Move to 4.7.0-preview1.5029 of client APIs (#382)

Progress on NuGet/Engineering#1207

Author: joelverhagen

src/Validation.Common.Job/Validation.Common.Job.csproj

@@ -71,7 +71,7 @@
       <Version>1.1.2</Version>
     </PackageReference>
     <PackageReference Include="NuGet.Packaging">
-      <Version>4.7.0-preview1-4886</Version>
+      <Version>4.7.0-preview1.5029</Version>
     </PackageReference>
     <PackageReference Include="NuGet.Services.Configuration">
       <Version>2.19.1</Version>

src/Validation.PackageSigning.ProcessSignature/MinimalSignatureVerificationProvider.cs

@@ -16,7 +16,7 @@ public class MinimalSignatureVerificationProvider : ISignatureVerificationProvid
     {
         public Task<PackageVerificationResult> GetTrustResultAsync(
             ISignedPackageReader package,
-            Signature signature,
+            PrimarySignature signature,
             SignedPackageVerifierSettings settings,
             CancellationToken token)
         {

src/Validation.PackageSigning.ProcessSignature/PackageSignatureVerifierFactory.cs

@@ -24,6 +24,7 @@ public static IPackageSignatureVerifier CreateMinimal()
             var settings = new SignedPackageVerifierSettings(
                 allowUnsigned: true,
                 allowUntrusted: false, // Invalid format of the signature uses this flag to determine success.
+                allowUntrustedSelfIssuedCertificate: true,
                 allowIgnoreTimestamp: true,
                 allowMultipleTimestamps: true,
                 allowNoTimestamp: true,
@@ -48,6 +49,7 @@ public static IPackageSignatureVerifier CreateFull()
             var settings = new SignedPackageVerifierSettings(
                 allowUnsigned: false,
                 allowUntrusted: false,
+                allowUntrustedSelfIssuedCertificate: false,
                 allowIgnoreTimestamp: false,
                 allowMultipleTimestamps: false,
                 allowNoTimestamp: false,

src/Validation.PackageSigning.ProcessSignature/SignaturePartsExtractor.cs

@@ -38,7 +38,7 @@ public async Task ExtractAsync(int packageKey, ISignedPackageReader signedPackag
             }
 
             // Read the package signature.
-            var signature = await signedPackageReader.GetSignatureAsync(token);
+            var signature = await signedPackageReader.GetPrimarySignatureAsync(token);
 
             // Extract the certificates found in the package signatures.
             var extractedCertificates = ExtractCertificates(signature);
@@ -53,7 +53,7 @@ public async Task ExtractAsync(int packageKey, ISignedPackageReader signedPackag
             await _entitiesContext.SaveChangesAsync();
         }
 
-        private ExtractedCertificates ExtractCertificates(Signature signature)
+        private ExtractedCertificates ExtractCertificates(PrimarySignature signature)
         {
             if (signature.Timestamps.Count != 1)
             {
@@ -76,7 +76,7 @@ private ExtractedCertificates ExtractCertificates(Signature signature)
             var signatureParentCertificates = hashedSignatureCertificates.Skip(1).ToList();
 
             var timestampCertificates = SignatureUtility
-                .GetPrimarySignatureTimestampSignatureCertificates(signature);
+                .GetPrimarySignatureTimestampCertificates(signature);
             if (timestampCertificates == null || !timestampCertificates.Any())
             {
                 throw new ArgumentException(

src/Validation.PackageSigning.ProcessSignature/SignatureValidator.cs

@@ -102,7 +102,7 @@ private async Task<SignatureValidatorResult> HandleSignedPackageAsync(
                 }
 
                 // We now know we can safely read the signature.
-                var packageSignature = await signedPackageReader.GetSignatureAsync(cancellationToken);
+                var packageSignature = await signedPackageReader.GetPrimarySignatureAsync(cancellationToken);
 
                 // Block packages with any unknown signing certificates.
                 var packageThumbprint = packageSignature
@@ -221,7 +221,8 @@ private async Task<SignatureValidatorResult> GetVerifyResult(
         {
             var verifyResult = await verifier.VerifySignaturesAsync(
                 signedPackageReader,
-                cancellationToken);
+                cancellationToken,
+                parentId: Guid.Empty); // Pass an empty GUID, since we don't use client telemetry infrastructure.
 
             var errorIssues = verifyResult
                 .Results

tests/Validation.PackageSigning.Core.Tests/Validation.PackageSigning.Core.Tests.csproj

@@ -72,7 +72,7 @@
       <Version>4.4.0</Version>
     </PackageReference>
     <PackageReference Include="Test.Utility">
-      <Version>4.7.0-preview1.4948+f399fefacef3d4cc769a1580e812e1045d1d3b3e</Version>
+      <Version>4.7.0-preview1.5029</Version>
     </PackageReference>
     <PackageReference Include="xunit">
       <Version>2.3.1</Version>

tests/Validation.PackageSigning.ProcessSignature.Tests/SignaturePartsExtractorFacts.cs

@@ -27,7 +27,7 @@ public class SignaturePartsExtractorFacts
         private const string BouncyCastleCollection = "Collection";
 
         private static readonly DateTime Leaf1TimestampValue = DateTime
-            .Parse("2018-01-26T22:08:31.0000000Z")
+            .Parse("2018-01-26T22:09:01.0000000Z")
             .ToUniversalTime();
 
         /// <summary>
@@ -510,16 +510,16 @@ public async Task IgnoreExtraCertificates()
                 using (var package = TestResources.LoadPackage(TestResources.SignedPackageLeaf1))
                 using (var unrelatedPackage = TestResources.LoadPackage(TestResources.SignedPackageLeaf2))
                 {
-                    var originalSignature = await package.GetSignatureAsync(_token);
-                    var unrelatedSignature = await unrelatedPackage.GetSignatureAsync(_token);
+                    var originalSignature = await package.GetPrimarySignatureAsync(_token);
+                    var unrelatedSignature = await unrelatedPackage.GetPrimarySignatureAsync(_token);
 
                     var signature = AddCertificates(originalSignature.SignedCms, unrelatedSignature.SignedCms);
 
                     _packageMock
                         .Setup(x => x.IsSignedAsync(It.IsAny<CancellationToken>()))
                         .ReturnsAsync(true);
                     _packageMock
-                        .Setup(x => x.GetSignatureAsync(It.IsAny<CancellationToken>()))
+                        .Setup(x => x.GetPrimarySignatureAsync(It.IsAny<CancellationToken>()))
                         .ReturnsAsync(signature);
 
                     // Act
@@ -642,7 +642,7 @@ private void VerifySavedCertificates(ExtractedCertificatesThumbprints expected,
             }
         }
 
-        private static Signature AddCertificates(SignedCms destination, SignedCms source)
+        private static PrimarySignature AddCertificates(SignedCms destination, SignedCms source)
         {
             using (var readStream = new MemoryStream(destination.Encode()))
             using (var writeStream = new MemoryStream())
@@ -665,7 +665,7 @@ private static Signature AddCertificates(SignedCms destination, SignedCms source
                     attributeCertificateStore,
                     writeStream);
 
-                return Signature.Load(writeStream.ToArray());
+                return PrimarySignature.Load(writeStream.ToArray());
             }
         }
 

tests/Validation.PackageSigning.ProcessSignature.Tests/SignatureValidatorFacts.cs

@@ -57,13 +57,13 @@ public ValidateAsync()
                 _mimialVerifyResult = new VerifySignaturesResult(true);
                 _mimimalPackageSignatureVerifier = new Mock<IPackageSignatureVerifier>();
                 _mimimalPackageSignatureVerifier
-                    .Setup(x => x.VerifySignaturesAsync(It.IsAny<ISignedPackageReader>(), It.IsAny<CancellationToken>()))
+                    .Setup(x => x.VerifySignaturesAsync(It.IsAny<ISignedPackageReader>(), It.IsAny<CancellationToken>(), It.IsAny<Guid>()))
                     .ReturnsAsync(() => _mimialVerifyResult);
 
                 _fullVerifyResult = new VerifySignaturesResult(true);
                 _fullPackageSignatureVerifier = new Mock<IPackageSignatureVerifier>();
                 _fullPackageSignatureVerifier
-                    .Setup(x => x.VerifySignaturesAsync(It.IsAny<ISignedPackageReader>(), It.IsAny<CancellationToken>()))
+                    .Setup(x => x.VerifySignaturesAsync(It.IsAny<ISignedPackageReader>(), It.IsAny<CancellationToken>(), It.IsAny<Guid>()))
                     .ReturnsAsync(() => _fullVerifyResult);
 
                 _signaturePartsExtractor = new Mock<ISignaturePartsExtractor>();
@@ -183,7 +183,7 @@ await ConfigureKnownSignedPackage(
                 Validate(result, ValidationStatus.Failed, PackageSigningStatus.Invalid);
                 Assert.Empty(result.Issues);
                 _fullPackageSignatureVerifier.Verify(
-                    x => x.VerifySignaturesAsync(It.IsAny<ISignedPackageReader>(), It.IsAny<CancellationToken>()),
+                    x => x.VerifySignaturesAsync(It.IsAny<ISignedPackageReader>(), It.IsAny<CancellationToken>(), It.IsAny<Guid>()),
                     Times.Never);
             }
 
@@ -300,13 +300,13 @@ await ConfigureKnownSignedPackage(
             public async Task RejectsSignedPackagesWithUnknownCertificates()
             {
                 // Arrange
-                var signature = await TestResources.SignedPackageLeaf1Reader.GetSignatureAsync(CancellationToken.None);
+                var signature = await TestResources.SignedPackageLeaf1Reader.GetPrimarySignatureAsync(CancellationToken.None);
 
                 _packageMock
                     .Setup(x => x.IsSignedAsync(It.IsAny<CancellationToken>()))
                     .ReturnsAsync(true);
                 _packageMock
-                    .Setup(x => x.GetSignatureAsync(It.IsAny<CancellationToken>()))
+                    .Setup(x => x.GetPrimarySignatureAsync(It.IsAny<CancellationToken>()))
                     .ReturnsAsync(signature);
                 _certificates
                     .Setup(x => x.GetAll())
@@ -347,13 +347,13 @@ public async Task AcceptsUnsignedPackages()
 
             private async Task ConfigureKnownSignedPackage(ISignedPackageReader package, string thumbprint)
             {
-                var signature = await package.GetSignatureAsync(CancellationToken.None);
+                var signature = await package.GetPrimarySignatureAsync(CancellationToken.None);
 
                 _packageMock
                     .Setup(x => x.IsSignedAsync(It.IsAny<CancellationToken>()))
                     .ReturnsAsync(true);
                 _packageMock
-                    .Setup(x => x.GetSignatureAsync(It.IsAny<CancellationToken>()))
+                    .Setup(x => x.GetPrimarySignatureAsync(It.IsAny<CancellationToken>()))
                     .ReturnsAsync(signature);
                 _certificates
                     .Setup(x => x.GetAll())

tests/Validation.PackageSigning.ProcessSignature.Tests/SignatureValidatorIntegrationTests.cs

@@ -12,6 +12,7 @@
 using System.Text;
 using System.Threading;
 using System.Threading.Tasks;
+using ICSharpCode.SharpZipLib.Zip;
 using Microsoft.Extensions.Logging;
 using Moq;
 using NuGet.Jobs.Validation.PackageSigning.Messages;
@@ -139,7 +140,7 @@ public async Task RejectsUntrustedSigningCertificate()
             VerifyPackageSigningStatus(result, ValidationStatus.Failed, PackageSigningStatus.Invalid);
             var issue = Assert.Single(result.Issues);
             var clientIssue = Assert.IsType<ClientSigningVerificationFailure>(issue);
-            Assert.Equal("NU3021", clientIssue.ClientCode);
+            Assert.Equal("NU3012", clientIssue.ClientCode);
             Assert.Equal(
                 "A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider.",
                 clientIssue.ClientMessage);
@@ -398,7 +399,7 @@ public async Task RejectsInvalidSignedCms()
             Assert.Equal(ValidationIssueCode.ClientSigningVerificationFailure, issue.IssueCode);
             var typedIssue = Assert.IsType<ClientSigningVerificationFailure>(issue);
             Assert.Equal("NU3003", typedIssue.ClientCode);
-            Assert.Equal("The package signature is invalid.", typedIssue.ClientMessage);
+            Assert.Equal("The package signature is invalid or cannot be verified on this platform.", typedIssue.ClientMessage);
         }
 
         [Fact]
@@ -429,7 +430,7 @@ public async Task RejectsMultipleSignatures()
             Assert.Equal(ValidationIssueCode.ClientSigningVerificationFailure, issue.IssueCode);
             var typedIssue = Assert.IsType<ClientSigningVerificationFailure>(issue);
             Assert.Equal("NU3009", typedIssue.ClientCode);
-            Assert.Equal("The package signature contains multiple primary signatures.", typedIssue.ClientMessage);
+            Assert.Equal("The package signature file does not contain exactly one primary signature.", typedIssue.ClientMessage);
         }
 
         [Theory]
@@ -649,14 +650,23 @@ private void SetSignatureFileContent(Stream packageStream, byte[] fileContent)
         {
             try
             {
-                using (var zipArchive = new ZipArchive(packageStream, ZipArchiveMode.Update, leaveOpen: true))
-                using (var entryStream = zipArchive.GetEntry(".signature.p7s").Open())
+                using (var zipFile = new ICSharpCode.SharpZipLib.Zip.ZipFile(packageStream))
                 {
-                    entryStream.Position = 0;
-                    entryStream.SetLength(0);
-                    entryStream.Write(fileContent, 0, fileContent.Length);
+                    zipFile.IsStreamOwner = false;
+
+                    zipFile.BeginUpdate();
+                    zipFile.Delete(SigningSpecifications.V1.SignaturePath);
+                    zipFile.CommitUpdate();
+                    zipFile.BeginUpdate();
+                    zipFile.Add(
+                        new StreamDataSource(new MemoryStream(fileContent)),
+                        SigningSpecifications.V1.SignaturePath,
+                        CompressionMethod.Stored);
+                    zipFile.CommitUpdate();
                 }
 
+                packageStream.Position = 0;
+
                 _package = new SignedPackageArchive(packageStream, packageStream);
             }
             catch
@@ -666,6 +676,7 @@ private void SetSignatureFileContent(Stream packageStream, byte[] fileContent)
             }
         }
 
+
         private void ModifySignatureContent(Stream packageStream, Action<SignedCms> configuredSignedCms = null)
         {
             SignedCms signedCms;
@@ -674,7 +685,7 @@ private void ModifySignatureContent(Stream packageStream, Action<SignedCms> conf
                 using (var zipArchive = new ZipArchive(packageStream, ZipArchiveMode.Read, leaveOpen: true))
                 using (var entryStream = zipArchive.GetEntry(".signature.p7s").Open())
                 {
-                    var signature = Signature.Load(entryStream);
+                    var signature = PrimarySignature.Load(entryStream);
                     signedCms = signature.SignedCms;
                 }
             }
@@ -751,5 +762,20 @@ public void Dispose()
         {
             _package?.Dispose();
         }
+
+        private class StreamDataSource : IStaticDataSource
+        {
+            private readonly Stream _stream;
+
+            public StreamDataSource(Stream stream)
+            {
+                _stream = stream;
+            }
+
+            public Stream GetSource()
+            {
+                return _stream;
+            }
+        }
     }
 }

tests/Validation.PackageSigning.ProcessSignature.Tests/Support/CertificateIntegrationTestFixture.cs

@@ -88,41 +88,19 @@ public async Task<byte[]> GenerateSignedPackageBytesAsync(
             var timestampProvider = new Rfc3161TimestampProvider(timestampUri);
             var signatureProvider = new X509SignatureProvider(timestampProvider);
 
-            var unsignedBytes = await OperateOnSignerAsync(
-                TestResources.GetResourceStream(resourceName),
-                signatureProvider,
-                x => x.RemoveSignaturesAsync(testLogger, CancellationToken.None));
-
-            var signedBytes = await OperateOnSignerAsync(
-                new MemoryStream(unsignedBytes),
-                signatureProvider,
-                x =>
-                {
-                    var request = new AuthorSignPackageRequest(certificate, HashAlgorithmName.SHA256);
-                    return x.SignAsync(request, testLogger, CancellationToken.None);
-                });
-
-            return signedBytes;
-        }
-
-        private static async Task<byte[]> OperateOnSignerAsync(
-            Stream packageReadStream,
-            X509SignatureProvider signatureProvider,
-            Func<Signer, Task> executeAsync)
-        {
-            using (packageReadStream)
-            using (var packageWriteStream = new MemoryStream())
+            using (var outputPackageStream = new MemoryStream())
             {
-                packageReadStream.CopyTo(packageWriteStream);
-
-                using (var signedPackage = new SignedPackageArchive(packageReadStream, packageWriteStream))
-                {
-                    var signer = new Signer(signedPackage, signatureProvider);
-
-                    await executeAsync(signer);
-
-                    return packageWriteStream.ToArray();
-                }
+                await SigningUtility.SignAsync(
+                    new SigningOptions(
+                        inputPackageStream: new Lazy<Stream>(() => TestResources.GetResourceStream(resourceName)),
+                        outputPackageStream: new Lazy<Stream>(() => outputPackageStream),
+                        overwrite: true,
+                        signatureProvider: signatureProvider,
+                        logger: testLogger),
+                    new AuthorSignPackageRequest(certificate, HashAlgorithmName.SHA256),
+                    CancellationToken.None);
+
+                return outputPackageStream.ToArray();
             }
         }