dotnet
diff --git a/‎src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/RSA/RSAFactory.cs‎
Lines changed: 3 additions & 0 deletions b/‎src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/RSA/RSAFactory.cs‎
Lines changed: 3 additions & 0 deletions
diff --git a/‎src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/RSA/RSASignatureFormatter.cs‎
Lines changed: 2 additions & 2 deletions b/‎src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/RSA/RSASignatureFormatter.cs‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/RSA/SignVerify.cs‎
Lines changed: 42 additions & 32 deletions b/‎src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/RSA/SignVerify.cs‎
Lines changed: 42 additions & 32 deletions
diff --git a/‎src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/RSA/SignVerify.netcoreapp.cs‎
Lines changed: 1 addition & 1 deletion b/‎src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/RSA/SignVerify.netcoreapp.cs‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎src/libraries/Common/tests/System/Security/Cryptography/SignatureSupport.cs‎
Lines changed: 51 additions & 0 deletions b/‎src/libraries/Common/tests/System/Security/Cryptography/SignatureSupport.cs‎
Lines changed: 51 additions & 0 deletions
diff --git a/‎src/libraries/System.Security.Cryptography.Cng/tests/RSACngProvider.cs‎
Lines changed: 2 additions & 0 deletions b/‎src/libraries/System.Security.Cryptography.Cng/tests/RSACngProvider.cs‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎src/libraries/System.Security.Cryptography.Cng/tests/System.Security.Cryptography.Cng.Tests.csproj‎
Lines changed: 2 additions & 0 deletions b/‎src/libraries/System.Security.Cryptography.Cng/tests/System.Security.Cryptography.Cng.Tests.csproj‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎src/libraries/System.Security.Cryptography.Csp/tests/RSACryptoServiceProviderBackCompat.cs‎
Lines changed: 19 additions & 17 deletions b/‎src/libraries/System.Security.Cryptography.Csp/tests/RSACryptoServiceProviderBackCompat.cs‎
Lines changed: 19 additions & 17 deletions
@@ -11,6 +11,7 @@ public interface IRSAProvider
         bool SupportsLargeExponent { get; }
         bool SupportsSha2Oaep { get; }
         bool SupportsPss { get; }
+        bool SupportsSha1Signatures { get; }
     }
 
     public static partial class RSAFactory
@@ -39,5 +40,7 @@ public static RSA Create(RSAParameters rsaParameters)
         public static bool SupportsSha2Oaep => s_provider.SupportsSha2Oaep;
 
         public static bool SupportsPss => s_provider.SupportsPss;
+
+        public static bool SupportsSha1Signatures => s_provider.SupportsSha1Signatures;
     }
 }
@@ -10,7 +10,7 @@ namespace System.Security.Cryptography.Rsa.Tests
     [SkipOnPlatform(TestPlatforms.Browser, "Not supported on Browser")]
     public partial class RSASignatureFormatterTests : AsymmetricSignatureFormatterTests
     {
-        [Fact]
+        [ConditionalFact(typeof(RSAFactory), nameof(RSAFactory.SupportsSha1Signatures))]
         public static void VerifySignature_SHA1()
         {
             using (RSA rsa = RSAFactory.Create())
@@ -66,7 +66,7 @@ public static void InvalidHashAlgorithm()
             }
         }
 
-        [Fact]
+        [ConditionalFact(typeof(RSAFactory), nameof(RSAFactory.SupportsSha1Signatures))]
         public static void VerifyKnownSignature()
         {
             byte[] hash = "012d161304fa0c6321221516415813022320620c".HexToByteArray();
 
@@ -3,6 +3,7 @@
 
 using System.Collections.Generic;
 using System.IO;
+using Microsoft.DotNet.XUnitExtensions;
 using Test.Cryptography;
 using Test.IO.Streams;
 using Xunit;
@@ -26,14 +27,14 @@ public void NullArray_Throws()
         {
             using (RSA rsa = RSAFactory.Create())
             {
-                AssertExtensions.Throws<ArgumentNullException>("data", () => SignData(rsa, null, HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1));
-                AssertExtensions.Throws<ArgumentNullException>("hash", () => SignHash(rsa, null, HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1));
+                AssertExtensions.Throws<ArgumentNullException>("data", () => SignData(rsa, null, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1));
+                AssertExtensions.Throws<ArgumentNullException>("hash", () => SignHash(rsa, null, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1));
 
-                AssertExtensions.Throws<ArgumentNullException>("data", () => VerifyData(rsa, null, new byte[1], HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1));
-                AssertExtensions.Throws<ArgumentNullException>("hash", () => VerifyHash(rsa, null, new byte[1], HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1));
+                AssertExtensions.Throws<ArgumentNullException>("data", () => VerifyData(rsa, null, new byte[1], HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1));
+                AssertExtensions.Throws<ArgumentNullException>("hash", () => VerifyHash(rsa, null, new byte[1], HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1));
 
-                AssertExtensions.Throws<ArgumentNullException>("signature", () => VerifyData(rsa, new byte[1], null, HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1));
-                AssertExtensions.Throws<ArgumentNullException>("signature", () => VerifyHash(rsa, new byte[1], null, HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1));
+                AssertExtensions.Throws<ArgumentNullException>("signature", () => VerifyData(rsa, new byte[1], null, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1));
+                AssertExtensions.Throws<ArgumentNullException>("signature", () => VerifyHash(rsa, new byte[1], null, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1));
             }
         }
     }
@@ -72,10 +73,10 @@ public void NullPadding_Throws()
         {
             using (RSA rsa = RSAFactory.Create())
             {
-                AssertExtensions.Throws<ArgumentNullException>("padding", () => SignData(rsa, new byte[1], HashAlgorithmName.SHA1, null));
-                AssertExtensions.Throws<ArgumentNullException>("padding", () => SignHash(rsa, new byte[1], HashAlgorithmName.SHA1, null));
-                AssertExtensions.Throws<ArgumentNullException>("padding", () => VerifyData(rsa, new byte[1], new byte[1], HashAlgorithmName.SHA1, null));
-                AssertExtensions.Throws<ArgumentNullException>("padding", () => VerifyHash(rsa, new byte[1], new byte[1], HashAlgorithmName.SHA1, null));
+                AssertExtensions.Throws<ArgumentNullException>("padding", () => SignData(rsa, new byte[1], HashAlgorithmName.SHA256, null));
+                AssertExtensions.Throws<ArgumentNullException>("padding", () => SignHash(rsa, new byte[1], HashAlgorithmName.SHA256, null));
+                AssertExtensions.Throws<ArgumentNullException>("padding", () => VerifyData(rsa, new byte[1], new byte[1], HashAlgorithmName.SHA256, null));
+                AssertExtensions.Throws<ArgumentNullException>("padding", () => VerifyHash(rsa, new byte[1], new byte[1], HashAlgorithmName.SHA256, null));
             }
         }
 
@@ -87,7 +88,7 @@ public void UseAfterDispose(bool importKey)
             RSA rsa = importKey ? RSAFactory.Create(TestData.RSA2048Params) : RSAFactory.Create(1024);
             byte[] data = TestData.HelloBytes;
             byte[] sig;
-            HashAlgorithmName alg = HashAlgorithmName.SHA1;
+            HashAlgorithmName alg = HashAlgorithmName.SHA256;
             RSASignaturePadding padding = RSASignaturePadding.Pkcs1;
 
             using (rsa)
@@ -115,12 +116,12 @@ public void InvalidKeySize_DoesNotInvalidateKey()
         {
             using (RSA rsa = RSAFactory.Create())
             {
-                byte[] signature = SignData(rsa, TestData.HelloBytes, HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1);
+                byte[] signature = SignData(rsa, TestData.HelloBytes, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1);
 
                 // A 2049-bit key is hard to describe, none of the providers support it.
                 Assert.ThrowsAny<CryptographicException>(() => rsa.KeySize = 2049);
 
-                Assert.True(VerifyData(rsa, TestData.HelloBytes, signature, HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1));
+                Assert.True(VerifyData(rsa, TestData.HelloBytes, signature, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1));
             }
         }
 
@@ -143,11 +144,11 @@ public void SignEmptyHash()
             using (RSA rsa = RSAFactory.Create())
             {
                 Assert.ThrowsAny<CryptographicException>(
-                    () => SignHash(rsa, Array.Empty<byte>(), HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1));
+                    () => SignHash(rsa, Array.Empty<byte>(), HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1));
             }
         }
 
-        [Fact]
+        [ConditionalFact(typeof(RSAFactory), nameof(RSAFactory.SupportsSha1Signatures))]
         public void ExpectedSignature_SHA1_384()
         {
             byte[] expectedSignature =
@@ -178,7 +179,7 @@ public void ExpectedSignature_SHA1_384()
             }
         }
 
-        [Fact]
+        [ConditionalFact(typeof(RSAFactory), nameof(RSAFactory.SupportsSha1Signatures))]
         public void ExpectedSignature_SHA1_1032()
         {
             byte[] expectedSignature =
@@ -205,7 +206,7 @@ public void ExpectedSignature_SHA1_1032()
             ExpectSignature(expectedSignature, TestData.HelloBytes, "SHA1", TestData.RSA1032Parameters);
         }
 
-        [Fact]
+        [ConditionalFact(typeof(RSAFactory), nameof(RSAFactory.SupportsSha1Signatures))]
         public void ExpectedSignature_SHA1_2048()
         {
             byte[] expectedSignature = new byte[]
@@ -350,7 +351,7 @@ public void ExpectSignature_SHA256_1024_Stream()
             Assert.Equal(expectedSignature, signature);
         }
 
-        [Fact]
+        [ConditionalFact(typeof(RSAFactory), nameof(RSAFactory.SupportsSha1Signatures))]
         public void VerifySignature_SHA1_384()
         {
             byte[] signature =
@@ -366,7 +367,7 @@ public void VerifySignature_SHA1_384()
             VerifySignature(signature, TestData.HelloBytes, "SHA1", TestData.RSA384Parameters);
         }
 
-        [Fact]
+        [ConditionalFact(typeof(RSAFactory), nameof(RSAFactory.SupportsSha1Signatures))]
         public void VerifySignature_SHA1_1032()
         {
             byte[] signature =
@@ -393,7 +394,7 @@ public void VerifySignature_SHA1_1032()
             VerifySignature(signature, TestData.HelloBytes, "SHA1", TestData.RSA1032Parameters);
         }
 
-        [Fact]
+        [ConditionalFact(typeof(RSAFactory), nameof(RSAFactory.SupportsSha1Signatures))]
         public void VerifySignature_SHA1_2048()
         {
             byte[] signature = new byte[]
@@ -516,8 +517,12 @@ public static IEnumerable<object[]> RoundTripTheories
             {
                 foreach (RSAParameters rsaParameters in new[] { TestData.RSA1024Params, TestData.RSA2048Params })
                 {
+                    if (RSAFactory.SupportsSha1Signatures)
+                    {
+                        yield return new object[] { nameof(HashAlgorithmName.SHA1), rsaParameters };
+                    }
+
                     yield return new object[] { nameof(HashAlgorithmName.MD5), rsaParameters };
-                    yield return new object[] { nameof(HashAlgorithmName.SHA1), rsaParameters };
                     yield return new object[] { nameof(HashAlgorithmName.SHA256), rsaParameters };
                 }
 
@@ -532,8 +537,8 @@ public void NegativeVerify_WrongAlgorithm()
             using (RSA rsa = RSAFactory.Create())
             {
                 rsa.ImportParameters(TestData.RSA2048Params);
-                byte[] signature = SignData(rsa, TestData.HelloBytes, HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1);
-                bool signatureMatched = VerifyData(rsa, TestData.HelloBytes, signature, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1);
+                byte[] signature = SignData(rsa, TestData.HelloBytes, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1);
+                bool signatureMatched = VerifyData(rsa, TestData.HelloBytes, signature, HashAlgorithmName.SHA384, RSASignaturePadding.Pkcs1);
 
                 Assert.False(signatureMatched);
             }
@@ -545,12 +550,12 @@ public void NegativeVerify_WrongSignature()
             using (RSA rsa = RSAFactory.Create())
             {
                 rsa.ImportParameters(TestData.RSA2048Params);
-                byte[] signature = SignData(rsa, TestData.HelloBytes, HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1);
+                byte[] signature = SignData(rsa, TestData.HelloBytes, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1);
 
                 // Invalidate the signature.
                 signature[0] = unchecked((byte)~signature[0]);
 
-                bool signatureMatched = VerifyData(rsa, TestData.HelloBytes, signature, HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1);
+                bool signatureMatched = VerifyData(rsa, TestData.HelloBytes, signature, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1);
                 Assert.False(signatureMatched);
             }
         }
@@ -561,8 +566,8 @@ public void NegativeVerify_TamperedData()
             using (RSA rsa = RSAFactory.Create())
             {
                 rsa.ImportParameters(TestData.RSA2048Params);
-                byte[] signature = SignData(rsa, TestData.HelloBytes, HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1);
-                bool signatureMatched = VerifyData(rsa, Array.Empty<byte>(), signature, HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1);
+                byte[] signature = SignData(rsa, TestData.HelloBytes, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1);
+                bool signatureMatched = VerifyData(rsa, Array.Empty<byte>(), signature, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1);
                 Assert.False(signatureMatched);
             }
         }
@@ -575,13 +580,13 @@ public void NegativeVerify_BadKeysize()
             using (RSA rsa = RSAFactory.Create())
             {
                 rsa.ImportParameters(TestData.RSA2048Params);
-                signature = SignData(rsa, TestData.HelloBytes, HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1);
+                signature = SignData(rsa, TestData.HelloBytes, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1);
             }
 
             using (RSA rsa = RSAFactory.Create())
             {
                 rsa.ImportParameters(TestData.RSA1024Params);
-                bool signatureMatched = VerifyData(rsa, TestData.HelloBytes, signature, HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1);
+                bool signatureMatched = VerifyData(rsa, TestData.HelloBytes, signature, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1);
 
                 Assert.False(signatureMatched);
             }
@@ -610,7 +615,7 @@ public void PkcsSignHash_MismatchedHashSize()
             }
         }
 
-        [Fact]
+        [ConditionalFact(typeof(RSAFactory), nameof(RSAFactory.SupportsSha1Signatures))]
         public void ExpectedHashSignature_SHA1_2048()
         {
             byte[] expectedHashSignature = new byte[]
@@ -741,7 +746,7 @@ public void ExpectedHashSignature_SHA256_2048()
             ExpectHashSignature(expectedHashSignature, dataHash, "SHA256", TestData.RSA2048Params);
         }
 
-        [Fact]
+        [ConditionalFact(typeof(RSAFactory), nameof(RSAFactory.SupportsSha1Signatures))]
         public void VerifyHashSignature_SHA1_2048()
         {
             byte[] hashSignature = new byte[]
@@ -872,14 +877,19 @@ public void VerifyHashSignature_SHA256_2048()
             VerifyHashSignature(hashSignature, dataHash, "SHA256", TestData.RSA2048Params);
         }
 
-        [Theory]
+        [ConditionalTheory]
         [InlineData("SHA256")]
         [InlineData("SHA384")]
         [InlineData("SHA512")]
         [InlineData("MD5")]
         [InlineData("SHA1")]
         public void PssRoundtrip(string hashAlgorithmName)
         {
+            if (!RSAFactory.SupportsSha1Signatures && hashAlgorithmName == "SHA1")
+            {
+                throw new SkipTestException("Platform does not support RSA with SHA1 signatures.");
+            }
+
             RSAParameters privateParameters = TestData.RSA2048Params;
             RSAParameters publicParameters = new RSAParameters
             {
 
@@ -56,7 +56,7 @@ public static void VerifyDefaultSpanHash()
                 byte[] signature = new byte[2048 / 8];
 
                 Assert.False(
-                    rsa.VerifyHash(ReadOnlySpan<byte>.Empty, signature, HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1));
+                    rsa.VerifyHash(ReadOnlySpan<byte>.Empty, signature, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1));
 
                 if (RSAFactory.SupportsPss)
                 {
 
@@ -0,0 +1,51 @@
+// Licensed to the .NET Foundation under one or more agreements.
+// The .NET Foundation licenses this file to you under the MIT license.
+
+namespace System.Security.Cryptography.Tests
+{
+    internal static class SignatureSupport
+    {
+        internal static bool CanProduceSha1Signature(AsymmetricAlgorithm algorithm)
+        {
+            // We expect all non-Linux platforms to support SHA1 signatures, currently.
+            if (!OperatingSystem.IsLinux())
+            {
+                return true;
+            }
+
+            switch (algorithm)
+            {
+                case ECDsa ecdsa:
+                    try
+                    {
+                        ecdsa.SignData(Array.Empty<byte>(), HashAlgorithmName.SHA1);
+                        return true;
+                    }
+                    catch (CryptographicException)
+                    {
+                        return false;
+                    }
+                    finally
+                    {
+                        algorithm.Dispose();
+                    }
+                case RSA rsa:
+                    try
+                    {
+                        rsa.SignData(Array.Empty<byte>(), HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1);
+                        return true;
+                    }
+                    catch (CryptographicException)
+                    {
+                        return false;
+                    }
+                    finally
+                    {
+                        algorithm.Dispose();
+                    }
+                default:
+                    throw new NotSupportedException($"Algorithm type {algorithm.GetType()} is not supported.");
+            }
+        }
+    }
+}
@@ -34,6 +34,8 @@ public bool Supports384PrivateKey
         public bool SupportsSha2Oaep => true;
 
         public bool SupportsPss => true;
+
+        public bool SupportsSha1Signatures => true;
     }
 
     public partial class RSAFactory
 
@@ -15,6 +15,8 @@
     <Compile Include="TestData.cs" />
   </ItemGroup>
   <ItemGroup Condition="'$(TargetPlatformIdentifier)' == 'windows'">
+    <Compile Include="$(CommonTestPath)System\Security\Cryptography\SignatureSupport.cs"
+             Link="CommonTest\System\Security\Cryptography\SignatureSupport.cs" />
     <Compile Include="$(CommonTestPath)System\Security\Cryptography\AlgorithmImplementations\AES\AesCipherTests.Data.cs"
              Link="CommonTest\AlgorithmImplementations\AES\AesCipherTests.Data.cs" />
     <Compile Include="$(CommonTestPath)System\Security\Cryptography\AlgorithmImplementations\AES\AesCornerTests.cs"
 
@@ -156,24 +156,26 @@ public static void VerifyLegacySignVerifyHash(bool useLegacySign, bool useLegacy
 
         public static IEnumerable<object[]> AlgorithmIdentifiers()
         {
-            return new[]
+            yield return new object[] { "MD5", MD5.Create() };
+            yield return new object[] { "MD5", typeof(MD5) };
+            yield return new object[] { "MD5", "1.2.840.113549.2.5" };
+
+            if (RSAFactory.SupportsSha1Signatures)
             {
-                new object[] { "MD5", MD5.Create() },
-                new object[] { "MD5", typeof(MD5) },
-                new object[] { "MD5", "1.2.840.113549.2.5" },
-                new object[] { "SHA1", SHA1.Create() },
-                new object[] { "SHA1", typeof(SHA1) },
-                new object[] { "SHA1", "1.3.14.3.2.26" },
-                new object[] { "SHA256", SHA256.Create() },
-                new object[] { "SHA256", typeof(SHA256) },
-                new object[] { "SHA256", "2.16.840.1.101.3.4.2.1" },
-                new object[] { "SHA384", SHA384.Create() },
-                new object[] { "SHA384", typeof(SHA384) },
-                new object[] { "SHA384", "2.16.840.1.101.3.4.2.2" },
-                new object[] { "SHA512", SHA512.Create() },
-                new object[] { "SHA512", typeof(SHA512) },
-                new object[] { "SHA512", "2.16.840.1.101.3.4.2.3" },
-            };
+                yield return new object[] { "SHA1", SHA1.Create() };
+                yield return new object[] { "SHA1", typeof(SHA1) };
+                yield return new object[] { "SHA1", "1.3.14.3.2.26" };
+            }
+
+            yield return new object[] { "SHA256", SHA256.Create() };
+            yield return new object[] { "SHA256", typeof(SHA256) };
+            yield return new object[] { "SHA256", "2.16.840.1.101.3.4.2.1" };
+            yield return new object[] { "SHA384", SHA384.Create() };
+            yield return new object[] { "SHA384", typeof(SHA384) };
+            yield return new object[] { "SHA384", "2.16.840.1.101.3.4.2.2" };
+            yield return new object[] { "SHA512", SHA512.Create() };
+            yield return new object[] { "SHA512", typeof(SHA512) };
+            yield return new object[] { "SHA512", "2.16.840.1.101.3.4.2.3" };
         }
     }
 }
Original file line number	Diff line number	Diff line change
`@@ -11,6 +11,7 @@ public interface IRSAProvider`
`11`	`11`	`bool SupportsLargeExponent { get; }`
`12`	`12`	`bool SupportsSha2Oaep { get; }`
`13`	`13`	`bool SupportsPss { get; }`
	`14`	`+ bool SupportsSha1Signatures { get; }`
`14`	`15`	`}`
`15`	`16`
`16`	`17`	`public static partial class RSAFactory`
`@@ -39,5 +40,7 @@ public static RSA Create(RSAParameters rsaParameters)`
`39`	`40`	`public static bool SupportsSha2Oaep => s_provider.SupportsSha2Oaep;`
`40`	`41`
`41`	`42`	`public static bool SupportsPss => s_provider.SupportsPss;`
	`43`	`+`
	`44`	`+ public static bool SupportsSha1Signatures => s_provider.SupportsSha1Signatures;`
`42`	`45`	`}`
`43`	`46`	`}`
Original file line number	Diff line number	Diff line change
`@@ -10,7 +10,7 @@ namespace System.Security.Cryptography.Rsa.Tests`
`10`	`10`	`[SkipOnPlatform(TestPlatforms.Browser, "Not supported on Browser")]`
`11`	`11`	`public partial class RSASignatureFormatterTests : AsymmetricSignatureFormatterTests`
`12`	`12`	`{`
`13`		`- [Fact]`
	`13`	`+ [ConditionalFact(typeof(RSAFactory), nameof(RSAFactory.SupportsSha1Signatures))]`
`14`	`14`	`public static void VerifySignature_SHA1()`
`15`	`15`	`{`
`16`	`16`	`using (RSA rsa = RSAFactory.Create())`
`@@ -66,7 +66,7 @@ public static void InvalidHashAlgorithm()`
`66`	`66`	`}`
`67`	`67`	`}`
`68`	`68`
`69`		`- [Fact]`
	`69`	`+ [ConditionalFact(typeof(RSAFactory), nameof(RSAFactory.SupportsSha1Signatures))]`
`70`	`70`	`public static void VerifyKnownSignature()`
`71`	`71`	`{`
`72`	`72`	`byte[] hash = "012d161304fa0c6321221516415813022320620c".HexToByteArray();`
Original file line number	Diff line number	Diff line change
`@@ -3,6 +3,7 @@`
`3`	`3`
`4`	`4`	`using System.Collections.Generic;`
`5`	`5`	`using System.IO;`
	`6`	`+using Microsoft.DotNet.XUnitExtensions;`
`6`	`7`	`using Test.Cryptography;`
`7`	`8`	`using Test.IO.Streams;`
`8`	`9`	`using Xunit;`
`@@ -26,14 +27,14 @@ public void NullArray_Throws()`
`26`	`27`	`{`
`27`	`28`	`using (RSA rsa = RSAFactory.Create())`
`28`	`29`	`{`
`29`		`- AssertExtensions.Throws<ArgumentNullException>("data", () => SignData(rsa, null, HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1));`
`30`		`- AssertExtensions.Throws<ArgumentNullException>("hash", () => SignHash(rsa, null, HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1));`
	`30`	`+ AssertExtensions.Throws<ArgumentNullException>("data", () => SignData(rsa, null, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1));`
	`31`	`+ AssertExtensions.Throws<ArgumentNullException>("hash", () => SignHash(rsa, null, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1));`
`31`	`32`
`32`		`- AssertExtensions.Throws<ArgumentNullException>("data", () => VerifyData(rsa, null, new byte[1], HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1));`
`33`		`- AssertExtensions.Throws<ArgumentNullException>("hash", () => VerifyHash(rsa, null, new byte[1], HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1));`
	`33`	`+ AssertExtensions.Throws<ArgumentNullException>("data", () => VerifyData(rsa, null, new byte[1], HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1));`
	`34`	`+ AssertExtensions.Throws<ArgumentNullException>("hash", () => VerifyHash(rsa, null, new byte[1], HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1));`
`34`	`35`
`35`		`- AssertExtensions.Throws<ArgumentNullException>("signature", () => VerifyData(rsa, new byte[1], null, HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1));`
`36`		`- AssertExtensions.Throws<ArgumentNullException>("signature", () => VerifyHash(rsa, new byte[1], null, HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1));`
	`36`	`+ AssertExtensions.Throws<ArgumentNullException>("signature", () => VerifyData(rsa, new byte[1], null, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1));`
	`37`	`+ AssertExtensions.Throws<ArgumentNullException>("signature", () => VerifyHash(rsa, new byte[1], null, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1));`
`37`	`38`	`}`
`38`	`39`	`}`
`39`	`40`	`}`
`@@ -72,10 +73,10 @@ public void NullPadding_Throws()`
`72`	`73`	`{`
`73`	`74`	`using (RSA rsa = RSAFactory.Create())`
`74`	`75`	`{`
`75`		`- AssertExtensions.Throws<ArgumentNullException>("padding", () => SignData(rsa, new byte[1], HashAlgorithmName.SHA1, null));`
`76`		`- AssertExtensions.Throws<ArgumentNullException>("padding", () => SignHash(rsa, new byte[1], HashAlgorithmName.SHA1, null));`
`77`		`- AssertExtensions.Throws<ArgumentNullException>("padding", () => VerifyData(rsa, new byte[1], new byte[1], HashAlgorithmName.SHA1, null));`
`78`		`- AssertExtensions.Throws<ArgumentNullException>("padding", () => VerifyHash(rsa, new byte[1], new byte[1], HashAlgorithmName.SHA1, null));`
	`76`	`+ AssertExtensions.Throws<ArgumentNullException>("padding", () => SignData(rsa, new byte[1], HashAlgorithmName.SHA256, null));`
	`77`	`+ AssertExtensions.Throws<ArgumentNullException>("padding", () => SignHash(rsa, new byte[1], HashAlgorithmName.SHA256, null));`
	`78`	`+ AssertExtensions.Throws<ArgumentNullException>("padding", () => VerifyData(rsa, new byte[1], new byte[1], HashAlgorithmName.SHA256, null));`
	`79`	`+ AssertExtensions.Throws<ArgumentNullException>("padding", () => VerifyHash(rsa, new byte[1], new byte[1], HashAlgorithmName.SHA256, null));`
`79`	`80`	`}`
`80`	`81`	`}`
`81`	`82`
`@@ -87,7 +88,7 @@ public void UseAfterDispose(bool importKey)`
`87`	`88`	`RSA rsa = importKey ? RSAFactory.Create(TestData.RSA2048Params) : RSAFactory.Create(1024);`
`88`	`89`	`byte[] data = TestData.HelloBytes;`
`89`	`90`	`byte[] sig;`
`90`		`- HashAlgorithmName alg = HashAlgorithmName.SHA1;`
	`91`	`+ HashAlgorithmName alg = HashAlgorithmName.SHA256;`
`91`	`92`	`RSASignaturePadding padding = RSASignaturePadding.Pkcs1;`
`92`	`93`
`93`	`94`	`using (rsa)`
`@@ -115,12 +116,12 @@ public void InvalidKeySize_DoesNotInvalidateKey()`
`115`	`116`	`{`
`116`	`117`	`using (RSA rsa = RSAFactory.Create())`
`117`	`118`	`{`
`118`		`- byte[] signature = SignData(rsa, TestData.HelloBytes, HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1);`
	`119`	`+ byte[] signature = SignData(rsa, TestData.HelloBytes, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1);`
`119`	`120`
`120`	`121`	`// A 2049-bit key is hard to describe, none of the providers support it.`
`121`	`122`	`Assert.ThrowsAny<CryptographicException>(() => rsa.KeySize = 2049);`
`122`	`123`
`123`		`- Assert.True(VerifyData(rsa, TestData.HelloBytes, signature, HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1));`
	`124`	`+ Assert.True(VerifyData(rsa, TestData.HelloBytes, signature, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1));`
`124`	`125`	`}`
`125`	`126`	`}`
`126`	`127`
`@@ -143,11 +144,11 @@ public void SignEmptyHash()`
`143`	`144`	`using (RSA rsa = RSAFactory.Create())`
`144`	`145`	`{`
`145`	`146`	`Assert.ThrowsAny<CryptographicException>(`
`146`		`- () => SignHash(rsa, Array.Empty<byte>(), HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1));`
	`147`	`+ () => SignHash(rsa, Array.Empty<byte>(), HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1));`
`147`	`148`	`}`
`148`	`149`	`}`
`149`	`150`
`150`		`- [Fact]`
	`151`	`+ [ConditionalFact(typeof(RSAFactory), nameof(RSAFactory.SupportsSha1Signatures))]`
`151`	`152`	`public void ExpectedSignature_SHA1_384()`
`152`	`153`	`{`
`153`	`154`	`byte[] expectedSignature =`
`@@ -178,7 +179,7 @@ public void ExpectedSignature_SHA1_384()`
`178`	`179`	`}`
`179`	`180`	`}`
`180`	`181`
`181`		`- [Fact]`
	`182`	`+ [ConditionalFact(typeof(RSAFactory), nameof(RSAFactory.SupportsSha1Signatures))]`
`182`	`183`	`public void ExpectedSignature_SHA1_1032()`
`183`	`184`	`{`
`184`	`185`	`byte[] expectedSignature =`
`@@ -205,7 +206,7 @@ public void ExpectedSignature_SHA1_1032()`
`205`	`206`	`ExpectSignature(expectedSignature, TestData.HelloBytes, "SHA1", TestData.RSA1032Parameters);`
`206`	`207`	`}`
`207`	`208`
`208`		`- [Fact]`
	`209`	`+ [ConditionalFact(typeof(RSAFactory), nameof(RSAFactory.SupportsSha1Signatures))]`
`209`	`210`	`public void ExpectedSignature_SHA1_2048()`
`210`	`211`	`{`
`211`	`212`	`byte[] expectedSignature = new byte[]`
`@@ -350,7 +351,7 @@ public void ExpectSignature_SHA256_1024_Stream()`
`350`	`351`	`Assert.Equal(expectedSignature, signature);`
`351`	`352`	`}`
`352`	`353`
`353`		`- [Fact]`
	`354`	`+ [ConditionalFact(typeof(RSAFactory), nameof(RSAFactory.SupportsSha1Signatures))]`
`354`	`355`	`public void VerifySignature_SHA1_384()`
`355`	`356`	`{`
`356`	`357`	`byte[] signature =`
`@@ -366,7 +367,7 @@ public void VerifySignature_SHA1_384()`
`366`	`367`	`VerifySignature(signature, TestData.HelloBytes, "SHA1", TestData.RSA384Parameters);`
`367`	`368`	`}`
`368`	`369`
`369`		`- [Fact]`
	`370`	`+ [ConditionalFact(typeof(RSAFactory), nameof(RSAFactory.SupportsSha1Signatures))]`
`370`	`371`	`public void VerifySignature_SHA1_1032()`
`371`	`372`	`{`
`372`	`373`	`byte[] signature =`
`@@ -393,7 +394,7 @@ public void VerifySignature_SHA1_1032()`
`393`	`394`	`VerifySignature(signature, TestData.HelloBytes, "SHA1", TestData.RSA1032Parameters);`
`394`	`395`	`}`
`395`	`396`
`396`		`- [Fact]`
	`397`	`+ [ConditionalFact(typeof(RSAFactory), nameof(RSAFactory.SupportsSha1Signatures))]`
`397`	`398`	`public void VerifySignature_SHA1_2048()`
`398`	`399`	`{`
`399`	`400`	`byte[] signature = new byte[]`
`@@ -516,8 +517,12 @@ public static IEnumerable<object[]> RoundTripTheories`
`516`	`517`	`{`
`517`	`518`	`foreach (RSAParameters rsaParameters in new[] { TestData.RSA1024Params, TestData.RSA2048Params })`
`518`	`519`	`{`
	`520`	`+ if (RSAFactory.SupportsSha1Signatures)`
	`521`	`+ {`
	`522`	`+ yield return new object[] { nameof(HashAlgorithmName.SHA1), rsaParameters };`
	`523`	`+ }`
	`524`	`+`
`519`	`525`	`yield return new object[] { nameof(HashAlgorithmName.MD5), rsaParameters };`
`520`		`- yield return new object[] { nameof(HashAlgorithmName.SHA1), rsaParameters };`
`521`	`526`	`yield return new object[] { nameof(HashAlgorithmName.SHA256), rsaParameters };`
`522`	`527`	`}`
`523`	`528`
`@@ -532,8 +537,8 @@ public void NegativeVerify_WrongAlgorithm()`
`532`	`537`	`using (RSA rsa = RSAFactory.Create())`
`533`	`538`	`{`
`534`	`539`	`rsa.ImportParameters(TestData.RSA2048Params);`
`535`		`- byte[] signature = SignData(rsa, TestData.HelloBytes, HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1);`
`536`		`- bool signatureMatched = VerifyData(rsa, TestData.HelloBytes, signature, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1);`
	`540`	`+ byte[] signature = SignData(rsa, TestData.HelloBytes, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1);`
	`541`	`+ bool signatureMatched = VerifyData(rsa, TestData.HelloBytes, signature, HashAlgorithmName.SHA384, RSASignaturePadding.Pkcs1);`
`537`	`542`
`538`	`543`	`Assert.False(signatureMatched);`
`539`	`544`	`}`
`@@ -545,12 +550,12 @@ public void NegativeVerify_WrongSignature()`
`545`	`550`	`using (RSA rsa = RSAFactory.Create())`
`546`	`551`	`{`
`547`	`552`	`rsa.ImportParameters(TestData.RSA2048Params);`
`548`		`- byte[] signature = SignData(rsa, TestData.HelloBytes, HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1);`
	`553`	`+ byte[] signature = SignData(rsa, TestData.HelloBytes, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1);`
`549`	`554`
`550`	`555`	`// Invalidate the signature.`
`551`	`556`	`signature[0] = unchecked((byte)~signature[0]);`
`552`	`557`
`553`		`- bool signatureMatched = VerifyData(rsa, TestData.HelloBytes, signature, HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1);`
	`558`	`+ bool signatureMatched = VerifyData(rsa, TestData.HelloBytes, signature, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1);`
`554`	`559`	`Assert.False(signatureMatched);`
`555`	`560`	`}`
`556`	`561`	`}`
`@@ -561,8 +566,8 @@ public void NegativeVerify_TamperedData()`
`561`	`566`	`using (RSA rsa = RSAFactory.Create())`
`562`	`567`	`{`
`563`	`568`	`rsa.ImportParameters(TestData.RSA2048Params);`
`564`		`- byte[] signature = SignData(rsa, TestData.HelloBytes, HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1);`
`565`		`- bool signatureMatched = VerifyData(rsa, Array.Empty<byte>(), signature, HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1);`
	`569`	`+ byte[] signature = SignData(rsa, TestData.HelloBytes, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1);`
	`570`	`+ bool signatureMatched = VerifyData(rsa, Array.Empty<byte>(), signature, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1);`
`566`	`571`	`Assert.False(signatureMatched);`
`567`	`572`	`}`
`568`	`573`	`}`
`@@ -575,13 +580,13 @@ public void NegativeVerify_BadKeysize()`
`575`	`580`	`using (RSA rsa = RSAFactory.Create())`
`576`	`581`	`{`
`577`	`582`	`rsa.ImportParameters(TestData.RSA2048Params);`
`578`		`- signature = SignData(rsa, TestData.HelloBytes, HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1);`
	`583`	`+ signature = SignData(rsa, TestData.HelloBytes, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1);`
`579`	`584`	`}`
`580`	`585`
`581`	`586`	`using (RSA rsa = RSAFactory.Create())`
`582`	`587`	`{`
`583`	`588`	`rsa.ImportParameters(TestData.RSA1024Params);`
`584`		`- bool signatureMatched = VerifyData(rsa, TestData.HelloBytes, signature, HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1);`
	`589`	`+ bool signatureMatched = VerifyData(rsa, TestData.HelloBytes, signature, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1);`
`585`	`590`
`586`	`591`	`Assert.False(signatureMatched);`
`587`	`592`	`}`
`@@ -610,7 +615,7 @@ public void PkcsSignHash_MismatchedHashSize()`
`610`	`615`	`}`
`611`	`616`	`}`
`612`	`617`
`613`		`- [Fact]`
	`618`	`+ [ConditionalFact(typeof(RSAFactory), nameof(RSAFactory.SupportsSha1Signatures))]`
`614`	`619`	`public void ExpectedHashSignature_SHA1_2048()`
`615`	`620`	`{`
`616`	`621`	`byte[] expectedHashSignature = new byte[]`
`@@ -741,7 +746,7 @@ public void ExpectedHashSignature_SHA256_2048()`
`741`	`746`	`ExpectHashSignature(expectedHashSignature, dataHash, "SHA256", TestData.RSA2048Params);`
`742`	`747`	`}`
`743`	`748`
`744`		`- [Fact]`
	`749`	`+ [ConditionalFact(typeof(RSAFactory), nameof(RSAFactory.SupportsSha1Signatures))]`
`745`	`750`	`public void VerifyHashSignature_SHA1_2048()`
`746`	`751`	`{`
`747`	`752`	`byte[] hashSignature = new byte[]`
`@@ -872,14 +877,19 @@ public void VerifyHashSignature_SHA256_2048()`
`872`	`877`	`VerifyHashSignature(hashSignature, dataHash, "SHA256", TestData.RSA2048Params);`
`873`	`878`	`}`
`874`	`879`
`875`		`- [Theory]`
	`880`	`+ [ConditionalTheory]`
`876`	`881`	`[InlineData("SHA256")]`
`877`	`882`	`[InlineData("SHA384")]`
`878`	`883`	`[InlineData("SHA512")]`
`879`	`884`	`[InlineData("MD5")]`
`880`	`885`	`[InlineData("SHA1")]`
`881`	`886`	`public void PssRoundtrip(string hashAlgorithmName)`
`882`	`887`	`{`
	`888`	`+ if (!RSAFactory.SupportsSha1Signatures && hashAlgorithmName == "SHA1")`
	`889`	`+ {`
	`890`	`+ throw new SkipTestException("Platform does not support RSA with SHA1 signatures.");`
	`891`	`+ }`
	`892`	`+`
`883`	`893`	`RSAParameters privateParameters = TestData.RSA2048Params;`
`884`	`894`	`RSAParameters publicParameters = new RSAParameters`
`885`	`895`	`{`
Original file line number	Diff line number	Diff line change
`@@ -56,7 +56,7 @@ public static void VerifyDefaultSpanHash()`
`56`	`56`	`byte[] signature = new byte[2048 / 8];`
`57`	`57`
`58`	`58`	`Assert.False(`
`59`		`- rsa.VerifyHash(ReadOnlySpan<byte>.Empty, signature, HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1));`
	`59`	`+ rsa.VerifyHash(ReadOnlySpan<byte>.Empty, signature, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1));`
`60`	`60`
`61`	`61`	`if (RSAFactory.SupportsPss)`
`62`	`62`	`{`
Original file line number	Diff line number	Diff line change
`@@ -34,6 +34,8 @@ public bool Supports384PrivateKey`
`34`	`34`	`public bool SupportsSha2Oaep => true;`
`35`	`35`
`36`	`36`	`public bool SupportsPss => true;`
	`37`	`+`
	`38`	`+ public bool SupportsSha1Signatures => true;`
`37`	`39`	`}`
`38`	`40`
`39`	`41`	`public partial class RSAFactory`