Skip to content

Added additional breaking changes #14386

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 17 commits into from
Sep 18, 2019
Merged

Added additional breaking changes #14386

merged 17 commits into from
Sep 18, 2019

Conversation

rpetrusha
Copy link
Contributor

@rpetrusha rpetrusha commented Sep 11, 2019
edited
Loading

Added additional breaking changes

Link to internal review site

//cc @PriyaPurkayastha

@rpetrusha rpetrusha added this to the September 2019 milestone Sep 11, 2019
@rpetrusha rpetrusha requested a review from mairaw as a code owner September 11, 2019 23:11
@rpetrusha rpetrusha self-assigned this Sep 11, 2019
Thraka
Thraka reviewed Sep 16, 2019
View reviewed changes
Thraka
Thraka suggested changes Sep 16, 2019
View reviewed changes
Copy link
Contributor

@Thraka Thraka left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Found a few things to fix, one especially bad with incorrect xref tags

Also, the images in the media folder should be in a subfolder with the same name as the article. This makes house keeping easy if the article is deleted or moved in the future.

includes/core-changes/cryptography/envelopedcms-defaults-to-aes256.md Outdated

Starting with .NET Core 3.0 Preview 8 (via version 4.6.0 of the [System.Security.Cryptography.Pkcs](https://www.nuget.org/packages/System.Security.Cryptography.Pkcs/) NuGet package), the default algorithm has been changed to AES-256 for algorithm modernization and to improve the security of default options. If a message recipient certificate has a (non-EC) Diffie-Hellman public key, the encryption operation may fail with a <xref:System.Security.Cryptography.CryptographicException> due to limitations in the underlying platform.

In the following sample code, the data is encrypted with TripleDES if running on .NET Core 3.0 Preview 7 or earlier. If running on .NET Core 3.0 Preview 8 or later, it is encrypted with AES-257.
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
In the following sample code, the data is encrypted with TripleDES if running on .NET Core 3.0 Preview 7 or earlier. If running on .NET Core 3.0 Preview 8 or later, it is encrypted with AES-257.
In the following sample code, the data is encrypted with `TripleDES` if running on .NET Core 3.0 Preview 7 or earlier. If running on .NET Core 3.0 Preview 8 or later, it is encrypted with AES-257.

includes/core-changes/cryptography/envelopedcms-defaults-to-aes256.md

#### Recommended action

If you are negatively impacted by the change, you can restore TripleDES encryption by explicitly specifying the encryption algorithm identifier in an <xref:System.Security.Cryptography.Pkcs.EnvelopedCms> constructor that includes a parameter of type <xref:System.Security.Cryptography.Pkcs.AlgorithmIdentifier>, such as:
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
If you are negatively impacted by the change, you can restore TripleDES encryption by explicitly specifying the encryption algorithm identifier in an <xref:System.Security.Cryptography.Pkcs.EnvelopedCms> constructor that includes a parameter of type <xref:System.Security.Cryptography.Pkcs.AlgorithmIdentifier>, such as:
If you are negatively impacted by the change, you can restore `TripleDES` encryption by explicitly specifying the encryption algorithm identifier in an <xref:System.Security.Cryptography.Pkcs.EnvelopedCms> constructor that includes a parameter of type <xref:System.Security.Cryptography.Pkcs.AlgorithmIdentifier>, such as:

@rpetrusha rpetrusha merged commit 845cc6e into dotnet:master Sep 18, 2019
@rpetrusha rpetrusha deleted the compat-3-0-2 branch September 18, 2019 23:55
@rpetrusha rpetrusha mentioned this pull request Sep 20, 2019
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mairaw mairaw Awaiting requested review from mairaw

@BillWagner BillWagner Awaiting requested review from BillWagner

@HongGit HongGit Awaiting requested review from HongGit

@KathleenDollard KathleenDollard Awaiting requested review from KathleenDollard

@mamccrea mamccrea Awaiting requested review from mamccrea

@natke natke Awaiting requested review from natke

@nishanil nishanil Awaiting requested review from nishanil

@stevestein stevestein Awaiting requested review from stevestein

1 more reviewer

@Thraka Thraka Thraka approved these changes

Reviewers whose approvals may not affect merge requirements
Assignees

@rpetrusha rpetrusha

Labels
None yet
Projects
None yet
Milestone
September 2019
Development

Successfully merging this pull request may close these issues.
2 participants
@rpetrusha @Thraka