Skip to content

Ignore the private key handle cert property for persisted keys #36287

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
bartonjs merged 2 commits into from
May 12, 2020
Merged

Ignore the private key handle cert property for persisted keys #36287

bartonjs merged 2 commits into from
May 12, 2020

Conversation

@bartonjs
Copy link
Member

@bartonjs bartonjs commented May 12, 2020

When a CERT_CONTEXT value has both property 2 (prov info) and property 78
(ncrypt key handle), prefer to load based on the property 2 state.
This avoids a scenario where calling Get[Algorithm]PrivateKey sets the
'CLR IsEphemeral' property on a persisted key, preventing future loads of that key.

An alternative approach of preferring the loaded key over the cold-load was
not selected to avoid value contamination of ephemeral properties set on the
CngKey object directly after the caller calls Get[Algorithm]PrivateKey.

Fixes #36273.

@bartonjs
Ignore the private key handle cert property for persisted keys
dd47374 
When a CERT_CONTEXT value has both property 2 (prov info) and property 78
(ncrypt key handle), prefer to load based on the property 2 state.
This avoids a scenario where calling Get[Algorithm]PrivateKey sets the
'CLR IsEphemeral' property on a persisted key, preventing future loads of that key.

An alternative approach of preferring the loaded key over the cold-load was
not selected to avoid value contamination of ephemeral properties set on the
CngKey object directly after the caller calls Get[Algorithm]PrivateKey.
@bartonjs bartonjs added this to the 5.0 milestone May 12, 2020
@ghost
Copy link

ghost commented May 12, 2020

Tagging subscribers to this area: @bartonjs, @vcsjones, @krwq
Notify danmosemsft if you want to be subscribed.

@bartonjs
Copy link
Member Author

bartonjs commented May 12, 2020

/azp run runtime-libraries outerloop-windows

@azure-pipelines
Copy link

azure-pipelines bot commented May 12, 2020

Azure Pipelines successfully started running 1 pipeline(s).

@bartonjs
Copy link
Member Author

bartonjs commented May 12, 2020

/azp run runtime-libraries outerloop-windows

@azure-pipelines
Copy link

azure-pipelines bot commented May 12, 2020

Azure Pipelines successfully started running 1 pipeline(s).

@eerhardt
Copy link
Member

eerhardt commented May 12, 2020

allConfigurations failure is #36285

@jaredpar jaredpar mentioned this pull request May 12, 2020
Closed
@javiercn javiercn mentioned this pull request May 12, 2020
Closed
@bartonjs
Copy link
Member Author

bartonjs commented May 12, 2020

The only outerloop failure was #36207.

@bartonjs bartonjs merged commit 14835fb into dotnet:master May 12, 2020
@Anipik Anipik mentioned this pull request May 12, 2020
Merged
@bartonjs bartonjs deleted the export_key_corruption branch May 13, 2020 15:49
@ghost ghost locked as resolved and limited conversation to collaborators Dec 9, 2020
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

@stephentoub stephentoub stephentoub approved these changes

Assignees

No one assigned

Labels

area-System.Security

Projects

None yet

Milestone

5.0.0

Development

Successfully merging this pull request may close these issues.

Issue when accessing the private key from a certificate after it has been exported

3 participants

@bartonjs @eerhardt @stephentoub