Fix SLH-DSA key to use SHA-1 MAC for Windows support

[vcsjones]

The PKCS#12 document in IetfSlhDsaSha2_128sCertificatePfx_Pbes1 used pbeWithSHA1And3-KeyTripleDES-CBC for key and certificate encryption, but it still used SHA-256 for the MAC, which Windows 10 Threshold does not support. This pull request re-encodes it to use a SHA-1 MAC.

Contributes to #115270 (not marking as fixing until Build Analysis shows a 0 24-hour hit count)

[Copilot]

Pull Request Overview

Updates the PKCS#12 test fixture to use a SHA-1 MAC for Windows compatibility, replacing the previous SHA-256 MAC–encoded blob.

• Replaces the base64 PFX data for IetfSlhDsaSha2_128sCertificatePfx_Pbes1 with a new blob using SHA-1 MAC.
• Ensures Windows 10 Threshold can import the test PFX.

Comments suppressed due to low confidence (1)

src/libraries/Common/tests/System/Security/Cryptography/AlgorithmImplementations/SlhDsa/SlhDsaTestData.cs:385

• There’s no test that validates the MAC algorithm on the new PFX blob. Consider adding a test that loads this PFX and asserts its MAC OID is the SHA-1 OID (1.3.14.3.2.26) to prevent regressions.

internal static byte[] IetfSlhDsaSha2_128sCertificatePfx_Pbes1 => field ??= Convert.FromBase64String(@"

[PranavSenthilnathan]

Thanks!

[vcsjones]

@bartonjs @PranavSenthilnathan something dead lettered? Can this be ba-g'ed?

[bartonjs]

/ba-g This test doesn't even run on wasm.