indicates whether the algorithm is supported on the current platform.
+ ///
+ ///
+ /// if the algorithm is supported; otherwise, .
+ ///
+ public static bool IsSupported { get; } = HashProviderDispenser.MacSupported(HashAlgorithmNames.SHA3_384);
+
+ ///
+ public override byte[] Key
+ {
+ get
+ {
+ return base.Key;
+ }
+ set
+ {
+ ArgumentNullException.ThrowIfNull(value);
+ _hMacCommon.ChangeKey(value);
+ base.Key = _hMacCommon.ActualKey!;
+ }
+ }
+
+ ///
+ protected override void HashCore(byte[] rgb, int ib, int cb) =>
+ _hMacCommon.AppendHashData(rgb, ib, cb);
+
+ ///
+ protected override void HashCore(ReadOnlySpan source) =>
+ _hMacCommon.AppendHashData(source);
+
+ ///
+ protected override byte[] HashFinal() =>
+ _hMacCommon.FinalizeHashAndReset();
+
+ ///
+ protected override bool TryHashFinal(Span destination, out int bytesWritten) =>
+ _hMacCommon.TryFinalizeHashAndReset(destination, out bytesWritten);
+
+ ///
+ public override void Initialize() => _hMacCommon.Reset();
+
+ ///
+ /// Computes the HMAC of data using the SHA3-384 algorithm.
+ ///
+ /// The HMAC key.
+ /// The data to HMAC.
+ /// The HMAC of the data.
+ ///
+ /// or is .
+ ///
+ public static byte[] HashData(byte[] key, byte[] source)
+ {
+ ArgumentNullException.ThrowIfNull(key);
+ ArgumentNullException.ThrowIfNull(source);
+
+ return HashData(new ReadOnlySpan(key), new ReadOnlySpan(source));
+ }
+
+ ///
+ /// Computes the HMAC of data using the SHA3-384 algorithm.
+ ///
+ /// The HMAC key.
+ /// The data to HMAC.
+ /// The HMAC of the data.
+ public static byte[] HashData(ReadOnlySpan key, ReadOnlySpan source)
+ {
+ byte[] buffer = new byte[HashSizeInBytes];
+
+ int written = HashData(key, source, buffer.AsSpan());
+ Debug.Assert(written == buffer.Length);
+
+ return buffer;
+ }
+
+ ///
+ /// Computes the HMAC of data using the SHA3-384 algorithm.
+ ///
+ /// The HMAC key.
+ /// The data to HMAC.
+ /// The buffer to receive the HMAC value.
+ /// The total number of bytes written to .
+ ///
+ /// The buffer in is too small to hold the calculated hash
+ /// size. The SHA3-384 algorithm always produces a 384-bit HMAC, or 48 bytes.
+ ///
+ public static int HashData(ReadOnlySpan key, ReadOnlySpan source, Span destination)
+ {
+ if (!TryHashData(key, source, destination, out int bytesWritten))
+ {
+ throw new ArgumentException(SR.Argument_DestinationTooShort, nameof(destination));
+ }
+
+ return bytesWritten;
+ }
+
+ ///
+ /// Attempts to compute the HMAC of data using the SHA3-384 algorithm.
+ ///
+ /// The HMAC key.
+ /// The data to HMAC.
+ /// The buffer to receive the HMAC value.
+ ///
+ /// When this method returns, the total number of bytes written into .
+ ///
+ ///
+ /// if is too small to hold the
+ /// calculated hash, otherwise.
+ ///
+ public static bool TryHashData(ReadOnlySpan key, ReadOnlySpan source, Span destination, out int bytesWritten)
+ {
+ CheckSha3Support();
+
+ if (destination.Length < HashSizeInBytes)
+ {
+ bytesWritten = 0;
+ return false;
+ }
+
+ bytesWritten = HashProviderDispenser.OneShotHashProvider.MacData(HashAlgorithmNames.SHA3_384, key, source, destination);
+ Debug.Assert(bytesWritten == HashSizeInBytes);
+
+ return true;
+ }
+
+ ///
+ /// Computes the HMAC of a stream using the SHA3-384 algorithm.
+ ///
+ /// The HMAC key.
+ /// The stream to HMAC.
+ /// The buffer to receive the HMAC value.
+ /// The total number of bytes written to .
+ ///
+ /// is .
+ ///
+ ///
+ ///
+ /// The buffer in is too small to hold the calculated HMAC
+ /// size. The SHA3-384 algorithm always produces a 384-bit HMAC, or 48 bytes.
+ ///
+ /// -or-
+ ///
+ /// does not support reading.
+ ///
+ ///
+ public static int HashData(ReadOnlySpan key, Stream source, Span destination)
+ {
+ ArgumentNullException.ThrowIfNull(source);
+
+ if (destination.Length < HashSizeInBytes)
+ throw new ArgumentException(SR.Argument_DestinationTooShort, nameof(destination));
+
+ if (!source.CanRead)
+ throw new ArgumentException(SR.Argument_StreamNotReadable, nameof(source));
+
+ CheckSha3Support();
+ return LiteHashProvider.HmacStream(HashAlgorithmNames.SHA3_384, key, source, destination);
+ }
+
+ ///
+ /// Computes the HMAC of a stream using the SHA3-384 algorithm.
+ ///
+ /// The HMAC key.
+ /// The stream to HMAC.
+ /// The HMAC of the data.
+ ///
+ /// is .
+ ///
+ ///
+ /// does not support reading.
+ ///
+ public static byte[] HashData(ReadOnlySpan key, Stream source)
+ {
+ ArgumentNullException.ThrowIfNull(source);
+
+ if (!source.CanRead)
+ throw new ArgumentException(SR.Argument_StreamNotReadable, nameof(source));
+
+ CheckSha3Support();
+ return LiteHashProvider.HmacStream(HashAlgorithmNames.SHA3_384, HashSizeInBytes, key, source);
+ }
+
+ ///
+ /// Computes the HMAC of a stream using the SHA3-384 algorithm.
+ ///
+ /// The HMAC key.
+ /// The stream to HMAC.
+ /// The HMAC of the data.
+ ///
+ /// or is .
+ ///
+ ///
+ /// does not support reading.
+ ///
+ public static byte[] HashData(byte[] key, Stream source)
+ {
+ ArgumentNullException.ThrowIfNull(key);
+
+ return HashData(new ReadOnlySpan(key), source);
+ }
+
+ ///
+ /// Asynchronously computes the HMAC of a stream using the SHA3-384 algorithm.
+ ///
+ /// The HMAC key.
+ /// The stream to HMAC.
+ ///
+ /// The token to monitor for cancellation requests.
+ /// The default value is .
+ ///
+ /// The HMAC of the data.
+ ///
+ /// is .
+ ///
+ ///
+ /// does not support reading.
+ ///
+ public static ValueTask HashDataAsync(ReadOnlyMemory key, Stream source, CancellationToken cancellationToken = default)
+ {
+ ArgumentNullException.ThrowIfNull(source);
+
+ if (!source.CanRead)
+ throw new ArgumentException(SR.Argument_StreamNotReadable, nameof(source));
+
+ CheckSha3Support();
+ return LiteHashProvider.HmacStreamAsync(HashAlgorithmNames.SHA3_384, key.Span, source, cancellationToken);
+ }
+
+ ///
+ /// Asynchronously computes the HMAC of a stream using the SHA3-384 algorithm.
+ ///
+ /// The HMAC key.
+ /// The stream to HMAC.
+ ///
+ /// The token to monitor for cancellation requests.
+ /// The default value is .
+ ///
+ /// The HMAC of the data.
+ ///
+ /// or is .
+ ///
+ ///
+ /// does not support reading.
+ ///
+ public static ValueTask HashDataAsync(byte[] key, Stream source, CancellationToken cancellationToken = default)
+ {
+ ArgumentNullException.ThrowIfNull(key);
+
+ return HashDataAsync(new ReadOnlyMemory(key), source, cancellationToken);
+ }
+
+ ///
+ /// Asynchronously computes the HMAC of a stream using the SHA3-384 algorithm.
+ ///
+ /// The HMAC key.
+ /// The stream to HMAC.
+ /// The buffer to receive the HMAC value.
+ ///
+ /// The token to monitor for cancellation requests.
+ /// The default value is .
+ ///
+ /// The total number of bytes written to .
+ ///
+ /// is .
+ ///
+ ///
+ ///
+ /// The buffer in is too small to hold the calculated hash
+ /// size. The SHA3-384 algorithm always produces a 384-bit hash, or 48 bytes.
+ ///
+ /// -or-
+ ///
+ /// does not support reading.
+ ///
+ ///
+ public static ValueTask HashDataAsync(
+ ReadOnlyMemory key,
+ Stream source,
+ Memory destination,
+ CancellationToken cancellationToken = default)
+ {
+ ArgumentNullException.ThrowIfNull(source);
+
+ if (destination.Length < HashSizeInBytes)
+ throw new ArgumentException(SR.Argument_DestinationTooShort, nameof(destination));
+
+ if (!source.CanRead)
+ throw new ArgumentException(SR.Argument_StreamNotReadable, nameof(source));
+
+ CheckSha3Support();
+ return LiteHashProvider.HmacStreamAsync(
+ HashAlgorithmNames.SHA3_384,
+ key.Span,
+ source,
+ destination,
+ cancellationToken);
+ }
+
+ ///
+ protected override void Dispose(bool disposing)
+ {
+ if (disposing)
+ {
+ HMACCommon hMacCommon = _hMacCommon;
+ if (hMacCommon != null)
+ {
+ _hMacCommon = null!;
+ hMacCommon.Dispose(disposing);
+ }
+ }
+ base.Dispose(disposing);
+ }
+
+ private static void CheckSha3Support()
+ {
+ if (!IsSupported)
+ throw new PlatformNotSupportedException();
+ }
+ }
+}
diff --git a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HMACSHA3_512.cs b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HMACSHA3_512.cs
new file mode 100644
index 00000000000000..62a6bb4f174072
--- /dev/null
+++ b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HMACSHA3_512.cs
@@ -0,0 +1,390 @@
+// Licensed to the .NET Foundation under one or more agreements.
+// The .NET Foundation licenses this file to you under the MIT license.
+
+using Internal.Cryptography;
+using System.Diagnostics;
+using System.IO;
+using System.Threading;
+using System.Threading.Tasks;
+
+namespace System.Security.Cryptography
+{
+ ///
+ /// Computes a Hash-based Message Authentication Code (HMAC) by using the SHA3-512 hash function.
+ ///
+ public class HMACSHA3_512 : HMAC
+ {
+ private HMACCommon _hMacCommon;
+ internal const int BlockSize = 72; // FIPS 202 Table 3.
+
+ ///
+ /// The hash size produced by the HMAC SHA3-512 algorithm, in bits.
+ ///
+ public const int HashSizeInBits = 512;
+
+ ///
+ /// The hash size produced by the HMAC SHA3-512 algorithm, in bytes.
+ ///
+ public const int HashSizeInBytes = HashSizeInBits / 8;
+
+ ///
+ /// Initializes a new instance of the class with a randomly generated key.
+ ///
+ ///
+ ///
+ /// is a type of keyed hash algorithm that is constructed from the SHA3-512 hash
+ /// function and used as a Hash-based Message Authentication Code (HMAC). The HMAC process mixes a secret key
+ /// with the message data, hashes the result with the hash function, mixes that hash value with the secret key
+ /// again, and then applies the hash function a second time. The output hash is 512 bits in length.
+ ///
+ ///
+ /// This constructor uses a 72-byte, randomly generated key.
+ ///
+ ///
+ public HMACSHA3_512()
+ : this(RandomNumberGenerator.GetBytes(BlockSize))
+ {
+ }
+
+ ///
+ /// Initializes a new instance of the class with the specified key data.
+ ///
+ ///
+ /// The secret key for . The key can be any length.
+ ///
+ ///
+ /// is .
+ ///
+ public HMACSHA3_512(byte[] key)
+ {
+ ArgumentNullException.ThrowIfNull(key);
+ CheckSha3Support();
+
+ this.HashName = HashAlgorithmNames.SHA3_512;
+ _hMacCommon = new HMACCommon(HashAlgorithmNames.SHA3_512, key, BlockSize);
+ base.Key = _hMacCommon.ActualKey!;
+ BlockSizeValue = BlockSize;
+ HashSizeValue = HashSizeInBits;
+ Debug.Assert(HashSizeValue == _hMacCommon.HashSizeInBits);
+ }
+
+ ///
+ /// Gets a value that indicates whether the algorithm is supported on the current platform.
+ ///
+ ///
+ /// if the algorithm is supported; otherwise, .
+ ///
+ public static bool IsSupported { get; } = HashProviderDispenser.MacSupported(HashAlgorithmNames.SHA3_512);
+
+ ///
+ public override byte[] Key
+ {
+ get
+ {
+ return base.Key;
+ }
+ set
+ {
+ ArgumentNullException.ThrowIfNull(value);
+ _hMacCommon.ChangeKey(value);
+ base.Key = _hMacCommon.ActualKey!;
+ }
+ }
+
+ ///
+ protected override void HashCore(byte[] rgb, int ib, int cb) =>
+ _hMacCommon.AppendHashData(rgb, ib, cb);
+
+ ///
+ protected override void HashCore(ReadOnlySpan source) =>
+ _hMacCommon.AppendHashData(source);
+
+ ///
+ protected override byte[] HashFinal() =>
+ _hMacCommon.FinalizeHashAndReset();
+
+ ///
+ protected override bool TryHashFinal(Span destination, out int bytesWritten) =>
+ _hMacCommon.TryFinalizeHashAndReset(destination, out bytesWritten);
+
+ ///
+ public override void Initialize() => _hMacCommon.Reset();
+
+ ///
+ /// Computes the HMAC of data using the SHA3-512 algorithm.
+ ///
+ /// The HMAC key.
+ /// The data to HMAC.
+ /// The HMAC of the data.
+ ///
+ /// or is .
+ ///
+ public static byte[] HashData(byte[] key, byte[] source)
+ {
+ ArgumentNullException.ThrowIfNull(key);
+ ArgumentNullException.ThrowIfNull(source);
+
+ return HashData(new ReadOnlySpan(key), new ReadOnlySpan(source));
+ }
+
+ ///
+ /// Computes the HMAC of data using the SHA3-512 algorithm.
+ ///
+ /// The HMAC key.
+ /// The data to HMAC.
+ /// The HMAC of the data.
+ public static byte[] HashData(ReadOnlySpan key, ReadOnlySpan source)
+ {
+ byte[] buffer = new byte[HashSizeInBytes];
+
+ int written = HashData(key, source, buffer.AsSpan());
+ Debug.Assert(written == buffer.Length);
+
+ return buffer;
+ }
+
+ ///
+ /// Computes the HMAC of data using the SHA3-512 algorithm.
+ ///
+ /// The HMAC key.
+ /// The data to HMAC.
+ /// The buffer to receive the HMAC value.
+ /// The total number of bytes written to .
+ ///
+ /// The buffer in is too small to hold the calculated hash
+ /// size. The SHA3-512 algorithm always produces a 512-bit HMAC, or 64 bytes.
+ ///
+ public static int HashData(ReadOnlySpan key, ReadOnlySpan source, Span destination)
+ {
+ if (!TryHashData(key, source, destination, out int bytesWritten))
+ {
+ throw new ArgumentException(SR.Argument_DestinationTooShort, nameof(destination));
+ }
+
+ return bytesWritten;
+ }
+
+ ///
+ /// Attempts to compute the HMAC of data using the SHA3-512 algorithm.
+ ///
+ /// The HMAC key.
+ /// The data to HMAC.
+ /// The buffer to receive the HMAC value.
+ ///
+ /// When this method returns, the total number of bytes written into .
+ ///
+ ///
+ /// if is too small to hold the
+ /// calculated hash, otherwise.
+ ///
+ public static bool TryHashData(ReadOnlySpan key, ReadOnlySpan source, Span destination, out int bytesWritten)
+ {
+ CheckSha3Support();
+
+ if (destination.Length < HashSizeInBytes)
+ {
+ bytesWritten = 0;
+ return false;
+ }
+
+ bytesWritten = HashProviderDispenser.OneShotHashProvider.MacData(HashAlgorithmNames.SHA3_512, key, source, destination);
+ Debug.Assert(bytesWritten == HashSizeInBytes);
+
+ return true;
+ }
+
+ ///
+ /// Computes the HMAC of a stream using the SHA3-512 algorithm.
+ ///
+ /// The HMAC key.
+ /// The stream to HMAC.
+ /// The buffer to receive the HMAC value.
+ /// The total number of bytes written to .
+ ///
+ /// is .
+ ///
+ ///
+ ///
+ /// The buffer in is too small to hold the calculated HMAC
+ /// size. The SHA3-512 algorithm always produces a 512-bit HMAC, or 64 bytes.
+ ///
+ /// -or-
+ ///
+ /// does not support reading.
+ ///
+ ///
+ public static int HashData(ReadOnlySpan key, Stream source, Span destination)
+ {
+ ArgumentNullException.ThrowIfNull(source);
+
+ if (destination.Length < HashSizeInBytes)
+ throw new ArgumentException(SR.Argument_DestinationTooShort, nameof(destination));
+
+ if (!source.CanRead)
+ throw new ArgumentException(SR.Argument_StreamNotReadable, nameof(source));
+
+ CheckSha3Support();
+ return LiteHashProvider.HmacStream(HashAlgorithmNames.SHA3_512, key, source, destination);
+ }
+
+ ///
+ /// Computes the HMAC of a stream using the SHA3-512 algorithm.
+ ///
+ /// The HMAC key.
+ /// The stream to HMAC.
+ /// The HMAC of the data.
+ ///
+ /// is .
+ ///
+ ///
+ /// does not support reading.
+ ///
+ public static byte[] HashData(ReadOnlySpan key, Stream source)
+ {
+ ArgumentNullException.ThrowIfNull(source);
+
+ if (!source.CanRead)
+ throw new ArgumentException(SR.Argument_StreamNotReadable, nameof(source));
+
+ CheckSha3Support();
+ return LiteHashProvider.HmacStream(HashAlgorithmNames.SHA3_512, HashSizeInBytes, key, source);
+ }
+
+ ///
+ /// Computes the HMAC of a stream using the SHA3-512 algorithm.
+ ///
+ /// The HMAC key.
+ /// The stream to HMAC.
+ /// The HMAC of the data.
+ ///
+ /// or is .
+ ///
+ ///
+ /// does not support reading.
+ ///
+ public static byte[] HashData(byte[] key, Stream source)
+ {
+ ArgumentNullException.ThrowIfNull(key);
+
+ return HashData(new ReadOnlySpan(key), source);
+ }
+
+ ///
+ /// Asynchronously computes the HMAC of a stream using the SHA3-512 algorithm.
+ ///
+ /// The HMAC key.
+ /// The stream to HMAC.
+ ///
+ /// The token to monitor for cancellation requests.
+ /// The default value is .
+ ///
+ /// The HMAC of the data.
+ ///
+ /// is .
+ ///
+ ///
+ /// does not support reading.
+ ///
+ public static ValueTask HashDataAsync(ReadOnlyMemory key, Stream source, CancellationToken cancellationToken = default)
+ {
+ ArgumentNullException.ThrowIfNull(source);
+
+ if (!source.CanRead)
+ throw new ArgumentException(SR.Argument_StreamNotReadable, nameof(source));
+
+ CheckSha3Support();
+ return LiteHashProvider.HmacStreamAsync(HashAlgorithmNames.SHA3_512, key.Span, source, cancellationToken);
+ }
+
+ ///
+ /// Asynchronously computes the HMAC of a stream using the SHA3-512 algorithm.
+ ///
+ /// The HMAC key.
+ /// The stream to HMAC.
+ ///
+ /// The token to monitor for cancellation requests.
+ /// The default value is .
+ ///
+ /// The HMAC of the data.
+ ///
+ /// or is .
+ ///
+ ///
+ /// does not support reading.
+ ///
+ public static ValueTask HashDataAsync(byte[] key, Stream source, CancellationToken cancellationToken = default)
+ {
+ ArgumentNullException.ThrowIfNull(key);
+
+ return HashDataAsync(new ReadOnlyMemory(key), source, cancellationToken);
+ }
+
+ ///
+ /// Asynchronously computes the HMAC of a stream using the SHA3-512 algorithm.
+ ///
+ /// The HMAC key.
+ /// The stream to HMAC.
+ /// The buffer to receive the HMAC value.
+ ///
+ /// The token to monitor for cancellation requests.
+ /// The default value is .
+ ///
+ /// The total number of bytes written to .
+ ///
+ /// is .
+ ///
+ ///
+ ///
+ /// The buffer in is too small to hold the calculated hash
+ /// size. The SHA3-512 algorithm always produces a 512-bit hash, or 64 bytes.
+ ///
+ /// -or-
+ ///
+ /// does not support reading.
+ ///
+ ///
+ public static ValueTask HashDataAsync(
+ ReadOnlyMemory key,
+ Stream source,
+ Memory destination,
+ CancellationToken cancellationToken = default)
+ {
+ ArgumentNullException.ThrowIfNull(source);
+
+ if (destination.Length < HashSizeInBytes)
+ throw new ArgumentException(SR.Argument_DestinationTooShort, nameof(destination));
+
+ if (!source.CanRead)
+ throw new ArgumentException(SR.Argument_StreamNotReadable, nameof(source));
+
+ CheckSha3Support();
+ return LiteHashProvider.HmacStreamAsync(
+ HashAlgorithmNames.SHA3_512,
+ key.Span,
+ source,
+ destination,
+ cancellationToken);
+ }
+
+ ///
+ protected override void Dispose(bool disposing)
+ {
+ if (disposing)
+ {
+ HMACCommon hMacCommon = _hMacCommon;
+ if (hMacCommon != null)
+ {
+ _hMacCommon = null!;
+ hMacCommon.Dispose(disposing);
+ }
+ }
+ base.Dispose(disposing);
+ }
+
+ private static void CheckSha3Support()
+ {
+ if (!IsSupported)
+ throw new PlatformNotSupportedException();
+ }
+ }
+}
diff --git a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HashAlgorithmName.cs b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HashAlgorithmName.cs
index f7df0f24280251..c2e444b63a352a 100644
--- a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HashAlgorithmName.cs
+++ b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HashAlgorithmName.cs
@@ -52,6 +52,21 @@ namespace System.Security.Cryptography
///
public static HashAlgorithmName SHA512 { get { return new HashAlgorithmName("SHA512"); } }
+ ///
+ /// Gets a representing "SHA3-256"
+ ///
+ public static HashAlgorithmName SHA3_256 => new HashAlgorithmName("SHA3-256");
+
+ ///
+ /// Gets a representing "SHA3-384"
+ ///
+ public static HashAlgorithmName SHA3_384 => new HashAlgorithmName("SHA3-384");
+
+ ///
+ /// Gets a representing "SHA3-512"
+ ///
+ public static HashAlgorithmName SHA3_512 => new HashAlgorithmName("SHA3-512");
+
private readonly string? _name;
///
@@ -142,6 +157,15 @@ public static bool TryFromOid(string oidValue, out HashAlgorithmName value)
case Oids.Sha512:
value = SHA512;
return true;
+ case Oids.Sha3_256:
+ value = SHA3_256;
+ return true;
+ case Oids.Sha3_384:
+ value = SHA3_384;
+ return true;
+ case Oids.Sha3_512:
+ value = SHA3_512;
+ return true;
default:
value = default;
return false;
diff --git a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HashAlgorithmNames.cs b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HashAlgorithmNames.cs
index 1b8f225ce4b7a1..00cfa2636a0170 100644
--- a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HashAlgorithmNames.cs
+++ b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HashAlgorithmNames.cs
@@ -14,6 +14,10 @@ internal static partial class HashAlgorithmNames
public const string SHA384 = "SHA384";
public const string SHA512 = "SHA512";
+ public const string SHA3_256 = "SHA3-256";
+ public const string SHA3_384 = "SHA3-384";
+ public const string SHA3_512 = "SHA3-512";
+
///
/// Map HashAlgorithm type to string; .NET Framework uses CryptoConfig functionality.
///
diff --git a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HashProviderDispenser.Apple.cs b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HashProviderDispenser.Apple.cs
index 296cafef903597..58ed1b42610e61 100644
--- a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HashProviderDispenser.Apple.cs
+++ b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HashProviderDispenser.Apple.cs
@@ -21,6 +21,23 @@ public static HashProvider CreateMacProvider(string hashAlgorithmId, ReadOnlySpa
return new AppleHmacProvider(hashAlgorithmId, key);
}
+ internal static bool HashSupported(string hashAlgorithmId)
+ {
+ switch (hashAlgorithmId)
+ {
+ case HashAlgorithmNames.MD5:
+ case HashAlgorithmNames.SHA1:
+ case HashAlgorithmNames.SHA256:
+ case HashAlgorithmNames.SHA384:
+ case HashAlgorithmNames.SHA512:
+ return true;
+ default:
+ return false;
+ }
+ }
+
+ internal static bool MacSupported(string hashAlgorithmId) => HashSupported(hashAlgorithmId);
+
internal static class OneShotHashProvider
{
public static unsafe int MacData(
diff --git a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HashProviderDispenser.Browser.cs b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HashProviderDispenser.Browser.cs
index 8bae776c7ac933..eea8e204cdc589 100644
--- a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HashProviderDispenser.Browser.cs
+++ b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HashProviderDispenser.Browser.cs
@@ -5,6 +5,22 @@ namespace System.Security.Cryptography
{
internal static partial class HashProviderDispenser
{
+ internal static bool HashSupported(string hashAlgorithmId)
+ {
+ switch (hashAlgorithmId)
+ {
+ case HashAlgorithmNames.SHA1:
+ case HashAlgorithmNames.SHA256:
+ case HashAlgorithmNames.SHA384:
+ case HashAlgorithmNames.SHA512:
+ return true;
+ default:
+ return false;
+ }
+ }
+
+ internal static bool MacSupported(string hashAlgorithmId) => HashSupported(hashAlgorithmId);
+
public static HashProvider CreateHashProvider(string hashAlgorithmId)
{
switch (hashAlgorithmId)
diff --git a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HashProviderDispenser.OpenSsl.cs b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HashProviderDispenser.OpenSsl.cs
index 32cdc7dd93b1cc..78b8cd632b4340 100644
--- a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HashProviderDispenser.OpenSsl.cs
+++ b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HashProviderDispenser.OpenSsl.cs
@@ -22,6 +22,13 @@ internal static HashProvider CreateMacProvider(string hashAlgorithmId, ReadOnlyS
return new HmacHashProvider(hashAlgorithmId, key);
}
+ internal static bool HashSupported(string hashAlgorithmId)
+ {
+ return Interop.Crypto.HashAlgorithmSupported(hashAlgorithmId);
+ }
+
+ internal static bool MacSupported(string hashAlgorithmId) => HashSupported(hashAlgorithmId);
+
internal static class OneShotHashProvider
{
public static int MacData(
diff --git a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HashProviderDispenser.Windows.cs b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HashProviderDispenser.Windows.cs
index e195a153393924..f6ae0f97eb2307 100644
--- a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HashProviderDispenser.Windows.cs
+++ b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/HashProviderDispenser.Windows.cs
@@ -27,6 +27,50 @@ public static HashProvider CreateMacProvider(string hashAlgorithmId, ReadOnlySpa
return new HashProviderCng(hashAlgorithmId, key, isHmac: true);
}
+ internal static bool HashSupported(string hashAlgorithmId)
+ {
+ switch (hashAlgorithmId)
+ {
+ // We know that MD5, SHA1, and SHA2 are supported on all platforms. Don't bother asking.
+ case HashAlgorithmNames.MD5:
+ case HashAlgorithmNames.SHA1:
+ case HashAlgorithmNames.SHA256:
+ case HashAlgorithmNames.SHA384:
+ case HashAlgorithmNames.SHA512:
+ return true;
+ case HashAlgorithmNames.SHA3_256:
+ case HashAlgorithmNames.SHA3_384:
+ case HashAlgorithmNames.SHA3_512:
+ return BCryptAlgorithmCache.IsBCryptAlgorithmSupported(
+ hashAlgorithmId,
+ BCryptOpenAlgorithmProviderFlags.None);
+ default:
+ return false;
+ }
+ }
+
+ internal static bool MacSupported(string hashAlgorithmId)
+ {
+ switch (hashAlgorithmId)
+ {
+ // We know that MD5, SHA1, and SHA2 are supported on all platforms. Don't bother asking.
+ case HashAlgorithmNames.MD5:
+ case HashAlgorithmNames.SHA1:
+ case HashAlgorithmNames.SHA256:
+ case HashAlgorithmNames.SHA384:
+ case HashAlgorithmNames.SHA512:
+ return true;
+ case HashAlgorithmNames.SHA3_256:
+ case HashAlgorithmNames.SHA3_384:
+ case HashAlgorithmNames.SHA3_512:
+ return BCryptAlgorithmCache.IsBCryptAlgorithmSupported(
+ hashAlgorithmId,
+ BCryptOpenAlgorithmProviderFlags.BCRYPT_ALG_HANDLE_HMAC_FLAG);
+ default:
+ return false;
+ }
+ }
+
public static class OneShotHashProvider
{
public static unsafe int MacData(
@@ -143,6 +187,27 @@ private static unsafe void HashDataUsingPseudoHandle(
Interop.BCrypt.BCryptAlgPseudoHandle.BCRYPT_SHA512_ALG_HANDLE;
digestSizeInBytes = SHA512.HashSizeInBytes;
}
+ else if (hashAlgorithmId == HashAlgorithmNames.SHA3_256)
+ {
+ algHandle = isHmac ?
+ Interop.BCrypt.BCryptAlgPseudoHandle.BCRYPT_HMAC_SHA3_256_ALG_HANDLE :
+ Interop.BCrypt.BCryptAlgPseudoHandle.BCRYPT_SHA3_256_ALG_HANDLE;
+ digestSizeInBytes = SHA3_256.HashSizeInBytes;
+ }
+ else if (hashAlgorithmId == HashAlgorithmNames.SHA3_384)
+ {
+ algHandle = isHmac ?
+ Interop.BCrypt.BCryptAlgPseudoHandle.BCRYPT_HMAC_SHA3_384_ALG_HANDLE :
+ Interop.BCrypt.BCryptAlgPseudoHandle.BCRYPT_SHA3_384_ALG_HANDLE;
+ digestSizeInBytes = SHA3_384.HashSizeInBytes;
+ }
+ else if (hashAlgorithmId == HashAlgorithmNames.SHA3_512)
+ {
+ algHandle = isHmac ?
+ Interop.BCrypt.BCryptAlgPseudoHandle.BCRYPT_HMAC_SHA3_512_ALG_HANDLE :
+ Interop.BCrypt.BCryptAlgPseudoHandle.BCRYPT_SHA3_512_ALG_HANDLE;
+ digestSizeInBytes = SHA3_512.HashSizeInBytes;
+ }
else
{
Debug.Fail("Unknown hash algorithm.");
diff --git a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/IncrementalHash.cs b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/IncrementalHash.cs
index 904c72c1c28050..022476b0bd3cc7 100644
--- a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/IncrementalHash.cs
+++ b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/IncrementalHash.cs
@@ -308,6 +308,7 @@ public void Dispose()
public static IncrementalHash CreateHash(HashAlgorithmName hashAlgorithm)
{
ArgumentException.ThrowIfNullOrEmpty(hashAlgorithm.Name, nameof(hashAlgorithm));
+ CheckSha3Support(hashAlgorithm.Name);
return new IncrementalHash(hashAlgorithm, HashProviderDispenser.CreateHashProvider(hashAlgorithm.Name));
}
@@ -366,8 +367,28 @@ public static IncrementalHash CreateHMAC(HashAlgorithmName hashAlgorithm, byte[]
public static IncrementalHash CreateHMAC(HashAlgorithmName hashAlgorithm, ReadOnlySpan key)
{
ArgumentException.ThrowIfNullOrEmpty(hashAlgorithm.Name, nameof(hashAlgorithm));
+ CheckSha3Support(hashAlgorithm.Name);
return new IncrementalHash(hashAlgorithm, new HMACCommon(hashAlgorithm.Name, key, -1));
}
+
+ private static void CheckSha3Support(string hashAlgorithmName)
+ {
+ switch (hashAlgorithmName)
+ {
+ case HashAlgorithmNames.SHA3_256 when !SHA3_256.IsSupported:
+ Debug.Assert(!HMACSHA3_256.IsSupported);
+ throw new PlatformNotSupportedException();
+ case HashAlgorithmNames.SHA3_384 when !SHA3_384.IsSupported:
+ Debug.Assert(!HMACSHA3_384.IsSupported);
+ throw new PlatformNotSupportedException();
+ case HashAlgorithmNames.SHA3_512 when !SHA3_512.IsSupported:
+ Debug.Assert(!HMACSHA3_512.IsSupported);
+ throw new PlatformNotSupportedException();
+ default:
+ // Other unknown algorithms will be handled separately as CryptographicExceptions.
+ break;
+ }
+ }
}
}
diff --git a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/Pbkdf2Implementation.Windows.cs b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/Pbkdf2Implementation.Windows.cs
index 6829cbf7b63571..d05af7124b3af5 100644
--- a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/Pbkdf2Implementation.Windows.cs
+++ b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/Pbkdf2Implementation.Windows.cs
@@ -97,6 +97,15 @@ private static unsafe void FillKeyDerivation(
case HashAlgorithmNames.SHA512:
hashBufferSize = SHA512.HashData(password, hashBuffer);
break;
+ case HashAlgorithmNames.SHA3_256:
+ hashBufferSize = SHA3_256.HashData(password, hashBuffer);
+ break;
+ case HashAlgorithmNames.SHA3_384:
+ hashBufferSize = SHA3_384.HashData(password, hashBuffer);
+ break;
+ case HashAlgorithmNames.SHA3_512:
+ hashBufferSize = SHA3_512.HashData(password, hashBuffer);
+ break;
default:
Debug.Fail($"Unexpected hash algorithm '{hashAlgorithmName}'");
throw new CryptographicException();
@@ -259,7 +268,7 @@ private static unsafe void FillDeriveKeyPBKDF2(
private static int GetHashBlockSize(string hashAlgorithmName)
{
- // Block sizes per NIST FIPS pub 180-4.
+ // Block sizes per NIST FIPS pub 180-4 and FIPS 202.
switch (hashAlgorithmName)
{
case HashAlgorithmNames.SHA1:
@@ -268,6 +277,12 @@ private static int GetHashBlockSize(string hashAlgorithmName)
case HashAlgorithmNames.SHA384:
case HashAlgorithmNames.SHA512:
return 1024 / 8;
+ case HashAlgorithmNames.SHA3_256:
+ return HMACSHA3_256.BlockSize;
+ case HashAlgorithmNames.SHA3_384:
+ return HMACSHA3_384.BlockSize;
+ case HashAlgorithmNames.SHA3_512:
+ return HMACSHA3_512.BlockSize;
default:
Debug.Fail($"Unexpected hash algorithm '{hashAlgorithmName}'");
throw new CryptographicException();
diff --git a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/RSACryptoServiceProvider.Unix.cs b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/RSACryptoServiceProvider.Unix.cs
index e6977e2e67e83f..7789143feb5b82 100644
--- a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/RSACryptoServiceProvider.Unix.cs
+++ b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/RSACryptoServiceProvider.Unix.cs
@@ -183,6 +183,8 @@ public override byte[] SignData(Stream data, HashAlgorithmName hashAlgorithm, RS
throw PaddingModeNotSupported();
}
+ CheckSHA3HashAlgorithm(hashAlgorithm);
+
return _impl.SignData(data, hashAlgorithm, padding);
}
@@ -195,6 +197,8 @@ public override byte[] SignData(byte[] data, int offset, int count, HashAlgorith
throw PaddingModeNotSupported();
}
+ CheckSHA3HashAlgorithm(hashAlgorithm);
+
return _impl.SignData(data, offset, count, hashAlgorithm, padding);
}
@@ -207,6 +211,8 @@ public override bool TrySignData(ReadOnlySpan data, Span destination
throw PaddingModeNotSupported();
}
+ CheckSHA3HashAlgorithm(hashAlgorithm);
+
return _impl.TrySignData(data, destination, hashAlgorithm, padding, out bytesWritten);
}
@@ -228,6 +234,8 @@ public override byte[] SignHash(byte[] hash, HashAlgorithmName hashAlgorithm, RS
throw PaddingModeNotSupported();
}
+ CheckSHA3HashAlgorithm(hashAlgorithm);
+
return _impl.SignHash(hash, hashAlgorithm, padding);
}
@@ -240,6 +248,8 @@ public override bool TrySignHash(ReadOnlySpan hash, Span destination
throw PaddingModeNotSupported();
}
+ CheckSHA3HashAlgorithm(hashAlgorithm);
+
return _impl.TrySignHash(hash, destination, hashAlgorithm, padding, out bytesWritten);
}
@@ -268,6 +278,8 @@ public override bool VerifyData(byte[] data, int offset, int count, byte[] signa
throw PaddingModeNotSupported();
}
+ CheckSHA3HashAlgorithm(hashAlgorithm);
+
return _impl.VerifyData(data, offset, count, signature, hashAlgorithm, padding);
}
@@ -280,6 +292,8 @@ public override bool VerifyData(ReadOnlySpan data, ReadOnlySpan sign
throw PaddingModeNotSupported();
}
+ CheckSHA3HashAlgorithm(hashAlgorithm);
+
return _impl.VerifyData(data, signature, hashAlgorithm, padding);
}
@@ -300,6 +314,8 @@ public override bool VerifyHash(ReadOnlySpan hash, ReadOnlySpan sign
throw PaddingModeNotSupported();
}
+ CheckSHA3HashAlgorithm(hashAlgorithm);
+
return _impl.VerifyHash(hash, signature, hashAlgorithm, padding);
}
@@ -345,5 +361,16 @@ private static bool IsPublic(byte[] keyBlob)
return true;
}
+
+ private static void CheckSHA3HashAlgorithm(HashAlgorithmName hashAlgorithm)
+ {
+ if (hashAlgorithm == HashAlgorithmName.SHA3_256 ||
+ hashAlgorithm == HashAlgorithmName.SHA3_384 ||
+ hashAlgorithm == HashAlgorithmName.SHA3_512)
+ {
+ // Compat: Windows throws CryptographicException for SHA-3 HashAlgorithmName. So we will here, too.
+ throw new CryptographicException(SR.Format(SR.Cryptography_UnknownHashAlgorithm, hashAlgorithm.Name));
+ }
+ }
}
}
diff --git a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/RSAEncryptionPadding.cs b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/RSAEncryptionPadding.cs
index c31f665ad40008..9a2feee6dac982 100644
--- a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/RSAEncryptionPadding.cs
+++ b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/RSAEncryptionPadding.cs
@@ -10,36 +10,45 @@ namespace System.Security.Cryptography
///
public sealed class RSAEncryptionPadding : IEquatable
{
- private static readonly RSAEncryptionPadding s_pkcs1 = new RSAEncryptionPadding(RSAEncryptionPaddingMode.Pkcs1, default(HashAlgorithmName));
- private static readonly RSAEncryptionPadding s_oaepSHA1 = CreateOaep(HashAlgorithmName.SHA1);
- private static readonly RSAEncryptionPadding s_oaepSHA256 = CreateOaep(HashAlgorithmName.SHA256);
- private static readonly RSAEncryptionPadding s_oaepSHA384 = CreateOaep(HashAlgorithmName.SHA384);
- private static readonly RSAEncryptionPadding s_oaepSHA512 = CreateOaep(HashAlgorithmName.SHA512);
-
///
/// mode.
///
- public static RSAEncryptionPadding Pkcs1 { get { return s_pkcs1; } }
+ public static RSAEncryptionPadding Pkcs1 { get; } = new RSAEncryptionPadding(RSAEncryptionPaddingMode.Pkcs1, default);
///
/// mode with SHA1 hash algorithm.
///
- public static RSAEncryptionPadding OaepSHA1 { get { return s_oaepSHA1; } }
+ public static RSAEncryptionPadding OaepSHA1 { get; } = CreateOaep(HashAlgorithmName.SHA1);
///
/// mode with SHA256 hash algorithm.
///
- public static RSAEncryptionPadding OaepSHA256 { get { return s_oaepSHA256; } }
+ public static RSAEncryptionPadding OaepSHA256 { get; } = CreateOaep(HashAlgorithmName.SHA256);
///
/// mode with SHA384 hash algorithm.
///
- public static RSAEncryptionPadding OaepSHA384 { get { return s_oaepSHA384; } }
+ public static RSAEncryptionPadding OaepSHA384 { get; } = CreateOaep(HashAlgorithmName.SHA384);
///
/// mode with SHA512 hash algorithm.
///
- public static RSAEncryptionPadding OaepSHA512 { get { return s_oaepSHA512; } }
+ public static RSAEncryptionPadding OaepSHA512 { get; } = CreateOaep(HashAlgorithmName.SHA512);
+
+ ///
+ /// mode with SHA3-256 hash algorithm.
+ ///
+ public static RSAEncryptionPadding OaepSHA3_256 { get; } = CreateOaep(HashAlgorithmName.SHA3_256);
+
+ ///
+ /// mode with SHA3-384 hash algorithm.
+ ///
+ public static RSAEncryptionPadding OaepSHA3_384 { get; } = CreateOaep(HashAlgorithmName.SHA3_384);
+
+ ///
+ /// mode with SHA3-512 hash algorithm.
+ ///
+ public static RSAEncryptionPadding OaepSHA3_512 { get; } = CreateOaep(HashAlgorithmName.SHA3_512);
private readonly RSAEncryptionPaddingMode _mode;
private readonly HashAlgorithmName _oaepHashAlgorithm;
diff --git a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/Rfc2898DeriveBytes.OneShot.cs b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/Rfc2898DeriveBytes.OneShot.cs
index 88ca89094e3da0..a07718238a6d34 100644
--- a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/Rfc2898DeriveBytes.OneShot.cs
+++ b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/Rfc2898DeriveBytes.OneShot.cs
@@ -323,13 +323,29 @@ private static void ValidateHashAlgorithm(HashAlgorithmName hashAlgorithm)
ArgumentException.ThrowIfNullOrEmpty(hashAlgorithmName, nameof(hashAlgorithm));
// MD5 intentionally left out.
- if (hashAlgorithmName != HashAlgorithmName.SHA1.Name &&
- hashAlgorithmName != HashAlgorithmName.SHA256.Name &&
- hashAlgorithmName != HashAlgorithmName.SHA384.Name &&
- hashAlgorithmName != HashAlgorithmName.SHA512.Name)
+ if (hashAlgorithmName == HashAlgorithmName.SHA1.Name ||
+ hashAlgorithmName == HashAlgorithmName.SHA256.Name ||
+ hashAlgorithmName == HashAlgorithmName.SHA384.Name ||
+ hashAlgorithmName == HashAlgorithmName.SHA512.Name)
{
- throw new CryptographicException(SR.Format(SR.Cryptography_UnknownHashAlgorithm, hashAlgorithmName));
+ return;
+ }
+
+ if (hashAlgorithmName == HashAlgorithmName.SHA3_256.Name ||
+ hashAlgorithmName == HashAlgorithmName.SHA3_384.Name ||
+ hashAlgorithmName == HashAlgorithmName.SHA3_512.Name)
+ {
+ // All current platforms support HMAC-SHA3-256, 384, and 512 together, so we can simplify the check
+ // to just checking HMAC-SHA3-256 for the availability of 384 and 512, too.
+ if (HMACSHA3_256.IsSupported)
+ {
+ return;
+ }
+
+ throw new PlatformNotSupportedException();
}
+
+ throw new CryptographicException(SR.Format(SR.Cryptography_UnknownHashAlgorithm, hashAlgorithmName));
}
}
}
diff --git a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/Rfc2898DeriveBytes.cs b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/Rfc2898DeriveBytes.cs
index 736fc089ee9041..4c1ee1acc8663f 100644
--- a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/Rfc2898DeriveBytes.cs
+++ b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/Rfc2898DeriveBytes.cs
@@ -252,7 +252,10 @@ private IncrementalHash OpenHmac(ReadOnlySpan password)
if (hashAlgorithm != HashAlgorithmName.SHA1 &&
hashAlgorithm != HashAlgorithmName.SHA256 &&
hashAlgorithm != HashAlgorithmName.SHA384 &&
- hashAlgorithm != HashAlgorithmName.SHA512)
+ hashAlgorithm != HashAlgorithmName.SHA512 &&
+ hashAlgorithm != HashAlgorithmName.SHA3_256 &&
+ hashAlgorithm != HashAlgorithmName.SHA3_384 &&
+ hashAlgorithm != HashAlgorithmName.SHA3_512)
{
throw new CryptographicException(SR.Format(SR.Cryptography_UnknownHashAlgorithm, hashAlgorithm.Name));
}
diff --git a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/SHA3_256.cs b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/SHA3_256.cs
new file mode 100644
index 00000000000000..659fa2d2926550
--- /dev/null
+++ b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/SHA3_256.cs
@@ -0,0 +1,324 @@
+// Licensed to the .NET Foundation under one or more agreements.
+// The .NET Foundation licenses this file to you under the MIT license.
+
+using Internal.Cryptography;
+using System.Diagnostics;
+using System.Diagnostics.CodeAnalysis;
+using System.IO;
+using System.Threading;
+using System.Threading.Tasks;
+
+namespace System.Security.Cryptography
+{
+ ///
+ /// Computes the SHA3-256 hash for the input data.
+ ///
+ ///
+ /// This algorithm is specified by FIPS 202.
+ ///
+ public abstract class SHA3_256 : HashAlgorithm
+ {
+ ///
+ /// The hash size produced by the SHA3-256 algorithm, in bits.
+ ///
+ public const int HashSizeInBits = 256;
+
+ ///
+ /// The hash size produced by the SHA3-256 algorithm, in bytes.
+ ///
+ public const int HashSizeInBytes = HashSizeInBits / 8;
+
+ ///
+ /// Initializes a new instance of .
+ ///
+ protected SHA3_256()
+ {
+ HashSizeValue = HashSizeInBits;
+ }
+
+ ///
+ /// Gets a value that indicates whether the algorithm is supported on the current platform.
+ ///
+ ///
+ /// if the algorithm is supported; otherwise, .
+ ///
+ public static bool IsSupported { get; } = HashProviderDispenser.HashSupported(HashAlgorithmNames.SHA3_256);
+
+ ///
+ /// Creates an instance of the default implementation of .
+ ///
+ ///
+ /// A new instance of .
+ ///
+ ///
+ /// The platform does not support SHA3-256.
+ ///
+ public static new SHA3_256 Create()
+ {
+ CheckSha3Support();
+ return new Implementation();
+ }
+
+ ///
+ /// Computes the hash of data using the SHA3-256 algorithm.
+ ///
+ /// The data to hash.
+ /// The hash of the data.
+ ///
+ /// is .
+ ///
+ ///
+ /// The platform does not support SHA3-256.
+ ///
+ public static byte[] HashData(byte[] source)
+ {
+ ArgumentNullException.ThrowIfNull(source);
+
+ return HashData(new ReadOnlySpan(source));
+ }
+
+ ///
+ /// Computes the hash of data using the SHA3-256 algorithm.
+ ///
+ /// The data to hash.
+ /// The hash of the data.
+ ///
+ /// The platform does not support SHA3-256.
+ ///
+ public static byte[] HashData(ReadOnlySpan source)
+ {
+ byte[] buffer = new byte[HashSizeInBytes];
+
+ int written = HashData(source, buffer.AsSpan());
+ Debug.Assert(written == buffer.Length);
+
+ return buffer;
+ }
+
+ ///
+ /// Computes the hash of data using the SHA3-256 algorithm.
+ ///
+ /// The data to hash.
+ /// The buffer to receive the hash value.
+ /// The total number of bytes written to .
+ ///
+ /// The buffer in is too small to hold the calculated hash
+ /// size. The SHA3-256 algorithm always produces a 256-bit hash, or 32 bytes.
+ ///
+ ///
+ /// The platform does not support SHA3-256.
+ ///
+ public static int HashData(ReadOnlySpan source, Span destination)
+ {
+ if (!TryHashData(source, destination, out int bytesWritten))
+ throw new ArgumentException(SR.Argument_DestinationTooShort, nameof(destination));
+
+ return bytesWritten;
+ }
+
+ ///
+ /// Attempts to compute the hash of data using the SHA3-256 algorithm.
+ ///
+ /// The data to hash.
+ /// The buffer to receive the hash value.
+ ///
+ /// When this method returns, the total number of bytes written into .
+ ///
+ ///
+ /// if is too small to hold the
+ /// calculated hash, otherwise.
+ ///
+ ///
+ /// The platform does not support SHA3-256.
+ ///
+ public static bool TryHashData(ReadOnlySpan source, Span destination, out int bytesWritten)
+ {
+ CheckSha3Support();
+
+ if (destination.Length < HashSizeInBytes)
+ {
+ bytesWritten = 0;
+ return false;
+ }
+
+ bytesWritten = HashProviderDispenser.OneShotHashProvider.HashData(HashAlgorithmNames.SHA3_256, source, destination);
+ Debug.Assert(bytesWritten == HashSizeInBytes);
+
+ return true;
+ }
+
+ ///
+ /// Computes the hash of a stream using the SHA3-256 algorithm.
+ ///
+ /// The stream to hash.
+ /// The buffer to receive the hash value.
+ /// The total number of bytes written to .
+ ///
+ /// is .
+ ///
+ ///
+ ///
+ /// The buffer in is too small to hold the calculated hash
+ /// size. The SHA3-256 algorithm always produces a 256-bit hash, or 32 bytes.
+ ///
+ ///
-or-
+ ///
+ /// does not support reading.
+ ///
+ ///
+ ///
+ /// The platform does not support SHA3-256.
+ ///
+ public static int HashData(Stream source, Span destination)
+ {
+ ArgumentNullException.ThrowIfNull(source);
+
+ if (destination.Length < HashSizeInBytes)
+ throw new ArgumentException(SR.Argument_DestinationTooShort, nameof(destination));
+
+ if (!source.CanRead)
+ throw new ArgumentException(SR.Argument_StreamNotReadable, nameof(source));
+
+ CheckSha3Support();
+ return LiteHashProvider.HashStream(HashAlgorithmNames.SHA3_256, source, destination);
+ }
+
+ ///
+ /// Computes the hash of a stream using the SHA3-256 algorithm.
+ ///
+ /// The stream to hash.
+ /// The hash of the data.
+ ///
+ /// is .
+ ///
+ ///
+ /// does not support reading.
+ ///
+ ///
+ /// The platform does not support SHA3-256.
+ ///
+ public static byte[] HashData(Stream source)
+ {
+ ArgumentNullException.ThrowIfNull(source);
+
+ if (!source.CanRead)
+ throw new ArgumentException(SR.Argument_StreamNotReadable, nameof(source));
+
+ CheckSha3Support();
+ return LiteHashProvider.HashStream(HashAlgorithmNames.SHA3_256, HashSizeInBytes, source);
+ }
+
+ ///
+ /// Asynchronously computes the hash of a stream using the SHA3-256 algorithm.
+ ///
+ /// The stream to hash.
+ ///
+ /// The token to monitor for cancellation requests.
+ /// The default value is .
+ ///
+ /// The hash of the data.
+ ///
+ /// is .
+ ///
+ ///
+ /// does not support reading.
+ ///
+ ///
+ /// The platform does not support SHA3-256.
+ ///
+ public static ValueTask HashDataAsync(Stream source, CancellationToken cancellationToken = default)
+ {
+ ArgumentNullException.ThrowIfNull(source);
+
+ if (!source.CanRead)
+ throw new ArgumentException(SR.Argument_StreamNotReadable, nameof(source));
+
+ CheckSha3Support();
+ return LiteHashProvider.HashStreamAsync(HashAlgorithmNames.SHA3_256, source, cancellationToken);
+ }
+
+ ///
+ /// Asynchronously computes the hash of a stream using the SHA3-256 algorithm.
+ ///
+ /// The stream to hash.
+ /// The buffer to receive the hash value.
+ ///
+ /// The token to monitor for cancellation requests.
+ /// The default value is .
+ ///
+ /// The total number of bytes written to .
+ ///
+ /// is .
+ ///
+ ///
+ ///
+ /// The buffer in is too small to hold the calculated hash
+ /// size. The SHA3-256 algorithm always produces a 256-bit hash, or 32 bytes.
+ ///
+ ///
-or-
+ ///
+ /// does not support reading.
+ ///
+ ///
+ ///
+ /// The platform does not support SHA3-256.
+ ///
+ public static ValueTask HashDataAsync(
+ Stream source,
+ Memory destination,
+ CancellationToken cancellationToken = default)
+ {
+ ArgumentNullException.ThrowIfNull(source);
+
+ if (destination.Length < HashSizeInBytes)
+ throw new ArgumentException(SR.Argument_DestinationTooShort, nameof(destination));
+
+ if (!source.CanRead)
+ throw new ArgumentException(SR.Argument_StreamNotReadable, nameof(source));
+
+ CheckSha3Support();
+ return LiteHashProvider.HashStreamAsync(
+ HashAlgorithmNames.SHA3_256,
+ source,
+ destination,
+ cancellationToken);
+ }
+
+ private static void CheckSha3Support()
+ {
+ if (!IsSupported)
+ throw new PlatformNotSupportedException();
+ }
+
+ private sealed class Implementation : SHA3_256
+ {
+ private readonly HashProvider _hashProvider;
+
+ public Implementation()
+ {
+ _hashProvider = HashProviderDispenser.CreateHashProvider(HashAlgorithmNames.SHA3_256);
+ HashSizeValue = _hashProvider.HashSizeInBytes * 8;
+ }
+
+ protected sealed override void HashCore(byte[] array, int ibStart, int cbSize) =>
+ _hashProvider.AppendHashData(array, ibStart, cbSize);
+
+ protected sealed override void HashCore(ReadOnlySpan source) =>
+ _hashProvider.AppendHashData(source);
+
+ protected sealed override byte[] HashFinal() =>
+ _hashProvider.FinalizeHashAndReset();
+
+ protected sealed override bool TryHashFinal(Span destination, out int bytesWritten) =>
+ _hashProvider.TryFinalizeHashAndReset(destination, out bytesWritten);
+
+ public sealed override void Initialize() => _hashProvider.Reset();
+
+ protected sealed override void Dispose(bool disposing)
+ {
+ _hashProvider.Dispose(disposing);
+ base.Dispose(disposing);
+ }
+ }
+ }
+}
diff --git a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/SHA3_384.cs b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/SHA3_384.cs
new file mode 100644
index 00000000000000..d74787d4698e93
--- /dev/null
+++ b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/SHA3_384.cs
@@ -0,0 +1,325 @@
+// Licensed to the .NET Foundation under one or more agreements.
+// The .NET Foundation licenses this file to you under the MIT license.
+
+using Internal.Cryptography;
+using System.Diagnostics;
+using System.Diagnostics.CodeAnalysis;
+using System.IO;
+using System.Threading;
+using System.Threading.Tasks;
+
+namespace System.Security.Cryptography
+{
+ ///
+ /// Computes the SHA3-384 hash for the input data.
+ ///
+ ///
+ /// This algorithm is specified by FIPS 202.
+ ///
+ public abstract class SHA3_384 : HashAlgorithm
+ {
+ ///
+ /// The hash size produced by the SHA3-384 algorithm, in bits.
+ ///
+ public const int HashSizeInBits = 384;
+
+ ///
+ /// The hash size produced by the SHA3-384 algorithm, in bytes.
+ ///
+ public const int HashSizeInBytes = HashSizeInBits / 8;
+
+ ///
+ /// Initializes a new instance of .
+ ///
+ protected SHA3_384()
+ {
+ HashSizeValue = HashSizeInBits;
+ }
+
+ ///
+ /// Gets a value that indicates whether the algorithm is supported on the current platform.
+ ///
+ ///
+ /// if the algorithm is supported; otherwise, .
+ ///
+ public static bool IsSupported { get; } = HashProviderDispenser.HashSupported(HashAlgorithmNames.SHA3_384);
+
+ ///
+ /// Creates an instance of the default implementation of .
+ ///
+ ///
+ /// A new instance of .
+ ///
+ ///
+ /// The platform does not support SHA3-384.
+ ///
+ public static new SHA3_384 Create()
+ {
+ CheckSha3Support();
+ return new Implementation();
+ }
+
+ ///
+ /// Computes the hash of data using the SHA3-384 algorithm.
+ ///
+ /// The data to hash.
+ /// The hash of the data.
+ ///
+ /// is .
+ ///
+ ///
+ /// The platform does not support SHA3-384.
+ ///
+ public static byte[] HashData(byte[] source)
+ {
+ ArgumentNullException.ThrowIfNull(source);
+
+ return HashData(new ReadOnlySpan(source));
+ }
+
+ ///
+ /// Computes the hash of data using the SHA3-384 algorithm.
+ ///
+ /// The data to hash.
+ /// The hash of the data.
+ ///
+ /// The platform does not support SHA3-384.
+ ///
+ public static byte[] HashData(ReadOnlySpan source)
+ {
+ byte[] buffer = new byte[HashSizeInBytes];
+
+ int written = HashData(source, buffer.AsSpan());
+ Debug.Assert(written == buffer.Length);
+
+ return buffer;
+ }
+
+ ///
+ /// Computes the hash of data using the SHA3-384 algorithm.
+ ///
+ /// The data to hash.
+ /// The buffer to receive the hash value.
+ /// The total number of bytes written to .
+ ///
+ /// The buffer in is too small to hold the calculated hash
+ /// size. The SHA3-384 algorithm always produces a 384-bit hash, or 48 bytes.
+ ///
+ ///
+ /// The platform does not support SHA3-384.
+ ///
+ public static int HashData(ReadOnlySpan source, Span destination)
+ {
+ if (!TryHashData(source, destination, out int bytesWritten))
+ throw new ArgumentException(SR.Argument_DestinationTooShort, nameof(destination));
+
+ return bytesWritten;
+ }
+
+
+ ///
+ /// Attempts to compute the hash of data using the SHA3-384 algorithm.
+ ///
+ /// The data to hash.
+ /// The buffer to receive the hash value.
+ ///
+ /// When this method returns, the total number of bytes written into .
+ ///
+ ///
+ /// if is too small to hold the
+ /// calculated hash, otherwise.
+ ///
+ ///
+ /// The platform does not support SHA3-384.
+ ///
+ public static bool TryHashData(ReadOnlySpan source, Span destination, out int bytesWritten)
+ {
+ CheckSha3Support();
+
+ if (destination.Length < HashSizeInBytes)
+ {
+ bytesWritten = 0;
+ return false;
+ }
+
+ bytesWritten = HashProviderDispenser.OneShotHashProvider.HashData(HashAlgorithmNames.SHA3_384, source, destination);
+ Debug.Assert(bytesWritten == HashSizeInBytes);
+
+ return true;
+ }
+
+ ///
+ /// Computes the hash of a stream using the SHA3-384 algorithm.
+ ///
+ /// The stream to hash.
+ /// The buffer to receive the hash value.
+ /// The total number of bytes written to .
+ ///
+ /// is .
+ ///
+ ///
+ ///
+ /// The buffer in is too small to hold the calculated hash
+ /// size. The SHA3-384 algorithm always produces a 384-bit hash, or 48 bytes.
+ ///
+ /// -or-
+ ///
+ /// does not support reading.
+ ///
+ ///
+ ///
+ /// The platform does not support SHA3-384.
+ ///
+ public static int HashData(Stream source, Span destination)
+ {
+ ArgumentNullException.ThrowIfNull(source);
+
+ if (destination.Length < HashSizeInBytes)
+ throw new ArgumentException(SR.Argument_DestinationTooShort, nameof(destination));
+
+ if (!source.CanRead)
+ throw new ArgumentException(SR.Argument_StreamNotReadable, nameof(source));
+
+ CheckSha3Support();
+ return LiteHashProvider.HashStream(HashAlgorithmNames.SHA3_384, source, destination);
+ }
+
+ ///
+ /// Computes the hash of a stream using the SHA3-384 algorithm.
+ ///
+ /// The stream to hash.
+ /// The hash of the data.
+ ///
+ /// is .
+ ///
+ ///
+ /// does not support reading.
+ ///
+ ///
+ /// The platform does not support SHA3-384.
+ ///
+ public static byte[] HashData(Stream source)
+ {
+ ArgumentNullException.ThrowIfNull(source);
+
+ if (!source.CanRead)
+ throw new ArgumentException(SR.Argument_StreamNotReadable, nameof(source));
+
+ CheckSha3Support();
+ return LiteHashProvider.HashStream(HashAlgorithmNames.SHA3_384, HashSizeInBytes, source);
+ }
+
+ ///
+ /// Asynchronously computes the hash of a stream using the SHA3-384 algorithm.
+ ///
+ /// The stream to hash.
+ ///
+ /// The token to monitor for cancellation requests.
+ /// The default value is .
+ ///
+ /// The hash of the data.
+ ///
+ /// is .
+ ///
+ ///
+ /// does not support reading.
+ ///
+ ///
+ /// The platform does not support SHA3-384.
+ ///
+ public static ValueTask HashDataAsync(Stream source, CancellationToken cancellationToken = default)
+ {
+ ArgumentNullException.ThrowIfNull(source);
+
+ if (!source.CanRead)
+ throw new ArgumentException(SR.Argument_StreamNotReadable, nameof(source));
+
+ CheckSha3Support();
+ return LiteHashProvider.HashStreamAsync(HashAlgorithmNames.SHA3_384, source, cancellationToken);
+ }
+
+ ///
+ /// Asynchronously computes the hash of a stream using the SHA3-384 algorithm.
+ ///
+ /// The stream to hash.
+ /// The buffer to receive the hash value.
+ ///
+ /// The token to monitor for cancellation requests.
+ /// The default value is .
+ ///
+ /// The total number of bytes written to .
+ ///
+ /// is .
+ ///
+ ///
+ ///
+ /// The buffer in is too small to hold the calculated hash
+ /// size. The SHA3-384 algorithm always produces a 384-bit hash, or 48 bytes.
+ ///
+ /// -or-
+ ///
+ /// does not support reading.
+ ///
+ ///
+ ///
+ /// The platform does not support SHA3-384.
+ ///
+ public static ValueTask HashDataAsync(
+ Stream source,
+ Memory destination,
+ CancellationToken cancellationToken = default)
+ {
+ ArgumentNullException.ThrowIfNull(source);
+
+ if (destination.Length < HashSizeInBytes)
+ throw new ArgumentException(SR.Argument_DestinationTooShort, nameof(destination));
+
+ if (!source.CanRead)
+ throw new ArgumentException(SR.Argument_StreamNotReadable, nameof(source));
+
+ CheckSha3Support();
+ return LiteHashProvider.HashStreamAsync(
+ HashAlgorithmNames.SHA3_384,
+ source,
+ destination,
+ cancellationToken);
+ }
+
+ private static void CheckSha3Support()
+ {
+ if (!IsSupported)
+ throw new PlatformNotSupportedException();
+ }
+
+ private sealed class Implementation : SHA3_384
+ {
+ private readonly HashProvider _hashProvider;
+
+ public Implementation()
+ {
+ _hashProvider = HashProviderDispenser.CreateHashProvider(HashAlgorithmNames.SHA3_384);
+ HashSizeValue = _hashProvider.HashSizeInBytes * 8;
+ }
+
+ protected sealed override void HashCore(byte[] array, int ibStart, int cbSize) =>
+ _hashProvider.AppendHashData(array, ibStart, cbSize);
+
+ protected sealed override void HashCore(ReadOnlySpan source) =>
+ _hashProvider.AppendHashData(source);
+
+ protected sealed override byte[] HashFinal() =>
+ _hashProvider.FinalizeHashAndReset();
+
+ protected sealed override bool TryHashFinal(Span destination, out int bytesWritten) =>
+ _hashProvider.TryFinalizeHashAndReset(destination, out bytesWritten);
+
+ public sealed override void Initialize() => _hashProvider.Reset();
+
+ protected sealed override void Dispose(bool disposing)
+ {
+ _hashProvider.Dispose(disposing);
+ base.Dispose(disposing);
+ }
+ }
+ }
+}
diff --git a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/SHA3_512.cs b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/SHA3_512.cs
new file mode 100644
index 00000000000000..2c716453827a3c
--- /dev/null
+++ b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/SHA3_512.cs
@@ -0,0 +1,324 @@
+// Licensed to the .NET Foundation under one or more agreements.
+// The .NET Foundation licenses this file to you under the MIT license.
+
+using Internal.Cryptography;
+using System.Diagnostics;
+using System.Diagnostics.CodeAnalysis;
+using System.IO;
+using System.Threading;
+using System.Threading.Tasks;
+
+namespace System.Security.Cryptography
+{
+ ///
+ /// Computes the SHA3-512 hash for the input data.
+ ///
+ ///
+ /// This algorithm is specified by FIPS 202.
+ ///
+ public abstract class SHA3_512 : HashAlgorithm
+ {
+ ///
+ /// The hash size produced by the SHA3-512 algorithm, in bits.
+ ///
+ public const int HashSizeInBits = 512;
+
+ ///
+ /// The hash size produced by the SHA3-512 algorithm, in bytes.
+ ///
+ public const int HashSizeInBytes = HashSizeInBits / 8;
+
+ ///
+ /// Initializes a new instance of .
+ ///
+ protected SHA3_512()
+ {
+ HashSizeValue = HashSizeInBits;
+ }
+
+ ///
+ /// Gets a value that indicates whether the algorithm is supported on the current platform.
+ ///
+ ///
+ /// if the algorithm is supported; otherwise, .
+ ///
+ public static bool IsSupported { get; } = HashProviderDispenser.HashSupported(HashAlgorithmNames.SHA3_512);
+
+ ///
+ /// Creates an instance of the default implementation of .
+ ///
+ ///
+ /// A new instance of .
+ ///
+ ///
+ /// The platform does not support SHA3-512.
+ ///
+ public static new SHA3_512 Create()
+ {
+ CheckSha3Support();
+ return new Implementation();
+ }
+
+ ///
+ /// Computes the hash of data using the SHA3-512 algorithm.
+ ///
+ /// The data to hash.
+ /// The hash of the data.
+ ///
+ /// is .
+ ///
+ ///
+ /// The platform does not support SHA3-512.
+ ///
+ public static byte[] HashData(byte[] source)
+ {
+ ArgumentNullException.ThrowIfNull(source);
+
+ return HashData(new ReadOnlySpan(source));
+ }
+
+ ///
+ /// Computes the hash of data using the SHA3-512 algorithm.
+ ///
+ /// The data to hash.
+ /// The hash of the data.
+ ///
+ /// The platform does not support SHA3-512.
+ ///
+ public static byte[] HashData(ReadOnlySpan source)
+ {
+ byte[] buffer = new byte[HashSizeInBytes];
+
+ int written = HashData(source, buffer.AsSpan());
+ Debug.Assert(written == buffer.Length);
+
+ return buffer;
+ }
+
+ ///
+ /// Computes the hash of data using the SHA3-512 algorithm.
+ ///
+ /// The data to hash.
+ /// The buffer to receive the hash value.
+ /// The total number of bytes written to .
+ ///
+ /// The buffer in is too small to hold the calculated hash
+ /// size. The SHA3-512 algorithm always produces a 512-bit hash, or 64 bytes.
+ ///
+ ///
+ /// The platform does not support SHA3-512.
+ ///
+ public static int HashData(ReadOnlySpan source, Span destination)
+ {
+ if (!TryHashData(source, destination, out int bytesWritten))
+ throw new ArgumentException(SR.Argument_DestinationTooShort, nameof(destination));
+
+ return bytesWritten;
+ }
+
+ ///
+ /// Attempts to compute the hash of data using the SHA3-512 algorithm.
+ ///
+ /// The data to hash.
+ /// The buffer to receive the hash value.
+ ///
+ /// When this method returns, the total number of bytes written into .
+ ///
+ ///
+ /// if is too small to hold the
+ /// calculated hash, otherwise.
+ ///
+ ///
+ /// The platform does not support SHA3-512.
+ ///
+ public static bool TryHashData(ReadOnlySpan source, Span destination, out int bytesWritten)
+ {
+ CheckSha3Support();
+
+ if (destination.Length < HashSizeInBytes)
+ {
+ bytesWritten = 0;
+ return false;
+ }
+
+ bytesWritten = HashProviderDispenser.OneShotHashProvider.HashData(HashAlgorithmNames.SHA3_512, source, destination);
+ Debug.Assert(bytesWritten == HashSizeInBytes);
+
+ return true;
+ }
+
+ ///
+ /// Computes the hash of a stream using the SHA3-512 algorithm.
+ ///
+ /// The stream to hash.
+ /// The buffer to receive the hash value.
+ /// The total number of bytes written to .
+ ///
+ /// is .
+ ///
+ ///
+ ///
+ /// The buffer in is too small to hold the calculated hash
+ /// size. The SHA3-512 algorithm always produces a 512-bit hash, or 64 bytes.
+ ///
+ /// -or-
+ ///
+ /// does not support reading.
+ ///
+ ///
+ ///
+ /// The platform does not support SHA3-512.
+ ///
+ public static int HashData(Stream source, Span destination)
+ {
+ ArgumentNullException.ThrowIfNull(source);
+
+ if (destination.Length < HashSizeInBytes)
+ throw new ArgumentException(SR.Argument_DestinationTooShort, nameof(destination));
+
+ if (!source.CanRead)
+ throw new ArgumentException(SR.Argument_StreamNotReadable, nameof(source));
+
+ CheckSha3Support();
+ return LiteHashProvider.HashStream(HashAlgorithmNames.SHA3_512, source, destination);
+ }
+
+ ///
+ /// Computes the hash of a stream using the SHA3-512 algorithm.
+ ///
+ /// The stream to hash.
+ /// The hash of the data.
+ ///
+ /// is .
+ ///
+ ///
+ /// does not support reading.
+ ///
+ ///
+ /// The platform does not support SHA3-512.
+ ///
+ public static byte[] HashData(Stream source)
+ {
+ ArgumentNullException.ThrowIfNull(source);
+
+ if (!source.CanRead)
+ throw new ArgumentException(SR.Argument_StreamNotReadable, nameof(source));
+
+ CheckSha3Support();
+ return LiteHashProvider.HashStream(HashAlgorithmNames.SHA3_512, HashSizeInBytes, source);
+ }
+
+ ///
+ /// Asynchronously computes the hash of a stream using the SHA3-512 algorithm.
+ ///
+ /// The stream to hash.
+ ///
+ /// The token to monitor for cancellation requests.
+ /// The default value is .
+ ///
+ /// The hash of the data.
+ ///
+ /// is .
+ ///
+ ///
+ /// does not support reading.
+ ///
+ ///
+ /// The platform does not support SHA3-512.
+ ///
+ public static ValueTask HashDataAsync(Stream source, CancellationToken cancellationToken = default)
+ {
+ ArgumentNullException.ThrowIfNull(source);
+
+ if (!source.CanRead)
+ throw new ArgumentException(SR.Argument_StreamNotReadable, nameof(source));
+
+ CheckSha3Support();
+ return LiteHashProvider.HashStreamAsync(HashAlgorithmNames.SHA3_512, source, cancellationToken);
+ }
+
+ ///
+ /// Asynchronously computes the hash of a stream using the SHA3-512 algorithm.
+ ///
+ /// The stream to hash.
+ /// The buffer to receive the hash value.
+ ///
+ /// The token to monitor for cancellation requests.
+ /// The default value is .
+ ///
+ /// The total number of bytes written to .
+ ///
+ /// is .
+ ///
+ ///
+ ///
+ /// The buffer in is too small to hold the calculated hash
+ /// size. The SHA3-512 algorithm always produces a 512-bit hash, or 64 bytes.
+ ///
+ /// -or-
+ ///
+ /// does not support reading.
+ ///
+ ///
+ ///
+ /// The platform does not support SHA3-512.
+ ///
+ public static ValueTask HashDataAsync(
+ Stream source,
+ Memory destination,
+ CancellationToken cancellationToken = default)
+ {
+ ArgumentNullException.ThrowIfNull(source);
+
+ if (destination.Length < HashSizeInBytes)
+ throw new ArgumentException(SR.Argument_DestinationTooShort, nameof(destination));
+
+ if (!source.CanRead)
+ throw new ArgumentException(SR.Argument_StreamNotReadable, nameof(source));
+
+ CheckSha3Support();
+ return LiteHashProvider.HashStreamAsync(
+ HashAlgorithmNames.SHA3_512,
+ source,
+ destination,
+ cancellationToken);
+ }
+
+ private static void CheckSha3Support()
+ {
+ if (!IsSupported)
+ throw new PlatformNotSupportedException();
+ }
+
+ private sealed class Implementation : SHA3_512
+ {
+ private readonly HashProvider _hashProvider;
+
+ public Implementation()
+ {
+ _hashProvider = HashProviderDispenser.CreateHashProvider(HashAlgorithmNames.SHA3_512);
+ HashSizeValue = _hashProvider.HashSizeInBytes * 8;
+ }
+
+ protected sealed override void HashCore(byte[] array, int ibStart, int cbSize) =>
+ _hashProvider.AppendHashData(array, ibStart, cbSize);
+
+ protected sealed override void HashCore(ReadOnlySpan source) =>
+ _hashProvider.AppendHashData(source);
+
+ protected sealed override byte[] HashFinal() =>
+ _hashProvider.FinalizeHashAndReset();
+
+ protected sealed override bool TryHashFinal(Span destination, out int bytesWritten) =>
+ _hashProvider.TryFinalizeHashAndReset(destination, out bytesWritten);
+
+ public sealed override void Initialize() => _hashProvider.Reset();
+
+ protected sealed override void Dispose(bool disposing)
+ {
+ _hashProvider.Dispose(disposing);
+ base.Dispose(disposing);
+ }
+ }
+ }
+}
diff --git a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/SP800108HmacCounterKdfImplementationCng.cs b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/SP800108HmacCounterKdfImplementationCng.cs
index 75025e598ffc08..77adda425ce3d6 100644
--- a/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/SP800108HmacCounterKdfImplementationCng.cs
+++ b/src/libraries/System.Security.Cryptography/src/System/Security/Cryptography/SP800108HmacCounterKdfImplementationCng.cs
@@ -65,6 +65,12 @@ private static int HashOneShot(HashAlgorithmName hashAlgorithm, ReadOnlySpan true;
+ public bool SupportsSha3 => false;
+
private static bool IsValueOrFriendlyNameValid(string friendlyNameOrValue)
{
if (string.IsNullOrEmpty(friendlyNameOrValue))
diff --git a/src/libraries/System.Security.Cryptography/tests/DefaultECDiffieHellmanProvider.Unix.cs b/src/libraries/System.Security.Cryptography/tests/DefaultECDiffieHellmanProvider.Unix.cs
index d00c95b27eaffa..162831d72ac696 100644
--- a/src/libraries/System.Security.Cryptography/tests/DefaultECDiffieHellmanProvider.Unix.cs
+++ b/src/libraries/System.Security.Cryptography/tests/DefaultECDiffieHellmanProvider.Unix.cs
@@ -36,6 +36,7 @@ public bool ExplicitCurvesSupported
public bool CanDeriveNewPublicKey { get; } = !PlatformDetection.IsiOS && !PlatformDetection.IstvOS && !PlatformDetection.IsMacCatalyst;
public bool SupportsRawDerivation => true;
+ public bool SupportsSha3 => PlatformDetection.SupportsSha3;
private static bool IsValueOrFriendlyNameValid(string friendlyNameOrValue)
{
diff --git a/src/libraries/System.Security.Cryptography/tests/DefaultECDiffieHellmanProvider.Windows.cs b/src/libraries/System.Security.Cryptography/tests/DefaultECDiffieHellmanProvider.Windows.cs
index 49f8ff15761e17..71471a532acdb3 100644
--- a/src/libraries/System.Security.Cryptography/tests/DefaultECDiffieHellmanProvider.Windows.cs
+++ b/src/libraries/System.Security.Cryptography/tests/DefaultECDiffieHellmanProvider.Windows.cs
@@ -24,6 +24,7 @@ public bool ExplicitCurvesSupported
public bool CanDeriveNewPublicKey => true;
public bool SupportsRawDerivation => PlatformDetection.IsWindows10OrLater;
+ public bool SupportsSha3 => PlatformDetection.SupportsSha3;
private static bool NativeOidFriendlyNameExists(string oidFriendlyName)
{
diff --git a/src/libraries/System.Security.Cryptography/tests/DefaultRSAProvider.cs b/src/libraries/System.Security.Cryptography/tests/DefaultRSAProvider.cs
index e39bc782bc04a4..c65b78ace1288e 100644
--- a/src/libraries/System.Security.Cryptography/tests/DefaultRSAProvider.cs
+++ b/src/libraries/System.Security.Cryptography/tests/DefaultRSAProvider.cs
@@ -47,6 +47,8 @@ public bool Supports384PrivateKey
public bool SupportsSha2Oaep { get; } = true;
public bool SupportsPss { get; } = true;
+
+ public bool SupportsSha3 { get; } = SHA3_256.IsSupported; // If SHA3_256 is supported, assume 384 and 512 are, too.
}
public partial class RSAFactory
diff --git a/src/libraries/System.Security.Cryptography/tests/HKDFTests.cs b/src/libraries/System.Security.Cryptography/tests/HKDFTests.cs
index 059c60c42bbf90..6f58c00e80994c 100644
--- a/src/libraries/System.Security.Cryptography/tests/HKDFTests.cs
+++ b/src/libraries/System.Security.Cryptography/tests/HKDFTests.cs
@@ -15,25 +15,25 @@ public abstract class HKDFTests
protected abstract byte[] DeriveKey(HashAlgorithmName hash, byte[] ikm, int outputLength, byte[] salt, byte[] info);
[Theory]
- [MemberData(nameof(GetRfc5869TestCases))]
- public void Rfc5869ExtractTests(Rfc5869TestCase test)
+ [MemberData(nameof(GetHkdfTestCases))]
+ public void ExtractTests(HkdfTestCase test)
{
byte[] prk = Extract(test.Hash, test.Prk.Length, test.Ikm, test.Salt);
Assert.Equal(test.Prk, prk);
}
[Theory]
- [MemberData(nameof(GetRfc5869TestCases))]
+ [MemberData(nameof(GetHkdfTestCases))]
[SkipOnPlatform(TestPlatforms.Browser, "MD5 is not supported on Browser")]
- public void Rfc5869ExtractTamperHashTests(Rfc5869TestCase test)
+ public void ExtractTamperHashTests(HkdfTestCase test)
{
byte[] prk = Extract(HashAlgorithmName.MD5, 128 / 8, test.Ikm, test.Salt);
Assert.NotEqual(test.Prk, prk);
}
[Theory]
- [MemberData(nameof(GetRfc5869TestCases))]
- public void Rfc5869ExtractTamperIkmTests(Rfc5869TestCase test)
+ [MemberData(nameof(GetHkdfTestCases))]
+ public void ExtractTamperIkmTests(HkdfTestCase test)
{
byte[] ikm = test.Ikm.ToArray();
ikm[0] ^= 1;
@@ -42,8 +42,8 @@ public void Rfc5869ExtractTamperIkmTests(Rfc5869TestCase test)
}
[Theory]
- [MemberData(nameof(GetRfc5869TestCasesWithNonEmptySalt))]
- public void Rfc5869ExtractTamperSaltTests(Rfc5869TestCase test)
+ [MemberData(nameof(GetHkdfTestCasesWithNonEmptySalt))]
+ public void ExtractTamperSaltTests(HkdfTestCase test)
{
byte[] salt = test.Salt.ToArray();
salt[0] ^= 1;
@@ -52,7 +52,7 @@ public void Rfc5869ExtractTamperSaltTests(Rfc5869TestCase test)
}
[Fact]
- public void Rfc5869ExtractDefaultHash()
+ public void ExtractDefaultHash()
{
byte[] ikm = new byte[20];
byte[] salt = new byte[20];
@@ -62,7 +62,7 @@ public void Rfc5869ExtractDefaultHash()
}
[Fact]
- public void Rfc5869ExtractNonsensicalHash()
+ public void ExtractNonsensicalHash()
{
byte[] ikm = new byte[20];
byte[] salt = new byte[20];
@@ -72,7 +72,7 @@ public void Rfc5869ExtractNonsensicalHash()
}
[Fact]
- public void Rfc5869ExtractEmptyIkm()
+ public void ExtractEmptyIkm()
{
byte[] salt = new byte[20];
byte[] ikm = Array.Empty();
@@ -83,7 +83,7 @@ public void Rfc5869ExtractEmptyIkm()
}
[Fact]
- public void Rfc5869ExtractEmptySalt()
+ public void ExtractEmptySalt()
{
byte[] ikm = new byte[20];
byte[] salt = Array.Empty();
@@ -92,15 +92,15 @@ public void Rfc5869ExtractEmptySalt()
}
[Theory]
- [MemberData(nameof(GetRfc5869TestCases))]
- public void Rfc5869ExpandTests(Rfc5869TestCase test)
+ [MemberData(nameof(GetHkdfTestCases))]
+ public void ExpandTests(HkdfTestCase test)
{
byte[] okm = Expand(test.Hash, test.Prk, test.Okm.Length, test.Info);
Assert.Equal(test.Okm, okm);
}
[Fact]
- public void Rfc5869ExpandDefaultHash()
+ public void ExpandDefaultHash()
{
byte[] prk = new byte[20];
AssertExtensions.Throws(
@@ -109,7 +109,7 @@ public void Rfc5869ExpandDefaultHash()
}
[Fact]
- public void Rfc5869ExpandNonsensicalHash()
+ public void ExpandNonsensicalHash()
{
byte[] prk = new byte[20];
AssertExtensions.Throws(
@@ -118,8 +118,8 @@ public void Rfc5869ExpandNonsensicalHash()
}
[Theory]
- [MemberData(nameof(GetRfc5869TestCases))]
- public void Rfc5869ExpandTamperPrkTests(Rfc5869TestCase test)
+ [MemberData(nameof(GetHkdfTestCases))]
+ public void ExpandTamperPrkTests(HkdfTestCase test)
{
byte[] prk = test.Prk.ToArray();
prk[0] ^= 1;
@@ -129,7 +129,7 @@ public void Rfc5869ExpandTamperPrkTests(Rfc5869TestCase test)
[Theory]
[MemberData(nameof(GetPrkTooShortTestCases))]
- public void Rfc5869ExpandPrkTooShort(HashAlgorithmName hash, int prkSize)
+ public void ExpandPrkTooShort(HashAlgorithmName hash, int prkSize)
{
byte[] prk = new byte[prkSize];
AssertExtensions.Throws(
@@ -138,7 +138,7 @@ public void Rfc5869ExpandPrkTooShort(HashAlgorithmName hash, int prkSize)
}
[Fact]
- public void Rfc5869ExpandOkmMaxSize()
+ public void ExpandOkmMaxSize()
{
byte[] prk = new byte[20];
@@ -148,15 +148,15 @@ public void Rfc5869ExpandOkmMaxSize()
}
[Theory]
- [MemberData(nameof(GetRfc5869TestCases))]
- public void Rfc5869DeriveKeyTests(Rfc5869TestCase test)
+ [MemberData(nameof(GetHkdfTestCases))]
+ public void DeriveKeyTests(HkdfTestCase test)
{
byte[] okm = DeriveKey(test.Hash, test.Ikm, test.Okm.Length, test.Salt, test.Info);
Assert.Equal(test.Okm, okm);
}
[Fact]
- public void Rfc5869DeriveKeyDefaultHash()
+ public void DeriveKeyDefaultHash()
{
byte[] ikm = new byte[20];
AssertExtensions.Throws(
@@ -165,7 +165,7 @@ public void Rfc5869DeriveKeyDefaultHash()
}
[Fact]
- public void Rfc5869DeriveKeyNonSensicalHash()
+ public void DeriveKeyNonSensicalHash()
{
byte[] ikm = new byte[20];
AssertExtensions.Throws(
@@ -174,8 +174,8 @@ public void Rfc5869DeriveKeyNonSensicalHash()
}
[Theory]
- [MemberData(nameof(GetRfc5869TestCases))]
- public void Rfc5869DeriveKeyTamperIkmTests(Rfc5869TestCase test)
+ [MemberData(nameof(GetHkdfTestCases))]
+ public void DeriveKeyTamperIkmTests(HkdfTestCase test)
{
byte[] ikm = test.Ikm.ToArray();
ikm[0] ^= 1;
@@ -184,8 +184,8 @@ public void Rfc5869DeriveKeyTamperIkmTests(Rfc5869TestCase test)
}
[Theory]
- [MemberData(nameof(GetRfc5869TestCasesWithNonEmptySalt))]
- public void Rfc5869DeriveKeyTamperSaltTests(Rfc5869TestCase test)
+ [MemberData(nameof(GetHkdfTestCasesWithNonEmptySalt))]
+ public void DeriveKeyTamperSaltTests(HkdfTestCase test)
{
byte[] salt = test.Salt.ToArray();
salt[0] ^= 1;
@@ -194,8 +194,8 @@ public void Rfc5869DeriveKeyTamperSaltTests(Rfc5869TestCase test)
}
[Theory]
- [MemberData(nameof(GetRfc5869TestCasesWithNonEmptyInfo))]
- public void Rfc5869DeriveKeyTamperInfoTests(Rfc5869TestCase test)
+ [MemberData(nameof(GetHkdfTestCasesWithNonEmptyInfo))]
+ public void DeriveKeyTamperInfoTests(HkdfTestCase test)
{
byte[] info = test.Info.ToArray();
info[0] ^= 1;
@@ -203,17 +203,33 @@ public void Rfc5869DeriveKeyTamperInfoTests(Rfc5869TestCase test)
Assert.NotEqual(test.Okm, okm);
}
- public static IEnumerable GetRfc5869TestCases()
+ [Theory]
+ [MemberData(nameof(Sha3TestCases))]
+ public void Sha3Tests(HkdfTestCase test)
+ {
+ if (PlatformDetection.SupportsSha3)
+ {
+ byte[] okm = DeriveKey(test.Hash, test.Ikm, test.Okm.Length, test.Salt, test.Info);
+ Assert.Equal(test.Okm, okm);
+ }
+ else
+ {
+ Assert.Throws(() =>
+ DeriveKey(test.Hash, test.Ikm, test.Okm.Length, test.Salt, test.Info));
+ }
+ }
+
+ public static IEnumerable GetHkdfTestCases()
{
- foreach (Rfc5869TestCase test in Rfc5869TestCases)
+ foreach (HkdfTestCase test in Rfc5869TestCases)
{
yield return new object[] { test };
}
}
- public static IEnumerable GetRfc5869TestCasesWithNonEmptySalt()
+ public static IEnumerable GetHkdfTestCasesWithNonEmptySalt()
{
- foreach (Rfc5869TestCase test in Rfc5869TestCases)
+ foreach (HkdfTestCase test in Rfc5869TestCases)
{
if (test.Salt != null && test.Salt.Length != 0)
{
@@ -222,9 +238,9 @@ public static IEnumerable GetRfc5869TestCasesWithNonEmptySalt()
}
}
- public static IEnumerable GetRfc5869TestCasesWithNonEmptyInfo()
+ public static IEnumerable GetHkdfTestCasesWithNonEmptyInfo()
{
- foreach (Rfc5869TestCase test in Rfc5869TestCases)
+ foreach (HkdfTestCase test in Rfc5869TestCases)
{
if (test.Info != null && test.Info.Length != 0)
{
@@ -245,11 +261,18 @@ public static IEnumerable GetPrkTooShortTestCases()
{
yield return new object[] { HashAlgorithmName.MD5, 128 / 8 - 1 };
}
+
+ if (PlatformDetection.SupportsSha3)
+ {
+ yield return new object[] { HashAlgorithmName.SHA3_256, SHA3_256.HashSizeInBytes - 1 };
+ yield return new object[] { HashAlgorithmName.SHA3_384, SHA3_384.HashSizeInBytes - 1 };
+ yield return new object[] { HashAlgorithmName.SHA3_512, SHA3_512.HashSizeInBytes - 1 };
+ }
}
- private static Rfc5869TestCase[] Rfc5869TestCases { get; } = new Rfc5869TestCase[7]
+ private static HkdfTestCase[] Rfc5869TestCases { get; } = new HkdfTestCase[7]
{
- new Rfc5869TestCase()
+ new HkdfTestCase()
{
Name = "Basic test case with SHA-256",
Hash = HashAlgorithmName.SHA256,
@@ -264,7 +287,7 @@ public static IEnumerable GetPrkTooShortTestCases()
"2d2d0a90cf1a5a4c5db02d56ecc4c5bf" +
"34007208d5b887185865").HexToByteArray(),
},
- new Rfc5869TestCase()
+ new HkdfTestCase()
{
Name = "Test with SHA-256 and longer inputs/outputs",
Hash = HashAlgorithmName.SHA256,
@@ -297,7 +320,7 @@ public static IEnumerable GetPrkTooShortTestCases()
"cc30c58179ec3e87c14c01d5c1f3434f" +
"1d87").HexToByteArray(),
},
- new Rfc5869TestCase()
+ new HkdfTestCase()
{
Name = "Test with SHA-256 and zero-length salt/info",
Hash = HashAlgorithmName.SHA256,
@@ -312,7 +335,7 @@ public static IEnumerable GetPrkTooShortTestCases()
"b8a11f5c5ee1879ec3454e5f3c738d2d" +
"9d201395faa4b61a96c8").HexToByteArray(),
},
- new Rfc5869TestCase()
+ new HkdfTestCase()
{
Name = "Basic test case with SHA-1",
Hash = HashAlgorithmName.SHA1,
@@ -325,7 +348,7 @@ public static IEnumerable GetPrkTooShortTestCases()
"a4f14b822f5b091568a9cdd4f155fda2" +
"c22e422478d305f3f896").HexToByteArray(),
},
- new Rfc5869TestCase()
+ new HkdfTestCase()
{
Name = "Test with SHA-1 and longer inputs/outputs",
Hash = HashAlgorithmName.SHA1,
@@ -356,7 +379,7 @@ public static IEnumerable GetPrkTooShortTestCases()
"927336d0441f4c4300e2cff0d0900b52" +
"d3b4").HexToByteArray(),
},
- new Rfc5869TestCase()
+ new HkdfTestCase()
{
Name = "Test with SHA-1 and zero-length salt/info",
Hash = HashAlgorithmName.SHA1,
@@ -369,7 +392,7 @@ public static IEnumerable GetPrkTooShortTestCases()
"b9ae52057220a306e07b6b87e8df21d0" +
"ea00033de03984d34918").HexToByteArray(),
},
- new Rfc5869TestCase()
+ new HkdfTestCase()
{
Name = "Test with SHA-1, salt not provided (defaults to HashLen zero octets), zero-length info",
Hash = HashAlgorithmName.SHA1,
@@ -384,7 +407,55 @@ public static IEnumerable GetPrkTooShortTestCases()
},
};
- public struct Rfc5869TestCase
+ public static IEnumerable Sha3TestCases
+ {
+ // These cases were generated from the openssl kdf command.
+ // openssl kdf -keylen 8 -kdfopt digest:SHA3-256 -kdfopt hexkey:000102030405060708090A0B0C0D0E0F \
+ // -kdfopt salt:mysalt -kdfopt info:myinfo -binary HKDF | xxd -p
+ get
+ {
+ yield return new object[]
+ {
+ new HkdfTestCase
+ {
+ Name = "SHA3-256 with salt and info",
+ Hash = HashAlgorithmName.SHA3_256,
+ Ikm = "000102030405060708090A0B0C0D0E0F101112131415161718191A1B1C1D1E1F".HexToByteArray(),
+ Salt = "mysalt"u8.ToArray(),
+ Info = "myinfo"u8.ToArray(),
+ Okm = "35bd9d1c75cf7e30".HexToByteArray(),
+ }
+ };
+
+ yield return new object[]
+ {
+ new HkdfTestCase
+ {
+ Name = "SHA3-384 with salt and info",
+ Hash = HashAlgorithmName.SHA3_384,
+ Ikm = "000102030405060708090A0B0C0D0E0F101112131415161718191A1B1C1D1E1F".HexToByteArray(),
+ Salt = "mysalt"u8.ToArray(),
+ Info = "myinfo"u8.ToArray(),
+ Okm = "323a8ab50c7190c8".HexToByteArray(),
+ }
+ };
+
+ yield return new object[]
+ {
+ new HkdfTestCase
+ {
+ Name = "SHA3-512 with salt and info",
+ Hash = HashAlgorithmName.SHA3_512,
+ Ikm = "000102030405060708090A0B0C0D0E0F101112131415161718191A1B1C1D1E1F".HexToByteArray(),
+ Salt = "mysalt"u8.ToArray(),
+ Info = "myinfo"u8.ToArray(),
+ Okm = "27693b36a489e9f1".HexToByteArray(),
+ }
+ };
+ }
+ }
+
+ public struct HkdfTestCase
{
public string Name { get; set; }
public HashAlgorithmName Hash { get; set; }
@@ -415,7 +486,7 @@ protected override byte[] DeriveKey(HashAlgorithmName hash, byte[] ikm, int outp
}
[Fact]
- public void Rfc5869ExtractNullIkm()
+ public void ExtractNullIkm()
{
byte[] salt = new byte[20];
AssertExtensions.Throws(
@@ -424,7 +495,7 @@ public void Rfc5869ExtractNullIkm()
}
[Fact]
- public void Rfc5869ExpandOkmMaxSizePlusOne()
+ public void ExpandOkmMaxSizePlusOne()
{
byte[] prk = new byte[20];
AssertExtensions.Throws(
@@ -433,7 +504,7 @@ public void Rfc5869ExpandOkmMaxSizePlusOne()
}
[Fact]
- public void Rfc5869ExpandOkmPotentiallyOverflowingValue()
+ public void ExpandOkmPotentiallyOverflowingValue()
{
byte[] prk = new byte[20];
AssertExtensions.Throws(
@@ -442,7 +513,7 @@ public void Rfc5869ExpandOkmPotentiallyOverflowingValue()
}
[Fact]
- public void Rfc5869ExpandOutputLengthZero()
+ public void ExpandOutputLengthZero()
{
byte[] prk = new byte[20];
AssertExtensions.Throws(
@@ -451,7 +522,7 @@ public void Rfc5869ExpandOutputLengthZero()
}
[Fact]
- public void Rfc5869ExpandOutputLengthLessThanZero()
+ public void ExpandOutputLengthLessThanZero()
{
byte[] prk = new byte[20];
AssertExtensions.Throws(
@@ -460,7 +531,7 @@ public void Rfc5869ExpandOutputLengthLessThanZero()
}
[Fact]
- public void Rfc5869DeriveKeyNullIkm()
+ public void DeriveKeyNullIkm()
{
AssertExtensions.Throws(
"ikm",
@@ -468,7 +539,7 @@ public void Rfc5869DeriveKeyNullIkm()
}
[Fact]
- public void Rfc5869DeriveKeyOkmMaxSizePlusOne()
+ public void DeriveKeyOkmMaxSizePlusOne()
{
byte[] ikm = new byte[20];
AssertExtensions.Throws(
@@ -477,7 +548,7 @@ public void Rfc5869DeriveKeyOkmMaxSizePlusOne()
}
[Fact]
- public void Rfc5869DeriveKeyOkmPotentiallyOverflowingValue()
+ public void DeriveKeyOkmPotentiallyOverflowingValue()
{
byte[] ikm = new byte[20];
AssertExtensions.Throws(
@@ -486,7 +557,7 @@ public void Rfc5869DeriveKeyOkmPotentiallyOverflowingValue()
}
[Fact]
- public void Rfc5869DeriveOutputLengthZero()
+ public void DeriveOutputLengthZero()
{
byte[] ikm = new byte[20];
AssertExtensions.Throws(
@@ -495,7 +566,7 @@ public void Rfc5869DeriveOutputLengthZero()
}
[Fact]
- public void Rfc5869DeriveOutputLengthLessThanZero()
+ public void DeriveOutputLengthLessThanZero()
{
byte[] ikm = new byte[20];
AssertExtensions.Throws(
@@ -528,7 +599,7 @@ protected override byte[] DeriveKey(HashAlgorithmName hash, byte[] ikm, int outp
}
[Fact]
- public void Rfc5869ExtractPrkTooLong()
+ public void ExtractPrkTooLong()
{
byte[] prk = new byte[24];
@@ -550,7 +621,7 @@ public void Rfc5869ExtractPrkTooLong()
}
[Fact]
- public void Rfc5869OkmMaxSizePlusOne()
+ public void OkmMaxSizePlusOne()
{
byte[] prk = new byte[20];
byte[] okm = new byte[20 * 255 + 1];
@@ -560,7 +631,7 @@ public void Rfc5869OkmMaxSizePlusOne()
}
[Fact]
- public void Rfc5869OkmMaxSizePotentiallyOverflowingValue()
+ public void OkmMaxSizePotentiallyOverflowingValue()
{
byte[] prk = new byte[20];
byte[] okm = new byte[8421505];
@@ -570,7 +641,7 @@ public void Rfc5869OkmMaxSizePotentiallyOverflowingValue()
}
[Fact]
- public void Rfc5869ExpandOutputLengthZero()
+ public void ExpandOutputLengthZero()
{
byte[] prk = new byte[20];
byte[] okm = new byte[0];
@@ -581,7 +652,7 @@ public void Rfc5869ExpandOutputLengthZero()
}
[Fact]
- public void Rfc5869DeriveKeySpanOkmMaxSizePlusOne()
+ public void DeriveKeySpanOkmMaxSizePlusOne()
{
byte[] ikm = new byte[20];
byte[] okm = new byte[20 * 255 + 1];
@@ -591,7 +662,7 @@ public void Rfc5869DeriveKeySpanOkmMaxSizePlusOne()
}
[Fact]
- public void Rfc5869DeriveKeySpanOkmPotentiallyOverflowingValue()
+ public void DeriveKeySpanOkmPotentiallyOverflowingValue()
{
byte[] ikm = new byte[20];
byte[] okm = new byte[8421505];
@@ -601,7 +672,7 @@ public void Rfc5869DeriveKeySpanOkmPotentiallyOverflowingValue()
}
[Fact]
- public void Rfc5869DeriveKeyOutputLengthZero()
+ public void DeriveKeyOutputLengthZero()
{
byte[] ikm = new byte[20];
byte[] okm = new byte[0];
@@ -616,7 +687,7 @@ public void Rfc5869DeriveKeyOutputLengthZero()
[InlineData(0, 10)] // Output +10 offset over ikm
[InlineData(10, 0)] // ikm +10 offset over output
[InlineData(10, 20)] // Both offset, output +10 over ikm
- public void Rfc5869ExtractOverlapsPrkOverKeyMaterial(int ikmOffset, int outputOffset)
+ public void ExtractOverlapsPrkOverKeyMaterial(int ikmOffset, int outputOffset)
{
ReadOnlySpan ikm = "0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b".HexToByteArray();
ReadOnlySpan salt = "000102030405060708090a0b0c".HexToByteArray();
@@ -637,7 +708,7 @@ public void Rfc5869ExtractOverlapsPrkOverKeyMaterial(int ikmOffset, int outputOf
[InlineData(0, 10)] // Output +10 offset over salt
[InlineData(10, 0)] // salt +10 offset over output
[InlineData(10, 20)] // Both offset, output +10 over salt
- public void Rfc5869ExtractOverlapsPrkOverSalt(int saltOffset, int outputOffset)
+ public void ExtractOverlapsPrkOverSalt(int saltOffset, int outputOffset)
{
ReadOnlySpan ikm = "0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b".HexToByteArray();
ReadOnlySpan salt = "000102030405060708090a0b0c".HexToByteArray();
@@ -658,7 +729,7 @@ public void Rfc5869ExtractOverlapsPrkOverSalt(int saltOffset, int outputOffset)
[InlineData(0, 10)] // Output +10 offset over info
[InlineData(10, 0)] // Info +10 offset over output
[InlineData(10, 20)] // Both offset, output +10 over info
- public void Rfc5869ExpandOverlapsOutputOverInfo(int infoOffset, int outputOffset)
+ public void ExpandOverlapsOutputOverInfo(int infoOffset, int outputOffset)
{
ReadOnlySpan info = (
"b0b1b2b3b4b5b6b7b8b9babbbcbdbebfc0c1c2c3c4c5c6c7c8c9cacbcccdcecf" +
@@ -686,7 +757,7 @@ public void Rfc5869ExpandOverlapsOutputOverInfo(int infoOffset, int outputOffset
[InlineData(0, 10)] // Output +10 offset over info
[InlineData(10, 0)] // Info +10 offset over output
[InlineData(10, 20)] // Both offset, output +10 over info
- public void Rfc5869ExpandOverlapsOutputOverInfoShortOkm(int infoOffset, int outputOffset)
+ public void ExpandOverlapsOutputOverInfoShortOkm(int infoOffset, int outputOffset)
{
ReadOnlySpan info = (
"b0b1b2b3b4b5b6b7b8b9babbbcbdbebfc0c1c2c3c4c5c6c7c8c9cacbcccdcecf" +
@@ -712,7 +783,7 @@ public void Rfc5869ExpandOverlapsOutputOverInfoShortOkm(int infoOffset, int outp
[InlineData(0, 10)] // Output +10 offset over prk
[InlineData(10, 0)] // Prk +10 offset over output
[InlineData(10, 20)] // Both offset, output +10 over prk
- public void Rfc5869ExpandOverlapsOutputOverPrk(int prkOffset, int outputOffset)
+ public void ExpandOverlapsOutputOverPrk(int prkOffset, int outputOffset)
{
ReadOnlySpan info = (
"b0b1b2b3b4b5b6b7b8b9babbbcbdbebfc0c1c2c3c4c5c6c7c8c9cacbcccdcecf" +
diff --git a/src/libraries/System.Security.Cryptography/tests/HashAlgorithmNameTests.cs b/src/libraries/System.Security.Cryptography/tests/HashAlgorithmNameTests.cs
index e4d78699bfdd1c..70d1056a9abf22 100644
--- a/src/libraries/System.Security.Cryptography/tests/HashAlgorithmNameTests.cs
+++ b/src/libraries/System.Security.Cryptography/tests/HashAlgorithmNameTests.cs
@@ -60,6 +60,9 @@ public static IEnumerable ValidInputs
yield return new object[] { "2.16.840.1.101.3.4.2.1", HashAlgorithmName.SHA256 };
yield return new object[] { "2.16.840.1.101.3.4.2.2", HashAlgorithmName.SHA384 };
yield return new object[] { "2.16.840.1.101.3.4.2.3", HashAlgorithmName.SHA512 };
+ yield return new object[] { "2.16.840.1.101.3.4.2.8", HashAlgorithmName.SHA3_256 };
+ yield return new object[] { "2.16.840.1.101.3.4.2.9", HashAlgorithmName.SHA3_384 };
+ yield return new object[] { "2.16.840.1.101.3.4.2.10", HashAlgorithmName.SHA3_512 };
}
}
}
diff --git a/src/libraries/System.Security.Cryptography/tests/HashAlgorithmTestDriver.cs b/src/libraries/System.Security.Cryptography/tests/HashAlgorithmTestDriver.cs
index 8890808c6a0cca..8443c222edaa6b 100644
--- a/src/libraries/System.Security.Cryptography/tests/HashAlgorithmTestDriver.cs
+++ b/src/libraries/System.Security.Cryptography/tests/HashAlgorithmTestDriver.cs
@@ -10,8 +10,10 @@
namespace System.Security.Cryptography.Tests
{
- public abstract class HashAlgorithmTestDriver
+ public abstract class HashAlgorithmTestDriver where THashTrait : IHashTrait
{
+ public static bool IsSupported => THashTrait.IsSupported;
+ public static bool IsNotSupported => !IsSupported;
protected abstract HashAlgorithm Create();
protected abstract bool TryHashData(ReadOnlySpan source, Span destination, out int bytesWritten);
protected abstract byte[] HashData(byte[] source);
@@ -191,19 +193,19 @@ private void VerifyTransformBlockComputeHashInteraction(byte[] block1, byte[] bl
}
}
- [Fact]
+ [ConditionalFact(nameof(IsSupported))]
public void HashData_ByteArray_Null()
{
AssertExtensions.Throws("source", () => HashData((byte[])null));
}
- [Fact]
+ [ConditionalFact(nameof(IsSupported))]
public void HashData_BufferTooSmall()
{
AssertExtensions.Throws("destination", () => HashData(Span.Empty, default));
}
- [Fact]
+ [ConditionalFact(nameof(IsSupported))]
public void VerifyObjectDisposedException()
{
HashAlgorithm hash = Create();
@@ -216,7 +218,7 @@ public void VerifyObjectDisposedException()
Assert.Throws(() => hash.TransformFinalBlock(Array.Empty(), 0, 0));
}
- [Fact]
+ [ConditionalFact(nameof(IsSupported))]
public void VerifyHashNotYetFinalized()
{
using (HashAlgorithm hash = Create())
@@ -226,7 +228,7 @@ public void VerifyHashNotYetFinalized()
}
}
- [Fact]
+ [ConditionalFact(nameof(IsSupported))]
public void InvalidInput_ComputeHash()
{
using (HashAlgorithm hash = Create())
@@ -236,7 +238,7 @@ public void InvalidInput_ComputeHash()
}
}
- [Fact]
+ [ConditionalFact(nameof(IsSupported))]
public void InvalidInput_TransformBlock()
{
using (HashAlgorithm hash = Create())
@@ -248,7 +250,7 @@ public void InvalidInput_TransformBlock()
}
}
- [Fact]
+ [ConditionalFact(nameof(IsSupported))]
public void InvalidInput_TransformFinalBlock()
{
using (HashAlgorithm hash = Create())
@@ -404,20 +406,43 @@ protected async Task VerifyRepeatingAsync(string input, int repeatCount, string
}
}
- [Fact]
+ [ConditionalFact(nameof(IsNotSupported))]
+ public async Task HashData_NotSupported()
+ {
+ byte[] buffer = new byte[THashTrait.HashSizeInBytes];
+ Assert.Throws(() => HashData(Array.Empty()));
+ Assert.Throws(() => HashData(ReadOnlySpan.Empty));
+ Assert.Throws(() => HashData(ReadOnlySpan.Empty, buffer));
+ Assert.Throws(() => TryHashData(ReadOnlySpan.Empty, buffer, out _));
+
+ Assert.Throws(() => HashData(Stream.Null));
+ Assert.Throws(() => HashData(Stream.Null, buffer));
+ await Assert.ThrowsAsync(async () =>
+ await HashDataAsync(Stream.Null, default(CancellationToken)));
+ await Assert.ThrowsAsync(async () =>
+ await HashDataAsync(Stream.Null, buffer, default(CancellationToken)));
+ }
+
+ [ConditionalFact(nameof(IsNotSupported))]
+ public void Create_NotSupported()
+ {
+ Assert.Throws(() => Create());
+ }
+
+ [ConditionalFact(nameof(IsSupported))]
public void HashData_Null_Stream_Throws()
{
AssertExtensions.Throws("source", () => HashData((Stream)null));
AssertExtensions.Throws("source", () => HashData((Stream)null, Span.Empty));
}
- [Fact]
+ [ConditionalFact(nameof(IsSupported))]
public void HashData_ShortDestination_Throws()
{
AssertExtensions.Throws("destination", () => HashData(Stream.Null, Span.Empty));
}
- [Fact]
+ [ConditionalFact(nameof(IsSupported))]
public void HashDataAsync_Null_Stream_Throws()
{
AssertExtensions.Throws(
@@ -429,7 +454,7 @@ public void HashDataAsync_Null_Stream_Throws()
() => HashDataAsync((Stream)null, Memory.Empty, cancellationToken: default));
}
- [Fact]
+ [ConditionalFact(nameof(IsSupported))]
public void HashDataAsync_ShortDestination_Throws()
{
AssertExtensions.Throws(
@@ -437,7 +462,7 @@ public void HashDataAsync_ShortDestination_Throws()
() => HashDataAsync(Stream.Null, Memory.Empty, cancellationToken: default));
}
- [Fact]
+ [ConditionalFact(nameof(IsSupported))]
public void HashDataAsync_Buffer_CancelledToken()
{
Memory buffer = new byte[512 / 8];
@@ -447,7 +472,7 @@ public void HashDataAsync_Buffer_CancelledToken()
AssertExtensions.FilledWith(0, buffer.Span);
}
- [Fact]
+ [ConditionalFact(nameof(IsSupported))]
public void HashDataAsync_Allocating_CancelledToken()
{
CancellationToken cancelledToken = new CancellationToken(canceled: true);
@@ -455,7 +480,7 @@ public void HashDataAsync_Allocating_CancelledToken()
Assert.True(waitable.IsCanceled, nameof(waitable.IsCanceled));
}
- [Fact]
+ [ConditionalFact(nameof(IsSupported))]
public void InvalidInput_Null()
{
using (HashAlgorithm hash = Create())
@@ -466,7 +491,7 @@ public void InvalidInput_Null()
}
}
- [Fact]
+ [ConditionalFact(nameof(IsSupported))]
public void InvalidInput_NegativeOffset()
{
using (HashAlgorithm hash = Create())
@@ -475,7 +500,7 @@ public void InvalidInput_NegativeOffset()
}
}
- [Fact]
+ [ConditionalFact(nameof(IsSupported))]
public void InvalidInput_NegativeCount()
{
using (HashAlgorithm hash = Create())
@@ -484,7 +509,7 @@ public void InvalidInput_NegativeCount()
}
}
- [Fact]
+ [ConditionalFact(nameof(IsSupported))]
public void InvalidInput_TooBigOffset()
{
using (HashAlgorithm hash = Create())
@@ -493,7 +518,7 @@ public void InvalidInput_TooBigOffset()
}
}
- [Fact]
+ [ConditionalFact(nameof(IsSupported))]
public void InvalidInput_TooBigCount()
{
byte[] nonEmpty = new byte[53];
@@ -507,7 +532,7 @@ public void InvalidInput_TooBigCount()
}
}
- [Fact]
+ [ConditionalFact(nameof(IsSupported))]
public void BoundaryCondition_Count0()
{
byte[] nonEmpty = new byte[53];
@@ -533,7 +558,7 @@ public void BoundaryCondition_Count0()
}
}
- [Fact]
+ [ConditionalFact(nameof(IsSupported))]
public void OffsetAndCountRespected()
{
byte[] dataA = { 1, 1, 2, 3, 5, 8 };
@@ -550,7 +575,7 @@ public void OffsetAndCountRespected()
}
}
- [Fact]
+ [ConditionalFact(nameof(IsSupported))]
public void ComputeHash_TryComputeHash_HashSetExplicitlyByBoth()
{
using (HashAlgorithm hash = Create())
@@ -569,7 +594,7 @@ public void ComputeHash_TryComputeHash_HashSetExplicitlyByBoth()
}
}
- [Fact]
+ [ConditionalFact(nameof(IsSupported))]
public void Dispose_TryComputeHash_ThrowsException()
{
HashAlgorithm hash = Create();
@@ -578,7 +603,7 @@ public void Dispose_TryComputeHash_ThrowsException()
Assert.Throws(() => hash.TryComputeHash(new byte[1], new byte[1], out int bytesWritten));
}
- [Fact]
+ [ConditionalFact(nameof(IsSupported))]
public void Initialize_TransformBlock()
{
byte[] hashInput = new byte[] { 1, 2, 3, 4, 5 };
@@ -600,7 +625,7 @@ public void Initialize_TransformBlock()
}
}
- [Fact]
+ [ConditionalFact(nameof(IsSupported))]
public void Initialize_TransformBlock_Unused()
{
byte[] hashInput = new byte[] { 1, 2, 3, 4, 5 };
@@ -621,7 +646,7 @@ public void Initialize_TransformBlock_Unused()
}
}
- [Fact]
+ [ConditionalFact(nameof(IsSupported))]
public void Initialize_DoubleInitialize_Works()
{
byte[] hashInput = new byte[] { 1, 2, 3, 4, 5 };
@@ -645,4 +670,10 @@ public void Initialize_DoubleInitialize_Works()
}
}
}
+
+ public interface IHashTrait
+ {
+ static abstract bool IsSupported { get; }
+ static abstract int HashSizeInBytes { get; }
+ }
}
diff --git a/src/libraries/System.Security.Cryptography/tests/HashDerivedTests.cs b/src/libraries/System.Security.Cryptography/tests/HashDerivedTests.cs
index 6734bca6bb5a53..1c58b8758eef7f 100644
--- a/src/libraries/System.Security.Cryptography/tests/HashDerivedTests.cs
+++ b/src/libraries/System.Security.Cryptography/tests/HashDerivedTests.cs
@@ -11,28 +11,28 @@ public static class HashDerivedTests
public static void HashSize_SetForDerived_SHA1()
{
using DerivedSHA1 sha = new DerivedSHA1();
- Assert.Equal(160, sha.HashSize);
+ Assert.Equal(SHA1.HashSizeInBits, sha.HashSize);
}
[Fact]
public static void HashSize_SetForDerived_SHA256()
{
using DerivedSHA256 sha = new DerivedSHA256();
- Assert.Equal(256, sha.HashSize);
+ Assert.Equal(SHA256.HashSizeInBits, sha.HashSize);
}
[Fact]
public static void HashSize_SetForDerived_SHA384()
{
using DerivedSHA384 sha = new DerivedSHA384();
- Assert.Equal(384, sha.HashSize);
+ Assert.Equal(SHA384.HashSizeInBits, sha.HashSize);
}
[Fact]
public static void HashSize_SetForDerived_SHA512()
{
using DerivedSHA512 sha = new DerivedSHA512();
- Assert.Equal(512, sha.HashSize);
+ Assert.Equal(SHA512.HashSizeInBits, sha.HashSize);
}
[Fact]
@@ -40,7 +40,28 @@ public static void HashSize_SetForDerived_SHA512()
public static void HashSize_SetForDerived_MD5()
{
using DerivedMD5 sha = new DerivedMD5();
- Assert.Equal(128, sha.HashSize);
+ Assert.Equal(MD5.HashSizeInBits, sha.HashSize);
+ }
+
+ [Fact]
+ public static void HashSize_SetForDerived_SHA3_256()
+ {
+ using DerivedSHA3_256 sha = new DerivedSHA3_256();
+ Assert.Equal(SHA3_256.HashSizeInBits, sha.HashSize);
+ }
+
+ [Fact]
+ public static void HashSize_SetForDerived_SHA3_384()
+ {
+ using DerivedSHA3_384 sha = new DerivedSHA3_384();
+ Assert.Equal(SHA3_384.HashSizeInBits, sha.HashSize);
+ }
+
+ [Fact]
+ public static void HashSize_SetForDerived_SHA3_512()
+ {
+ using DerivedSHA3_512 sha = new DerivedSHA3_512();
+ Assert.Equal(SHA3_512.HashSizeInBits, sha.HashSize);
}
private class DerivedSHA1 : SHA1
@@ -71,14 +92,28 @@ private class DerivedSHA512 : SHA512
protected override void HashCore(byte[] array, int ibStart, int cbSize) => throw null;
}
- private class DerivedMD5 : MD5
+ private class DerivedSHA3_256 : SHA3_256
{
public override void Initialize() => throw null;
protected override byte[] HashFinal() => throw null;
protected override void HashCore(byte[] array, int ibStart, int cbSize) => throw null;
}
- private class DerivedHMACMD5 : HMACMD5
+ private class DerivedSHA3_384 : SHA3_384
+ {
+ public override void Initialize() => throw null;
+ protected override byte[] HashFinal() => throw null;
+ protected override void HashCore(byte[] array, int ibStart, int cbSize) => throw null;
+ }
+
+ private class DerivedSHA3_512 : SHA3_512
+ {
+ public override void Initialize() => throw null;
+ protected override byte[] HashFinal() => throw null;
+ protected override void HashCore(byte[] array, int ibStart, int cbSize) => throw null;
+ }
+
+ private class DerivedMD5 : MD5
{
public override void Initialize() => throw null;
protected override byte[] HashFinal() => throw null;
diff --git a/src/libraries/System.Security.Cryptography/tests/HmacMD5Tests.cs b/src/libraries/System.Security.Cryptography/tests/HmacMD5Tests.cs
index d657f9627b2942..2adf417aec8458 100644
--- a/src/libraries/System.Security.Cryptography/tests/HmacMD5Tests.cs
+++ b/src/libraries/System.Security.Cryptography/tests/HmacMD5Tests.cs
@@ -10,8 +10,14 @@
namespace System.Security.Cryptography.Tests
{
[SkipOnPlatform(TestPlatforms.Browser, "Not supported on Browser")]
- public class HmacMD5Tests : Rfc2202HmacTests
+ public class HmacMD5Tests : Rfc2202HmacTests
{
+ public sealed class Traits : IHmacTrait
+ {
+ public static bool IsSupported => true;
+ public static int HashSizeInBytes => HMACSHA1.HashSizeInBytes;
+ }
+
private static readonly byte[][] s_testKeys2202 =
{
null,
@@ -45,6 +51,7 @@ public HmacMD5Tests()
protected override int MacSize => HMACMD5.HashSizeInBytes;
protected override HMAC Create() => new HMACMD5();
+ protected override HMAC Create(byte[] key) => new HMACMD5(key);
protected override HashAlgorithm CreateHashAlgorithm() => MD5.Create();
protected override byte[] HashDataOneShot(byte[] key, byte[] source) =>
HMACMD5.HashData(key, source);
@@ -218,5 +225,12 @@ await VerifyRepeatingAsync(
hexKey: "000102030405060708090A0B0C0D0E0F",
output: "C91E40247251F39BDFE6A7B72A5857F9");
}
+
+ [Fact]
+ public void HmacMD5_HashSizes()
+ {
+ Assert.Equal(128, HMACMD5.HashSizeInBits);
+ Assert.Equal(16, HMACMD5.HashSizeInBytes);
+ }
}
}
diff --git a/src/libraries/System.Security.Cryptography/tests/HmacSha1Tests.cs b/src/libraries/System.Security.Cryptography/tests/HmacSha1Tests.cs
index 9b5aa3effca47b..6b3b1eed43d8cf 100644
--- a/src/libraries/System.Security.Cryptography/tests/HmacSha1Tests.cs
+++ b/src/libraries/System.Security.Cryptography/tests/HmacSha1Tests.cs
@@ -9,8 +9,14 @@
namespace System.Security.Cryptography.Tests
{
- public class HmacSha1Tests : Rfc2202HmacTests
+ public class HmacSha1Tests : Rfc2202HmacTests
{
+ public sealed class Traits : IHmacTrait
+ {
+ public static bool IsSupported => true;
+ public static int HashSizeInBytes => HMACSHA1.HashSizeInBytes;
+ }
+
private static readonly byte[][] s_testKeys2202 =
{
null,
@@ -44,6 +50,7 @@ public HmacSha1Tests()
protected override int MacSize => HMACSHA1.HashSizeInBytes;
protected override HMAC Create() => new HMACSHA1();
+ protected override HMAC Create(byte[] key) => new HMACSHA1(key);
protected override HashAlgorithm CreateHashAlgorithm() => SHA1.Create();
protected override byte[] HashDataOneShot(byte[] key, byte[] source) =>
HMACSHA1.HashData(key, source);
@@ -241,5 +248,12 @@ await VerifyRepeatingAsync(
hexKey: "000102030405060708090A0B0C0D0E0F",
output: "5433122F77BCF8A4D9B874B4149823EF5B7C207E");
}
+
+ [Fact]
+ public void HmacSha1_HashSizes()
+ {
+ Assert.Equal(160, HMACSHA1.HashSizeInBits);
+ Assert.Equal(20, HMACSHA1.HashSizeInBytes);
+ }
}
}
diff --git a/src/libraries/System.Security.Cryptography/tests/HmacSha256Tests.cs b/src/libraries/System.Security.Cryptography/tests/HmacSha256Tests.cs
index dea079824ff1fc..6abef3de5a2a2f 100644
--- a/src/libraries/System.Security.Cryptography/tests/HmacSha256Tests.cs
+++ b/src/libraries/System.Security.Cryptography/tests/HmacSha256Tests.cs
@@ -9,12 +9,19 @@
namespace System.Security.Cryptography.Tests
{
- public class HmacSha256Tests : Rfc4231HmacTests
+ public class HmacSha256Tests : Rfc4231HmacTests
{
+ public sealed class Traits : IHmacTrait
+ {
+ public static bool IsSupported => true;
+ public static int HashSizeInBytes => HMACSHA256.HashSizeInBytes;
+ }
+
protected override int BlockSize => 64;
protected override int MacSize => HMACSHA256.HashSizeInBytes;
protected override HMAC Create() => new HMACSHA256();
+ protected override HMAC Create(byte[] key) => new HMACSHA256(key);
protected override HashAlgorithm CreateHashAlgorithm() => SHA256.Create();
protected override byte[] HashDataOneShot(byte[] key, byte[] source) =>
HMACSHA256.HashData(key, source);
@@ -205,5 +212,12 @@ await VerifyRepeatingAsync(
hexKey: "000102030405060708090A0B0C0D0E0F",
output: "07EFF8B326B7798C9CCFCBDBE579489AC785A7995A04618B1A2813C26744777D");
}
+
+ [Fact]
+ public void HmacSha256_HashSizes()
+ {
+ Assert.Equal(256, HMACSHA256.HashSizeInBits);
+ Assert.Equal(32, HMACSHA256.HashSizeInBytes);
+ }
}
}
diff --git a/src/libraries/System.Security.Cryptography/tests/HmacSha384Tests.cs b/src/libraries/System.Security.Cryptography/tests/HmacSha384Tests.cs
index d026442de4bb4a..d17b08a69925ee 100644
--- a/src/libraries/System.Security.Cryptography/tests/HmacSha384Tests.cs
+++ b/src/libraries/System.Security.Cryptography/tests/HmacSha384Tests.cs
@@ -9,12 +9,19 @@
namespace System.Security.Cryptography.Tests
{
- public class HmacSha384Tests : Rfc4231HmacTests
+ public class HmacSha384Tests : Rfc4231HmacTests
{
+ public sealed class Traits : IHmacTrait
+ {
+ public static bool IsSupported => true;
+ public static int HashSizeInBytes => HMACSHA384.HashSizeInBytes;
+ }
+
protected override int BlockSize => 128;
protected override int MacSize => HMACSHA384.HashSizeInBytes;
protected override HMAC Create() => new HMACSHA384();
+ protected override HMAC Create(byte[] key) => new HMACSHA384(key);
protected override HashAlgorithm CreateHashAlgorithm() => SHA384.Create();
protected override byte[] HashDataOneShot(byte[] key, byte[] source) =>
HMACSHA384.HashData(key, source);
@@ -218,5 +225,12 @@ await VerifyRepeatingAsync(
hexKey: "000102030405060708090A0B0C0D0E0F",
output: "6A0FDC1C54C664AD91C7C157D2670C5D44E4D44EBAD2359A0206974C7088B1A867F76971E6C240C33B33A66BA295BB56");
}
+
+ [Fact]
+ public void HmacSha384_HashSizes()
+ {
+ Assert.Equal(384, HMACSHA384.HashSizeInBits);
+ Assert.Equal(48, HMACSHA384.HashSizeInBytes);
+ }
}
}
diff --git a/src/libraries/System.Security.Cryptography/tests/HmacSha3_256Tests.cs b/src/libraries/System.Security.Cryptography/tests/HmacSha3_256Tests.cs
new file mode 100644
index 00000000000000..fb5b540ac506d0
--- /dev/null
+++ b/src/libraries/System.Security.Cryptography/tests/HmacSha3_256Tests.cs
@@ -0,0 +1,233 @@
+// Licensed to the .NET Foundation under one or more agreements.
+// The .NET Foundation licenses this file to you under the MIT license.
+
+using System.Collections.Generic;
+using System.IO;
+using System.Threading;
+using System.Threading.Tasks;
+using Test.Cryptography;
+using Xunit;
+
+namespace System.Security.Cryptography.Tests
+{
+ public class HmacSha3_256Tests : HmacTests
+ {
+ public sealed class Traits : IHmacTrait
+ {
+ public static bool IsSupported => HMACSHA3_256.IsSupported;
+ public static int HashSizeInBytes => HMACSHA3_256.HashSizeInBytes;
+ }
+
+ protected override int BlockSize => 136;
+ protected override int MacSize => HMACSHA3_256.HashSizeInBytes;
+
+ protected override HMAC Create() => new HMACSHA3_256();
+ protected override HMAC Create(byte[] key) => new HMACSHA3_256(key);
+ protected override HashAlgorithm CreateHashAlgorithm() => SHA3_256.Create();
+ protected override byte[] HashDataOneShot(byte[] key, byte[] source) =>
+ HMACSHA3_256.HashData(key, source);
+
+ protected override byte[] HashDataOneShot(ReadOnlySpan key, ReadOnlySpan source) =>
+ HMACSHA3_256.HashData(key, source);
+
+ protected override int HashDataOneShot(ReadOnlySpan key, ReadOnlySpan source, Span destination) =>
+ HMACSHA3_256.HashData(key, source, destination);
+
+ protected override bool TryHashDataOneShot(ReadOnlySpan key, ReadOnlySpan source, Span destination, out int written) =>
+ HMACSHA3_256.TryHashData(key, source, destination, out written);
+
+ protected override byte[] HashDataOneShot(ReadOnlySpan key, Stream source) =>
+ HMACSHA3_256.HashData(key, source);
+
+ protected override byte[] HashDataOneShot(byte[] key, Stream source) =>
+ HMACSHA3_256.HashData(key, source);
+
+ protected override int HashDataOneShot(ReadOnlySpan key, Stream source, Span destination) =>
+ HMACSHA3_256.HashData(key, source, destination);
+
+ protected override ValueTask HashDataOneShotAsync(
+ ReadOnlyMemory key,
+ Stream source,
+ Memory destination,
+ CancellationToken cancellationToken) => HMACSHA3_256.HashDataAsync(key, source, destination, cancellationToken);
+
+ protected override ValueTask HashDataOneShotAsync(
+ ReadOnlyMemory key,
+ Stream source,
+ CancellationToken cancellationToken) => HMACSHA3_256.HashDataAsync(key, source, cancellationToken);
+
+ protected override ValueTask HashDataOneShotAsync(
+ byte[] key,
+ Stream source,
+ CancellationToken cancellationToken) => HMACSHA3_256.HashDataAsync(key, source, cancellationToken);
+
+ private static readonly byte[][] s_testKeys = new byte[][]
+ {
+ // From: https://csrc.nist.gov/CSRC/media/Projects/Cryptographic-Standards-and-Guidelines/documents/examples/HMAC_SHA3-256.pdf
+ null,
+ ByteUtils.HexToByteArray("000102030405060708090a0b0c0d0e0f101112131415161718191a1b1c1d1e1f"),
+ ByteUtils.HexToByteArray(
+ "000102030405060708090a0b0c0d0e0f101112131415161718191a1b1c1d1e1f" +
+ "202122232425262728292a2b2c2d2e2f303132333435363738393a3b3c3d3e3f" +
+ "404142434445464748494a4b4c4d4e4f505152535455565758595a5b5c5d5e5f" +
+ "606162636465666768696a6b6c6d6e6f707172737475767778797a7b7c7d7e7f" +
+ "8081828384858687"),
+ ByteUtils.HexToByteArray(
+ "000102030405060708090a0b0c0d0e0f101112131415161718191a1b1c1d1e1f" +
+ "202122232425262728292a2b2c2d2e2f303132333435363738393a3b3c3d3e3f" +
+ "404142434445464748494a4b4c4d4e4f505152535455565758595a5b5c5d5e5f" +
+ "606162636465666768696a6b6c6d6e6f707172737475767778797a7b7c7d7e7f" +
+ "808182838485868788898a8b8c8d8e8f909192939495969798999a9b9c9d9e9f" +
+ "a0a1a2a3a4a5a6a7"),
+ ByteUtils.HexToByteArray("000102030405060708090a0b0c0d0e0f101112131415161718191a1b1c1d1e1f"),
+ };
+
+ private static readonly byte[][] s_testData = new byte[][]
+ {
+ null,
+ ByteUtils.HexToByteArray("53616d706c65206d65737361676520666f72206b65796c656e3c626c6f636b6c656e"),
+ ByteUtils.HexToByteArray("53616d706c65206d65737361676520666f72206b65796c656e3d626c6f636b6c656e"),
+ ByteUtils.HexToByteArray("53616d706c65206d65737361676520666f72206b65796c656e3e626c6f636b6c656e"),
+ ByteUtils.HexToByteArray("53616d706c65206d65737361676520666f72206b65796c656e3c626c6f636b6c656e2c2077697468207472756e636174656420746167"),
+ };
+
+ private static readonly byte[][] s_testMacs = new byte[][]
+ {
+ null,
+ ByteUtils.HexToByteArray("4fe8e202c4f058e8dddc23d8c34e467343e23555e24fc2f025d598f558f67205"),
+ ByteUtils.HexToByteArray("68b94e2e538a9be4103bebb5aa016d47961d4d1aa906061313b557f8af2c3faa"),
+ ByteUtils.HexToByteArray("9bcf2c238e235c3ce88404e813bd2f3a97185ac6f238c63d6229a00b07974258"),
+ ByteUtils.HexToByteArray("c8dc7148d8c1423aa549105dafdf9cad"), // Truncated test case.
+ };
+
+
+ public HmacSha3_256Tests() : base(s_testKeys, s_testData, s_testMacs)
+ {
+ }
+
+ [ConditionalTheory(nameof(IsSupported))]
+ [MemberData(nameof(TestCaseIds))]
+ public void HmacSha3_256_VerifyTestCases(int caseId)
+ {
+ VerifyHmac(caseId, s_testMacs[caseId]);
+ }
+
+ public static IEnumerable TestCaseIds
+ {
+ get
+ {
+ for (int i = 1; i < s_testKeys.Length; i++)
+ {
+ yield return new object[] { i };
+ }
+ }
+ }
+
+ [ConditionalFact(nameof(IsSupported))]
+ public void HmacSha3_256_Rfc2104_2()
+ {
+ VerifyHmacRfc2104_2();
+ }
+
+ [ConditionalFact(nameof(IsSupported))]
+ public void HmacSha3_256_ThrowsArgumentNullForNullConstructorKey()
+ {
+ AssertExtensions.Throws("key", () => new HMACSHA3_256(null));
+ }
+
+ [ConditionalFact(nameof(IsSupported))]
+ public void HmacSha3_256_EmptyKey()
+ {
+ VerifyRepeating(
+ input: "Crypto is fun!",
+ 1,
+ hexKey: "",
+ output: "c49c24ae6dce7e90d5e2853ad9e647d89ac3dd04eb71aa0912ab4b4b1068ba6a");
+ }
+
+ [ConditionalFact(nameof(IsSupported))]
+ public void HmacSha3_256_Stream_MultipleOf4096()
+ {
+ // Verfied with:
+ // for _ in {1..1024}; do echo -n "0102030405060708"; done | openssl sha3-256 -hex -mac HMAC -macopt hexkey:000102030405060708090A0B0C0D0E0F
+ VerifyRepeating(
+ input: "0102030405060708",
+ 1024,
+ hexKey: "000102030405060708090A0B0C0D0E0F",
+ output: "F09DD1B814BF4A576FF8AEAFF69509E3093895426F441A428953221F3CB9E421");
+ }
+
+ [ConditionalFact(nameof(IsSupported))]
+ public void HmacSha3_256_Stream_NotMultipleOf4096()
+ {
+ // Verfied with:
+ // for _ in {1..1025}; do echo -n "0102030405060708"; done | openssl sha3-256 -hex -mac HMAC -macopt hexkey:000102030405060708090A0B0C0D0E0F
+ VerifyRepeating(
+ input: "0102030405060708",
+ 1025,
+ hexKey: "000102030405060708090A0B0C0D0E0F",
+ output: "F1DB96FF2B53CBA0338FF519BFA10153731DB48A63C26EB66294895B220F72B5");
+ }
+
+ [ConditionalFact(nameof(IsSupported))]
+ public void HmacSha3_256_Stream_Empty()
+ {
+ // Verfied with:
+ // echo -n "" | openssl sha3-256 -hex -mac HMAC -macopt hexkey:000102030405060708090A0B0C0D0E0F
+ VerifyRepeating(
+ input: "",
+ 0,
+ hexKey: "000102030405060708090A0B0C0D0E0F",
+ output: "72756291FF30F3E916BEF99EC9CF5938B25D90BBCAC1BDB1E1E6564E8EC6FDA5");
+ }
+
+ [ConditionalFact(nameof(IsSupported))]
+ public async Task HmacSha3_256_Stream_MultipleOf4096_Async()
+ {
+ // Verfied with:
+ // for _ in {1..1024}; do echo -n "0102030405060708"; done | openssl sha3-256 -hex -mac HMAC -macopt hexkey:000102030405060708090A0B0C0D0E0F
+ await VerifyRepeatingAsync(
+ input: "0102030405060708",
+ 1024,
+ hexKey: "000102030405060708090A0B0C0D0E0F",
+ output: "F09DD1B814BF4A576FF8AEAFF69509E3093895426F441A428953221F3CB9E421");
+ }
+
+ [ConditionalFact(nameof(IsSupported))]
+ public async Task HmacSha3_256_Stream_NotMultipleOf4096_Async()
+ {
+ // Verfied with:
+ // for _ in {1..1025}; do echo -n "0102030405060708"; done | openssl sha3-256 -hex -mac HMAC -macopt hexkey:000102030405060708090A0B0C0D0E0F
+ await VerifyRepeatingAsync(
+ input: "0102030405060708",
+ 1025,
+ hexKey: "000102030405060708090A0B0C0D0E0F",
+ output: "F1DB96FF2B53CBA0338FF519BFA10153731DB48A63C26EB66294895B220F72B5");
+ }
+
+ [ConditionalFact(nameof(IsSupported))]
+ public async Task HmacSha3_256_Stream_Empty_Async()
+ {
+ // Verfied with:
+ // echo -n "" | openssl sha3-256 -hex -mac HMAC -macopt hexkey:000102030405060708090A0B0C0D0E0F
+ await VerifyRepeatingAsync(
+ input: "",
+ 0,
+ hexKey: "000102030405060708090A0B0C0D0E0F",
+ output: "72756291FF30F3E916BEF99EC9CF5938B25D90BBCAC1BDB1E1E6564E8EC6FDA5");
+ }
+
+ [Fact]
+ public void HmacSha3_256_HashSizes()
+ {
+ Assert.Equal(256, HMACSHA3_256.HashSizeInBits);
+ Assert.Equal(32, HMACSHA3_256.HashSizeInBytes);
+ }
+
+ [Fact]
+ public void HmacSha3_256_IsSupported_AgreesWithPlatformVersion()
+ {
+ Assert.Equal(PlatformDetection.SupportsSha3, HMACSHA3_256.IsSupported);
+ }
+ }
+}
diff --git a/src/libraries/System.Security.Cryptography/tests/HmacSha3_384Tests.cs b/src/libraries/System.Security.Cryptography/tests/HmacSha3_384Tests.cs
new file mode 100644
index 00000000000000..7dab4a444f5adb
--- /dev/null
+++ b/src/libraries/System.Security.Cryptography/tests/HmacSha3_384Tests.cs
@@ -0,0 +1,241 @@
+// Licensed to the .NET Foundation under one or more agreements.
+// The .NET Foundation licenses this file to you under the MIT license.
+
+using System.Collections.Generic;
+using System.IO;
+using System.Threading;
+using System.Threading.Tasks;
+using Test.Cryptography;
+using Xunit;
+
+namespace System.Security.Cryptography.Tests
+{
+ public class HmacSha3_384Tests : HmacTests
+ {
+ public sealed class Traits : IHmacTrait
+ {
+ public static bool IsSupported => HMACSHA3_384.IsSupported;
+ public static int HashSizeInBytes => HMACSHA3_384.HashSizeInBytes;
+ }
+
+ protected override int BlockSize => 104;
+ protected override int MacSize => HMACSHA3_384.HashSizeInBytes;
+
+ protected override HMAC Create() => new HMACSHA3_384();
+ protected override HMAC Create(byte[] key) => new HMACSHA3_384(key);
+ protected override HashAlgorithm CreateHashAlgorithm() => SHA3_384.Create();
+ protected override byte[] HashDataOneShot(byte[] key, byte[] source) =>
+ HMACSHA3_384.HashData(key, source);
+
+ protected override byte[] HashDataOneShot(ReadOnlySpan key, ReadOnlySpan source) =>
+ HMACSHA3_384.HashData(key, source);
+
+ protected override int HashDataOneShot(ReadOnlySpan key, ReadOnlySpan source, Span destination) =>
+ HMACSHA3_384.HashData(key, source, destination);
+
+ protected override bool TryHashDataOneShot(ReadOnlySpan key, ReadOnlySpan source, Span destination, out int written) =>
+ HMACSHA3_384.TryHashData(key, source, destination, out written);
+
+ protected override byte[] HashDataOneShot(ReadOnlySpan key, Stream source) =>
+ HMACSHA3_384.HashData(key, source);
+
+ protected override byte[] HashDataOneShot(byte[] key, Stream source) =>
+ HMACSHA3_384.HashData(key, source);
+
+ protected override int HashDataOneShot(ReadOnlySpan key, Stream source, Span destination) =>
+ HMACSHA3_384.HashData(key, source, destination);
+
+ protected override ValueTask HashDataOneShotAsync(
+ ReadOnlyMemory key,
+ Stream source,
+ Memory destination,
+ CancellationToken cancellationToken) => HMACSHA3_384.HashDataAsync(key, source, destination, cancellationToken);
+
+ protected override ValueTask HashDataOneShotAsync(
+ ReadOnlyMemory key,
+ Stream source,
+ CancellationToken cancellationToken) => HMACSHA3_384.HashDataAsync(key, source, cancellationToken);
+
+ protected override ValueTask HashDataOneShotAsync(
+ byte[] key,
+ Stream source,
+ CancellationToken cancellationToken) => HMACSHA3_384.HashDataAsync(key, source, cancellationToken);
+
+ private static readonly byte[][] s_testKeys = new byte[][]
+ {
+ // From: https://csrc.nist.gov/CSRC/media/Projects/Cryptographic-Standards-and-Guidelines/documents/examples/HMAC_SHA3-384.pdf
+ null,
+ ByteUtils.HexToByteArray(
+ "000102030405060708090a0b0c0d0e0f1011121314151617" +
+ "18191a1b1c1d1e1f202122232425262728292a2b2c2d2e2f"),
+ ByteUtils.HexToByteArray(
+ "000102030405060708090a0b0c0d0e0f101112131415161718191a1b1c1d1e1f" +
+ "202122232425262728292a2b2c2d2e2f303132333435363738393a3b3c3d3e3f" +
+ "404142434445464748494a4b4c4d4e4f505152535455565758595a5b5c5d5e5f" +
+ "6061626364656667"),
+ ByteUtils.HexToByteArray(
+ "000102030405060708090a0b0c0d0e0f101112131415161718191a1b1c1d1e1f" +
+ "202122232425262728292a2b2c2d2e2f303132333435363738393a3b3c3d3e3f" +
+ "404142434445464748494a4b4c4d4e4f505152535455565758595a5b5c5d5e5f" +
+ "606162636465666768696a6b6c6d6e6f707172737475767778797a7b7c7d7e7f" +
+ "808182838485868788898a8b8c8d8e8f9091929394959697"),
+ ByteUtils.HexToByteArray(
+ "000102030405060708090a0b0c0d0e0f101112131415161718191a1b1c1d1e1f" +
+ "202122232425262728292a2b2c2d2e2f"),
+ };
+
+ private static readonly byte[][] s_testData = new byte[][]
+ {
+ null,
+ ByteUtils.HexToByteArray("53616d706c65206d65737361676520666f72206b65796c656e3c626c6f636b6c656e"),
+ ByteUtils.HexToByteArray("53616d706c65206d65737361676520666f72206b65796c656e3d626c6f636b6c656e"),
+ ByteUtils.HexToByteArray("53616d706c65206d65737361676520666f72206b65796c656e3e626c6f636b6c656e"),
+ ByteUtils.HexToByteArray("53616d706c65206d65737361676520666f72206b65796c656e3c626c6f636b6c656e2c2077697468207472756e636174656420746167"),
+ };
+
+ private static readonly byte[][] s_testMacs = new byte[][]
+ {
+ null,
+ ByteUtils.HexToByteArray(
+ "d588a3c51f3f2d906e8298c1199aa8ff6296218127f6b38a" +
+ "90b6afe2c5617725bc99987f79b22a557b6520db710b7f42"),
+ ByteUtils.HexToByteArray(
+ "a27d24b592e8c8cbf6d4ce6fc5bf62d8fc98bf2d486640d9" +
+ "eb8099e24047837f5f3bffbe92dcce90b4ed5b1e7e44fa90"),
+ ByteUtils.HexToByteArray(
+ "e5ae4c739f455279368ebf36d4f5354c95aa184c899d3870" +
+ "e460ebc288ef1f9470053f73f7c6da2a71bcaec38ce7d6ac"),
+ ByteUtils.HexToByteArray("25f4bf53606e91af79d24a4bb1fd6aecd44414a30c8ebb0a"), // Truncated
+ };
+
+
+ public HmacSha3_384Tests() : base(s_testKeys, s_testData, s_testMacs)
+ {
+ }
+
+ [ConditionalTheory(nameof(IsSupported))]
+ [MemberData(nameof(TestCaseIds))]
+ public void HmacSha3_384_VerifyTestCases(int caseId)
+ {
+ VerifyHmac(caseId, s_testMacs[caseId]);
+ }
+
+ public static IEnumerable TestCaseIds
+ {
+ get
+ {
+ for (int i = 1; i < s_testKeys.Length; i++)
+ {
+ yield return new object[] { i };
+ }
+ }
+ }
+
+ [ConditionalFact(nameof(IsSupported))]
+ public void HmacSha3_384_Rfc2104_2()
+ {
+ VerifyHmacRfc2104_2();
+ }
+
+ [ConditionalFact(nameof(IsSupported))]
+ public void HmacSha3_384_ThrowsArgumentNullForNullConstructorKey()
+ {
+ AssertExtensions.Throws("key", () => new HMACSHA3_384(null));
+ }
+
+ [ConditionalFact(nameof(IsSupported))]
+ public void HmacSha3_384_EmptyKey()
+ {
+ VerifyRepeating(
+ input: "Crypto is fun!",
+ 1,
+ hexKey: "",
+ output: "16C079F7D15505E9E541421E63C432A063F39C1E3E953E6DC7B8A81FE5620AFFA430C3E6BE6A0F605755C7C5EE4E347E");
+ }
+
+ [ConditionalFact(nameof(IsSupported))]
+ public void HmacSha3_384_Stream_MultipleOf4096()
+ {
+ // Verfied with:
+ // for _ in {1..1024}; do echo -n "0102030405060708"; done | openssl sha3-384 -hex -mac HMAC -macopt hexkey:000102030405060708090A0B0C0D0E0F
+ VerifyRepeating(
+ input: "0102030405060708",
+ 1024,
+ hexKey: "000102030405060708090A0B0C0D0E0F",
+ output: "17D03C8153AF1719F5829C8CBF328D4200900ED1AB038A399B4F256A490BD4D2AB311C71D2ED0C20ABA96E57768CCA6E");
+ }
+
+ [ConditionalFact(nameof(IsSupported))]
+ public void HmacSha3_384_Stream_NotMultipleOf4096()
+ {
+ // Verfied with:
+ // for _ in {1..1025}; do echo -n "0102030405060708"; done | openssl sha3-384 -hex -mac HMAC -macopt hexkey:000102030405060708090A0B0C0D0E0F
+ VerifyRepeating(
+ input: "0102030405060708",
+ 1025,
+ hexKey: "000102030405060708090A0B0C0D0E0F",
+ output: "5360719A6A9DFEB1143C2866A7F72EA29404C3DBF37F244A0497F400DA126B2728118863454288F26E3796BE72238958");
+ }
+
+ [ConditionalFact(nameof(IsSupported))]
+ public void HmacSha3_384_Stream_Empty()
+ {
+ // Verfied with:
+ // echo -n "" | openssl sha3-384 -hex -mac HMAC -macopt hexkey:000102030405060708090A0B0C0D0E0F
+ VerifyRepeating(
+ input: "",
+ 0,
+ hexKey: "000102030405060708090A0B0C0D0E0F",
+ output: "5B0196779BDAF859E99869A63C9FDF3821E9100A370B5E9B88F76B9DA87410F99846E7DBB4F8A69368C5C5A834B3128D");
+ }
+
+ [ConditionalFact(nameof(IsSupported))]
+ public async Task HmacSha3_384_Stream_MultipleOf4096_Async()
+ {
+ // Verfied with:
+ // for _ in {1..1024}; do echo -n "0102030405060708"; done | openssl sha3-384 -hex -mac HMAC -macopt hexkey:000102030405060708090A0B0C0D0E0F
+ await VerifyRepeatingAsync(
+ input: "0102030405060708",
+ 1024,
+ hexKey: "000102030405060708090A0B0C0D0E0F",
+ output: "17D03C8153AF1719F5829C8CBF328D4200900ED1AB038A399B4F256A490BD4D2AB311C71D2ED0C20ABA96E57768CCA6E");
+ }
+
+ [ConditionalFact(nameof(IsSupported))]
+ public async Task HmacSha3_384_Stream_NotMultipleOf4096_Async()
+ {
+ // Verfied with:
+ // for _ in {1..1025}; do echo -n "0102030405060708"; done | openssl sha3-384 -hex -mac HMAC -macopt hexkey:000102030405060708090A0B0C0D0E0F
+ await VerifyRepeatingAsync(
+ input: "0102030405060708",
+ 1025,
+ hexKey: "000102030405060708090A0B0C0D0E0F",
+ output: "5360719A6A9DFEB1143C2866A7F72EA29404C3DBF37F244A0497F400DA126B2728118863454288F26E3796BE72238958");
+ }
+
+ [ConditionalFact(nameof(IsSupported))]
+ public async Task HmacSha3_384_Stream_Empty_Async()
+ {
+ // Verfied with:
+ // echo -n "" | openssl sha3-384 -hex -mac HMAC -macopt hexkey:000102030405060708090A0B0C0D0E0F
+ await VerifyRepeatingAsync(
+ input: "",
+ 0,
+ hexKey: "000102030405060708090A0B0C0D0E0F",
+ output: "5B0196779BDAF859E99869A63C9FDF3821E9100A370B5E9B88F76B9DA87410F99846E7DBB4F8A69368C5C5A834B3128D");
+ }
+
+ [Fact]
+ public void HmacSha3_384_HashSizes()
+ {
+ Assert.Equal(384, HMACSHA3_384.HashSizeInBits);
+ Assert.Equal(48, HMACSHA3_384.HashSizeInBytes);
+ }
+
+ [Fact]
+ public void HmacSha3_384_IsSupported_AgreesWithPlatformVersion()
+ {
+ Assert.Equal(PlatformDetection.SupportsSha3, HMACSHA3_384.IsSupported);
+ }
+ }
+}
diff --git a/src/libraries/System.Security.Cryptography/tests/HmacSha3_512Tests.cs b/src/libraries/System.Security.Cryptography/tests/HmacSha3_512Tests.cs
new file mode 100644
index 00000000000000..3359ba4e335680
--- /dev/null
+++ b/src/libraries/System.Security.Cryptography/tests/HmacSha3_512Tests.cs
@@ -0,0 +1,247 @@
+// Licensed to the .NET Foundation under one or more agreements.
+// The .NET Foundation licenses this file to you under the MIT license.
+
+using System.Collections.Generic;
+using System.IO;
+using System.Threading;
+using System.Threading.Tasks;
+using Test.Cryptography;
+using Xunit;
+
+namespace System.Security.Cryptography.Tests
+{
+ public class HmacSha3_512Tests : HmacTests
+ {
+ public sealed class Traits : IHmacTrait
+ {
+ public static bool IsSupported => HMACSHA3_512.IsSupported;
+ public static int HashSizeInBytes => HMACSHA3_512.HashSizeInBytes;
+ }
+
+ protected override int BlockSize => 72;
+ protected override int MacSize => HMACSHA3_512.HashSizeInBytes;
+
+ protected override HMAC Create() => new HMACSHA3_512();
+ protected override HMAC Create(byte[] key) => new HMACSHA3_512(key);
+ protected override HashAlgorithm CreateHashAlgorithm() => SHA3_512.Create();
+ protected override byte[] HashDataOneShot(byte[] key, byte[] source) =>
+ HMACSHA3_512.HashData(key, source);
+
+ protected override byte[] HashDataOneShot(ReadOnlySpan key, ReadOnlySpan source) =>
+ HMACSHA3_512.HashData(key, source);
+
+ protected override int HashDataOneShot(ReadOnlySpan key, ReadOnlySpan source, Span destination) =>
+ HMACSHA3_512.HashData(key, source, destination);
+
+ protected override bool TryHashDataOneShot(ReadOnlySpan key, ReadOnlySpan source, Span destination, out int written) =>
+ HMACSHA3_512.TryHashData(key, source, destination, out written);
+
+ protected override byte[] HashDataOneShot(ReadOnlySpan key, Stream source) =>
+ HMACSHA3_512.HashData(key, source);
+
+ protected override byte[] HashDataOneShot(byte[] key, Stream source) =>
+ HMACSHA3_512.HashData(key, source);
+
+ protected override int HashDataOneShot(ReadOnlySpan key, Stream source, Span destination) =>
+ HMACSHA3_512.HashData(key, source, destination);
+
+ protected override ValueTask HashDataOneShotAsync(
+ ReadOnlyMemory key,
+ Stream source,
+ Memory destination,
+ CancellationToken cancellationToken) => HMACSHA3_512.HashDataAsync(key, source, destination, cancellationToken);
+
+ protected override ValueTask HashDataOneShotAsync(
+ ReadOnlyMemory key,
+ Stream source,
+ CancellationToken cancellationToken) => HMACSHA3_512.HashDataAsync(key, source, cancellationToken);
+
+ protected override ValueTask HashDataOneShotAsync(
+ byte[] key,
+ Stream source,
+ CancellationToken cancellationToken) => HMACSHA3_512.HashDataAsync(key, source, cancellationToken);
+
+ private static readonly byte[][] s_testKeys = new byte[][]
+ {
+ // From: https://csrc.nist.gov/CSRC/media/Projects/Cryptographic-Standards-and-Guidelines/documents/examples/HMAC_SHA3-512.pdf
+ null,
+ ByteUtils.HexToByteArray(
+ "000102030405060708090a0b0c0d0e0f101112131415161718191a1b1c1d1e1f" +
+ "202122232425262728292a2b2c2d2e2f303132333435363738393a3b3c3d3e3f"),
+ ByteUtils.HexToByteArray(
+ "000102030405060708090a0b0c0d0e0f101112131415161718191a1b1c1d1e1f" +
+ "202122232425262728292a2b2c2d2e2f303132333435363738393a3b3c3d3e3f" +
+ "4041424344454647"),
+ ByteUtils.HexToByteArray(
+ "000102030405060708090a0b0c0d0e0f101112131415161718191a1b1c1d1e1f" +
+ "202122232425262728292a2b2c2d2e2f303132333435363738393a3b3c3d3e3f" +
+ "404142434445464748494a4b4c4d4e4f505152535455565758595a5b5c5d5e5f" +
+ "606162636465666768696a6b6c6d6e6f707172737475767778797a7b7c7d7e7f" +
+ "8081828384858687"),
+ ByteUtils.HexToByteArray(
+ "000102030405060708090a0b0c0d0e0f101112131415161718191a1b1c1d1e1f" +
+ "202122232425262728292a2b2c2d2e2f303132333435363738393a3b3c3d3e3f"),
+ };
+
+ private static readonly byte[][] s_testData = new byte[][]
+ {
+ null,
+ ByteUtils.HexToByteArray("53616d706c65206d65737361676520666f72206b65796c656e3c626c6f636b6c656e"),
+ ByteUtils.HexToByteArray("53616d706c65206d65737361676520666f72206b65796c656e3d626c6f636b6c656e"),
+ ByteUtils.HexToByteArray("53616d706c65206d65737361676520666f72206b65796c656e3e626c6f636b6c656e"),
+ ByteUtils.HexToByteArray("53616d706c65206d65737361676520666f72206b65796c656e3c626c6f636b6c656e2c2077697468207472756e636174656420746167"),
+ };
+
+ private static readonly byte[][] s_testMacs = new byte[][]
+ {
+ null,
+ ByteUtils.HexToByteArray(
+ "4efd629d6c71bf86162658f29943b1c308ce27cdfa6db0d9c3ce81763f9cbce5" +
+ "f7ebe9868031db1a8f8eb7b6b95e5c5e3f657a8996c86a2f6527e307f0213196"),
+ ByteUtils.HexToByteArray(
+ "544e257ea2a3e5ea19a590e6a24b724ce6327757723fe2751b75bf007d80f6b3" +
+ "60744bf1b7a88ea585f9765b47911976d3191cf83c039f5ffab0d29cc9d9b6da"),
+ ByteUtils.HexToByteArray(
+ "5f464f5e5b7848e3885e49b2c385f0694985d0e38966242dc4a5fe3fea4b37d4" +
+ "6b65ceced5dcf59438dd840bab22269f0ba7febdb9fcf74602a35666b2a32915"),
+ ByteUtils.HexToByteArray("7bb06d859257b25ce73ca700df34c5cbef5c898bac91029e0b27975d4e526a08"), // Truncated
+ };
+
+
+ public HmacSha3_512Tests() : base(s_testKeys, s_testData, s_testMacs)
+ {
+ }
+
+ [ConditionalTheory(nameof(IsSupported))]
+ [MemberData(nameof(TestCaseIds))]
+ public void HmacSha3_512_VerifyTestCases(int caseId)
+ {
+ VerifyHmac(caseId, s_testMacs[caseId]);
+ }
+
+ public static IEnumerable TestCaseIds
+ {
+ get
+ {
+ for (int i = 1; i < s_testKeys.Length; i++)
+ {
+ yield return new object[] { i };
+ }
+ }
+ }
+
+ [ConditionalFact(nameof(IsSupported))]
+ public void HmacSha3_512_Rfc2104_2()
+ {
+ VerifyHmacRfc2104_2();
+ }
+
+ [ConditionalFact(nameof(IsSupported))]
+ public void HmacSha3_512_ThrowsArgumentNullForNullConstructorKey()
+ {
+ AssertExtensions.Throws("key", () => new HMACSHA3_512(null));
+ }
+
+ [ConditionalFact(nameof(IsSupported))]
+ public void HmacSha3_512_EmptyKey()
+ {
+ VerifyRepeating(
+ input: "Crypto is fun!",
+ 1,
+ hexKey: "",
+ output: "8F1658BB962C7048A50BEA174FA7697596F3F5F127228EEA64589DFFB0C1A07C" +
+ "98792648C97886B3DD9E63AB962581C67DA5EE04F2B15263555B1796782CB556");
+ }
+
+ [ConditionalFact(nameof(IsSupported))]
+ public void HmacSha3_512_Stream_MultipleOf4096()
+ {
+ // Verfied with:
+ // for _ in {1..1024}; do echo -n "0102030405060708"; done | openssl sha3-512 -hex -mac HMAC -macopt hexkey:000102030405060708090A0B0C0D0E0F
+ VerifyRepeating(
+ input: "0102030405060708",
+ 1024,
+ hexKey: "000102030405060708090A0B0C0D0E0F",
+ output: "43A635D00606EFB4797B0B50B3C2CCAACDC8C2DA38D1369EA49CDD93EDE27824" +
+ "317D9014C429DB18E5A6BFD811F7B484922471085F17ED31F6A7EB4E07BFFA97");
+ }
+
+ [ConditionalFact(nameof(IsSupported))]
+ public void HmacSha3_512_Stream_NotMultipleOf4096()
+ {
+ // Verfied with:
+ // for _ in {1..1025}; do echo -n "0102030405060708"; done | openssl sha3-512 -hex -mac HMAC -macopt hexkey:000102030405060708090A0B0C0D0E0F
+ VerifyRepeating(
+ input: "0102030405060708",
+ 1025,
+ hexKey: "000102030405060708090A0B0C0D0E0F",
+ output: "90D378A7546A66804E6C0ADF3203D3836244FD8CF628294E7F3AD95539EDF6D9" +
+ "E86DECE850D50DE76386CB293FA832778C7D6607A4F00AD666DA3EFFD6143E70");
+ }
+
+ [ConditionalFact(nameof(IsSupported))]
+ public void HmacSha3_512_Stream_Empty()
+ {
+ // Verfied with:
+ // echo -n "" | openssl sha3-512 -hex -mac HMAC -macopt hexkey:000102030405060708090A0B0C0D0E0F
+ VerifyRepeating(
+ input: "",
+ 0,
+ hexKey: "000102030405060708090A0B0C0D0E0F",
+ output: "908D1BE1A2CC5CC4B8C62E98D09AB6E967529FCB24F4177CB94CB072F5968D01" +
+ "CA58633748DC80D4615E3D21228BB3A5F535FA1CB963DF463CC28ABAF1A9B2D1");
+ }
+
+ [ConditionalFact(nameof(IsSupported))]
+ public async Task HmacSha3_512_Stream_MultipleOf4096_Async()
+ {
+ // Verfied with:
+ // for _ in {1..1024}; do echo -n "0102030405060708"; done | openssl sha3-512 -hex -mac HMAC -macopt hexkey:000102030405060708090A0B0C0D0E0F
+ await VerifyRepeatingAsync(
+ input: "0102030405060708",
+ 1024,
+ hexKey: "000102030405060708090A0B0C0D0E0F",
+ output: "43A635D00606EFB4797B0B50B3C2CCAACDC8C2DA38D1369EA49CDD93EDE27824" +
+ "317D9014C429DB18E5A6BFD811F7B484922471085F17ED31F6A7EB4E07BFFA97");
+ }
+
+ [ConditionalFact(nameof(IsSupported))]
+ public async Task HmacSha3_512_Stream_NotMultipleOf4096_Async()
+ {
+ // Verfied with:
+ // for _ in {1..1025}; do echo -n "0102030405060708"; done | openssl sha3-512 -hex -mac HMAC -macopt hexkey:000102030405060708090A0B0C0D0E0F
+ await VerifyRepeatingAsync(
+ input: "0102030405060708",
+ 1025,
+ hexKey: "000102030405060708090A0B0C0D0E0F",
+ output: "90D378A7546A66804E6C0ADF3203D3836244FD8CF628294E7F3AD95539EDF6D9" +
+ "E86DECE850D50DE76386CB293FA832778C7D6607A4F00AD666DA3EFFD6143E70");
+ }
+
+ [ConditionalFact(nameof(IsSupported))]
+ public async Task HmacSha3_512_Stream_Empty_Async()
+ {
+ // Verfied with:
+ // echo -n "" | openssl sha3-512 -hex -mac HMAC -macopt hexkey:000102030405060708090A0B0C0D0E0F
+ await VerifyRepeatingAsync(
+ input: "",
+ 0,
+ hexKey: "000102030405060708090A0B0C0D0E0F",
+ output: "908D1BE1A2CC5CC4B8C62E98D09AB6E967529FCB24F4177CB94CB072F5968D01" +
+ "CA58633748DC80D4615E3D21228BB3A5F535FA1CB963DF463CC28ABAF1A9B2D1");
+ }
+
+ [Fact]
+ public void HmacSha3_256_HashSizes()
+ {
+ Assert.Equal(512, HMACSHA3_512.HashSizeInBits);
+ Assert.Equal(64, HMACSHA3_512.HashSizeInBytes);
+ }
+
+ [Fact]
+ public void HmacSha3_512_IsSupported_AgreesWithPlatformVersion()
+ {
+ Assert.Equal(PlatformDetection.SupportsSha3, HMACSHA3_512.IsSupported);
+ }
+ }
+}
diff --git a/src/libraries/System.Security.Cryptography/tests/HmacSha512Tests.cs b/src/libraries/System.Security.Cryptography/tests/HmacSha512Tests.cs
index 44aec88b8e1e2d..3568b40353af57 100644
--- a/src/libraries/System.Security.Cryptography/tests/HmacSha512Tests.cs
+++ b/src/libraries/System.Security.Cryptography/tests/HmacSha512Tests.cs
@@ -9,12 +9,19 @@
namespace System.Security.Cryptography.Tests
{
- public class HmacSha512Tests : Rfc4231HmacTests
+ public class HmacSha512Tests : Rfc4231HmacTests
{
+ public sealed class Traits : IHmacTrait
+ {
+ public static bool IsSupported => true;
+ public static int HashSizeInBytes => HMACSHA512.HashSizeInBytes;
+ }
+
protected override int BlockSize => 128;
protected override int MacSize => HMACSHA512.HashSizeInBytes;
protected override HMAC Create() => new HMACSHA512();
+ protected override HMAC Create(byte[] key) => new HMACSHA512(key);
protected override HashAlgorithm CreateHashAlgorithm() => SHA512.Create();
protected override byte[] HashDataOneShot(byte[] key, byte[] source) =>
HMACSHA512.HashData(key, source);
@@ -218,5 +225,12 @@ await VerifyRepeatingAsync(
hexKey: "000102030405060708090A0B0C0D0E0F",
output: "2FEC800CA276C44985A35AEC92067E5E53A1BB80A6FDAB1D9C97D54068118F30AD4C33717466D372EA00BBF126E5B79C6F7143DD36C31F72028330E92AE3A359");
}
+
+ [Fact]
+ public void HmacSha512_HashSizes()
+ {
+ Assert.Equal(512, HMACSHA512.HashSizeInBits);
+ Assert.Equal(64, HMACSHA512.HashSizeInBytes);
+ }
}
}
diff --git a/src/libraries/System.Security.Cryptography/tests/HmacTests.cs b/src/libraries/System.Security.Cryptography/tests/HmacTests.cs
index 436f407c8b81b2..c6bd7ee994f3f5 100644
--- a/src/libraries/System.Security.Cryptography/tests/HmacTests.cs
+++ b/src/libraries/System.Security.Cryptography/tests/HmacTests.cs
@@ -9,8 +9,11 @@
namespace System.Security.Cryptography.Tests
{
- public abstract class HmacTests
+ public abstract class HmacTests where THmacTrait : IHmacTrait
{
+ public static bool IsSupported => THmacTrait.IsSupported;
+ public static bool IsNotSupported => !IsSupported;
+
// RFC2202 defines the test vectors for HMACMD5 and HMACSHA1
// RFC4231 defines the test vectors for HMACSHA{224,256,384,512}
// They share the same datasets for cases 1-5, but cases 6 and 7 differ.
@@ -26,6 +29,7 @@ protected HmacTests(byte[][] testKeys, byte[][] testData, byte[][] testMacs)
}
protected abstract HMAC Create();
+ protected abstract HMAC Create(byte[] key);
protected abstract HashAlgorithm CreateHashAlgorithm();
protected abstract byte[] HashDataOneShot(byte[] key, byte[] source);
@@ -254,7 +258,7 @@ protected void VerifyHmacRfc2104_2()
}
}
- [Fact]
+ [ConditionalFact(nameof(IsSupported))]
public void InvalidInput_Null()
{
using (HMAC hash = Create())
@@ -265,7 +269,7 @@ public void InvalidInput_Null()
}
}
- [Fact]
+ [ConditionalFact(nameof(IsSupported))]
public void InvalidInput_NegativeOffset()
{
using (HMAC hash = Create())
@@ -274,7 +278,7 @@ public void InvalidInput_NegativeOffset()
}
}
- [Fact]
+ [ConditionalFact(nameof(IsSupported))]
public void InvalidInput_NegativeCount()
{
using (HMAC hash = Create())
@@ -283,7 +287,7 @@ public void InvalidInput_NegativeCount()
}
}
- [Fact]
+ [ConditionalFact(nameof(IsSupported))]
public void InvalidInput_TooBigOffset()
{
using (HMAC hash = Create())
@@ -292,7 +296,7 @@ public void InvalidInput_TooBigOffset()
}
}
- [Fact]
+ [ConditionalFact(nameof(IsSupported))]
public void InvalidInput_TooBigCount()
{
byte[] nonEmpty = new byte[53];
@@ -306,7 +310,7 @@ public void InvalidInput_TooBigCount()
}
}
- [Fact]
+ [ConditionalFact(nameof(IsSupported))]
public void BoundaryCondition_Count0()
{
byte[] nonEmpty = new byte[53];
@@ -332,7 +336,7 @@ public void BoundaryCondition_Count0()
}
}
- [Fact]
+ [ConditionalFact(nameof(IsSupported))]
public void OffsetAndCountRespected()
{
byte[] dataA = { 1, 1, 2, 3, 5, 8 };
@@ -349,7 +353,7 @@ public void OffsetAndCountRespected()
}
}
- [Fact]
+ [ConditionalFact(nameof(IsSupported))]
public void InvalidKey_ThrowArgumentNullException()
{
using (HMAC hash = Create())
@@ -358,21 +362,21 @@ public void InvalidKey_ThrowArgumentNullException()
}
}
- [Fact]
+ [ConditionalFact(nameof(IsSupported))]
public void OneShot_NullKey_ArgumentNullException()
{
AssertExtensions.Throws("key", () =>
HashDataOneShot(key: (byte[])null, source: Array.Empty()));
}
- [Fact]
+ [ConditionalFact(nameof(IsSupported))]
public void OneShot_NullSource_ArgumentNullException()
{
AssertExtensions.Throws("source", () =>
HashDataOneShot(key: Array.Empty(), source: (byte[])null));
}
- [Fact]
+ [ConditionalFact(nameof(IsSupported))]
public void OneShot_ExistingBuffer_TooSmall()
{
byte[] buffer = new byte[MacSize - 1];
@@ -385,7 +389,7 @@ public void OneShot_ExistingBuffer_TooSmall()
AssertExtensions.FilledWith(0, buffer);
}
- [Fact]
+ [ConditionalFact(nameof(IsSupported))]
public void OneShot_TryExistingBuffer_TooSmall()
{
byte[] buffer = new byte[MacSize - 1];
@@ -397,10 +401,10 @@ public void OneShot_TryExistingBuffer_TooSmall()
AssertExtensions.FilledWith