Obsolete unnecessary cryptographic derived types #46934
Labels
Milestone
Comments
bartonjs
added
area-System.Security
api-ready-for-review
|
Tagging subscribers to this area: @bartonjs, @vcsjones, @krwq Issue DetailsBackground and MotivationMany of the cryptographic algorithms have an inheritance hierarchy to allow for distinct implementations to be used. For example, in .NET Framework In .NET (nee Core) these types are all always backed by a single native implementation (using Windows CNG, Apple Security.Framework, or OpenSSL (as appropriate)), so there's no reason to prefer any one type over another.
Notably, the .NET (nee Core) reference assemblies already has these types marked as All modern code should instantiate these algorithms via the Proposed APInamespace System.Security.Cryptography.Algorithms
{
+ [Obsolete(someID)]
[EditorBrowsable(EditorBrowsableState.Never)]
public partial class AesCryptoServiceProvider
{
}
+ [Obsolete(someID)]
[EditorBrowsable(EditorBrowsableState.Never)]
public partial class AesManaged
{
}
+ [Obsolete(someID)]
[EditorBrowsable(EditorBrowsableState.Never)]
public partial class DESCryptoServiceProvider
{
}
+ [Obsolete(someID)]
[EditorBrowsable(EditorBrowsableState.Never)]
public partial class MD5CryptoServiceProvider
{
}
+ [Obsolete(someID)]
[EditorBrowsable(EditorBrowsableState.Never)]
public partial class RC2CryptoServiceProvider
{
}
+ [Obsolete(someID)]
[EditorBrowsable(EditorBrowsableState.Never)]
public partial class SHA1Managed
{
}
+ [Obsolete(someID)]
[EditorBrowsable(EditorBrowsableState.Never)]
public partial class SHA1CryptoServiceProvider
{
}
+ [Obsolete(someID)]
[EditorBrowsable(EditorBrowsableState.Never)]
public partial class SHA256Managed
{
}
+ [Obsolete(someID)]
[EditorBrowsable(EditorBrowsableState.Never)]
public partial class SHA256CryptoServiceProvider
{
}
+ [Obsolete(someID)]
[EditorBrowsable(EditorBrowsableState.Never)]
public partial class SHA384Managed
{
}
+ [Obsolete(someID)]
[EditorBrowsable(EditorBrowsableState.Never)]
public partial class SHA384CryptoServiceProvider
{
}
+ [Obsolete(someID)]
[EditorBrowsable(EditorBrowsableState.Never)]
public partial class SHA512Managed
{
}
+ [Obsolete(someID)]
[EditorBrowsable(EditorBrowsableState.Never)]
public partial class SHA512CryptoServiceProvider
{
}
+ [Obsolete(someID)]
[EditorBrowsable(EditorBrowsableState.Never)]
public partial class TripleDESCryptoServiceProvider
{
}
}
|
dotnet-issue-labeler
bot
added
the
untriaged
14 tasks
|
Looks good as proposed. namespace System.Security.Cryptography.Algorithms
{
+ [Obsolete(someID)]
[EditorBrowsable(EditorBrowsableState.Never)]
public partial class AesCryptoServiceProvider
{
}
+ [Obsolete(someID)]
[EditorBrowsable(EditorBrowsableState.Never)]
public partial class AesManaged
{
}
+ [Obsolete(someID)]
[EditorBrowsable(EditorBrowsableState.Never)]
public partial class DESCryptoServiceProvider
{
}
+ [Obsolete(someID)]
[EditorBrowsable(EditorBrowsableState.Never)]
public partial class MD5CryptoServiceProvider
{
}
+ [Obsolete(someID)]
[EditorBrowsable(EditorBrowsableState.Never)]
public partial class RC2CryptoServiceProvider
{
}
+ [Obsolete(someID)]
[EditorBrowsable(EditorBrowsableState.Never)]
public partial class SHA1Managed
{
}
+ [Obsolete(someID)]
[EditorBrowsable(EditorBrowsableState.Never)]
public partial class SHA1CryptoServiceProvider
{
}
+ [Obsolete(someID)]
[EditorBrowsable(EditorBrowsableState.Never)]
public partial class SHA256Managed
{
}
+ [Obsolete(someID)]
[EditorBrowsable(EditorBrowsableState.Never)]
public partial class SHA256CryptoServiceProvider
{
}
+ [Obsolete(someID)]
[EditorBrowsable(EditorBrowsableState.Never)]
public partial class SHA384Managed
{
}
+ [Obsolete(someID)]
[EditorBrowsable(EditorBrowsableState.Never)]
public partial class SHA384CryptoServiceProvider
{
}
+ [Obsolete(someID)]
[EditorBrowsable(EditorBrowsableState.Never)]
public partial class SHA512Managed
{
}
+ [Obsolete(someID)]
[EditorBrowsable(EditorBrowsableState.Never)]
public partial class SHA512CryptoServiceProvider
{
}
+ [Obsolete(someID)]
[EditorBrowsable(EditorBrowsableState.Never)]
public partial class TripleDESCryptoServiceProvider
{
}
} |
bartonjs
added
api-approved
ghost
added
the
in-pr
ghost
removed
the
in-pr
24 tasks
ghost
locked as resolved and limited conversation to collaborators
This issue was closed.
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Background and Motivation
Many of the cryptographic algorithms have an inheritance hierarchy to allow for distinct implementations to be used. For example, in .NET Framework
SHA256Manageduses a fully managed implementation,SHA256CryptoServiceProvideruses Windows CAPI, andSHA256Cnguses Windows CNG.In .NET (nee Core) these types are all always backed by a single native implementation (using Windows CNG, Apple Security.Framework, or OpenSSL (as appropriate)), so there's no reason to prefer any one type over another.
Notably, the .NET (nee Core) reference assemblies already has these types marked as
[EditorBrowsable(Never)].All modern code should instantiate these algorithms via the
Create()static method on the algorithm type (e.g.SHA256.Create()) (except, as noted, for the persisted key use case for AesCng and TripleDESCng).Proposed API
namespace System.Security.Cryptography.Algorithms { + [Obsolete(someID)] [EditorBrowsable(EditorBrowsableState.Never)] public partial class AesCryptoServiceProvider { } + [Obsolete(someID)] [EditorBrowsable(EditorBrowsableState.Never)] public partial class AesManaged { } + [Obsolete(someID)] [EditorBrowsable(EditorBrowsableState.Never)] public partial class DESCryptoServiceProvider { } + [Obsolete(someID)] [EditorBrowsable(EditorBrowsableState.Never)] public partial class MD5CryptoServiceProvider { } + [Obsolete(someID)] [EditorBrowsable(EditorBrowsableState.Never)] public partial class RC2CryptoServiceProvider { } + [Obsolete(someID)] [EditorBrowsable(EditorBrowsableState.Never)] public partial class SHA1Managed { } + [Obsolete(someID)] [EditorBrowsable(EditorBrowsableState.Never)] public partial class SHA1CryptoServiceProvider { } + [Obsolete(someID)] [EditorBrowsable(EditorBrowsableState.Never)] public partial class SHA256Managed { } + [Obsolete(someID)] [EditorBrowsable(EditorBrowsableState.Never)] public partial class SHA256CryptoServiceProvider { } + [Obsolete(someID)] [EditorBrowsable(EditorBrowsableState.Never)] public partial class SHA384Managed { } + [Obsolete(someID)] [EditorBrowsable(EditorBrowsableState.Never)] public partial class SHA384CryptoServiceProvider { } + [Obsolete(someID)] [EditorBrowsable(EditorBrowsableState.Never)] public partial class SHA512Managed { } + [Obsolete(someID)] [EditorBrowsable(EditorBrowsableState.Never)] public partial class SHA512CryptoServiceProvider { } + [Obsolete(someID)] [EditorBrowsable(EditorBrowsableState.Never)] public partial class TripleDESCryptoServiceProvider { } }The text was updated successfully, but these errors were encountered: