Add first version of StrongNameSigner

TheRealPiotrP · May 11, 2015 · eb23cea · eb23cea
1 parent cec575d
commit eb23cea
Show file tree

Hide file tree

Showing 66 changed files with 9,996 additions and 75 deletions.
diff --git a/SigningService.Tests/KeyVaultAgentSpecs.cs b/SigningService.Tests/KeyVaultAgentSpecs.cs
@@ -5,22 +5,70 @@
 using Microsoft.Its.Recipes;
 using SigningService.Agents;
 using Xunit;
+using System.Security.Cryptography;
+using System.IO;
 
 namespace SigningService.Tests
 {
     public class KeyVaultAgentSpecs
     {
+        public static void PrintBytes(byte[] bytes)
+        {
+            for (int i = 0; i < bytes.Length; i++)
+            {
+                if (i != 0)
+                {
+                    Console.Write("-");
+                }
+                Console.Write("{0:X2}", bytes[i]);
+            }
+            Console.WriteLine();
+        }
+
         [Fact]
         public async void When_digest_has_32_bytes_the_response_has_256_bytes()
         {
             Settings.Precedence = new[] {"test"};
 
             var keyVaultAgent = new KeyVaultAgent();
 
-            var response = await keyVaultAgent.Sign(Any.Sequence(x => Any.Byte(), 32).ToArray());
+            byte[] expectedHash = new byte[] { 0xA3, 0x15, 0x35, 0xB5, 0x37, 0x6C, 0xC7, 0xE4, 0xCF, 0x16, 0x10, 0x25, 0xB3, 0xDD, 0xA6, 0xA3, 0x04, 0xEC, 0x8F, 0x80, 0x43, 0xD3, 0x47, 0xB8, 0xF1, 0x64, 0xD7, 0x2F, 0x9D, 0x42, 0x6D, 0x2E };
+
+            byte[] expectedSignature = new byte[] {
+                0x8C, 0x03, 0x6B, 0xF3, 0xD4, 0xC4, 0xEB, 0xB6, 0x3D, 0xB7, 0x91, 0xE4, 0x65, 0x42, 0x95, 0x6F,
+                0x9E, 0x1D, 0x57, 0x73, 0x16, 0x5B, 0x5A, 0x76, 0x86, 0x11, 0x32, 0x2F, 0xB7, 0xC5, 0xF6, 0xBA,
+                0x19, 0x91, 0x8C, 0xCB, 0x63, 0x60, 0xE8, 0x3D, 0x44, 0xF5, 0x80, 0xDF, 0x8B, 0x2B, 0x35, 0xD0,
+                0x4B, 0x1D, 0x88, 0x5B, 0x29, 0xB0, 0xCD, 0xC4, 0xA7, 0x5B, 0x60, 0x2B, 0x80, 0x03, 0x08, 0xBF,
+                0x59, 0xB5, 0x73, 0x48, 0xF2, 0xA2, 0x6C, 0xB2, 0xAE, 0xFB, 0x28, 0x94, 0x84, 0x69, 0x29, 0x93,
+                0x88, 0x02, 0x96, 0x49, 0x4B, 0x27, 0x3B, 0x64, 0xAA, 0x40, 0x3A, 0x7A, 0x6D, 0x40, 0x20, 0x49,
+                0x47, 0xDA, 0x9C, 0x85, 0xE7, 0x8A, 0x18, 0x52, 0x4C, 0xBF, 0x9A, 0x80, 0xCF, 0x5A, 0x2D, 0xD2,
+                0xB7, 0x10, 0x60, 0x28, 0x82, 0x3F, 0xF0, 0x37, 0x43, 0x22, 0xA6, 0x43, 0x0C, 0x44, 0xFA, 0x60,
+                0xBC, 0x73, 0x8B, 0x3C, 0xDA, 0x7B, 0x1C, 0x4A, 0x60, 0x6A, 0x47, 0x07, 0x30, 0x76, 0x03, 0xAE,
+                0x8C, 0x7D, 0x3E, 0xFE, 0xF7, 0xB6, 0x38, 0xA1, 0x97, 0xEF, 0xD4, 0x5E, 0xF2, 0x3E, 0x44, 0x40,
+                0x9C, 0x4D, 0xAD, 0xE5, 0xCA, 0xA0, 0x05, 0x73, 0x46, 0xC9, 0x89, 0x3E, 0xED, 0x3F, 0xD9, 0x98,
+                0xD4, 0xA3, 0x0C, 0x1C, 0x68, 0xF1, 0x9E, 0x0B, 0x96, 0xCD, 0xC5, 0x4F, 0xE2, 0x2F, 0x46, 0xB3,
+                0x84, 0x37, 0xCA, 0x09, 0x11, 0x95, 0x4B, 0xB0, 0x3D, 0x60, 0x3D, 0x7D, 0xB0, 0xAC, 0x3E, 0x33,
+                0xE6, 0x02, 0x3B, 0xD0, 0x00, 0x63, 0x2B, 0x71, 0xF5, 0x00, 0x6A, 0x70, 0x67, 0xDF, 0x7B, 0x50,
+                0xC2, 0x10, 0xFD, 0x33, 0xF4, 0x85, 0x18, 0xCD, 0xB4, 0x0F, 0xA4, 0xC7, 0x02, 0xB8, 0xB2, 0x4F,
+                0xA4, 0x97, 0x15, 0x18, 0x73, 0x5C, 0x76, 0xAE, 0xD3, 0x2D, 0xFF, 0x73, 0x6F, 0x5B, 0xBC, 0x42
+            };
+
+            const string delaySignedPath = @"TestLib.delay.dll";
+            const string signedPath = @"TestLib.signed.dll";
 
-            response
-                .Should().HaveCount(256, "Because that is the length of an RSA256 signed digest");
+            using (FileStream outputPeImage = new FileStream(signedPath, FileMode.Create, FileAccess.ReadWrite))
+            {
+                using (FileStream peImage = new FileStream(delaySignedPath, FileMode.Open, FileAccess.ReadWrite, FileShare.Read | FileShare.Delete))
+                {
+                    peImage.CopyTo(outputPeImage);
+                    outputPeImage.Seek(0, SeekOrigin.Begin);
+                }
+                StrongNameSigner strongNameSigner = new StrongNameSigner(keyVaultAgent, outputPeImage, SHA256.Create());
+                bool result = await strongNameSigner.TrySignAsync();
+                result.Should().BeTrue();
+                strongNameSigner.ComputeHash().Should().BeEquivalentTo(expectedHash);
+                strongNameSigner.ExtractStrongNameSignature().Should().BeEquivalentTo(expectedSignature);
+            }
         }
 
         [Fact]

diff --git a/SigningService.Tests/SigningService.Tests.csproj b/SigningService.Tests/SigningService.Tests.csproj
@@ -129,6 +129,9 @@
     <Content Include=".config\test\KeyVaultSettings.json">
       <CopyToOutputDirectory>Always</CopyToOutputDirectory>
     </Content>
+    <Content Include="TestLib.delay.dll">
+      <CopyToOutputDirectory>PreserveNewest</CopyToOutputDirectory>
+    </Content>
     <None Include=".config\test\ServiceIdentitySettings.json">
       <CopyToOutputDirectory>Always</CopyToOutputDirectory>
     </None>

diff --git a/SigningService.Tests/TestLib.delay.dll b/SigningService.Tests/TestLib.delay.dll
diff --git a/SigningService/Agents/SignAgent.cs b/SigningService/Agents/SignAgent.cs
@@ -2,6 +2,7 @@
 using System.IO.Packaging;
 using System.Threading.Tasks;
 using SigningService.Repositories;
+using System.Collections.Generic;
 
 namespace SigningService.Agents
 {
@@ -45,7 +46,7 @@ private void SignPackagePart(PackagePart packagePart)
         {
             foreach (var signer in _signerRepository)
             {
-                signer.TrySign(packagePart);
+                signer.TrySignAsync(packagePart.GetStream()).Wait();
             }
         }
     }

diff --git a/SigningService/IPackagePartSigner.cs b/SigningService/IPackagePartSigner.cs
@@ -1,10 +1,13 @@
+using System.IO;
 using System.IO.Packaging;
+using System.Security.Cryptography;
 using System.Threading.Tasks;
 
 namespace SigningService
 {
     internal interface IPackagePartSigner
     {
-        Task<bool> TrySign(PackagePart packagePart);
+        Task<bool> TrySignAsync(Stream peStream);
+        bool CanSign(Stream peStream);
     }
 }
diff --git a/SigningService/SigningService.csproj b/SigningService/SigningService.csproj
@@ -30,6 +30,7 @@
     <DefineConstants>DEBUG;TRACE</DefineConstants>
     <ErrorReport>prompt</ErrorReport>
     <WarningLevel>4</WarningLevel>
+    <AllowUnsafeBlocks>true</AllowUnsafeBlocks>
   </PropertyGroup>
   <PropertyGroup Condition=" '$(Configuration)|$(Platform)' == 'Release|AnyCPU' ">
     <DebugType>pdbonly</DebugType>
@@ -143,6 +144,9 @@
     <Reference Include="Swashbuckle.Core">
       <HintPath>..\packages\Swashbuckle.Core.5.0.0\lib\net40\Swashbuckle.Core.dll</HintPath>
     </Reference>
+    <Reference Include="System.Collections.Immutable">
+      <HintPath>..\packages\System.Collections.Immutable.1.1.34-rc\lib\portable-net45+win8+wpa81\System.Collections.Immutable.dll</HintPath>
+    </Reference>
     <Reference Include="System.IdentityModel" />
     <Reference Include="System.IdentityModel.Tokens.Jwt">
       <HintPath>..\packages\System.IdentityModel.Tokens.Jwt.4.0.0\lib\net45\System.IdentityModel.Tokens.Jwt.dll</HintPath>
@@ -237,7 +241,64 @@
     <Compile Include="Services\Configuration\ServiceIdentitySettings.cs" />
     <Compile Include="Services\ExceptionHandling\TraceExceptionLogger.cs" />
     <Compile Include="Agents\SignAgent.cs" />
-    <Compile Include="StrongNameSigner.cs" />
+    <Compile Include="src\DataBlock.cs" />
+    <Compile Include="src\DataBlockHashing.cs" />
+    <Compile Include="src\ExceptionsHelper.cs" />
+    <Compile Include="src\MetadataReader\BlobReader.cs" />
+    <Compile Include="src\MetadataReader\COR20Constants.cs" />
+    <Compile Include="src\MetadataReader\CorElementType.cs" />
+    <Compile Include="src\MetadataReader\HandleKind.cs" />
+    <Compile Include="src\MetadataReader\Handles.cs" />
+    <Compile Include="src\MetadataReader\MemoryBlocks\AbstractMemoryBlock.cs" />
+    <Compile Include="src\MetadataReader\MemoryBlocks\ByteArrayMemoryBlock.cs" />
+    <Compile Include="src\MetadataReader\MemoryBlocks\ByteArrayMemoryProvider.cs" />
+    <Compile Include="src\MetadataReader\MemoryBlocks\ExternalMemoryBlock.cs" />
+    <Compile Include="src\MetadataReader\MemoryBlocks\ExternalMemoryBlockProvider.cs" />
+    <Compile Include="src\MetadataReader\MemoryBlocks\MemoryBlockProvider.cs" />
+    <Compile Include="src\MetadataReader\MemoryBlocks\MemoryMappedFileBlock.cs" />
+    <Compile Include="src\MetadataReader\MemoryBlocks\MetadataResources.Designer.cs" />
+    <Compile Include="src\MetadataReader\MemoryBlocks\NativeHeapMemoryBlock.cs" />
+    <Compile Include="src\MetadataReader\MetadataFlags.cs" />
+    <Compile Include="src\MetadataReader\MetadataStringDecoder.cs" />
+    <Compile Include="src\MetadataReader\PortableExecutable\CoffHeader.cs" />
+    <Compile Include="src\MetadataReader\PortableExecutable\CorFlags.cs" />
+    <Compile Include="src\MetadataReader\PortableExecutable\CorHeader.cs" />
+    <Compile Include="src\MetadataReader\PortableExecutable\DirectoryEntry.cs" />
+    <Compile Include="src\MetadataReader\PortableExecutable\Machine.cs" />
+    <Compile Include="src\MetadataReader\PortableExecutable\PEBinaryReader.cs" />
+    <Compile Include="src\MetadataReader\PortableExecutable\PEFileConstants.cs" />
+    <Compile Include="src\MetadataReader\PortableExecutable\PEFileFlags.cs" />
+    <Compile Include="src\MetadataReader\PortableExecutable\PEHeader.cs" />
+    <Compile Include="src\MetadataReader\PortableExecutable\PEHeaders.cs" />
+    <Compile Include="src\MetadataReader\PortableExecutable\PEMemoryBlock.cs" />
+    <Compile Include="src\MetadataReader\PortableExecutable\PEReader.cs" />
+    <Compile Include="src\MetadataReader\PortableExecutable\PEStreamOptions.cs" />
+    <Compile Include="src\MetadataReader\PortableExecutable\SectionHeader.cs" />
+    <Compile Include="src\MetadataReader\MemoryBlocks\StreamConstraints.cs" />
+    <Compile Include="src\MetadataReader\MemoryBlocks\StreamMemoryBlockProvider.cs" />
+    <Compile Include="src\MetadataReader\SerializationTypeCode.cs" />
+    <Compile Include="src\MetadataReader\SignatureAttributes.cs" />
+    <Compile Include="src\MetadataReader\SignatureCallingConvention.cs" />
+    <Compile Include="src\MetadataReader\SignatureHeader.cs" />
+    <Compile Include="src\MetadataReader\SignatureKind.cs" />
+    <Compile Include="src\MetadataReader\SignatureTypeCode.cs" />
+    <Compile Include="src\MetadataReader\TableIndex.cs" />
+    <Compile Include="src\MetadataReader\Utilities\BitArithmetic.cs" />
+    <Compile Include="src\MetadataReader\Utilities\EmptyArray.cs" />
+    <Compile Include="src\MetadataReader\Utilities\EncodingHelper.cs" />
+    <Compile Include="src\MetadataReader\Utilities\FileStreamReadLightUp.cs" />
+    <Compile Include="src\MetadataReader\Utilities\ImmutableByteArrayInterop.cs" />
+    <Compile Include="src\MetadataReader\Utilities\ImmutableMemoryStream.cs" />
+    <Compile Include="src\MetadataReader\Utilities\LightUpHelper.cs" />
+    <Compile Include="src\MetadataReader\Utilities\MemoryBlock.cs" />
+    <Compile Include="src\MetadataReader\Utilities\MemoryMapLightUp.cs" />
+    <Compile Include="src\MetadataReader\Utilities\ObjectPool`1.cs" />
+    <Compile Include="src\MetadataReader\Utilities\ReadOnlyUnmanagedMemoryStream.cs" />
+    <Compile Include="src\MetadataReader\Utilities\StreamExtensions.cs" />
+    <Compile Include="src\StrongNameSigner.cs" />
+    <Compile Include="src\StrongNameSignerDataExtractor.cs" />
+    <Compile Include="src\StrongNameSignerException.cs" />
+    <Compile Include="StrongNameSignerService.cs" />
   </ItemGroup>
   <ItemGroup>
     <Content Include="apiapp.json" />

diff --git a/SigningService/StrongNameSigner.cs b/SigningService/StrongNameSigner.cs
diff --git a/SigningService/StrongNameSignerService.cs b/SigningService/StrongNameSignerService.cs
@@ -0,0 +1,33 @@
+using SigningService.Agents;
+using System;
+using System.Collections.Generic;
+using System.IO;
+using System.Linq;
+using System.Security.Cryptography;
+using System.Threading.Tasks;
+using System.Web;
+
+namespace SigningService
+{
+    public class StrongNameSignerService : IPackagePartSigner
+    {
+        private IKeyVaultAgent _keyVaultAgent;
+
+        public StrongNameSignerService(IKeyVaultAgent keyVaultAgent)
+        {
+            _keyVaultAgent = keyVaultAgent;
+        }
+
+        public Task<bool> TrySignAsync(Stream peStream)
+        {
+            StrongNameSigner strongNameSigner = new StrongNameSigner(_keyVaultAgent, peStream, SHA256.Create());
+            return strongNameSigner.TrySignAsync();
+        }
+
+        public bool CanSign(Stream peStream)
+        {
+            StrongNameSigner strongNameSigner = new StrongNameSigner(_keyVaultAgent, peStream, SHA256.Create());
+            return strongNameSigner.CanSign();
+        }
+    }
+}
diff --git a/SigningService/packages.config b/SigningService/packages.config
@@ -32,6 +32,7 @@
   <package id="Owin" version="1.0" targetFramework="net45" userInstalled="true" />
   <package id="Swashbuckle" version="5.0.0" targetFramework="net45" userInstalled="true" />
   <package id="Swashbuckle.Core" version="5.0.0" targetFramework="net45" userInstalled="true" />
+  <package id="System.Collections.Immutable" version="1.1.34-rc" targetFramework="net45" />
   <package id="System.IdentityModel.Tokens.Jwt" version="4.0.0" targetFramework="net45" userInstalled="true" />
   <package id="Unity" version="3.5.1404.0" targetFramework="net45" userInstalled="true" />
   <package id="Unity.WebAPI" version="5.1" targetFramework="net45" userInstalled="true" />

diff --git a/SigningService/src/DataBlock.cs b/SigningService/src/DataBlock.cs
@@ -0,0 +1,25 @@
+using System;
+
+namespace SigningService
+{
+    public struct DataBlock : IComparable<DataBlock>
+    {
+        public DataBlock(DataBlockHashing hashing, string name, int offset, int size)
+        {
+            Hashing = hashing;
+            Name = name;
+            Offset = offset;
+            Size = size;
+        }
+
+        public DataBlockHashing Hashing;
+        public string Name;
+        public int Offset;
+        public int Size;
+
+        public int CompareTo(DataBlock other)
+        {
+            return Offset.CompareTo(other.Offset);
+        }
+    }
+}
diff --git a/SigningService/src/DataBlockHashing.cs b/SigningService/src/DataBlockHashing.cs
@@ -0,0 +1,9 @@
+namespace SigningService
+{
+    public enum DataBlockHashing
+    {
+        Hash,
+        Skip,
+        HashZeros
+    }
+}