Support for the SHA256-RSA-MGF1 signature method.

Revsgaard · Revsgaard · commit 195270304d33 · 2023-05-09T15:12:50.000+02:00
Signature description classes DigestAlgorithm changed.
diff --git a/src/ITfoxtec.Identity.Saml2/Cryptography/SignatureAlgorithm.cs b/src/ITfoxtec.Identity.Saml2/Cryptography/SignatureAlgorithm.cs
@@ -27,7 +27,7 @@ public static void ValidateAlgorithm(string signatureAlgorithm)
             {
                 return;
             }
-            throw new NotSupportedException($"Only SHA1 ({Saml2SecurityAlgorithms.RsaSha1Signature}), SHA256 ({Saml2SecurityAlgorithms.RsaSha256Signature}), SHA384 ({Saml2SecurityAlgorithms.RsaSha384Signature}), SHA512 ({Saml2SecurityAlgorithms.RsaSha512Signature}) and Sha256 Rsa MGF1 ({Saml2SecurityAlgorithms.RsaPssSha256Signature}) is supported.");
+            throw new NotSupportedException($"Only SHA1 ({Saml2SecurityAlgorithms.RsaSha1Signature}), SHA256 ({Saml2SecurityAlgorithms.RsaSha256Signature}), SHA384 ({Saml2SecurityAlgorithms.RsaSha384Signature}), SHA512 ({Saml2SecurityAlgorithms.RsaSha512Signature}) and SHA256 RSA MGF1 ({Saml2SecurityAlgorithms.RsaPssSha256Signature}) is supported.");
 
         }
 
diff --git a/src/ITfoxtec.Identity.Saml2/Cryptography/SignatureDescriptions/RSAPKCS1SHA1SignatureDescription.cs b/src/ITfoxtec.Identity.Saml2/Cryptography/SignatureDescriptions/RSAPKCS1SHA1SignatureDescription.cs
@@ -9,7 +9,7 @@ public sealed class RSAPKCS1SHA1SignatureDescription : SignatureDescription
         public RSAPKCS1SHA1SignatureDescription()
         {
             KeyAlgorithm = typeof(RSACryptoServiceProvider).AssemblyQualifiedName;
-            DigestAlgorithm = typeof(SHA1Managed).AssemblyQualifiedName;
+            DigestAlgorithm = "SHA1";
             FormatterAlgorithm = typeof(RSAPKCS1SignatureFormatter).AssemblyQualifiedName;
             DeformatterAlgorithm = typeof(RSAPKCS1SignatureDeformatter).AssemblyQualifiedName;
         }
@@ -22,7 +22,7 @@ public override AsymmetricSignatureDeformatter CreateDeformatter(AsymmetricAlgor
             }
 
             RSAPKCS1SignatureDeformatter deformatter = new RSAPKCS1SignatureDeformatter(key);
-            deformatter.SetHashAlgorithm("SHA1");
+            deformatter.SetHashAlgorithm(DigestAlgorithm);
             return deformatter;
         }
 
@@ -34,7 +34,7 @@ public override AsymmetricSignatureFormatter CreateFormatter(AsymmetricAlgorithm
             }
 
             RSAPKCS1SignatureFormatter formatter = new RSAPKCS1SignatureFormatter(key);
-            formatter.SetHashAlgorithm("SHA1");
+            formatter.SetHashAlgorithm(DigestAlgorithm);
             return formatter;
         }
     }
diff --git a/src/ITfoxtec.Identity.Saml2/Cryptography/SignatureDescriptions/RSAPKCS1SHA256SignatureDescription.cs b/src/ITfoxtec.Identity.Saml2/Cryptography/SignatureDescriptions/RSAPKCS1SHA256SignatureDescription.cs
@@ -9,7 +9,7 @@ public sealed class RSAPKCS1SHA256SignatureDescription : SignatureDescription
         public RSAPKCS1SHA256SignatureDescription()
         {
             KeyAlgorithm = typeof(RSACryptoServiceProvider).AssemblyQualifiedName;
-            DigestAlgorithm = typeof(SHA256Managed).AssemblyQualifiedName;
+            DigestAlgorithm = "SHA256";
             FormatterAlgorithm = typeof(RSAPKCS1SignatureFormatter).AssemblyQualifiedName;
             DeformatterAlgorithm = typeof(RSAPKCS1SignatureDeformatter).AssemblyQualifiedName;
         }
@@ -22,7 +22,7 @@ public override AsymmetricSignatureDeformatter CreateDeformatter(AsymmetricAlgor
             }
 
             RSAPKCS1SignatureDeformatter deformatter = new RSAPKCS1SignatureDeformatter(key);
-            deformatter.SetHashAlgorithm("SHA256");
+            deformatter.SetHashAlgorithm(DigestAlgorithm);
             return deformatter;
         }
 
@@ -34,7 +34,7 @@ public override AsymmetricSignatureFormatter CreateFormatter(AsymmetricAlgorithm
             }
 
             RSAPKCS1SignatureFormatter formatter = new RSAPKCS1SignatureFormatter(key);
-            formatter.SetHashAlgorithm("SHA256");
+            formatter.SetHashAlgorithm(DigestAlgorithm);
             return formatter;
         }
     }
diff --git a/src/ITfoxtec.Identity.Saml2/Cryptography/SignatureDescriptions/RSAPKCS1SHA384SignatureDescription.cs b/src/ITfoxtec.Identity.Saml2/Cryptography/SignatureDescriptions/RSAPKCS1SHA384SignatureDescription.cs
@@ -9,7 +9,7 @@ public sealed class RSAPKCS1SHA384SignatureDescription : SignatureDescription
         public RSAPKCS1SHA384SignatureDescription()
         {
             KeyAlgorithm = typeof(RSACryptoServiceProvider).AssemblyQualifiedName;
-            DigestAlgorithm = typeof(SHA384Managed).AssemblyQualifiedName;
+            DigestAlgorithm = "SHA384";
             FormatterAlgorithm = typeof(RSAPKCS1SignatureFormatter).AssemblyQualifiedName;
             DeformatterAlgorithm = typeof(RSAPKCS1SignatureDeformatter).AssemblyQualifiedName;
         }
@@ -22,7 +22,7 @@ public override AsymmetricSignatureDeformatter CreateDeformatter(AsymmetricAlgor
             }
 
             RSAPKCS1SignatureDeformatter deformatter = new RSAPKCS1SignatureDeformatter(key);
-            deformatter.SetHashAlgorithm("SHA384");
+            deformatter.SetHashAlgorithm(DigestAlgorithm);
             return deformatter;
         }
 
@@ -34,7 +34,7 @@ public override AsymmetricSignatureFormatter CreateFormatter(AsymmetricAlgorithm
             }
 
             RSAPKCS1SignatureFormatter formatter = new RSAPKCS1SignatureFormatter(key);
-            formatter.SetHashAlgorithm("SHA384");
+            formatter.SetHashAlgorithm(DigestAlgorithm);
             return formatter;
         }
     }
diff --git a/src/ITfoxtec.Identity.Saml2/Cryptography/SignatureDescriptions/RSAPKCS1SHA512SignatureDescription.cs b/src/ITfoxtec.Identity.Saml2/Cryptography/SignatureDescriptions/RSAPKCS1SHA512SignatureDescription.cs
@@ -9,7 +9,7 @@ public sealed class RSAPKCS1SHA512SignatureDescription : SignatureDescription
         public RSAPKCS1SHA512SignatureDescription()
         {
             KeyAlgorithm = typeof(RSACryptoServiceProvider).AssemblyQualifiedName;
-            DigestAlgorithm = typeof(SHA512Managed).AssemblyQualifiedName;
+            DigestAlgorithm = "SHA512";
             FormatterAlgorithm = typeof(RSAPKCS1SignatureFormatter).AssemblyQualifiedName;
             DeformatterAlgorithm = typeof(RSAPKCS1SignatureDeformatter).AssemblyQualifiedName;
         }
@@ -22,7 +22,7 @@ public override AsymmetricSignatureDeformatter CreateDeformatter(AsymmetricAlgor
             }
 
             RSAPKCS1SignatureDeformatter deformatter = new RSAPKCS1SignatureDeformatter(key);
-            deformatter.SetHashAlgorithm("SHA512");
+            deformatter.SetHashAlgorithm(DigestAlgorithm);
             return deformatter;
         }
 
@@ -34,7 +34,7 @@ public override AsymmetricSignatureFormatter CreateFormatter(AsymmetricAlgorithm
             }
 
             RSAPKCS1SignatureFormatter formatter = new RSAPKCS1SignatureFormatter(key);
-            formatter.SetHashAlgorithm("SHA512");
+            formatter.SetHashAlgorithm(DigestAlgorithm);
             return formatter;
         }
     }
diff --git a/src/ITfoxtec.Identity.Saml2/Cryptography/SignatureDescriptions/RSAPSSSHA256SignatureDescription.cs b/src/ITfoxtec.Identity.Saml2/Cryptography/SignatureDescriptions/RSAPSSSHA256SignatureDescription.cs
@@ -1,34 +1,41 @@
-﻿using System.Security.Cryptography;
+﻿using System;
+using System.Security.Cryptography;
 
 namespace ITfoxtec.Identity.Saml2.Cryptography
 {
     public class RSAPSSSHA256SignatureDescription : SignatureDescription
     {
         public RSAPSSSHA256SignatureDescription()
         {
-            using (var rsa = RSA.Create())
-            {
-                this.KeyAlgorithm = rsa.GetType().AssemblyQualifiedName; // Does not like a simple algorithm name, but wants a type name (AssembyQualifiedName in Core)
-            }
-           
-            this.DigestAlgorithm = "SHA256"; // Somehow wants a simple algorithm name
-            this.FormatterAlgorithm = typeof(RsaPssSignatureFormatter).FullName;
-            this.DeformatterAlgorithm = typeof(RsaPssSignatureDeformatter).FullName;
+            KeyAlgorithm = typeof(RSACryptoServiceProvider).AssemblyQualifiedName;
+            DigestAlgorithm = "SHA256"; 
+            FormatterAlgorithm = typeof(RsaPssSignatureFormatter).FullName;
+            DeformatterAlgorithm = typeof(RsaPssSignatureDeformatter).FullName;
         }
 
         public override AsymmetricSignatureFormatter CreateFormatter(AsymmetricAlgorithm key)
         {
+            if (key == null)
+            {
+                throw new ArgumentNullException("key");
+            }
+
             var signatureFormatter = new RsaPssSignatureFormatter();
             signatureFormatter.SetKey(key);
-            signatureFormatter.SetHashAlgorithm(this.DigestAlgorithm);
+            signatureFormatter.SetHashAlgorithm(DigestAlgorithm);
             return signatureFormatter;
         }
 
         public override AsymmetricSignatureDeformatter CreateDeformatter(AsymmetricAlgorithm key)
         {
+            if (key == null)
+            {
+                throw new ArgumentNullException("key");
+            }
+
             var signatureDeformatter = new RsaPssSignatureDeformatter();
             signatureDeformatter.SetKey(key);
-            signatureDeformatter.SetHashAlgorithm(this.DigestAlgorithm);
+            signatureDeformatter.SetHashAlgorithm(DigestAlgorithm);
             return signatureDeformatter;
         }
 
@@ -39,20 +46,20 @@ public class RsaPssSignatureFormatter : AsymmetricSignatureFormatter
 
             public override void SetKey(AsymmetricAlgorithm key)
             {
-                this.Key = (RSA)key;
+                Key = (RSA)key;
             }
 
             public override void SetHashAlgorithm(string strName)
             {
                 // Verify the name
                 Oid.FromFriendlyName(strName, OidGroup.HashAlgorithm);
 
-                this.HashAlgorithmName = strName;
+                HashAlgorithmName = strName;
             }
 
             public override byte[] CreateSignature(byte[] rgbHash)
             {
-                return this.Key.SignHash(rgbHash, new HashAlgorithmName(this.HashAlgorithmName), RSASignaturePadding.Pss);
+                return Key.SignHash(rgbHash, new HashAlgorithmName(HashAlgorithmName), RSASignaturePadding.Pss);
             }
         }
 
@@ -63,20 +70,20 @@ public class RsaPssSignatureDeformatter : AsymmetricSignatureDeformatter
 
             public override void SetKey(AsymmetricAlgorithm key)
             {
-                this.Key = (RSA)key;
+                Key = (RSA)key;
             }
 
             public override void SetHashAlgorithm(string strName)
             {
                 // Verify the name
                 Oid.FromFriendlyName(strName, OidGroup.HashAlgorithm);
 
-                this.HashAlgorithmName = strName;
+                HashAlgorithmName = strName;
             }
             
             public override bool VerifySignature(byte[] rgbHash, byte[] rgbSignature)
             {
-                return this.Key.VerifyHash(rgbHash, rgbSignature, new HashAlgorithmName(this.HashAlgorithmName), RSASignaturePadding.Pss);
+                return Key.VerifyHash(rgbHash, rgbSignature, new HashAlgorithmName(HashAlgorithmName), RSASignaturePadding.Pss);
             }
         }
     }
diff --git a/src/ITfoxtec.Identity.Saml2/Schemas/Saml2SecurityAlgorithms.cs b/src/ITfoxtec.Identity.Saml2/Schemas/Saml2SecurityAlgorithms.cs
@@ -38,7 +38,7 @@ public static class Saml2SecurityAlgorithms
         /// </summary>
         public const string RsaSha512Signature = "http://www.w3.org/2001/04/xmldsig-more#rsa-sha512";
         /// <summary>
-        /// URI for the sha256-rsa-mgf1 signature method for signing XML.
+        /// URI for the SHA256-RSA-MGF1 signature method for signing XML.
         /// </summary>
         public const string RsaPssSha256Signature = "http://www.w3.org/2007/05/xmldsig-more#sha256-rsa-MGF1";
     }

Original file line number	Diff line number	Diff line change
`@@ -27,7 +27,7 @@ public static void ValidateAlgorithm(string signatureAlgorithm)`
`27`	`27`	`{`
`28`	`28`	`return;`
`29`	`29`	`}`
`30`		`- throw new NotSupportedException($"Only SHA1 ({Saml2SecurityAlgorithms.RsaSha1Signature}), SHA256 ({Saml2SecurityAlgorithms.RsaSha256Signature}), SHA384 ({Saml2SecurityAlgorithms.RsaSha384Signature}), SHA512 ({Saml2SecurityAlgorithms.RsaSha512Signature}) and Sha256 Rsa MGF1 ({Saml2SecurityAlgorithms.RsaPssSha256Signature}) is supported.");`
	`30`	`+ throw new NotSupportedException($"Only SHA1 ({Saml2SecurityAlgorithms.RsaSha1Signature}), SHA256 ({Saml2SecurityAlgorithms.RsaSha256Signature}), SHA384 ({Saml2SecurityAlgorithms.RsaSha384Signature}), SHA512 ({Saml2SecurityAlgorithms.RsaSha512Signature}) and SHA256 RSA MGF1 ({Saml2SecurityAlgorithms.RsaPssSha256Signature}) is supported.");`
`31`	`31`
`32`	`32`	`}`
`33`	`33`
Original file line number	Diff line number	Diff line change
`@@ -9,7 +9,7 @@ public sealed class RSAPKCS1SHA1SignatureDescription : SignatureDescription`
`9`	`9`	`public RSAPKCS1SHA1SignatureDescription()`
`10`	`10`	`{`
`11`	`11`	`KeyAlgorithm = typeof(RSACryptoServiceProvider).AssemblyQualifiedName;`
`12`		`- DigestAlgorithm = typeof(SHA1Managed).AssemblyQualifiedName;`
	`12`	`+ DigestAlgorithm = "SHA1";`
`13`	`13`	`FormatterAlgorithm = typeof(RSAPKCS1SignatureFormatter).AssemblyQualifiedName;`
`14`	`14`	`DeformatterAlgorithm = typeof(RSAPKCS1SignatureDeformatter).AssemblyQualifiedName;`
`15`	`15`	`}`
`@@ -22,7 +22,7 @@ public override AsymmetricSignatureDeformatter CreateDeformatter(AsymmetricAlgor`
`22`	`22`	`}`
`23`	`23`
`24`	`24`	`RSAPKCS1SignatureDeformatter deformatter = new RSAPKCS1SignatureDeformatter(key);`
`25`		`- deformatter.SetHashAlgorithm("SHA1");`
	`25`	`+ deformatter.SetHashAlgorithm(DigestAlgorithm);`
`26`	`26`	`return deformatter;`
`27`	`27`	`}`
`28`	`28`
`@@ -34,7 +34,7 @@ public override AsymmetricSignatureFormatter CreateFormatter(AsymmetricAlgorithm`
`34`	`34`	`}`
`35`	`35`
`36`	`36`	`RSAPKCS1SignatureFormatter formatter = new RSAPKCS1SignatureFormatter(key);`
`37`		`- formatter.SetHashAlgorithm("SHA1");`
	`37`	`+ formatter.SetHashAlgorithm(DigestAlgorithm);`
`38`	`38`	`return formatter;`
`39`	`39`	`}`
`40`	`40`	`}`
Original file line number	Diff line number	Diff line change
`@@ -9,7 +9,7 @@ public sealed class RSAPKCS1SHA256SignatureDescription : SignatureDescription`
`9`	`9`	`public RSAPKCS1SHA256SignatureDescription()`
`10`	`10`	`{`
`11`	`11`	`KeyAlgorithm = typeof(RSACryptoServiceProvider).AssemblyQualifiedName;`
`12`		`- DigestAlgorithm = typeof(SHA256Managed).AssemblyQualifiedName;`
	`12`	`+ DigestAlgorithm = "SHA256";`
`13`	`13`	`FormatterAlgorithm = typeof(RSAPKCS1SignatureFormatter).AssemblyQualifiedName;`
`14`	`14`	`DeformatterAlgorithm = typeof(RSAPKCS1SignatureDeformatter).AssemblyQualifiedName;`
`15`	`15`	`}`
`@@ -22,7 +22,7 @@ public override AsymmetricSignatureDeformatter CreateDeformatter(AsymmetricAlgor`
`22`	`22`	`}`
`23`	`23`
`24`	`24`	`RSAPKCS1SignatureDeformatter deformatter = new RSAPKCS1SignatureDeformatter(key);`
`25`		`- deformatter.SetHashAlgorithm("SHA256");`
	`25`	`+ deformatter.SetHashAlgorithm(DigestAlgorithm);`
`26`	`26`	`return deformatter;`
`27`	`27`	`}`
`28`	`28`
`@@ -34,7 +34,7 @@ public override AsymmetricSignatureFormatter CreateFormatter(AsymmetricAlgorithm`
`34`	`34`	`}`
`35`	`35`
`36`	`36`	`RSAPKCS1SignatureFormatter formatter = new RSAPKCS1SignatureFormatter(key);`
`37`		`- formatter.SetHashAlgorithm("SHA256");`
	`37`	`+ formatter.SetHashAlgorithm(DigestAlgorithm);`
`38`	`38`	`return formatter;`
`39`	`39`	`}`
`40`	`40`	`}`
Original file line number	Diff line number	Diff line change
`@@ -9,7 +9,7 @@ public sealed class RSAPKCS1SHA384SignatureDescription : SignatureDescription`
`9`	`9`	`public RSAPKCS1SHA384SignatureDescription()`
`10`	`10`	`{`
`11`	`11`	`KeyAlgorithm = typeof(RSACryptoServiceProvider).AssemblyQualifiedName;`
`12`		`- DigestAlgorithm = typeof(SHA384Managed).AssemblyQualifiedName;`
	`12`	`+ DigestAlgorithm = "SHA384";`
`13`	`13`	`FormatterAlgorithm = typeof(RSAPKCS1SignatureFormatter).AssemblyQualifiedName;`
`14`	`14`	`DeformatterAlgorithm = typeof(RSAPKCS1SignatureDeformatter).AssemblyQualifiedName;`
`15`	`15`	`}`
`@@ -22,7 +22,7 @@ public override AsymmetricSignatureDeformatter CreateDeformatter(AsymmetricAlgor`
`22`	`22`	`}`
`23`	`23`
`24`	`24`	`RSAPKCS1SignatureDeformatter deformatter = new RSAPKCS1SignatureDeformatter(key);`
`25`		`- deformatter.SetHashAlgorithm("SHA384");`
	`25`	`+ deformatter.SetHashAlgorithm(DigestAlgorithm);`
`26`	`26`	`return deformatter;`
`27`	`27`	`}`
`28`	`28`
`@@ -34,7 +34,7 @@ public override AsymmetricSignatureFormatter CreateFormatter(AsymmetricAlgorithm`
`34`	`34`	`}`
`35`	`35`
`36`	`36`	`RSAPKCS1SignatureFormatter formatter = new RSAPKCS1SignatureFormatter(key);`
`37`		`- formatter.SetHashAlgorithm("SHA384");`
	`37`	`+ formatter.SetHashAlgorithm(DigestAlgorithm);`
`38`	`38`	`return formatter;`
`39`	`39`	`}`
`40`	`40`	`}`
Original file line number	Diff line number	Diff line change
`@@ -9,7 +9,7 @@ public sealed class RSAPKCS1SHA512SignatureDescription : SignatureDescription`
`9`	`9`	`public RSAPKCS1SHA512SignatureDescription()`
`10`	`10`	`{`
`11`	`11`	`KeyAlgorithm = typeof(RSACryptoServiceProvider).AssemblyQualifiedName;`
`12`		`- DigestAlgorithm = typeof(SHA512Managed).AssemblyQualifiedName;`
	`12`	`+ DigestAlgorithm = "SHA512";`
`13`	`13`	`FormatterAlgorithm = typeof(RSAPKCS1SignatureFormatter).AssemblyQualifiedName;`
`14`	`14`	`DeformatterAlgorithm = typeof(RSAPKCS1SignatureDeformatter).AssemblyQualifiedName;`
`15`	`15`	`}`
`@@ -22,7 +22,7 @@ public override AsymmetricSignatureDeformatter CreateDeformatter(AsymmetricAlgor`
`22`	`22`	`}`
`23`	`23`
`24`	`24`	`RSAPKCS1SignatureDeformatter deformatter = new RSAPKCS1SignatureDeformatter(key);`
`25`		`- deformatter.SetHashAlgorithm("SHA512");`
	`25`	`+ deformatter.SetHashAlgorithm(DigestAlgorithm);`
`26`	`26`	`return deformatter;`
`27`	`27`	`}`
`28`	`28`
`@@ -34,7 +34,7 @@ public override AsymmetricSignatureFormatter CreateFormatter(AsymmetricAlgorithm`
`34`	`34`	`}`
`35`	`35`
`36`	`36`	`RSAPKCS1SignatureFormatter formatter = new RSAPKCS1SignatureFormatter(key);`
`37`		`- formatter.SetHashAlgorithm("SHA512");`
	`37`	`+ formatter.SetHashAlgorithm(DigestAlgorithm);`
`38`	`38`	`return formatter;`
`39`	`39`	`}`
`40`	`40`	`}`
Original file line number	Diff line number	Diff line change
`@@ -1,34 +1,41 @@`
`1`		`-using System.Security.Cryptography;`
	`1`	`+using System;`
	`2`	`+using System.Security.Cryptography;`
`2`	`3`
`3`	`4`	`namespace ITfoxtec.Identity.Saml2.Cryptography`
`4`	`5`	`{`
`5`	`6`	`public class RSAPSSSHA256SignatureDescription : SignatureDescription`
`6`	`7`	`{`
`7`	`8`	`public RSAPSSSHA256SignatureDescription()`
`8`	`9`	`{`
`9`		`- using (var rsa = RSA.Create())`
`10`		`- {`
`11`		`- this.KeyAlgorithm = rsa.GetType().AssemblyQualifiedName; // Does not like a simple algorithm name, but wants a type name (AssembyQualifiedName in Core)`
`12`		`- }`
`13`		`-`
`14`		`- this.DigestAlgorithm = "SHA256"; // Somehow wants a simple algorithm name`
`15`		`- this.FormatterAlgorithm = typeof(RsaPssSignatureFormatter).FullName;`
`16`		`- this.DeformatterAlgorithm = typeof(RsaPssSignatureDeformatter).FullName;`
	`10`	`+ KeyAlgorithm = typeof(RSACryptoServiceProvider).AssemblyQualifiedName;`
	`11`	`+ DigestAlgorithm = "SHA256";`
	`12`	`+ FormatterAlgorithm = typeof(RsaPssSignatureFormatter).FullName;`
	`13`	`+ DeformatterAlgorithm = typeof(RsaPssSignatureDeformatter).FullName;`
`17`	`14`	`}`
`18`	`15`
`19`	`16`	`public override AsymmetricSignatureFormatter CreateFormatter(AsymmetricAlgorithm key)`
`20`	`17`	`{`
	`18`	`+ if (key == null)`
	`19`	`+ {`
	`20`	`+ throw new ArgumentNullException("key");`
	`21`	`+ }`
	`22`	`+`
`21`	`23`	`var signatureFormatter = new RsaPssSignatureFormatter();`
`22`	`24`	`signatureFormatter.SetKey(key);`
`23`		`- signatureFormatter.SetHashAlgorithm(this.DigestAlgorithm);`
	`25`	`+ signatureFormatter.SetHashAlgorithm(DigestAlgorithm);`
`24`	`26`	`return signatureFormatter;`
`25`	`27`	`}`
`26`	`28`
`27`	`29`	`public override AsymmetricSignatureDeformatter CreateDeformatter(AsymmetricAlgorithm key)`
`28`	`30`	`{`
	`31`	`+ if (key == null)`
	`32`	`+ {`
	`33`	`+ throw new ArgumentNullException("key");`
	`34`	`+ }`
	`35`	`+`
`29`	`36`	`var signatureDeformatter = new RsaPssSignatureDeformatter();`
`30`	`37`	`signatureDeformatter.SetKey(key);`
`31`		`- signatureDeformatter.SetHashAlgorithm(this.DigestAlgorithm);`
	`38`	`+ signatureDeformatter.SetHashAlgorithm(DigestAlgorithm);`
`32`	`39`	`return signatureDeformatter;`
`33`	`40`	`}`
`34`	`41`
`@@ -39,20 +46,20 @@ public class RsaPssSignatureFormatter : AsymmetricSignatureFormatter`
`39`	`46`
`40`	`47`	`public override void SetKey(AsymmetricAlgorithm key)`
`41`	`48`	`{`
`42`		`- this.Key = (RSA)key;`
	`49`	`+ Key = (RSA)key;`
`43`	`50`	`}`
`44`	`51`
`45`	`52`	`public override void SetHashAlgorithm(string strName)`
`46`	`53`	`{`
`47`	`54`	`// Verify the name`
`48`	`55`	`Oid.FromFriendlyName(strName, OidGroup.HashAlgorithm);`
`49`	`56`
`50`		`- this.HashAlgorithmName = strName;`
	`57`	`+ HashAlgorithmName = strName;`
`51`	`58`	`}`
`52`	`59`
`53`	`60`	`public override byte[] CreateSignature(byte[] rgbHash)`
`54`	`61`	`{`
`55`		`- return this.Key.SignHash(rgbHash, new HashAlgorithmName(this.HashAlgorithmName), RSASignaturePadding.Pss);`
	`62`	`+ return Key.SignHash(rgbHash, new HashAlgorithmName(HashAlgorithmName), RSASignaturePadding.Pss);`
`56`	`63`	`}`
`57`	`64`	`}`
`58`	`65`
`@@ -63,20 +70,20 @@ public class RsaPssSignatureDeformatter : AsymmetricSignatureDeformatter`
`63`	`70`
`64`	`71`	`public override void SetKey(AsymmetricAlgorithm key)`
`65`	`72`	`{`
`66`		`- this.Key = (RSA)key;`
	`73`	`+ Key = (RSA)key;`
`67`	`74`	`}`
`68`	`75`
`69`	`76`	`public override void SetHashAlgorithm(string strName)`
`70`	`77`	`{`
`71`	`78`	`// Verify the name`
`72`	`79`	`Oid.FromFriendlyName(strName, OidGroup.HashAlgorithm);`
`73`	`80`
`74`		`- this.HashAlgorithmName = strName;`
	`81`	`+ HashAlgorithmName = strName;`
`75`	`82`	`}`
`76`	`83`
`77`	`84`	`public override bool VerifySignature(byte[] rgbHash, byte[] rgbSignature)`
`78`	`85`	`{`
`79`		`- return this.Key.VerifyHash(rgbHash, rgbSignature, new HashAlgorithmName(this.HashAlgorithmName), RSASignaturePadding.Pss);`
	`86`	`+ return Key.VerifyHash(rgbHash, rgbSignature, new HashAlgorithmName(HashAlgorithmName), RSASignaturePadding.Pss);`
`80`	`87`	`}`
`81`	`88`	`}`
`82`	`89`	`}`
Original file line number	Diff line number	Diff line change
`@@ -38,7 +38,7 @@ public static class Saml2SecurityAlgorithms`
`38`	`38`	`/// </summary>`
`39`	`39`	`public const string RsaSha512Signature = "http://www.w3.org/2001/04/xmldsig-more#rsa-sha512";`
`40`	`40`	`/// <summary>`
`41`		`- /// URI for the sha256-rsa-mgf1 signature method for signing XML.`
	`41`	`+ /// URI for the SHA256-RSA-MGF1 signature method for signing XML.`
`42`	`42`	`/// </summary>`
`43`	`43`	`public const string RsaPssSha256Signature = "http://www.w3.org/2007/05/xmldsig-more#sha256-rsa-MGF1";`
`44`	`44`	`}`