mcs/class/System/Mono.Net.Security/MonoTlsProviderFactory.cs

   1 //
   2 // MonoTlsProviderFactory.cs
   3 //
   4 // Author:
   5 //       Martin Baulig <martin.baulig@xamarin.com>
   6 //
   7 // Copyright (c) 2015 Xamarin, Inc.
   8 //
   9 // Permission is hereby granted, free of charge, to any person obtaining a copy
  10 // of this software and associated documentation files (the "Software"), to deal
  11 // in the Software without restriction, including without limitation the rights
  12 // to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
  13 // copies of the Software, and to permit persons to whom the Software is
  14 // furnished to do so, subject to the following conditions:
  15 //
  16 // The above copyright notice and this permission notice shall be included in
  17 // all copies or substantial portions of the Software.
  18 //
  19 // THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
  20 // IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
  21 // FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
  22 // AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
  23 // LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
  24 // OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
  25 // THE SOFTWARE.
  26
  27 #if SECURITY_DEP
  28 #if MONO_SECURITY_ALIAS
  29 extern alias MonoSecurity;
  30 using MSI = MonoSecurity::Mono.Security.Interface;
  31 using MX = MonoSecurity::Mono.Security.X509;
  32 #else
  33 using MSI = Mono.Security.Interface;
  34 using MX = Mono.Security.X509;
  35 #endif
  36 using System.Security.Cryptography.X509Certificates;
  37 #endif
  38
  39 using System;
  40 using System.Net;
  41 using System.Collections.Generic;
  42
  43 #if !MOBILE
  44 using System.Reflection;
  45 #endif
  46
  47 namespace Mono.Net.Security
  48 {
  49         /*
  50          * Keep in sync with Mono.Security/Mono.Security.Interface/MonoTlsProvider.cs.
  51          *
  52          */
  53         static partial class MonoTlsProviderFactory
  54         {
  55                 #region Internal API
  56
  57                 /*
  58                  * APIs in this section are for consumption within System.dll only - do not access via
  59                  * reflection or from friend assemblies.
  60                  *
  61                  * @IMonoTlsProvider is defined as empty interface outside 'SECURITY_DEP', so we don't need
  62                  * this conditional here.
  63                  */
  64
  65                 internal static IMonoTlsProvider GetProviderInternal ()
  66                 {
  67                         lock (locker) {
  68                                 if (currentProvider != null)
  69                                         return currentProvider;
  70
  71                                 try {
  72                                         defaultProvider = CreateDefaultProvider ();
  73                                 } catch (Exception ex) {
  74                                         throw new NotSupportedException ("TLS Support not available.", ex);
  75                                 }
  76
  77                                 if (defaultProvider == null)
  78                                         throw new NotSupportedException ("TLS Support not available.");
  79
  80                                 currentProvider = defaultProvider;
  81                                 return currentProvider;
  82                         }
  83                 }
  84
  85                 internal static IMonoTlsProvider GetDefaultProviderInternal ()
  86                 {
  87                         lock (locker) {
  88                                 if (defaultProvider != null)
  89                                         return defaultProvider;
  90
  91                                 try {
  92                                         defaultProvider = CreateDefaultProvider ();
  93                                 } catch (Exception ex) {
  94                                         throw new NotSupportedException ("TLS Support not available.", ex);
  95                                 }
  96
  97                                 if (defaultProvider == null)
  98                                         throw new NotSupportedException ("TLS Support not available.");
  99
 100                                 return defaultProvider;
 101                         }
 102                 }
 103
 104 #if MONO_FEATURE_NEW_SYSTEM_SOURCE || (!MONOTOUCH && !XAMMAC)
 105                 static IMonoTlsProvider CreateDefaultProvider ()
 106                 {
 107 #if SECURITY_DEP
 108 #if MONO_FEATURE_NEW_SYSTEM_SOURCE
 109                         /*
 110                          * This is a hack, which is used in the Mono.Security.Providers.NewSystemSource
 111                          * assembly, which will provide a "fake" System.dll.  Use the public Mono.Security
 112                          * API to get the "real" System.dll's provider via reflection, then wrap it with
 113                          * the "fake" version's perceived view.
 114                          *
 115                          * NewSystemSource needs to compile MonoTlsProviderFactory.cs, IMonoTlsProvider.cs,
 116                          * MonoTlsProviderWrapper.cs and CallbackHelpers.cs from this directory and only these.
 117                          */
 118                         var userProvider = MSI.MonoTlsProviderFactory.GetProvider ();
 119                         return new Private.MonoTlsProviderWrapper (userProvider);
 120 #else
 121                         return CreateDefaultProviderImpl ();
 122 #endif
 123 #else
 124                         return null;
 125 #endif
 126                 }
 127 #endif
 128
 129                 static object locker = new object ();
 130                 static IMonoTlsProvider defaultProvider;
 131                 static IMonoTlsProvider currentProvider;
 132
 133                 #endregion
 134
 135 #if SECURITY_DEP && !MONO_FEATURE_NEW_SYSTEM_SOURCE
 136
 137 #if !MOBILE
 138                 static Dictionary<string,string> providerRegistration;
 139
 140                 internal static void RegisterProvider (string name, string type)
 141                 {
 142                         lock (locker) {
 143                                 InitializeProviderRegistration ();
 144                                 providerRegistration.Add (name, type);
 145                         }
 146                 }
 147
 148                 static string LookupProvider (string name)
 149                 {
 150                         lock (locker) {
 151                                 InitializeProviderRegistration ();
 152                                 string type;
 153                                 if (!providerRegistration.TryGetValue (name, out type))
 154                                         type = null;
 155                                 return type;
 156                         }
 157                 }
 158
 159                 static void InitializeProviderRegistration ()
 160                 {
 161                         lock (locker) {
 162                                 if (providerRegistration != null)
 163                                         return;
 164                                 providerRegistration = new Dictionary<string,string> ();
 165                                 providerRegistration.Add ("newtls", "Mono.Security.Providers.NewTls.NewTlsProvider, Mono.Security.Providers.NewTls, Version=4.0.0.0, Culture=neutral, PublicKeyToken=84e3aee7225169c2");
 166                                 providerRegistration.Add ("oldtls", "Mono.Security.Providers.OldTls.OldTlsProvider, Mono.Security.Providers.OldTls, Version=4.0.0.0, Culture=neutral, PublicKeyToken=84e3aee7225169c2");
 167                         }
 168                 }
 169
 170                 static IMonoTlsProvider TryDynamicLoad ()
 171                 {
 172                         var variable = Environment.GetEnvironmentVariable ("MONO_TLS_PROVIDER");
 173                         if (variable == null)
 174                                 return null;
 175
 176                         if (string.Equals (variable, "default", StringComparison.OrdinalIgnoreCase))
 177                                 return null;
 178
 179                         string typeName;
 180                         if (variable.IndexOfAny (new char[] { ',', '.', '=' }) > 0) {
 181                                 typeName = variable;
 182                         } else {
 183                                 typeName = LookupProvider (variable);
 184                                 if (typeName == null)
 185                                         throw new NotSupportedException (string.Format ("No such TLS Provider: `{0}'.", typeName));
 186                         }
 187
 188                         var type = Type.GetType (typeName, false);
 189                         if (type == null)
 190                                 throw new NotSupportedException (string.Format ("Could not find TLS Provider: `{0}'.", typeName));
 191
 192                         MSI.MonoTlsProvider provider;
 193                         try {
 194                                 provider = (MSI.MonoTlsProvider)Activator.CreateInstance (type);
 195                         } catch (Exception ex) {
 196                                 throw new NotSupportedException (string.Format ("Unable to instantiate TLS Provider `{0}'.", typeName), ex);
 197                         }
 198
 199                         return new Private.MonoTlsProviderWrapper (provider);
 200                 }
 201 #endif
 202
 203                 static IMonoTlsProvider CreateDefaultProviderImpl ()
 204                 {
 205 #if !MOBILE
 206                         var provider = TryDynamicLoad ();
 207                         if (provider != null)
 208                                 return provider;
 209 #endif
 210
 211                         return new Private.MonoDefaultTlsProvider ();
 212                 }
 213
 214                 #region Mono.Security visible API
 215
 216                 /*
 217                  * "Public" section, intended to be consumed via reflection.
 218                  *
 219                  * Mono.Security.dll provides a public wrapper around these.
 220                  */
 221
 222                 internal static MSI.MonoTlsProvider GetProvider ()
 223                 {
 224                         var provider = GetProviderInternal ();
 225                         if (provider == null)
 226                                 throw new NotSupportedException ("No TLS Provider available.");
 227
 228                         return provider.Provider;
 229                 }
 230
 231                 internal static MSI.MonoTlsProvider GetDefaultProvider ()
 232                 {
 233                         var provider = GetDefaultProviderInternal ();
 234                         if (provider == null)
 235                                 throw new NotSupportedException ("No TLS Provider available.");
 236
 237                         return provider.Provider;
 238                 }
 239
 240                 internal static bool HasProvider {
 241                         get {
 242                                 lock (locker) {
 243                                         return currentProvider != null;
 244                                 }
 245                         }
 246                 }
 247
 248                 internal static void InstallProvider (MSI.MonoTlsProvider provider)
 249                 {
 250                         lock (locker) {
 251                                 currentProvider = new Private.MonoTlsProviderWrapper (provider);
 252                         }
 253                 }
 254
 255                 internal static HttpWebRequest CreateHttpsRequest (Uri requestUri, MSI.MonoTlsProvider provider, MSI.MonoTlsSettings settings)
 256                 {
 257                         lock (locker) {
 258                                 var internalProvider = provider != null ? new Private.MonoTlsProviderWrapper (provider) : null;
 259                                 return new HttpWebRequest (requestUri, internalProvider, settings);
 260                         }
 261                 }
 262
 263                 internal static HttpListener CreateHttpListener (X509Certificate certificate, MSI.MonoTlsProvider provider, MSI.MonoTlsSettings settings)
 264                 {
 265                         lock (locker) {
 266                                 var internalProvider = provider != null ? new Private.MonoTlsProviderWrapper (provider) : null;
 267                                 return new HttpListener (certificate, internalProvider, settings);
 268                         }
 269                 }
 270                 #endregion
 271
 272 #endif
 273
 274         }
 275 }
 276