-
Notifications
You must be signed in to change notification settings - Fork 3.8k
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
[asp.net] Normalization of cryptographic uses in asp.net.
Backport of commit a22389f Normalization of cryptographic uses in asp.net * System.Web.Configuration_2.0/MachineKeyRegistryStorage.cs: Remove key length check and generic key generation. * System.Web.Configuration_2.0/MachineKeySection.cs: Add support for 4.0 ValidationAlgorithm and the use of custom algorithms (validation and decryption). Allow the use of any, valid, key length (based on the algorithm). Let each algorithm creates its own key (e.g. special needs, default length...) * System.Web.Configuration_2.0/MachineKeySectionUtils.cs: Remove key generation (from random) code and 192bits key length hack (won't work with custom algorithms). Add support for new (4.0) algorithms, including custom ones. Provide uniform/shared code to Encrypt/Decrypt, Sign/Verify and EncryptSign/VerifyDecrypt using MachineKeySection data. * System.Web.Configuration_2.0/MachineKeyValidation.cs: Add new (4.0) values. * System.Web.Configuration_2.0/MachineKeyValidationConverter.cs: Add support for new (4.0) algorithms. * System.Web.Handlers/AssemblyResourceLoader.cs: Use the new common cryptographic code and base64 the encrypted data. * System.Web.Security/FormsAuthentication.cs: Use the new common cryptographic code and base64 the signed and/or encrypted data. * System.Web.Security/MembershipHelper.cs: Use the new common cryptographic code - this should be 100% compatible with existing data. * System.Web.Security/RolePrincipal.cs: Use the new common cryptographic code. * System.Web.Security/SqliteMembershipProvider.cs: Adapt code for internal API change.
- Loading branch information
Showing
25 changed files
with
1,646 additions
and
768 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.