2 // MonoTlsProviderFactory.cs
5 // Martin Baulig <martin.baulig@xamarin.com>
7 // Copyright (c) 2015 Xamarin, Inc.
9 // Permission is hereby granted, free of charge, to any person obtaining a copy
10 // of this software and associated documentation files (the "Software"), to deal
11 // in the Software without restriction, including without limitation the rights
12 // to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
13 // copies of the Software, and to permit persons to whom the Software is
14 // furnished to do so, subject to the following conditions:
16 // The above copyright notice and this permission notice shall be included in
17 // all copies or substantial portions of the Software.
19 // THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
20 // IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
21 // FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
22 // AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
23 // LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
24 // OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
28 #if MONO_SECURITY_ALIAS
29 extern alias MonoSecurity;
30 using MSI = MonoSecurity::Mono.Security.Interface;
31 using MX = MonoSecurity::Mono.Security.X509;
33 using MSI = Mono.Security.Interface;
34 using MX = Mono.Security.X509;
36 using System.Security.Cryptography.X509Certificates;
41 using System.Collections.Generic;
44 using System.Reflection;
47 namespace Mono.Net.Security
50 * Keep in sync with Mono.Security/Mono.Security.Interface/MonoTlsProvider.cs.
53 static partial class MonoTlsProviderFactory
58 * APIs in this section are for consumption within System.dll only - do not access via
59 * reflection or from friend assemblies.
61 * @IMonoTlsProvider is defined as empty interface outside 'SECURITY_DEP', so we don't need
62 * this conditional here.
65 internal static IMonoTlsProvider GetProviderInternal ()
68 if (currentProvider != null)
69 return currentProvider;
72 defaultProvider = CreateDefaultProvider ();
73 } catch (Exception ex) {
74 throw new NotSupportedException ("TLS Support not available.", ex);
77 if (defaultProvider == null)
78 throw new NotSupportedException ("TLS Support not available.");
80 currentProvider = defaultProvider;
81 return currentProvider;
85 internal static IMonoTlsProvider GetDefaultProviderInternal ()
88 if (defaultProvider != null)
89 return defaultProvider;
92 defaultProvider = CreateDefaultProvider ();
93 } catch (Exception ex) {
94 throw new NotSupportedException ("TLS Support not available.", ex);
97 if (defaultProvider == null)
98 throw new NotSupportedException ("TLS Support not available.");
100 return defaultProvider;
104 #if MONO_FEATURE_NEW_SYSTEM_SOURCE || (!MONOTOUCH && !XAMMAC)
105 static IMonoTlsProvider CreateDefaultProvider ()
108 #if MONO_FEATURE_NEW_SYSTEM_SOURCE
110 * This is a hack, which is used in the Mono.Security.Providers.NewSystemSource
111 * assembly, which will provide a "fake" System.dll. Use the public Mono.Security
112 * API to get the "real" System.dll's provider via reflection, then wrap it with
113 * the "fake" version's perceived view.
115 * NewSystemSource needs to compile MonoTlsProviderFactory.cs, IMonoTlsProvider.cs,
116 * MonoTlsProviderWrapper.cs and CallbackHelpers.cs from this directory and only these.
118 var userProvider = MSI.MonoTlsProviderFactory.GetProvider ();
119 return new Private.MonoTlsProviderWrapper (userProvider);
121 return CreateDefaultProviderImpl ();
129 static object locker = new object ();
130 static IMonoTlsProvider defaultProvider;
131 static IMonoTlsProvider currentProvider;
135 #if SECURITY_DEP && !MONO_FEATURE_NEW_SYSTEM_SOURCE
137 static Dictionary<string,string> providerRegistration;
139 static Type LookupProviderType (string name, bool throwOnError)
142 InitializeProviderRegistration ();
144 if (!providerRegistration.TryGetValue (name, out typeName)) {
146 throw new NotSupportedException (string.Format ("No such TLS Provider: `{0}'.", name));
149 var type = Type.GetType (typeName, false);
150 if (type == null && throwOnError)
151 throw new NotSupportedException (string.Format ("Could not find TLS Provider: `{0}'.", typeName));
156 static MSI.MonoTlsProvider LookupProvider (string name, bool throwOnError)
158 var type = LookupProviderType (name, throwOnError);
163 return (MSI.MonoTlsProvider)Activator.CreateInstance (type);
164 } catch (Exception ex) {
165 throw new NotSupportedException (string.Format ("Unable to instantiate TLS Provider `{0}'.", type), ex);
169 static void InitializeProviderRegistration ()
172 if (providerRegistration != null)
174 providerRegistration = new Dictionary<string,string> ();
175 providerRegistration.Add ("newtls", "Mono.Security.Providers.NewTls.NewTlsProvider, Mono.Security.Providers.NewTls, Version=4.0.0.0, Culture=neutral, PublicKeyToken=0738eb9f132ed756");
176 providerRegistration.Add ("oldtls", "Mono.Security.Providers.OldTls.OldTlsProvider, Mono.Security.Providers.OldTls, Version=4.0.0.0, Culture=neutral, PublicKeyToken=0738eb9f132ed756");
181 static IMonoTlsProvider TryDynamicLoad ()
183 var variable = Environment.GetEnvironmentVariable ("MONO_TLS_PROVIDER");
184 if (variable == null)
187 if (string.Equals (variable, "default", StringComparison.OrdinalIgnoreCase))
190 var provider = LookupProvider (variable, true);
192 return new Private.MonoTlsProviderWrapper (provider);
196 static IMonoTlsProvider CreateDefaultProviderImpl ()
199 var provider = TryDynamicLoad ();
200 if (provider != null)
204 return new Private.MonoDefaultTlsProvider ();
207 #region Mono.Security visible API
210 * "Public" section, intended to be consumed via reflection.
212 * Mono.Security.dll provides a public wrapper around these.
215 internal static MSI.MonoTlsProvider GetProvider ()
217 var provider = GetProviderInternal ();
218 if (provider == null)
219 throw new NotSupportedException ("No TLS Provider available.");
221 return provider.Provider;
224 internal static MSI.MonoTlsProvider GetDefaultProvider ()
226 var provider = GetDefaultProviderInternal ();
227 if (provider == null)
228 throw new NotSupportedException ("No TLS Provider available.");
230 return provider.Provider;
233 internal static bool HasProvider {
236 return currentProvider != null;
241 internal static void SetDefaultProvider (string name)
244 var provider = LookupProvider (name, true);
245 currentProvider = new Private.MonoTlsProviderWrapper (provider);
249 internal static HttpWebRequest CreateHttpsRequest (Uri requestUri, MSI.MonoTlsProvider provider, MSI.MonoTlsSettings settings)
252 var internalProvider = provider != null ? new Private.MonoTlsProviderWrapper (provider) : null;
253 return new HttpWebRequest (requestUri, internalProvider, settings);
257 internal static HttpListener CreateHttpListener (X509Certificate certificate, MSI.MonoTlsProvider provider, MSI.MonoTlsSettings settings)
260 var internalProvider = provider != null ? new Private.MonoTlsProviderWrapper (provider) : null;
261 return new HttpListener (certificate, internalProvider, settings);