Skip to content

Merging internal commits for release/8.0 #124237

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
wfurt merged 10 commits into from
Feb 10, 2026
Merged

Merging internal commits for release/8.0 #124237

wfurt merged 10 commits into from
Feb 10, 2026

Conversation

@vseanreesermsft
Copy link

@vseanreesermsft vseanreesermsft commented Feb 10, 2026

No description provided.

Mirroring and others added 10 commits December 22, 2025 23:08
Merge commit 'c9190610b22c83b8d56868bf01001601895a54e7'
42f3d19
Merge commit 'b18624c4de9bde1f2ea6e23e38c68a271ed9966f'
d97033d
Merge commit 'c102bea96ed4e07bb138c7815c7607ab56facdff'
aaef8bb
Merge commit '2042eb2a56112539bf9e0b9538972fdd84e381a0'
69107ea
@bartonjs
Fix the type of exception thrown when decoding bad headers
9e1f70e 
CoseMessage's Decode routines say that any failure is a CryptographicException,
but some of the validation failures leak out ArgumentException from the validation in CoseHeaderMap.
Merge commit 'cb6dd00c21d6d8a373efbc7f5b5088caab5d8e22'
39736b8
Merge commit 'a22f8900be30f9d81cf1bee76a885e45c811c857'
7e46fb9
Merge commit 'fb7ac0ff0437c5405458a2a953d29a6aeb5e76f0'
da103bc
Merge commit 'b43df221a7854ae9b3c831a436c333ec9549bc5d'
b3b35ce
@vseanreesermsft
Merge commit 'b3b35ce80e9eb94f72c4aa36a171a5e1cde72ace' into internal…
c7aa2e8 
…-merge-8.0-2026-02-10-1100
Copilot AI review requested due to automatic review settings February 10, 2026 19:01
@dotnet-policy-service
Copy link
Contributor

dotnet-policy-service bot commented Feb 10, 2026

Tagging subscribers to this area: @bartonjs, @vcsjones, @dotnet/area-system-security
See info in area-owners.md if you want to be subscribed.

Copilot AI reviewed Feb 10, 2026
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR merges internal release/8.0 changes into the COSE implementation, primarily improving decode behavior for indefinite-length CBOR structures and tightening critical header validation, with accompanying test coverage.

Changes:

  • Update COSE header map decoding to support indefinite-length CBOR maps and improve error surfacing for well-known header validation failures.
  • Update critical headers handling to properly process indefinite-length arrays and reject empty crit arrays.
  • Add decode tests for critical header error cases across Sign1 and MultiSign, including detached/attached and definite/indefinite encodings.

Reviewed changes

Copilot reviewed 5 out of 5 changed files in this pull request and generated 8 comments.

Show a summary per file
File Description
src/libraries/System.Security.Cryptography.Cose/tests/CoseMessageTests.Sign.CustomHeaderMaps.cs Expands signing tests to cover definite vs indefinite critical header encodings (but currently has invalid argument ordering at call sites).
src/libraries/System.Security.Cryptography.Cose/tests/CoseMessageTests.DecodeSign1.cs Adds decode tests validating exceptions for missing/empty/invalid critical headers across encoding variants.
src/libraries/System.Security.Cryptography.Cose/tests/CoseMessageTests.DecodeMultiSign.cs Adds decode tests validating exceptions for missing/empty/invalid critical headers across encoding variants.
src/libraries/System.Security.Cryptography.Cose/src/System/Security/Cryptography/Cose/CoseMessage.cs Updates header bucket decoding to handle indefinite-length maps; improves critical header parsing and exception behavior.
src/libraries/System.Security.Cryptography.Cose/src/System.Security.Cryptography.Cose.csproj Bumps servicing version and changes package generation behavior on build.

@wfurt wfurt added the Servicing-approved Approved for servicing release label Feb 10, 2026
@wfurt wfurt merged commit e1139d2 into dotnet:release/8.0 Feb 10, 2026
109 of 123 checks passed
This was referenced Feb 11, 2026
Open
Open
Open
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@wfurt wfurt wfurt approved these changes

Assignees

@vseanreesermsft vseanreesermsft

Labels

area-System.Security Servicing-approved Approved for servicing release

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@vseanreesermsft @wfurt @bartonjs