kshkulev/hcs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Add project

Browse Source 
Basic formatting applied. Unnecessary comments have been removed. Suspicious code is covered by TODO.
This commit is contained in:
HOME-LAPTOP\kshkulev
2025-08-12 11:21:10 +09:00
parent bbcbe841a7
commit 33ab055b43
546 changed files with 176950 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

293
Hcs.Client/GostCryptography/Reflection/X509CertificateHelper.cs Normal file
View File

@ -0,0 +1,293 @@
using GostCryptography;
using GostCryptography.Asn1.Gost.Gost_R3410_2001;
using GostCryptography.Asn1.Gost.Gost_R3410_2012_256;
using GostCryptography.Asn1.Gost.Gost_R3410_2012_512;
using GostCryptography.Asn1.Gost.Gost_R3410_94;
using GostCryptography.Gost_R3410;
using GostCryptography.Native;
using System.Reflection;
// ReSharper disable once CheckNamespace
namespace System.Security.Cryptography.X509Certificates
{
/// <summary>
/// Методы расширения <see cref="X509Certificate2"/>
/// </summary>
[SecurityCritical]
public static class X509CertificateHelper
{
/// <summary>
/// Возвращает <see langword="true"/> для сертификатов ГОСТ
/// </summary>
public static bool IsGost(this X509Certificate2 certificate)
{
return certificate.IsGost_R3410_2012_512()
|| certificate.IsGost_R3410_2012_256()
|| certificate.IsGost_R3410_2001()
|| certificate.IsGost_R3410_94();
}
/// <summary>
/// Возвращает <see langword="true"/> для сертификатов ГОСТ Р 34.10-94
/// </summary>
public static bool IsGost_R3410_94(this X509Certificate2 certificate)
{
return Gost_R3410_94_Constants.KeyAlgorithm.Value.Equals(certificate.GetKeyAlgorithm());
}
/// <summary>
/// Возвращает <see langword="true"/> для сертификатов ГОСТ Р 34.10-2001
/// </summary>
public static bool IsGost_R3410_2001(this X509Certificate2 certificate)
{
return Gost_R3410_2001_Constants.KeyAlgorithm.Value.Equals(certificate.GetKeyAlgorithm());
}
/// <summary>
/// Возвращает <see langword="true"/> для сертификатов ГОСТ Р 34.10-2012/256
/// </summary>
public static bool IsGost_R3410_2012_256(this X509Certificate2 certificate)
{
return Gost_R3410_2012_256_Constants.KeyAlgorithm.Value.Equals(certificate.GetKeyAlgorithm());
}
/// <summary>
/// Возвращает <see langword="true"/> для сертификатов ГОСТ Р 34.10-2012/512
/// </summary>
public static bool IsGost_R3410_2012_512(this X509Certificate2 certificate)
{
return Gost_R3410_2012_512_Constants.KeyAlgorithm.Value.Equals(certificate.GetKeyAlgorithm());
}
/// <summary>
/// Возвращает <see cref="Oid"/> функции хэширования сертификата
/// </summary>
/// <param name="certificate"></param>
/// <returns></returns>
public static Oid GetHashAlgorithm(this X509Certificate2 certificate)
{
if (certificate.IsGost_R3410_2012_512())
{
return Gost_R3410_2012_512_Constants.HashAlgorithm.ToOid();
}
if (certificate.IsGost_R3410_2012_256())
{
return Gost_R3410_2012_256_Constants.HashAlgorithm.ToOid();
}
if (certificate.IsGost_R3410_2001())
{
return Gost_R3410_2001_Constants.HashAlgorithm.ToOid();
}
if (certificate.IsGost_R3410_94())
{
return Gost_R3410_94_Constants.HashAlgorithm.ToOid();
}
return null;
}
private static volatile MethodInfo _getPrivateKeyInfoMethod;
private static readonly object GetPrivateKeyInfoMethodSync = new object();
/// <summary>
/// Возвращает параметры <see cref="CspParameters"/> закрытого ключа сертификата
/// </summary>
/// <param name="certificate"></param>
/// <returns></returns>
public static CspParameters GetPrivateKeyInfo(this X509Certificate2 certificate)
{
if (certificate == null)
{
throw ExceptionUtility.ArgumentNull(nameof(certificate));
}
if (certificate.HasPrivateKey)
{
if (_getPrivateKeyInfoMethod == null)
{
lock (GetPrivateKeyInfoMethodSync)
{
if (_getPrivateKeyInfoMethod == null)
{
_getPrivateKeyInfoMethod = typeof(X509Certificate2).GetMethod("GetPrivateKeyInfo", BindingFlags.Static | BindingFlags.NonPublic);
}
}
}
if (_getPrivateKeyInfoMethod != null)
{
var certContext = GetCertContext(certificate);
if (certContext != null)
{
try
{
var parameters = new CspParameters();
var success = _getPrivateKeyInfoMethod.Invoke(null, new[] { certContext, parameters });
if (Equals(success, true))
{
return parameters;
}
}
catch
{
}
}
}
}
return null;
}
private static volatile MethodInfo _setPrivateKeyPropertyMethod;
private static readonly object SetPrivateKeyPropertyMethodSync = new object();
private static void SetPrivateKeyProperty(X509Certificate2 certificate, ICspAsymmetricAlgorithm privateKey)
{
if (_setPrivateKeyPropertyMethod == null)
{
lock (SetPrivateKeyPropertyMethodSync)
{
if (_setPrivateKeyPropertyMethod == null)
{
_setPrivateKeyPropertyMethod = typeof(X509Certificate2).GetMethod("SetPrivateKeyProperty", BindingFlags.Static | BindingFlags.NonPublic);
}
}
}
if (_setPrivateKeyPropertyMethod != null)
{
var certContext = GetCertContext(certificate);
if (certContext != null)
{
try
{
_setPrivateKeyPropertyMethod.Invoke(null, new[] { certContext, privateKey });
}
catch
{
}
}
}
}
private static volatile FieldInfo _certContextField;
private static readonly object CertContextFieldSync = new object();
private static object GetCertContext(X509Certificate2 certificate)
{
if (_certContextField == null)
{
lock (CertContextFieldSync)
{
if (_certContextField == null)
{
_certContextField = typeof(X509Certificate2).GetField("m_safeCertContext", BindingFlags.Instance | BindingFlags.NonPublic);
}
}
}
if (_certContextField != null)
{
try
{
return _certContextField.GetValue(certificate);
}
catch
{
}
}
return null;
}
/// <summary>
/// Возвращает закрытый ключ сертификата
/// </summary>
public static AsymmetricAlgorithm GetPrivateKeyAlgorithm(this X509Certificate2 certificate)
{
if (certificate.IsGost_R3410_2012_512())
{
var cspParameters = GetPrivateKeyInfo(certificate);
return new Gost_R3410_2012_512_AsymmetricAlgorithm(cspParameters);
}
if (certificate.IsGost_R3410_2012_256())
{
var cspParameters = GetPrivateKeyInfo(certificate);
return new Gost_R3410_2012_256_AsymmetricAlgorithm(cspParameters);
}
if (certificate.IsGost_R3410_2001())
{
var cspParameters = GetPrivateKeyInfo(certificate);
return new Gost_R3410_2001_AsymmetricAlgorithm(cspParameters);
}
return certificate.PrivateKey;
}
/// <summary>
/// Возвращает открытый ключ сертификата
/// </summary>
public static AsymmetricAlgorithm GetPublicKeyAlgorithm(this X509Certificate2 certificate)
{
if (certificate.IsGost_R3410_2012_512())
{
var publicKey = new Gost_R3410_2012_512_AsymmetricAlgorithm();
var encodedParameters = certificate.PublicKey.EncodedParameters.RawData;
var encodedKeyValue = certificate.PublicKey.EncodedKeyValue.RawData;
publicKey.ImportCspBlob(encodedParameters, encodedKeyValue);
return publicKey;
}
if (certificate.IsGost_R3410_2012_256())
{
var publicKey = new Gost_R3410_2012_256_AsymmetricAlgorithm();
var encodedParameters = certificate.PublicKey.EncodedParameters.RawData;
var encodedKeyValue = certificate.PublicKey.EncodedKeyValue.RawData;
publicKey.ImportCspBlob(encodedParameters, encodedKeyValue);
return publicKey;
}
if (certificate.IsGost_R3410_2001())
{
var publicKey = new Gost_R3410_2001_AsymmetricAlgorithm();
var encodedParameters = certificate.PublicKey.EncodedParameters.RawData;
var encodedKeyValue = certificate.PublicKey.EncodedKeyValue.RawData;
publicKey.ImportCspBlob(encodedParameters, encodedKeyValue);
return publicKey;
}
return certificate.PublicKey.Key;
}
/// <summary>
/// Возвращает сертификат для указанного ключа
/// </summary>
/// <param name="key">Ключ сертификата</param>
/// <param name="useAsPrivateKey">Использовать ключ, как приватный</param>
public static X509Certificate2 GetCertificate(this AsymmetricAlgorithm key, bool useAsPrivateKey = false)
{
X509Certificate2 certificate = null;
if (key is ISafeHandleProvider<SafeKeyHandleImpl> keyHandleProvider)
{
certificate = CryptoApiHelper.GetKeyCertificate(keyHandleProvider.SafeHandle);
}
if (useAsPrivateKey && (certificate != null) && (key is ICspAsymmetricAlgorithm privateKey))
{
SetPrivateKeyProperty(certificate, privateKey);
}
return certificate;
}
}
}