Update to .NET 8 (#503)

joegoldman2 · web-flow · commit 0f302e2251a0 · 2024-02-28T18:51:53.000+01:00
* Update to .NET 8

* Remove GuidHelper
diff --git a/Directory.Build.props b/Directory.Build.props
@@ -7,6 +7,7 @@
     <Description>FIDO2 .NET library (WebAuthn)</Description>
     <RepositoryUrl>https://github.com/passwordless-lib/fido2-net-lib</RepositoryUrl>
     <RepositoryType>git</RepositoryType>
+    <PublishRepositoryUrl>true</PublishRepositoryUrl>
     <PackageTags>fido2 webauthn</PackageTags>
     <PackageReleaseNotes>Initial release</PackageReleaseNotes>
     <PackageProjectUrl>https://github.com/passwordless-lib/fido2-net-lib</PackageProjectUrl>
@@ -15,7 +16,7 @@
   
   <!-- Global Variables -->
   <PropertyGroup>
-    <SupportedTargetFrameworks>net6.0</SupportedTargetFrameworks>
+    <SupportedTargetFrameworks>net8.0</SupportedTargetFrameworks>
     <ImplicitUsings>enable</ImplicitUsings>
     <TreatWarningsAsErrors>true</TreatWarningsAsErrors>
     <GenerateDocumentationFile>true</GenerateDocumentationFile>
diff --git a/Src/Directory.Build.props b/Src/Directory.Build.props
@@ -2,12 +2,9 @@
 <Project>
   <Import Project="..\Directory.Build.props"/>
 
-  <!-- SourceLink Support-->
   <PropertyGroup Condition="$(IS_DOCKER) == ''">
+    <!-- Include PDB in the NuGet package -->
     <AllowedOutputExtensionsInPackageBuildOutputFolder>$(AllowedOutputExtensionsInPackageBuildOutputFolder);.pdb</AllowedOutputExtensionsInPackageBuildOutputFolder>
-    <PublishRepositoryUrl>true</PublishRepositoryUrl>
   </PropertyGroup>
-  <ItemGroup Condition="$(IS_DOCKER) == ''">
-    <PackageReference Include="Microsoft.SourceLink.GitHub" Version="1.1.1" PrivateAssets="All" />
-  </ItemGroup>  
+
 </Project>
diff --git a/Src/Fido2.BlazorWebAssembly/Fido2.BlazorWebAssembly.csproj b/Src/Fido2.BlazorWebAssembly/Fido2.BlazorWebAssembly.csproj
@@ -1,7 +1,7 @@
 ﻿<Project Sdk="Microsoft.NET.Sdk.Razor">
 
   <PropertyGroup>
-    <TargetFrameworks>net8.0</TargetFrameworks>
+    <TargetFrameworks>$(SupportedTargetFrameworks)</TargetFrameworks>
     <RootNamespace>Fido2NetLib</RootNamespace>
     <GenerateDocumentationFile>true</GenerateDocumentationFile>
     <Nullable>enable</Nullable>
diff --git a/Src/Fido2.Models/Metadata/AuthenticatorStatus.cs b/Src/Fido2.Models/Metadata/AuthenticatorStatus.cs
@@ -8,7 +8,7 @@ namespace Fido2NetLib;
 /// <remarks>
 /// <see href="https://fidoalliance.org/specs/fido-v2.0-rd-20180702/fido-metadata-service-v2.0-rd-20180702.html#authenticatorstatus-enum"/>
 /// </remarks>
-[JsonConverter(typeof(JsonStringEnumConverter))]
+[JsonConverter(typeof(JsonStringEnumConverter<AuthenticatorStatus>))]
 public enum AuthenticatorStatus
 {
     /// <summary>
diff --git a/Src/Fido2/AttestationFormat/Packed.cs b/Src/Fido2/AttestationFormat/Packed.cs
@@ -74,7 +74,7 @@ public override ValueTask<VerifyAttestationResult> VerifyAsync(VerifyAttestation
                 else
                 {
                     throw new Fido2VerificationException(Fido2ErrorCode.InvalidAttestation, "Malformed x5c cert found in packed attestation statement");
-                }
+                }
             }
 
             // The attestation certificate attestnCert MUST be the first element in the array.
@@ -109,15 +109,15 @@ public override ValueTask<VerifyAttestationResult> VerifyAsync(VerifyAttestation
             // 2c. If attestnCert contains an extension with OID 1.3.6.1.4.1.45724.1.1.4 (id-fido-gen-ce-aaguid) verify that the value of this extension matches the aaguid in authenticatorData
             if (aaguid != null)
             {
-                if (GuidHelper.FromBigEndian(aaguid).CompareTo(request.AuthData.AttestedCredentialData!.AaGuid) != 0)
+                if (new Guid(aaguid, bigEndian: true).CompareTo(request.AuthData.AttestedCredentialData!.AaGuid) != 0)
                     throw new Fido2VerificationException(Fido2ErrorCode.InvalidAttestation, "aaguid present in packed attestation cert exts but does not match aaguid from authData");
             }
 
             // id-fido-u2f-ce-transports 
-            byte u2fTransports = U2FTransportsFromAttnCert(attestnCert.Extensions);
-
-            // 2d. Optionally, inspect x5c and consult externally provided knowledge to determine whether attStmt conveys a Basic or AttCA attestation
-
+            byte u2fTransports = U2FTransportsFromAttnCert(attestnCert.Extensions);
+
+            // 2d. Optionally, inspect x5c and consult externally provided knowledge to determine whether attStmt conveys a Basic or AttCA attestation
+
             return new(new VerifyAttestationResult(AttestationType.AttCa, trustPath));
         }
 
diff --git a/Src/Fido2/AttestationFormat/Tpm.cs b/Src/Fido2/AttestationFormat/Tpm.cs
@@ -198,9 +198,9 @@ public override ValueTask<VerifyAttestationResult> VerifyAsync(VerifyAttestation
             // 5c. If aikCert contains an extension with OID 1.3.6.1.4.1.45724.1.1.4 (id-fido-gen-ce-aaguid) verify that the value of this extension matches the aaguid in authenticatorData
             if (AaguidFromAttnCertExts(aikCert.Extensions) is byte[] aaguid &&
                 (!aaguid.AsSpan().SequenceEqual(Guid.Empty.ToByteArray())) &&
-                (GuidHelper.FromBigEndian(aaguid).CompareTo(request.AuthData.AttestedCredentialData!.AaGuid) != 0))
+                (new Guid(aaguid, bigEndian: true).CompareTo(request.AuthData.AttestedCredentialData!.AaGuid) != 0))
             {
-                throw new Fido2VerificationException($"aaguid malformed, expected {request.AuthData.AttestedCredentialData.AaGuid}, got {new Guid(aaguid)}");
+                throw new Fido2VerificationException($"aaguid malformed, expected {request.AuthData.AttestedCredentialData.AaGuid}, got {new Guid(aaguid, bigEndian: true)}");
             }
 
             return new(new VerifyAttestationResult(AttestationType.AttCa, trustPath));
diff --git a/Src/Fido2/Extensions/GuidHelper.cs b/Src/Fido2/Extensions/GuidHelper.cs
diff --git a/Src/Fido2/Objects/AttestedCredentialData.cs b/Src/Fido2/Objects/AttestedCredentialData.cs
@@ -99,11 +99,8 @@ internal static AttestedCredentialData Parse(ReadOnlyMemory<byte> data, out int
 
         position += 16;
 
-#if NET8_0_OR_GREATER
-        Guid aaGuid = new Guid(aaGuidBytes, isBigEndian: true);
-#else
-        Guid aaGuid = GuidHelper.FromBigEndian(aaGuidBytes.ToArray());
-#endif
+        var aaGuid = new Guid(aaGuidBytes.Span, bigEndian: true);
+
         // Byte length of Credential ID, 16-bit unsigned big-endian integer. 
         var credentialIDLen = BinaryPrimitives.ReadUInt16BigEndian(data.Slice(position, 2).Span);
         if (credentialIDLen > _maxCredentialIdLength)

Original file line number	Diff line number	Diff line change
`@@ -8,7 +8,7 @@ namespace Fido2NetLib;`
`8`	`8`	`/// <remarks>`
`9`	`9`	`/// <see href="https://fidoalliance.org/specs/fido-v2.0-rd-20180702/fido-metadata-service-v2.0-rd-20180702.html#authenticatorstatus-enum"/>`
`10`	`10`	`/// </remarks>`
`11`		`-[JsonConverter(typeof(JsonStringEnumConverter))]`
	`11`	`+[JsonConverter(typeof(JsonStringEnumConverter<AuthenticatorStatus>))]`
`12`	`12`	`public enum AuthenticatorStatus`
`13`	`13`	`{`
`14`	`14`	`/// <summary>`
Original file line number	Diff line number	Diff line change
`@@ -74,7 +74,7 @@ public override ValueTask<VerifyAttestationResult> VerifyAsync(VerifyAttestation`
`74`	`74`	`else`
`75`	`75`	`{`
`76`	`76`	`throw new Fido2VerificationException(Fido2ErrorCode.InvalidAttestation, "Malformed x5c cert found in packed attestation statement");`
`77`		`- }`
	`77`	`+ }`
`78`	`78`	`}`
`79`	`79`
`80`	`80`	`// The attestation certificate attestnCert MUST be the first element in the array.`
`@@ -109,15 +109,15 @@ public override ValueTask<VerifyAttestationResult> VerifyAsync(VerifyAttestation`
`109`	`109`	`// 2c. If attestnCert contains an extension with OID 1.3.6.1.4.1.45724.1.1.4 (id-fido-gen-ce-aaguid) verify that the value of this extension matches the aaguid in authenticatorData`
`110`	`110`	`if (aaguid != null)`
`111`	`111`	`{`
`112`		`- if (GuidHelper.FromBigEndian(aaguid).CompareTo(request.AuthData.AttestedCredentialData!.AaGuid) != 0)`
	`112`	`+ if (new Guid(aaguid, bigEndian: true).CompareTo(request.AuthData.AttestedCredentialData!.AaGuid) != 0)`
`113`	`113`	`throw new Fido2VerificationException(Fido2ErrorCode.InvalidAttestation, "aaguid present in packed attestation cert exts but does not match aaguid from authData");`
`114`	`114`	`}`
`115`	`115`
`116`	`116`	`// id-fido-u2f-ce-transports`
`117`		`- byte u2fTransports = U2FTransportsFromAttnCert(attestnCert.Extensions);`
`118`		`-`
`119`		`- // 2d. Optionally, inspect x5c and consult externally provided knowledge to determine whether attStmt conveys a Basic or AttCA attestation`
`120`		`-`
	`117`	`+ byte u2fTransports = U2FTransportsFromAttnCert(attestnCert.Extensions);`
	`118`	`+`
	`119`	`+ // 2d. Optionally, inspect x5c and consult externally provided knowledge to determine whether attStmt conveys a Basic or AttCA attestation`
	`120`	`+`
`121`	`121`	`return new(new VerifyAttestationResult(AttestationType.AttCa, trustPath));`
`122`	`122`	`}`
`123`	`123`
Original file line number	Diff line number	Diff line change
`@@ -198,9 +198,9 @@ public override ValueTask<VerifyAttestationResult> VerifyAsync(VerifyAttestation`
`198`	`198`	`// 5c. If aikCert contains an extension with OID 1.3.6.1.4.1.45724.1.1.4 (id-fido-gen-ce-aaguid) verify that the value of this extension matches the aaguid in authenticatorData`
`199`	`199`	`if (AaguidFromAttnCertExts(aikCert.Extensions) is byte[] aaguid &&`
`200`	`200`	`(!aaguid.AsSpan().SequenceEqual(Guid.Empty.ToByteArray())) &&`
`201`		`- (GuidHelper.FromBigEndian(aaguid).CompareTo(request.AuthData.AttestedCredentialData!.AaGuid) != 0))`
	`201`	`+ (new Guid(aaguid, bigEndian: true).CompareTo(request.AuthData.AttestedCredentialData!.AaGuid) != 0))`
`202`	`202`	`{`
`203`		`- throw new Fido2VerificationException($"aaguid malformed, expected {request.AuthData.AttestedCredentialData.AaGuid}, got {new Guid(aaguid)}");`
	`203`	`+ throw new Fido2VerificationException($"aaguid malformed, expected {request.AuthData.AttestedCredentialData.AaGuid}, got {new Guid(aaguid, bigEndian: true)}");`
`204`	`204`	`}`
`205`	`205`
`206`	`206`	`return new(new VerifyAttestationResult(AttestationType.AttCa, trustPath));`