2 // MonoTlsProviderFactory.cs
5 // Martin Baulig <martin.baulig@xamarin.com>
7 // Copyright (c) 2015 Xamarin, Inc.
9 // Permission is hereby granted, free of charge, to any person obtaining a copy
10 // of this software and associated documentation files (the "Software"), to deal
11 // in the Software without restriction, including without limitation the rights
12 // to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
13 // copies of the Software, and to permit persons to whom the Software is
14 // furnished to do so, subject to the following conditions:
16 // The above copyright notice and this permission notice shall be included in
17 // all copies or substantial portions of the Software.
19 // THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
20 // IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
21 // FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
22 // AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
23 // LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
24 // OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
28 #if MONO_SECURITY_ALIAS
29 extern alias MonoSecurity;
30 using MSI = MonoSecurity::Mono.Security.Interface;
31 using MX = MonoSecurity::Mono.Security.X509;
33 using MSI = Mono.Security.Interface;
34 using MX = Mono.Security.X509;
36 using System.Security.Cryptography.X509Certificates;
41 using System.Collections.Generic;
44 using System.Reflection;
47 namespace Mono.Net.Security
50 * Keep in sync with Mono.Security/Mono.Security.Interface/MonoTlsProvider.cs.
53 static class MonoTlsProviderFactory
58 * APIs in this section are for consumption within System.dll only - do not access via
59 * reflection or from friend assemblies.
61 * @IMonoTlsProvider is defined as empty interface outside 'SECURITY_DEP', so we don't need
62 * this conditional here.
65 internal static IMonoTlsProvider GetProviderInternal ()
68 if (currentProvider != null)
69 return currentProvider;
72 defaultProvider = CreateDefaultProvider ();
73 } catch (Exception ex) {
74 throw new NotSupportedException ("TLS Support not available.", ex);
77 if (defaultProvider == null)
78 throw new NotSupportedException ("TLS Support not available.");
80 currentProvider = defaultProvider;
81 return currentProvider;
85 internal static IMonoTlsProvider GetDefaultProviderInternal ()
88 if (defaultProvider != null)
89 return defaultProvider;
92 defaultProvider = CreateDefaultProvider ();
93 } catch (Exception ex) {
94 throw new NotSupportedException ("TLS Support not available.", ex);
97 if (defaultProvider == null)
98 throw new NotSupportedException ("TLS Support not available.");
100 return defaultProvider;
104 static IMonoTlsProvider CreateDefaultProvider ()
107 #if MONO_FEATURE_NEW_SYSTEM_SOURCE
109 * This is a hack, which is used in the Mono.Security.Providers.NewSystemSource
110 * assembly, which will provide a "fake" System.dll. Use the public Mono.Security
111 * API to get the "real" System.dll's provider via reflection, then wrap it with
112 * the "fake" version's perceived view.
114 * NewSystemSource needs to compile MonoTlsProviderFactory.cs, IMonoTlsProvider.cs,
115 * MonoTlsProviderWrapper.cs and CallbackHelpers.cs from this directory and only these.
117 var userProvider = MSI.MonoTlsProviderFactory.GetProvider ();
118 return new Private.MonoTlsProviderWrapper (userProvider);
120 return CreateDefaultProviderImpl ();
127 static object locker = new object ();
128 static IMonoTlsProvider defaultProvider;
129 static IMonoTlsProvider currentProvider;
133 #if SECURITY_DEP && !MONO_FEATURE_NEW_SYSTEM_SOURCE
136 static Dictionary<string,string> providerRegistration;
138 internal static void RegisterProvider (string name, string type)
141 InitializeProviderRegistration ();
142 providerRegistration.Add (name, type);
146 static string LookupProvider (string name)
149 InitializeProviderRegistration ();
151 if (!providerRegistration.TryGetValue (name, out type))
157 static void InitializeProviderRegistration ()
160 if (providerRegistration != null)
162 providerRegistration = new Dictionary<string,string> ();
163 providerRegistration.Add ("newtls", "Mono.Security.Providers.NewTls.NewTlsProvider, Mono.Security.Providers.NewTls, Version=4.0.0.0, Culture=neutral, PublicKeyToken=84e3aee7225169c2");
164 providerRegistration.Add ("oldtls", "Mono.Security.Providers.OldTls.OldTlsProvider, Mono.Security.Providers.OldTls, Version=4.0.0.0, Culture=neutral, PublicKeyToken=84e3aee7225169c2");
168 static IMonoTlsProvider TryDynamicLoad ()
170 var variable = Environment.GetEnvironmentVariable ("MONO_TLS_PROVIDER");
171 if (variable == null)
174 if (string.Equals (variable, "default", StringComparison.OrdinalIgnoreCase))
178 if (variable.IndexOfAny (new char[] { ',', '.', '=' }) > 0) {
181 typeName = LookupProvider (variable);
182 if (typeName == null)
183 throw new NotSupportedException (string.Format ("No such TLS Provider: `{0}'.", typeName));
186 var type = Type.GetType (typeName, false);
188 throw new NotSupportedException (string.Format ("Could not find TLS Provider: `{0}'.", typeName));
190 MSI.MonoTlsProvider provider;
192 provider = (MSI.MonoTlsProvider)Activator.CreateInstance (type);
193 } catch (Exception ex) {
194 throw new NotSupportedException (string.Format ("Unable to instantiate TLS Provider `{0}'.", typeName), ex);
197 return new Private.MonoTlsProviderWrapper (provider);
201 static IMonoTlsProvider CreateDefaultProviderImpl ()
204 var provider = TryDynamicLoad ();
205 if (provider != null)
209 return new Private.MonoDefaultTlsProvider ();
212 #region Mono.Security visible API
215 * "Public" section, intended to be consumed via reflection.
217 * Mono.Security.dll provides a public wrapper around these.
220 internal static MSI.MonoTlsProvider GetProvider ()
222 var provider = GetProviderInternal ();
223 if (provider == null)
224 throw new NotSupportedException ("No TLS Provider available.");
226 return provider.Provider;
229 internal static MSI.MonoTlsProvider GetDefaultProvider ()
231 var provider = GetDefaultProviderInternal ();
232 if (provider == null)
233 throw new NotSupportedException ("No TLS Provider available.");
235 return provider.Provider;
238 internal static bool HasProvider {
241 return currentProvider != null;
246 internal static void InstallProvider (MSI.MonoTlsProvider provider)
249 currentProvider = new Private.MonoTlsProviderWrapper (provider);
253 internal static HttpWebRequest CreateHttpsRequest (Uri requestUri, MSI.MonoTlsProvider provider, MSI.MonoTlsSettings settings)
256 var internalProvider = provider != null ? new Private.MonoTlsProviderWrapper (provider) : null;
257 return new HttpWebRequest (requestUri, internalProvider, settings);
261 internal static HttpListener CreateHttpListener (X509Certificate certificate, MSI.MonoTlsProvider provider, MSI.MonoTlsSettings settings)
264 var internalProvider = provider != null ? new Private.MonoTlsProviderWrapper (provider) : null;
265 return new HttpListener (certificate, internalProvider, settings);