為什么 Json.NET 無法序列化 X509Certificate2?
[英]Why does Json.NET fail to serialize a X509Certificate2?
問題描述
每當我嘗試使用 Json.NET 序列化 X509Certificate2 實例時(不使用其 ISerializable 實現,但選擇忽略它),Json.NET 會引發異常。
異常消息是“'System.Security.Cryptography.X509Certificates.X509Certificate2'上已存在名為'CertContext'的成員。使用 JsonPropertyAttribute 指定另一個名稱。”
我寫了一個程序來重現它:
using System.Reflection;
using System.Security.Cryptography.X509Certificates;
using Newtonsoft.Json;
using Newtonsoft.Json.Serialization;
internal class Program
{
private static void Main(string[] args)
{
var resolver = new DefaultContractResolver
{
IgnoreSerializableInterface = true,
DefaultMembersSearchFlags =
BindingFlags.Instance | BindingFlags.NonPublic | BindingFlags.Public | BindingFlags.GetProperty
};
JsonConvert.SerializeObject(new X509Certificate2(), new JsonSerializerSettings {ContractResolver = resolver});
}
}
經過調查,我注意到 X509Certificate2 實現了一個名為“CertContext”的屬性,該屬性在其基類 X509Certificate 中隱藏了一個同名的方法。 我如何告訴 Json.NET 只采用派生程度最高的屬性,就像通常那樣?
2 個解決方案
解決方案1
4 2018-06-04 22:58:02
我最近發現需要序列化X509Certificate2實例,以便比較兩個行為不同的假定相同環境的差異。 我能夠通過以下JsonSerializerSettings實現序列化:
new JsonSerializerSettings {
Error = (s, a) => a.ErrorContext.Handled = true,
ContractResolver = new DefaultContractResolver {
IgnoreSerializableInterface = true
}
}
這是一個完整的工作示例,它 JSON 序列化本地機器存儲中的第一個證書並打開它:
namespace ConsoleApp1
{
using System.Diagnostics;
using System.IO;
using System.Security.Cryptography.X509Certificates;
using Newtonsoft.Json;
using Newtonsoft.Json.Serialization;
class Program
{
static void Main(string[] args)
{
var store = new X509Store(StoreName.My, StoreLocation.LocalMachine);
try
{
store.Open(OpenFlags.ReadOnly);
var cert = store.Certificates[0];
var path = Path.GetTempFileName();
File.WriteAllText(
path,
JsonConvert.SerializeObject(
cert, new JsonSerializerSettings {
Formatting = Formatting.Indented,
// Ignore serializtion errors
Error = (s, a) => a.ErrorContext.Handled = true,
ContractResolver = new DefaultContractResolver {
// Ensures all properties are serialized
IgnoreSerializableInterface = true
}
}
)
);
Process.Start(path);
}
finally
{
store.Close();
}
}
}
}
解決方案2
0 2020-07-16 16:20:28
為此,您可以使用轉換器:
public class X509Certificate2JsonConverter : JsonConverter
{
public override bool CanConvert(Type objectType)
{
return objectType == typeof(X509Certificate2);
}
public override object ReadJson(JsonReader reader,
Type objectType, object existingValue, JsonSerializer serializer)
{
var deserializedRaw = serializer.Deserialize<byte[]>(reader);
var deserialized = new X509Certificate2(deserializedRaw);
return deserialized;
}
public override void WriteJson(JsonWriter writer,
object value, JsonSerializer serializer)
{
byte[] certData = ((X509Certificate2)value).Export(X509ContentType.Pfx);
serializer.Serialize(writer, certData);
}
}
以及對它的測試:
public class CertificateHolder : IDisposable
{
[JsonConverter(typeof(X509Certificate2JsonConverter))]
public X509Certificate2 Certificate { get; set; }
public void Dispose() => Certificate?.Dispose();
public static X509Certificate2 CreateCertificate()
{
var ecdsa = ECDsa.Create();
var req = new CertificateRequest("cn=foobar", ecdsa, HashAlgorithmName.SHA256);
var c = req.CreateSelfSigned(DateTimeOffset.Now, DateTimeOffset.Now.AddYears(5));
return c;
}
}
[TestFixture]
class X509Certificate2JsonConverterTests
{
[Test]
public void Serialization()
{
var holder = new CertificateHolder();
holder.Certificate = CertificateHolder.CreateCertificate();
var str = JsonConvert.SerializeObject(holder);
var holderRestored = JsonConvert.DeserializeObject<CertificateHolder>(str);
var holderStr = holder.Certificate.ToString();
var holderRestoredStr = holderRestored.Certificate.ToString();
Assert.AreEqual(holderStr, holderRestoredStr);
holder.Dispose();
holderRestored.Dispose();
}
}
為什么var推斷類型X509Certificate2而不是X509Certificate2Collection循環中的對象?
[英]Why does var infer type X509Certificate2 and not object in X509Certificate2Collection loop?
將X509Certificate2證書與.NET中的私鑰相關聯
[英]Associating an X509Certificate2 certificate with a private key in .NET
.NET Core ChannelFactory-將X509Certificate2設置為客戶端證書
[英].NET Core ChannelFactory - Set a X509Certificate2 as Client Certificate
X509Certificate2的RemoteCertificateValidationCallback
[英]RemoteCertificateValidationCallback with X509Certificate2
為什么自簽名 PFX X509Certificate2 私鑰會引發 NotSupportedException?
[英]Why does self signed PFX X509Certificate2 private key raise a NotSupportedException?
聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.
相關問題
為什么X509Certificate2有時無法從blob創建?
X509Certificate2 無法在 asp 網頁中正確加載
為什么var推斷類型X509Certificate2而不是X509Certificate2Collection循環中的對象?
將X509Certificate2證書與.NET中的私鑰相關聯
.NET Core ChannelFactory-將X509Certificate2設置為客戶端證書
X509Certificate2的RemoteCertificateValidationCallback
X509Certificate2到EccKey
X509Certificate2信息
為什么自簽名 PFX X509Certificate2 私鑰會引發 NotSupportedException?
x509certificate2 到 .NET FR 中的 PEM。 4.7.2
相關標簽