search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
[bcl] Updates referencesource to 4.7.1
[mono-project.git] / mcs / class / referencesource / System.Core / System / IO / Pipes / Pipe.cs
blobffe4464c13176dfc1e72186b1e82fc7366b3348f
1 // ==++==
2 //
3 // Copyright (c) Microsoft Corporation. All rights reserved.
4 //
5 // ==--==
6 /*============================================================
7 **
8 ** Classes: AnonymousPipeServerStream
9 ** AnonymousPipeClientStream
10 ** NamedPipeServerStream
11 ** NamedPipeClientStream
12 **
13 ** Purpose: pipe stream classes.
14 **
15 **
16 ===========================================================*/
17
18 using System;
19 using System.Diagnostics;
20 using System.Diagnostics.CodeAnalysis;
21 using System.IO;
22 using System.Runtime.InteropServices;
23 using System.Runtime.CompilerServices;
24 using System.Runtime.ConstrainedExecution;
25 using System.Runtime.Versioning;
26 using System.Security;
27 using System.Security.Permissions;
28 using System.Security.Principal;
29 using System.Text;
30 using System.Threading;
31 using System.Threading.Tasks;
32 using Microsoft.Win32;
33 using Microsoft.Win32.SafeHandles;
34
35 namespace System.IO.Pipes {
36
37 /// <summary>
38 /// Anonymous pipe server stream
39 /// </summary>
40 [System.Security.Permissions.HostProtection(MayLeakOnAbort = true)]
41 public sealed class AnonymousPipeServerStream : PipeStream {
42
43 private SafePipeHandle m_clientHandle;
44 private bool m_clientHandleExposed;
45
46 [PermissionSet(SecurityAction.Demand, Name = "FullTrust")]
47 [SecuritySafeCritical]
48 public AnonymousPipeServerStream()
49 : this(PipeDirection.Out, HandleInheritability.None, 0, null) { }
50
51 [PermissionSet(SecurityAction.Demand, Name = "FullTrust")]
52 [SecuritySafeCritical]
53 public AnonymousPipeServerStream(PipeDirection direction)
54 : this(direction, HandleInheritability.None, 0) { }
55
56 [PermissionSet(SecurityAction.Demand, Name = "FullTrust")]
57 [SecuritySafeCritical]
58 public AnonymousPipeServerStream(PipeDirection direction, HandleInheritability inheritability)
59 : this(direction, inheritability, 0) { }
60
61 // bufferSize is used as a suggestion; specify 0 to let OS decide
62 // This constructor instantiates the PipeSecurity using just the inheritability flag
63 [SecuritySafeCritical]
64 [PermissionSet(SecurityAction.Demand, Name = "FullTrust")]
65 public AnonymousPipeServerStream(PipeDirection direction, HandleInheritability inheritability, int bufferSize)
66 : base(direction, bufferSize) {
67 if (direction == PipeDirection.InOut) {
68 throw new NotSupportedException(SR.GetString(SR.NotSupported_AnonymousPipeUnidirectional));
69 }
70 if (inheritability < HandleInheritability.None || inheritability > HandleInheritability.Inheritable) {
71 throw new ArgumentOutOfRangeException("inheritability", SR.GetString(SR.ArgumentOutOfRange_HandleInheritabilityNoneOrInheritable));
72 }
73
74 UnsafeNativeMethods.SECURITY_ATTRIBUTES secAttrs = PipeStream.GetSecAttrs(inheritability);
75 Create(direction, secAttrs, bufferSize);
76 }
77
78 // bufferSize is used as a suggestion; specify 0 to let OS decide
79 // pipeSecurity of null is default security descriptor
80 [SecuritySafeCritical]
81 [PermissionSet(SecurityAction.Demand, Name = "FullTrust")]
82 public AnonymousPipeServerStream(PipeDirection direction, HandleInheritability inheritability, int bufferSize, PipeSecurity pipeSecurity)
83 : base(direction, bufferSize) {
84 if (direction == PipeDirection.InOut) {
85 throw new NotSupportedException(SR.GetString(SR.NotSupported_AnonymousPipeUnidirectional));
86 }
87 if (inheritability < HandleInheritability.None || inheritability > HandleInheritability.Inheritable) {
88 throw new ArgumentOutOfRangeException("inheritability", SR.GetString(SR.ArgumentOutOfRange_HandleInheritabilityNoneOrInheritable));
89 }
90
91 Object pinningHandle;
92 UnsafeNativeMethods.SECURITY_ATTRIBUTES secAttrs = PipeStream.GetSecAttrs(inheritability, pipeSecurity, out pinningHandle);
93
94 try {
95 Create(direction, secAttrs, bufferSize);
96 }
97 finally {
98 if (pinningHandle != null) {
99 GCHandle pinHandle = (GCHandle)pinningHandle;
100 pinHandle.Free();
101 }
102 }
103 }
104
105 ~AnonymousPipeServerStream() {
106 Dispose(false);
107 }
108
109 // Create an AnonymousPipeServerStream from two existing pipe handles.
110 [SecuritySafeCritical]
111 [PermissionSet(SecurityAction.Demand, Name = "FullTrust")]
112 public AnonymousPipeServerStream(PipeDirection direction, SafePipeHandle serverSafePipeHandle, SafePipeHandle clientSafePipeHandle)
113 : base(direction, 0) {
114 if (direction == PipeDirection.InOut) {
115 throw new NotSupportedException(SR.GetString(SR.NotSupported_AnonymousPipeUnidirectional));
116 }
117 if (serverSafePipeHandle == null) {
118 throw new ArgumentNullException("serverSafePipeHandle");
119 }
120 if (clientSafePipeHandle == null) {
121 throw new ArgumentNullException("clientSafePipeHandle");
122 }
123 if (serverSafePipeHandle.IsInvalid) {
124 throw new ArgumentException(SR.GetString(SR.Argument_InvalidHandle), "serverSafePipeHandle");
125 }
126 if (clientSafePipeHandle.IsInvalid) {
127 throw new ArgumentException(SR.GetString(SR.Argument_InvalidHandle), "clientSafePipeHandle");
128 }
129
130 // Check that these handles are in fact a handles to a pipe.
131 if (UnsafeNativeMethods.GetFileType(serverSafePipeHandle) != UnsafeNativeMethods.FILE_TYPE_PIPE) {
132 throw new IOException(SR.GetString(SR.IO_IO_InvalidPipeHandle));
133 }
134 if (UnsafeNativeMethods.GetFileType(clientSafePipeHandle) != UnsafeNativeMethods.FILE_TYPE_PIPE) {
135 throw new IOException(SR.GetString(SR.IO_IO_InvalidPipeHandle));
136 }
137
138 InitializeHandle(serverSafePipeHandle, true, false);
139
140 m_clientHandle = clientSafePipeHandle;
141 m_clientHandleExposed = true;
142 State = PipeState.Connected;
143 }
144
145 // This method should exist until we add a first class way of passing handles between parent and child
146 // processes. For now, people do it via command line arguments.
147 [System.Security.SecurityCritical]
148 [SuppressMessage("Microsoft.Reliability","CA2001:AvoidCallingProblematicMethods", MessageId="System.Runtime.InteropServices.SafeHandle.DangerousGetHandle", Justification="By design")]
149 public String GetClientHandleAsString() {
150 m_clientHandleExposed = true;
151 return m_clientHandle.DangerousGetHandle().ToString();
152 }
153
154 public SafePipeHandle ClientSafePipeHandle {
155 [System.Security.SecurityCritical]
156 get {
157 m_clientHandleExposed = true;
158 return m_clientHandle;
159 }
160 }
161
162 // This method is an annoying one but it has to exist at least until we make passing handles between
163 // processes first class. We need this because once the child handle is inherited, the OS considers
164 // the parent and child's handles to be different. Therefore, if a child closes its handle, our
165 // Read/Write methods won't throw because the OS will think that there is still a child handle around
166 // that can still Write/Read to/from the other end of the pipe.
167 //
168 // Ideally, we would want the Process class to close this handle after it has been inherited. See
169 // the pipe spec future features section for more information.
170 //
171 // Right now, this is the best signal to set the anonymous pipe as connected; if this is called, we
172 // know the client has been passed the handle and so the connection is live.
173 [System.Security.SecurityCritical]
174 public void DisposeLocalCopyOfClientHandle() {
175 if (m_clientHandle != null && !m_clientHandle.IsClosed) {
176 m_clientHandle.Dispose();
177 }
178 }
179
180 [System.Security.SecurityCritical]
181 protected override void Dispose(bool disposing) {
182 try {
183 // We should dispose of the client handle if it was not exposed.
184 if (!m_clientHandleExposed && m_clientHandle != null && !m_clientHandle.IsClosed) {
185 m_clientHandle.Dispose();
186 }
187 }
188 finally {
189 base.Dispose(disposing);
190 }
191 }
192
193 // Creates the anonymous pipe.
194 [System.Security.SecurityCritical]
195 private void Create(PipeDirection direction, UnsafeNativeMethods.SECURITY_ATTRIBUTES secAttrs, int bufferSize) {
196 Debug.Assert(direction != PipeDirection.InOut, "Anonymous pipe direction shouldn't be InOut");
197 Debug.Assert(bufferSize >= 0, "bufferSize is negative");
198
199 bool bSuccess;
200 SafePipeHandle serverHandle;
201 SafePipeHandle newServerHandle;
202
203 // Create the two pipe handles that make up the anonymous pipe.
204 if (direction == PipeDirection.In) {
205 bSuccess = UnsafeNativeMethods.CreatePipe(out serverHandle, out m_clientHandle, secAttrs, bufferSize);
206 }
207 else {
208 bSuccess = UnsafeNativeMethods.CreatePipe(out m_clientHandle, out serverHandle, secAttrs, bufferSize);
209 }
210
211 if (!bSuccess) {
212 __Error.WinIOError(Marshal.GetLastWin32Error(), String.Empty);
213 }
214
215 // Duplicate the server handle to make it not inheritable. Note: We need to do this so that the child
216 // process doesn't end up getting another copy of the server handle. If it were to get a copy, the
217 // OS wouldn't be able to inform the child that the server has closed its handle because it will see
218 // that there is still one server handle that is open.
219 bSuccess = UnsafeNativeMethods.DuplicateHandle(UnsafeNativeMethods.GetCurrentProcess(), serverHandle, UnsafeNativeMethods.GetCurrentProcess(),
220 out newServerHandle, 0, false, UnsafeNativeMethods.DUPLICATE_SAME_ACCESS);
221
222 if (!bSuccess) {
223 __Error.WinIOError(Marshal.GetLastWin32Error(), String.Empty);
224 }
225
226 // Close the inheritable server handle.
227 serverHandle.Dispose();
228
229 InitializeHandle(newServerHandle, false, false);
230
231 State = PipeState.Connected;
232 }
233
234 // Anonymous pipes do not support message mode so there is no need to use the base version that P/Invokes here.
235 public override PipeTransmissionMode TransmissionMode {
236 [System.Security.SecurityCritical]
237 get {
238 return PipeTransmissionMode.Byte;
239 }
240 }
241
242 public override PipeTransmissionMode ReadMode {
243 [System.Security.SecurityCritical]
244 set {
245 CheckPipePropertyOperations();
246
247 if (value < PipeTransmissionMode.Byte || value > PipeTransmissionMode.Message) {
248 throw new ArgumentOutOfRangeException("value", SR.GetString(SR.ArgumentOutOfRange_TransmissionModeByteOrMsg));
249 }
250
251 if (value == PipeTransmissionMode.Message) {
252 throw new NotSupportedException(SR.GetString(SR.NotSupported_AnonymousPipeMessagesNotSupported));
253 }
254 }
255 }
256 }
257
258
259 /// <summary>
260 /// Anonymous pipe client. Use this to open the client end of an anonymous pipes created with AnonymousPipeServerStream.
261 /// </summary>
262 [System.Security.Permissions.HostProtection(MayLeakOnAbort = true)]
263 public sealed class AnonymousPipeClientStream : PipeStream {
264
265 [PermissionSet(SecurityAction.Demand, Name = "FullTrust")]
266 [SecuritySafeCritical]
267 [SuppressMessage("Microsoft.Naming","CA1720:IdentifiersShouldNotContainTypeNames", MessageId="string", Justification="By design")]
268 public AnonymousPipeClientStream(String pipeHandleAsString)
269 : this(PipeDirection.In, pipeHandleAsString) { }
270
271 [System.Security.SecurityCritical]
272 [PermissionSet(SecurityAction.Demand, Name = "FullTrust")]
273 [SuppressMessage("Microsoft.Naming","CA1720:IdentifiersShouldNotContainTypeNames", MessageId="string", Justification="By design")]
274 public AnonymousPipeClientStream(PipeDirection direction, String pipeHandleAsString)
275 : base(direction, 0) {
276
277 if (direction == PipeDirection.InOut) {
278 throw new NotSupportedException(SR.GetString(SR.NotSupported_AnonymousPipeUnidirectional));
279 }
280 if (pipeHandleAsString == null) {
281 throw new ArgumentNullException("pipeHandleAsString");
282 }
283
284 // Initialize SafePipeHandle from String and check if it's valid. First see if it's parseable
285 long result = 0;
286 bool parseable = long.TryParse(pipeHandleAsString, out result);
287 if (!parseable) {
288 throw new ArgumentException(SR.GetString(SR.Argument_InvalidHandle), "pipeHandleAsString");
289 }
290
291 // next check whether the handle is invalid
292 SafePipeHandle safePipeHandle = new SafePipeHandle((IntPtr)result, true);
293 if (safePipeHandle.IsInvalid) {
294 throw new ArgumentException(SR.GetString(SR.Argument_InvalidHandle), "pipeHandleAsString");
295 }
296
297 Init(direction, safePipeHandle);
298 }
299
300 [System.Security.SecurityCritical]
301 [PermissionSet(SecurityAction.Demand, Name = "FullTrust")]
302 public AnonymousPipeClientStream(PipeDirection direction, SafePipeHandle safePipeHandle)
303 : base(direction, 0) {
304
305 if (direction == PipeDirection.InOut) {
306 throw new NotSupportedException(SR.GetString(SR.NotSupported_AnonymousPipeUnidirectional));
307 }
308 if (safePipeHandle == null) {
309 throw new ArgumentNullException("safePipeHandle");
310 }
311 if (safePipeHandle.IsInvalid) {
312 throw new ArgumentException(SR.GetString(SR.Argument_InvalidHandle), "safePipeHandle");
313 }
314
315 Init(direction, safePipeHandle);
316 }
317
318 [System.Security.SecuritySafeCritical]
319 [PermissionSet(SecurityAction.Demand, Name = "FullTrust")]
320 private void Init(PipeDirection direction, SafePipeHandle safePipeHandle) {
321 Debug.Assert(direction != PipeDirection.InOut, "anonymous pipes are unidirectional, caller should have verified before calling Init");
322 Debug.Assert(safePipeHandle != null && !safePipeHandle.IsInvalid, "safePipeHandle must be valid");
323
324 // Check that this handle is infact a handle to a pipe.
325 if (UnsafeNativeMethods.GetFileType(safePipeHandle) != UnsafeNativeMethods.FILE_TYPE_PIPE) {
326 throw new IOException(SR.GetString(SR.IO_IO_InvalidPipeHandle));
327 }
328
329 InitializeHandle(safePipeHandle, true, false);
330 State = PipeState.Connected;
331 }
332
333
334 ~AnonymousPipeClientStream() {
335 Dispose(false);
336 }
337
338 // Anonymous pipes do not support message readmode so there is no need to use the base version
339 // which P/Invokes (and sometimes fails).
340 public override PipeTransmissionMode TransmissionMode {
341 [System.Security.SecurityCritical]
342 get {
343 return PipeTransmissionMode.Byte;
344 }
345 }
346
347 public override PipeTransmissionMode ReadMode {
348 [System.Security.SecurityCritical]
349 set {
350 CheckPipePropertyOperations();
351
352 if (value < PipeTransmissionMode.Byte || value > PipeTransmissionMode.Message) {
353 throw new ArgumentOutOfRangeException("value", SR.GetString(SR.ArgumentOutOfRange_TransmissionModeByteOrMsg));
354 }
355 if (value == PipeTransmissionMode.Message) {
356 throw new NotSupportedException(SR.GetString(SR.NotSupported_AnonymousPipeMessagesNotSupported));
357 }
358 }
359 }
360
361 }
362
363 // Users will use this delegate to specify a method to call while impersonating the client
364 // (see NamedPipeServerStream.RunAsClient).
365 public delegate void PipeStreamImpersonationWorker();
366
367
368
369 /// <summary>
370 /// Named pipe server
371 /// </summary>
372 [System.Security.Permissions.HostProtection(MayLeakOnAbort = true)]
373 public sealed class NamedPipeServerStream : PipeStream {
374
375 // Use the maximum number of server instances that the system resources allow
376 public const int MaxAllowedServerInstances = -1;
377
378 [SecurityCritical]
379 private unsafe static readonly IOCompletionCallback WaitForConnectionCallback =
380 new IOCompletionCallback(NamedPipeServerStream.AsyncWaitForConnectionCallback);
381
382 [System.Security.SecurityCritical]
383 static NamedPipeServerStream()
384 {
385 }
386
387 [SecuritySafeCritical]
388 [PermissionSet(SecurityAction.Demand, Name = "FullTrust")]
389 public NamedPipeServerStream(String pipeName)
390 : this(pipeName, PipeDirection.InOut, 1, PipeTransmissionMode.Byte, PipeOptions.None, 0, 0, null,
391 HandleInheritability.None, (PipeAccessRights)0) { }
392
393 [SecuritySafeCritical]
394 [PermissionSet(SecurityAction.Demand, Name = "FullTrust")]
395 public NamedPipeServerStream(String pipeName, PipeDirection direction)
396 : this(pipeName, direction, 1, PipeTransmissionMode.Byte, PipeOptions.None, 0, 0, null,
397 HandleInheritability.None, (PipeAccessRights)0) { }
398
399 [SecuritySafeCritical]
400 [PermissionSet(SecurityAction.Demand, Name = "FullTrust")]
401 public NamedPipeServerStream(String pipeName, PipeDirection direction, int maxNumberOfServerInstances)
402 : this(pipeName, direction, maxNumberOfServerInstances, PipeTransmissionMode.Byte, PipeOptions.None,
403 0, 0, null, HandleInheritability.None, (PipeAccessRights)0) { }
404
405 [SecuritySafeCritical]
406 [PermissionSet(SecurityAction.Demand, Name = "FullTrust")]
407 public NamedPipeServerStream(String pipeName, PipeDirection direction, int maxNumberOfServerInstances,
408 PipeTransmissionMode transmissionMode)
409 : this(pipeName, direction, maxNumberOfServerInstances, transmissionMode, PipeOptions.None, 0, 0,
410 null, HandleInheritability.None, (PipeAccessRights)0) { }
411
412 [SecuritySafeCritical]
413 [PermissionSet(SecurityAction.Demand, Name = "FullTrust")]
414 public NamedPipeServerStream(String pipeName, PipeDirection direction, int maxNumberOfServerInstances,
415 PipeTransmissionMode transmissionMode, PipeOptions options)
416 : this(pipeName, direction, maxNumberOfServerInstances, transmissionMode, options, 0, 0,
417 null, HandleInheritability.None, (PipeAccessRights)0) { }
418
419 [SecuritySafeCritical]
420 [PermissionSet(SecurityAction.Demand, Name = "FullTrust")]
421 public NamedPipeServerStream(String pipeName, PipeDirection direction, int maxNumberOfServerInstances,
422 PipeTransmissionMode transmissionMode, PipeOptions options, int inBufferSize, int outBufferSize)
423 : this(pipeName, direction, maxNumberOfServerInstances, transmissionMode, options, inBufferSize, outBufferSize,
424 null, HandleInheritability.None, (PipeAccessRights)0) { }
425
426 [SecuritySafeCritical]
427 [PermissionSet(SecurityAction.Demand, Name = "FullTrust")]
428 public NamedPipeServerStream(String pipeName, PipeDirection direction, int maxNumberOfServerInstances,
429 PipeTransmissionMode transmissionMode, PipeOptions options, int inBufferSize, int outBufferSize,
430 PipeSecurity pipeSecurity)
431 : this(pipeName, direction, maxNumberOfServerInstances, transmissionMode, options, inBufferSize, outBufferSize,
432 pipeSecurity, HandleInheritability.None, (PipeAccessRights)0) { }
433
434 [SecuritySafeCritical]
435 [PermissionSet(SecurityAction.Demand, Name = "FullTrust")]
436 public NamedPipeServerStream(String pipeName, PipeDirection direction, int maxNumberOfServerInstances,
437 PipeTransmissionMode transmissionMode, PipeOptions options, int inBufferSize, int outBufferSize,
438 PipeSecurity pipeSecurity, HandleInheritability inheritability)
439 : this(pipeName, direction, maxNumberOfServerInstances, transmissionMode, options, inBufferSize, outBufferSize,
440 pipeSecurity, inheritability, (PipeAccessRights)0) { }
441
442 /// <summary>
443 /// Full named pipe server constructor
444 /// </summary>
445 /// <param name="pipeName">Pipe name</param>
446 /// <param name="direction">Pipe direction: In, Out or InOut (duplex).
447 /// Win32 note: this gets OR'd into dwOpenMode to CreateNamedPipe
448 /// </param>
449 /// <param name="maxNumberOfServerInstances">Maximum number of server instances. Specify a fixed value between
450 /// 1 and 254, or use NamedPipeServerStream.MaxAllowedServerInstances to use the maximum amount allowed by
451 /// system resources.</param>
452 /// <param name="transmissionMode">Byte mode or message mode.
453 /// Win32 note: this gets used for dwPipeMode. CreateNamedPipe allows you to specify PIPE_TYPE_BYTE/MESSAGE
454 /// and PIPE_READMODE_BYTE/MESSAGE independently, but this sets type and readmode to match.
455 /// </param>
456 /// <param name="options">PipeOption enum: None, Asynchronous, or Writethrough
457 /// Win32 note: this gets passed in with dwOpenMode to CreateNamedPipe. Asynchronous corresponds to
458 /// FILE_FLAG_OVERLAPPED option. PipeOptions enum doesn't expose FIRST_PIPE_INSTANCE option because
459 /// this sets that automatically based on the number of instances specified.
460 /// </param>
461 /// <param name="inBufferSize">Incoming buffer size, 0 or higher.
462 /// Note: this size is always advisory; OS uses a suggestion.
463 /// </param>
464 /// <param name="outBufferSize">Outgoing buffer size, 0 or higher (see above)</param>
465 /// <param name="pipeSecurity">PipeSecurity, or null for default security descriptor</param>
466 /// <param name="inheritability">Whether handle is inheritable</param>
467 /// <param name="additionalAccessRights">Combination (logical OR) of PipeAccessRights.TakeOwnership,
468 /// PipeAccessRights.AccessSystemSecurity, and PipeAccessRights.ChangePermissions</param>
469 [SecuritySafeCritical]
470 [PermissionSet(SecurityAction.Demand, Name = "FullTrust")]
471 public NamedPipeServerStream(String pipeName, PipeDirection direction, int maxNumberOfServerInstances,
472 PipeTransmissionMode transmissionMode, PipeOptions options, int inBufferSize, int outBufferSize,
473 PipeSecurity pipeSecurity, HandleInheritability inheritability, PipeAccessRights additionalAccessRights)
474 : base(direction, transmissionMode, outBufferSize) {
475 if (pipeName == null) {
476 throw new ArgumentNullException("pipeName");
477 }
478 if (pipeName.Length == 0) {
479 throw new ArgumentException(SR.GetString(SR.Argument_NeedNonemptyPipeName));
480 }
481 if ((options & ~(PipeOptions.WriteThrough | PipeOptions.Asynchronous)) != 0) {
482 throw new ArgumentOutOfRangeException("options", SR.GetString(SR.ArgumentOutOfRange_OptionsInvalid));
483 }
484 if (inBufferSize < 0) {
485 throw new ArgumentOutOfRangeException("inBufferSize", SR.GetString(SR.ArgumentOutOfRange_NeedNonNegNum));
486 }
487 // win32 allows fixed values of 1-254 or 255 to mean max allowed by system. We expose 255 as -1 (unlimited)
488 // through the MaxAllowedServerInstances constant. This is consistent e.g. with -1 as infinite timeout, etc
489 if ((maxNumberOfServerInstances < 1 || maxNumberOfServerInstances > 254) && (maxNumberOfServerInstances != MaxAllowedServerInstances)) {
490 throw new ArgumentOutOfRangeException("maxNumberOfServerInstances", SR.GetString(SR.ArgumentOutOfRange_MaxNumServerInstances));
491 }
492 if (inheritability < HandleInheritability.None || inheritability > HandleInheritability.Inheritable) {
493 throw new ArgumentOutOfRangeException("inheritability", SR.GetString(SR.ArgumentOutOfRange_HandleInheritabilityNoneOrInheritable));
494 }
495 // ChangePermissions, TakeOwnership, and AccessSystemSecurity are only legal values user may provide;
496 // internally this is set to 0 if not provided. This handles both cases.
497 if ((additionalAccessRights & ~(PipeAccessRights.ChangePermissions | PipeAccessRights.TakeOwnership |
498 PipeAccessRights.AccessSystemSecurity)) != 0) {
499 throw new ArgumentOutOfRangeException("additionalAccessRights", SR.GetString(SR.ArgumentOutOfRange_AdditionalAccessLimited));
500 }
501
502 // Named Pipe Servers require Windows NT
503 if (Environment.OSVersion.Platform == PlatformID.Win32Windows) {
504 throw new PlatformNotSupportedException(SR.GetString(SR.PlatformNotSupported_NamedPipeServers));
505 }
506
507 string normalizedPipePath = Path.GetFullPath(@"\\.\pipe\" + pipeName);
508
509 // Make sure the pipe name isn't one of our reserved names for anonymous pipes.
510 if (String.Compare(normalizedPipePath, @"\\.\pipe\anonymous", StringComparison.OrdinalIgnoreCase) == 0) {
511 throw new ArgumentOutOfRangeException("pipeName", SR.GetString(SR.ArgumentOutOfRange_AnonymousReserved));
512 }
513
514 Object pinningHandle = null;
515 UnsafeNativeMethods.SECURITY_ATTRIBUTES secAttrs = PipeStream.GetSecAttrs(inheritability, pipeSecurity, out pinningHandle);
516
517 try {
518 Create(normalizedPipePath, direction, maxNumberOfServerInstances, transmissionMode,
519 options, inBufferSize, outBufferSize, additionalAccessRights, secAttrs);
520 }
521 finally {
522 if (pinningHandle != null) {
523 GCHandle pinHandle = (GCHandle)pinningHandle;
524 pinHandle.Free();
525 }
526 }
527 }
528
529 // Create a NamedPipeServerStream from an existing server pipe handle.
530 [System.Security.SecuritySafeCritical]
531 [PermissionSet(SecurityAction.Demand, Name = "FullTrust")]
532 public NamedPipeServerStream(PipeDirection direction, bool isAsync, bool isConnected, SafePipeHandle safePipeHandle)
533 : base(direction, PipeTransmissionMode.Byte, 0) {
534
535 if (safePipeHandle == null) {
536 throw new ArgumentNullException("safePipeHandle");
537 }
538 if (safePipeHandle.IsInvalid) {
539 throw new ArgumentException(SR.GetString(SR.Argument_InvalidHandle), "safePipeHandle");
540 }
541 // Check that this handle is infact a handle to a pipe.
542 if (UnsafeNativeMethods.GetFileType(safePipeHandle) != UnsafeNativeMethods.FILE_TYPE_PIPE) {
543 throw new IOException(SR.GetString(SR.IO_IO_InvalidPipeHandle));
544 }
545
546 InitializeHandle(safePipeHandle, true, isAsync);
547
548 if (isConnected) {
549 State = PipeState.Connected;
550 }
551 }
552
553 ~NamedPipeServerStream() {
554 Dispose(false);
555 }
556
557 [System.Security.SecurityCritical]
558 private void Create(String fullPipeName, PipeDirection direction, int maxNumberOfServerInstances,
559 PipeTransmissionMode transmissionMode, PipeOptions options, int inBufferSize, int outBufferSize,
560 PipeAccessRights rights, UnsafeNativeMethods.SECURITY_ATTRIBUTES secAttrs) {
561 Debug.Assert(fullPipeName != null && fullPipeName.Length != 0, "fullPipeName is null or empty");
562 Debug.Assert(direction >= PipeDirection.In && direction <= PipeDirection.InOut, "invalid pipe direction");
563 Debug.Assert(inBufferSize >= 0, "inBufferSize is negative");
564 Debug.Assert(outBufferSize >= 0, "outBufferSize is negative");
565 Debug.Assert((maxNumberOfServerInstances >= 1 && maxNumberOfServerInstances <= 254) || (maxNumberOfServerInstances == MaxAllowedServerInstances), "maxNumberOfServerInstances is invalid");
566 Debug.Assert(transmissionMode >= PipeTransmissionMode.Byte && transmissionMode <= PipeTransmissionMode.Message, "transmissionMode is out of range");
567
568 int openMode = ((int)direction) |
569 (maxNumberOfServerInstances == 1 ? UnsafeNativeMethods.FILE_FLAG_FIRST_PIPE_INSTANCE : 0) |
570 (int)options |
571 (int)rights;
572
573 // We automatically set the ReadMode to match the TransmissionMode.
574 int pipeModes = (int)transmissionMode << 2 | (int)transmissionMode << 1;
575
576 // Convert -1 to 255 to match win32 (we asserted that it is between -1 and 254).
577 if (maxNumberOfServerInstances == MaxAllowedServerInstances) {
578 maxNumberOfServerInstances = 255;
579 }
580
581 SafePipeHandle handle = UnsafeNativeMethods.CreateNamedPipe(fullPipeName, openMode, pipeModes,
582 maxNumberOfServerInstances, outBufferSize, inBufferSize, 0, secAttrs);
583
584 if (handle.IsInvalid) {
585 __Error.WinIOError(Marshal.GetLastWin32Error(), String.Empty);
586 }
587
588 InitializeHandle(handle, false, (options & PipeOptions.Asynchronous) != 0);
589 }
590
591 // This will wait until the client calls Connect(). If we return from this method, we guarantee that
592 // the client has returned from its Connect call. The client may have done so before this method
593 // was called (but not before this server is been created, or, if we were servicing another client,
594 // not before we called Disconnect), in which case, there may be some buffer already in the pipe waiting
595 // for us to read. See NamedPipeClientStream.Connect for more information.
596 [System.Security.SecurityCritical]
597 [SuppressMessage("Microsoft.Security","CA2122:DoNotIndirectlyExposeMethodsWithLinkDemands", Justification="Security model of pipes: demand at creation but no subsequent demands")]
598 public void WaitForConnection() {
599 CheckConnectOperationsServer();
600
601 if (IsAsync) {
602 IAsyncResult result = BeginWaitForConnection(null, null);
603 EndWaitForConnection(result);
604 }
605 else {
606 if (!UnsafeNativeMethods.ConnectNamedPipe(InternalHandle, UnsafeNativeMethods.NULL)) {
607 int errorCode = Marshal.GetLastWin32Error();
608
609 if (errorCode != UnsafeNativeMethods.ERROR_PIPE_CONNECTED) {
610 __Error.WinIOError(errorCode, String.Empty);
611 }
612
613 // pipe already connected
614 if (errorCode == UnsafeNativeMethods.ERROR_PIPE_CONNECTED && State == PipeState.Connected) {
615 throw new InvalidOperationException(SR.GetString(SR.InvalidOperation_PipeAlreadyConnected));
616 }
617
618 // If we reach here then a connection has been established. This can happen if a client
619 // connects in the interval between the call to CreateNamedPipe and the call to ConnectNamedPipe.
620 // In this situation, there is still a good connection between client and server, even though
621 // ConnectNamedPipe returns zero.
622 }
623 State = PipeState.Connected;
624 }
625 }
626
627 public Task WaitForConnectionAsync(CancellationToken cancellationToken) {
628 if (cancellationToken.IsCancellationRequested) {
629 return Task.FromCancellation(cancellationToken);
630 }
631
632 if (!IsAsync) {
633 return Task.Factory.StartNew(WaitForConnection, cancellationToken);
634 }
635
636 // Avoiding allocation if the task cannot be cancelled
637 IOCancellationHelper cancellationHelper = cancellationToken.CanBeCanceled ? new IOCancellationHelper(cancellationToken) : null;
638 return Task.Factory.FromAsync(BeginWaitForConnection, EndWaitForConnection, cancellationHelper);
639 }
640
641 public Task WaitForConnectionAsync() {
642 return WaitForConnectionAsync(CancellationToken.None);
643 }
644
645 // Async version of WaitForConnection. See the comments above for more info.
646 [System.Security.SecurityCritical]
647 [HostProtection(ExternalThreading = true)]
648 public unsafe IAsyncResult BeginWaitForConnection(AsyncCallback callback, Object state) {
649 CheckConnectOperationsServer();
650
651 if (!IsAsync) {
652 throw new InvalidOperationException(SR.GetString(SR.InvalidOperation_PipeNotAsync));
653 }
654
655 // Create and store async stream class library specific data in the
656 // async result
657 PipeAsyncResult asyncResult = new PipeAsyncResult();
658 asyncResult._handle = InternalHandle;
659 asyncResult._userCallback = callback;
660 asyncResult._userStateObject = state;
661
662 IOCancellationHelper cancellationHelper = state as IOCancellationHelper;
663
664 // Create wait handle and store in async result
665 ManualResetEvent waitHandle = new ManualResetEvent(false);
666 asyncResult._waitHandle = waitHandle;
667
668 // Create a managed overlapped class
669 // We will set the file offsets later
670 Overlapped overlapped = new Overlapped(0, 0, IntPtr.Zero, asyncResult);
671
672 // Pack the Overlapped class, and store it in the async result
673 NativeOverlapped* intOverlapped = overlapped.Pack(WaitForConnectionCallback, null);
674 asyncResult._overlapped = intOverlapped;
675
676 if (!UnsafeNativeMethods.ConnectNamedPipe(InternalHandle, intOverlapped)) {
677 int errorCode = Marshal.GetLastWin32Error();
678
679 if (errorCode == UnsafeNativeMethods.ERROR_IO_PENDING) {
680 if (cancellationHelper != null) {
681 cancellationHelper.AllowCancellation(InternalHandle, intOverlapped);
682 }
683 return asyncResult;
684 }
685
686 // WaitForConnectionCallback will not be called becasue we completed synchronously.
687 // Either the pipe is already connected, or there was an error. Unpin and free the overlapped again.
688 Overlapped.Free(intOverlapped);
689 asyncResult._overlapped = null;
690
691 // Did the client already connect to us?
692 if (errorCode == UnsafeNativeMethods.ERROR_PIPE_CONNECTED) {
693
694 if (State == PipeState.Connected) {
695 throw new InvalidOperationException(SR.GetString(SR.InvalidOperation_PipeAlreadyConnected));
696 }
697 asyncResult.CallUserCallback();
698 return asyncResult;
699 }
700
701 __Error.WinIOError(errorCode, String.Empty);
702 }
703 // will set state to Connected when EndWait is called
704 if (cancellationHelper != null) {
705 cancellationHelper.AllowCancellation(InternalHandle, intOverlapped);
706 }
707
708 return asyncResult;
709 }
710
711 // Async version of WaitForConnection. See comments for WaitForConnection for more info.
712 [System.Security.SecurityCritical]
713 public unsafe void EndWaitForConnection(IAsyncResult asyncResult) {
714 CheckConnectOperationsServer();
715
716 if (asyncResult == null) {
717 throw new ArgumentNullException("asyncResult");
718 }
719 if (!IsAsync) {
720 throw new InvalidOperationException(SR.GetString(SR.InvalidOperation_PipeNotAsync));
721 }
722
723 PipeAsyncResult afsar = asyncResult as PipeAsyncResult;
724 if (afsar == null) {
725 __Error.WrongAsyncResult();
726 }
727
728 // Ensure we can't get into any ----s by doing an interlocked
729 // CompareExchange here. Avoids corrupting memory via freeing the
730 // NativeOverlapped class or GCHandle twice. --
731 if (1 == Interlocked.CompareExchange(ref afsar._EndXxxCalled, 1, 0)) {
732 __Error.EndWaitForConnectionCalledTwice();
733 }
734
735 IOCancellationHelper cancellationHelper = afsar.AsyncState as IOCancellationHelper;
736 if (cancellationHelper != null) {
737 cancellationHelper.SetOperationCompleted();
738 }
739
740 // Obtain the WaitHandle, but don't use public property in case we
741 // delay initialize the manual reset event in the future.
742 WaitHandle wh = afsar._waitHandle;
743 if (wh != null) {
744 // We must block to ensure that ConnectionIOCallback has completed,
745 // and we should close the WaitHandle in here. AsyncFSCallback
746 // and the hand-ported imitation version in COMThreadPool.cpp
747 // are the only places that set this event.
748 try {
749 wh.WaitOne();
750 Debug.Assert(afsar._isComplete == true, "NamedPipeServerStream::EndWaitForConnection - AsyncFSCallback didn't set _isComplete to true!");
751 }
752 finally {
753 wh.Close();
754 }
755 }
756
757 // We should have freed the overlapped and set it to null either in the Begin
758 // method (if ConnectNamedPipe completed synchronously) or in AsyncWaitForConnectionCallback.
759 // If it is not nulled out, we should not be past the above wait:
760 Debug.Assert(afsar._overlapped == null);
761
762 // Now check for any error during the read.
763 if (afsar._errorCode != 0) {
764 if (afsar._errorCode == UnsafeNativeMethods.ERROR_OPERATION_ABORTED) {
765 if (cancellationHelper != null) {
766 cancellationHelper.ThrowIOOperationAborted();
767 }
768 }
769 __Error.WinIOError(afsar._errorCode, String.Empty);
770 }
771
772 // Success
773 State = PipeState.Connected;
774 }
775
776 [System.Security.SecurityCritical]
777 public void Disconnect() {
778 CheckDisconnectOperations();
779
780 // Disconnect the pipe.
781 if (!UnsafeNativeMethods.DisconnectNamedPipe(InternalHandle)) {
782 __Error.WinIOError(Marshal.GetLastWin32Error(), String.Empty);
783 }
784
785 State = PipeState.Disconnected;
786 }
787
788
789 // This method calls a delegate while impersonating the client. Note that we will not have
790 // access to the client's security token until it has written at least once to the pipe
791 // (and has set its impersonationLevel argument appropriately).
792 [System.Security.SecurityCritical]
793 [SecurityPermissionAttribute(SecurityAction.Demand, Flags = SecurityPermissionFlag.ControlPrincipal)]
794 public void RunAsClient(PipeStreamImpersonationWorker impersonationWorker) {
795 CheckWriteOperations();
796 ExecuteHelper execHelper = new ExecuteHelper(impersonationWorker, InternalHandle);
797 RuntimeHelpers.ExecuteCodeWithGuaranteedCleanup(tryCode, cleanupCode, execHelper);
798
799 // now handle win32 impersonate/revert specific errors by throwing corresponding exceptions
800 if (execHelper.m_impersonateErrorCode != 0) {
801 WinIOError(execHelper.m_impersonateErrorCode);
802 }
803 else if (execHelper.m_revertImpersonateErrorCode != 0) {
804 WinIOError(execHelper.m_revertImpersonateErrorCode);
805 }
806 }
807
808 // the following are needed for CER
809
810 private static RuntimeHelpers.TryCode tryCode = new RuntimeHelpers.TryCode(ImpersonateAndTryCode);
811 private static RuntimeHelpers.CleanupCode cleanupCode = new RuntimeHelpers.CleanupCode(RevertImpersonationOnBackout);
812
813 [System.Security.SecurityCritical]
814 private static void ImpersonateAndTryCode(Object helper) {
815 ExecuteHelper execHelper = (ExecuteHelper)helper;
816
817 RuntimeHelpers.PrepareConstrainedRegions();
818 try { }
819 finally {
820 if (UnsafeNativeMethods.ImpersonateNamedPipeClient(execHelper.m_handle)) {
821 execHelper.m_mustRevert = true;
822 }
823 else {
824 execHelper.m_impersonateErrorCode = Marshal.GetLastWin32Error();
825 }
826
827 }
828
829 if (execHelper.m_mustRevert) { // impersonate passed so run user code
830 execHelper.m_userCode();
831 }
832 }
833
834 [System.Security.SecurityCritical]
835 [PrePrepareMethod]
836 private static void RevertImpersonationOnBackout(Object helper, bool exceptionThrown) {
837 ExecuteHelper execHelper = (ExecuteHelper)helper;
838
839 if (execHelper.m_mustRevert) {
840 if (!UnsafeNativeMethods.RevertToSelf()) {
841 execHelper.m_revertImpersonateErrorCode = Marshal.GetLastWin32Error();
842 }
843 }
844 }
845
846 internal class ExecuteHelper {
847 internal PipeStreamImpersonationWorker m_userCode;
848 internal SafePipeHandle m_handle;
849 internal bool m_mustRevert;
850 internal int m_impersonateErrorCode;
851 internal int m_revertImpersonateErrorCode;
852
853 [System.Security.SecurityCritical]
854 internal ExecuteHelper(PipeStreamImpersonationWorker userCode, SafePipeHandle handle) {
855 m_userCode = userCode;
856 m_handle = handle;
857 }
858 }
859
860
861 // Gets the username of the connected client. Not that we will not have access to the client's
862 // username until it has written at least once to the pipe (and has set its impersonationLevel
863 // argument appropriately).
864 [System.Security.SecurityCritical]
865 [SecurityPermissionAttribute(SecurityAction.Demand, Flags = SecurityPermissionFlag.ControlPrincipal)]
866 public String GetImpersonationUserName() {
867 CheckWriteOperations();
868
869 StringBuilder userName = new StringBuilder(UnsafeNativeMethods.CREDUI_MAX_USERNAME_LENGTH + 1);
870
871 if (!UnsafeNativeMethods.GetNamedPipeHandleState(InternalHandle, UnsafeNativeMethods.NULL, UnsafeNativeMethods.NULL,
872 UnsafeNativeMethods.NULL, UnsafeNativeMethods.NULL, userName, userName.Capacity)) {
873 WinIOError(Marshal.GetLastWin32Error());
874 }
875
876 return userName.ToString();
877 }
878
879 // Callback to be called by the OS when completing the async WaitForConnection operation.
880 [System.Security.SecurityCritical]
881 unsafe private static void AsyncWaitForConnectionCallback(uint errorCode, uint numBytes, NativeOverlapped* pOverlapped) {
882 // Unpack overlapped
883 Overlapped overlapped = Overlapped.Unpack(pOverlapped);
884
885 // Extract async result from overlapped
886 PipeAsyncResult asyncResult = (PipeAsyncResult)overlapped.AsyncResult;
887
888 // Free the pinned overlapped:
889 Debug.Assert(asyncResult._overlapped == pOverlapped);
890 Overlapped.Free(pOverlapped);
891 asyncResult._overlapped = null;
892
893 // Special case for when the client has already connected to us.
894 if (errorCode == UnsafeNativeMethods.ERROR_PIPE_CONNECTED) {
895 errorCode = 0;
896 }
897
898 asyncResult._errorCode = (int)errorCode;
899
900 // Call the user-provided callback. It can and often should
901 // call EndWaitForConnection. There's no reason to use an async
902 // delegate here - we're already on a threadpool thread.
903 // IAsyncResult's completedSynchronously property must return
904 // false here, saying the user callback was called on another thread.
905 asyncResult._completedSynchronously = false;
906 asyncResult._isComplete = true;
907
908 // The OS does not signal this event. We must do it ourselves.
909 ManualResetEvent wh = asyncResult._waitHandle;
910 if (wh != null) {
911 Debug.Assert(!wh.SafeWaitHandle.IsClosed, "ManualResetEvent already closed!");
912 bool r = wh.Set();
913 Debug.Assert(r, "ManualResetEvent::Set failed!");
914 if (!r) {
915 __Error.WinIOError();
916 }
917 }
918
919 AsyncCallback userCallback = asyncResult._userCallback;
920
921 if (userCallback != null) {
922 userCallback(asyncResult);
923 }
924 }
925
926 // Server can only connect from Disconnected state
927 [System.Security.SecurityCritical]
928 [SuppressMessage("Microsoft.Security","CA2122:DoNotIndirectlyExposeMethodsWithLinkDemands", Justification="Consistent with security model")]
929 private void CheckConnectOperationsServer() {
930 // we're not checking whether already connected; this allows us to throw IOException
931 // "pipe is being closed" if other side is closing (as does win32) or no-op if
932 // already connected
933
934 if (InternalHandle == null) {
935 throw new InvalidOperationException(SR.GetString(SR.InvalidOperation_PipeHandleNotSet));
936 }
937 // object disposed
938 if (State == PipeState.Closed) {
939 __Error.PipeNotOpen();
940 }
941 if (InternalHandle.IsClosed) {
942 __Error.PipeNotOpen();
943 }
944 // IOException
945 if (State == PipeState.Broken) {
946 throw new IOException(SR.GetString(SR.IO_IO_PipeBroken));
947 }
948 }
949
950 // Server is allowed to disconnect from connected and broken states
951 [System.Security.SecurityCritical]
952 private void CheckDisconnectOperations() {
953
954 // invalid operation
955 if (State== PipeState.WaitingToConnect) {
956 throw new InvalidOperationException(SR.GetString(SR.InvalidOperation_PipeNotYetConnected));
957 }
958 if (State == PipeState.Disconnected) {
959 throw new InvalidOperationException(SR.GetString(SR.InvalidOperation_PipeAlreadyDisconnected));
960 }
961 if (InternalHandle == null) {
962 throw new InvalidOperationException(SR.GetString(SR.InvalidOperation_PipeHandleNotSet));
963 }
964 // object disposed
965 if (State == PipeState.Closed) {
966 __Error.PipeNotOpen();
967 }
968 if (InternalHandle.IsClosed) {
969 __Error.PipeNotOpen();
970 }
971 }
972
973 }
974
975 // Named pipe client. Use this to open the client end of a named pipes created with
976 // NamedPipeServerStream.
977 [System.Security.Permissions.HostProtection(MayLeakOnAbort = true)]
978 public sealed class NamedPipeClientStream : PipeStream {
979
980 // Maximum interval in miliseconds between which cancellation is checked.
981 // Used by ConnectInternal. 50ms is fairly responsive time but really long time for processor.
982 private const int CancellationCheckIntervalInMilliseconds = 50;
983 private string m_normalizedPipePath;
984 private TokenImpersonationLevel m_impersonationLevel;
985 private PipeOptions m_pipeOptions;
986 private HandleInheritability m_inheritability;
987 private int m_access;
988
989 // Creates a named pipe client using default server (same machine, or "."), and PipeDirection.InOut
990 [PermissionSet(SecurityAction.Demand, Name = "FullTrust")]
991 [SecuritySafeCritical]
992 public NamedPipeClientStream(String pipeName)
993 : this(".", pipeName, PipeDirection.InOut, PipeOptions.None, TokenImpersonationLevel.None, HandleInheritability.None) { }
994
995 [PermissionSet(SecurityAction.Demand, Name = "FullTrust")]
996 [SecuritySafeCritical]
997 public NamedPipeClientStream(String serverName, String pipeName)
998 : this(serverName, pipeName, PipeDirection.InOut, PipeOptions.None, TokenImpersonationLevel.None, HandleInheritability.None) { }
999
1000 [PermissionSet(SecurityAction.Demand, Name = "FullTrust")]
1001 [SecuritySafeCritical]
1002 public NamedPipeClientStream(String serverName, String pipeName, PipeDirection direction)
1003 : this(serverName, pipeName, direction, PipeOptions.None, TokenImpersonationLevel.None, HandleInheritability.None) { }
1004
1005 [PermissionSet(SecurityAction.Demand, Name = "FullTrust")]
1006 [SecuritySafeCritical]
1007 public NamedPipeClientStream(String serverName, String pipeName, PipeDirection direction,
1008 PipeOptions options)
1009 : this(serverName, pipeName, direction, options, TokenImpersonationLevel.None, HandleInheritability.None) { }
1010
1011 [PermissionSet(SecurityAction.Demand, Name = "FullTrust")]
1012 [SecuritySafeCritical]
1013 public NamedPipeClientStream(String serverName, String pipeName, PipeDirection direction,
1014 PipeOptions options, TokenImpersonationLevel impersonationLevel)
1015 : this(serverName, pipeName, direction, options, impersonationLevel, HandleInheritability.None) { }
1016
1017 [PermissionSet(SecurityAction.Demand, Name = "FullTrust")]
1018 [SecuritySafeCritical]
1019 public NamedPipeClientStream(String serverName, String pipeName, PipeDirection direction,
1020 PipeOptions options, TokenImpersonationLevel impersonationLevel, HandleInheritability inheritability)
1021 : base(direction, 0) {
1022
1023 if (pipeName == null) {
1024 throw new ArgumentNullException("pipeName");
1025 }
1026 if (serverName == null) {
1027 throw new ArgumentNullException("serverName", SR.GetString(SR.ArgumentNull_ServerName));
1028 }
1029 if (pipeName.Length == 0) {
1030 throw new ArgumentException(SR.GetString(SR.Argument_NeedNonemptyPipeName));
1031 }
1032 if (serverName.Length == 0) {
1033 throw new ArgumentException(SR.GetString(SR.Argument_EmptyServerName));
1034 }
1035 if ((options & ~(PipeOptions.WriteThrough | PipeOptions.Asynchronous)) != 0) {
1036 throw new ArgumentOutOfRangeException("options", SR.GetString(SR.ArgumentOutOfRange_OptionsInvalid));
1037 }
1038 if (impersonationLevel < TokenImpersonationLevel.None || impersonationLevel > TokenImpersonationLevel.Delegation) {
1039 throw new ArgumentOutOfRangeException("impersonationLevel", SR.GetString(SR.ArgumentOutOfRange_ImpersonationInvalid));
1040 }
1041 if (inheritability < HandleInheritability.None || inheritability > HandleInheritability.Inheritable) {
1042 throw new ArgumentOutOfRangeException("inheritability", SR.GetString(SR.ArgumentOutOfRange_HandleInheritabilityNoneOrInheritable));
1043 }
1044
1045 m_normalizedPipePath = Path.GetFullPath(@"\\" + serverName + @"\pipe\" + pipeName);
1046
1047 if (String.Compare(m_normalizedPipePath, @"\\.\pipe\anonymous", StringComparison.OrdinalIgnoreCase) == 0) {
1048 throw new ArgumentOutOfRangeException("pipeName", SR.GetString(SR.ArgumentOutOfRange_AnonymousReserved));
1049 }
1050
1051 m_inheritability = inheritability;
1052 m_impersonationLevel = impersonationLevel;
1053 m_pipeOptions = options;
1054
1055 if ((PipeDirection.In & direction) != 0) {
1056 m_access |= UnsafeNativeMethods.GENERIC_READ;
1057 }
1058 if ((PipeDirection.Out & direction) != 0) {
1059 m_access |= UnsafeNativeMethods.GENERIC_WRITE;
1060 }
1061 }
1062
1063 // This constructor is for advanced users that want to specify their PipeAccessRights explcitly. It can be used
1064 // to open pipes with, for example, WritePermissions access in the case that they want to play with the pipe's
1065 // ACL.
1066 [PermissionSet(SecurityAction.Demand, Name = "FullTrust")]
1067 [SecuritySafeCritical]
1068 public NamedPipeClientStream(String serverName, String pipeName, PipeAccessRights desiredAccessRights,
1069 PipeOptions options, TokenImpersonationLevel impersonationLevel, HandleInheritability inheritability)
1070 : base(DirectionFromRights(desiredAccessRights), 0) {
1071
1072 if (pipeName == null) {
1073 throw new ArgumentNullException("pipeName");
1074 }
1075 if (serverName == null) {
1076 throw new ArgumentNullException("serverName", SR.GetString(SR.ArgumentNull_ServerName));
1077 }
1078 if (pipeName.Length == 0) {
1079 throw new ArgumentException(SR.GetString(SR.Argument_NeedNonemptyPipeName));
1080 }
1081 if (serverName.Length == 0) {
1082 throw new ArgumentException(SR.GetString(SR.Argument_EmptyServerName));
1083 }
1084 if ((options & ~(PipeOptions.WriteThrough | PipeOptions.Asynchronous)) != 0) {
1085 throw new ArgumentOutOfRangeException("options", SR.GetString(SR.ArgumentOutOfRange_OptionsInvalid));
1086 }
1087 if (impersonationLevel < TokenImpersonationLevel.None || impersonationLevel > TokenImpersonationLevel.Delegation) {
1088 throw new ArgumentOutOfRangeException("impersonationLevel", SR.GetString(SR.ArgumentOutOfRange_ImpersonationInvalid));
1089 }
1090 if (inheritability < HandleInheritability.None || inheritability > HandleInheritability.Inheritable) {
1091 throw new ArgumentOutOfRangeException("inheritability", SR.GetString(SR.ArgumentOutOfRange_HandleInheritabilityNoneOrInheritable));
1092 }
1093 if ((desiredAccessRights & ~(PipeAccessRights.FullControl | PipeAccessRights.AccessSystemSecurity)) != 0) {
1094 throw new ArgumentOutOfRangeException("desiredAccessRights", SR.GetString(SR.ArgumentOutOfRange_InvalidPipeAccessRights));
1095 }
1096
1097 m_normalizedPipePath = Path.GetFullPath(@"\\" + serverName + @"\pipe\" + pipeName);
1098
1099 if (String.Compare(m_normalizedPipePath, @"\\.\pipe\anonymous", StringComparison.OrdinalIgnoreCase) == 0) {
1100 throw new ArgumentOutOfRangeException("pipeName", SR.GetString(SR.ArgumentOutOfRange_AnonymousReserved));
1101 }
1102
1103 m_inheritability = inheritability;
1104 m_impersonationLevel = impersonationLevel;
1105 m_pipeOptions = options;
1106 m_access = (int)desiredAccessRights;
1107 }
1108
1109 // Helper method for the constructor above. The PipeStream protected constructor takes in a PipeDirection so we need
1110 // to convert the access rights to a direction. Usually, PipeDirection.In/Out maps to GENERIC_READ/WRITE but in the
1111 // other direction, READ/WRITE_DATA is sufficient.
1112 private static PipeDirection DirectionFromRights(PipeAccessRights rights) {
1113 PipeDirection direction = 0;
1114 if ((rights & PipeAccessRights.ReadData) != 0) {
1115 direction |= PipeDirection.In;
1116 }
1117 if ((rights & PipeAccessRights.WriteData) != 0) {
1118 direction |= PipeDirection.Out;
1119 }
1120
1121 return direction;
1122 }
1123
1124 // Create a NamedPipeClientStream from an existing server pipe handle.
1125 [System.Security.SecuritySafeCritical]
1126 [PermissionSet(SecurityAction.Demand, Name = "FullTrust")]
1127 public NamedPipeClientStream(PipeDirection direction, bool isAsync, bool isConnected,
1128 SafePipeHandle safePipeHandle)
1129 : base(direction, 0) {
1130
1131 if (safePipeHandle == null) {
1132 throw new ArgumentNullException("safePipeHandle");
1133 }
1134
1135 if (safePipeHandle.IsInvalid) {
1136 throw new ArgumentException(SR.GetString(SR.Argument_InvalidHandle), "safePipeHandle");
1137 }
1138 // Check that this handle is infact a handle to a pipe.
1139 if (UnsafeNativeMethods.GetFileType(safePipeHandle) != UnsafeNativeMethods.FILE_TYPE_PIPE) {
1140 throw new IOException(SR.GetString(SR.IO_IO_InvalidPipeHandle));
1141 }
1142
1143 InitializeHandle(safePipeHandle, true, isAsync);
1144 if (isConnected) {
1145 State = PipeState.Connected;
1146 }
1147 }
1148
1149 ~NamedPipeClientStream() {
1150 Dispose(false);
1151 }
1152
1153 // See below
1154 public void Connect() {
1155 Connect(Timeout.Infinite);
1156 }
1157
1158 // Waits for a pipe instance to become available. This method may return before WaitForConnection is called
1159 // on the server end, but WaitForConnection will not return until we have returned. Any data writen to the
1160 // pipe by us after we have connected but before the server has called WaitForConnection will be available
1161 // to the server after it calls WaitForConnection.
1162 [System.Security.SecurityCritical]
1163 public void Connect(int timeout) {
1164 CheckConnectOperationsClient();
1165
1166 if (timeout < 0 && timeout != Timeout.Infinite) {
1167 throw new ArgumentOutOfRangeException("timeout", SR.GetString(SR.ArgumentOutOfRange_InvalidTimeout));
1168 }
1169
1170 UnsafeNativeMethods.SECURITY_ATTRIBUTES secAttrs = PipeStream.GetSecAttrs(m_inheritability);
1171
1172 int _pipeFlags = (int)m_pipeOptions;
1173 if (m_impersonationLevel != TokenImpersonationLevel.None) {
1174 _pipeFlags |= UnsafeNativeMethods.SECURITY_SQOS_PRESENT;
1175 _pipeFlags |= (((int)m_impersonationLevel - 1) << 16);
1176 }
1177
1178 // This is the main connection loop. It will loop until the timeout expires. Most of the
1179 // time, we will be waiting in the WaitNamedPipe win32 blocking function; however, there are
1180 // cases when we will need to loop: 1) The server is not created (WaitNamedPipe returns
1181 // straight away in such cases), and 2) when another client connects to our server in between
1182 // our WaitNamedPipe and CreateFile calls.
1183 int startTime = Environment.TickCount;
1184 int elapsed = 0;
1185 var sw = new SpinWait();
1186 do {
1187 // Wait for pipe to become free (this will block unless the pipe does not exist).
1188 if (!UnsafeNativeMethods.WaitNamedPipe(m_normalizedPipePath, timeout - elapsed)) {
1189 int errorCode = Marshal.GetLastWin32Error();
1190
1191 // Server is not yet created so let's keep looping.
1192 if (errorCode == UnsafeNativeMethods.ERROR_FILE_NOT_FOUND) {
1193 sw.SpinOnce();
1194 continue;
1195 }
1196
1197 // The timeout has expired.
1198 if (errorCode == UnsafeNativeMethods.ERROR_SUCCESS) {
1199 break;
1200 }
1201
1202 __Error.WinIOError(errorCode, String.Empty);
1203 }
1204
1205 // Pipe server should be free. Let's try to connect to it.
1206 SafePipeHandle handle = UnsafeNativeMethods.CreateNamedPipeClient(m_normalizedPipePath,
1207 m_access, // read and write access
1208 0, // sharing: none
1209 secAttrs, // security attributes
1210 FileMode.Open, // open existing
1211 _pipeFlags, // impersonation flags
1212 UnsafeNativeMethods.NULL); // template file: null
1213
1214 if (handle.IsInvalid) {
1215 int errorCode = Marshal.GetLastWin32Error();
1216
1217 // Handle the possible race condition of someone else connecting to the server
1218 // between our calls to WaitNamedPipe & CreateFile.
1219 if (errorCode == UnsafeNativeMethods.ERROR_PIPE_BUSY) {
1220 sw.SpinOnce();
1221 continue;
1222 }
1223
1224 __Error.WinIOError(errorCode, String.Empty);
1225 }
1226
1227 // Success!
1228 InitializeHandle(handle, false, (m_pipeOptions & PipeOptions.Asynchronous) != 0);
1229 State = PipeState.Connected;
1230
1231 return;
1232 }
1233 while (timeout == Timeout.Infinite || (elapsed = unchecked(Environment.TickCount - startTime)) < timeout);
1234 // BUGBUG: SerialPort does not use unchecked arithmetic when calculating elapsed times. This is needed
1235 // because Environment.TickCount can overflow (though only every 49.7 days).
1236
1237 throw new TimeoutException();
1238 }
1239
1240 public Task ConnectAsync() {
1241 // We cannot avoid creating lambda here by using Connect method
1242 // unless we don't care about start time to be measured before the thread is started
1243 return ConnectAsync(Timeout.Infinite, CancellationToken.None);
1244 }
1245
1246 public Task ConnectAsync(int timeout) {
1247 return ConnectAsync(timeout, CancellationToken.None);
1248 }
1249
1250 public Task ConnectAsync(CancellationToken cancellationToken) {
1251 return ConnectAsync(Timeout.Infinite, cancellationToken);
1252 }
1253
1254 public Task ConnectAsync(int timeout, CancellationToken cancellationToken) {
1255 CheckConnectOperationsClient();
1256
1257 if (timeout < 0 && timeout != Timeout.Infinite) {
1258 throw new ArgumentOutOfRangeException("timeout", SR.GetString(SR.ArgumentOutOfRange_InvalidTimeout));
1259 }
1260
1261 if (cancellationToken.IsCancellationRequested) {
1262 return Task.FromCancellation(cancellationToken);
1263 }
1264
1265 // We need to measure time here, not in the lambda
1266 int startTime = Environment.TickCount;
1267 return Task.Factory.StartNew(() => ConnectInternal(timeout, cancellationToken, startTime), cancellationToken);
1268 }
1269
1270 // Waits for a pipe instance to become available. This method may return before WaitForConnection is called
1271 // on the server end, but WaitForConnection will not return until we have returned. Any data writen to the
1272 // pipe by us after we have connected but before the server has called WaitForConnection will be available
1273 // to the server after it calls WaitForConnection.
1274 [System.Security.SecuritySafeCritical]
1275 private void ConnectInternal(int timeout, CancellationToken cancellationToken, int startTime) {
1276 UnsafeNativeMethods.SECURITY_ATTRIBUTES secAttrs = PipeStream.GetSecAttrs(m_inheritability);
1277
1278 int _pipeFlags = (int)m_pipeOptions;
1279 if (m_impersonationLevel != TokenImpersonationLevel.None) {
1280 _pipeFlags |= UnsafeNativeMethods.SECURITY_SQOS_PRESENT;
1281 _pipeFlags |= (((int)m_impersonationLevel - 1) << 16);
1282 }
1283
1284 // This is the main connection loop. It will loop until the timeout expires. Most of the
1285 // time, we will be waiting in the WaitNamedPipe win32 blocking function; however, there are
1286 // cases when we will need to loop: 1) The server is not created (WaitNamedPipe returns
1287 // straight away in such cases), and 2) when another client connects to our server in between
1288 // our WaitNamedPipe and CreateFile calls.
1289 int elapsed = 0;
1290 var sw = new SpinWait();
1291 do {
1292 // We want any other exception and and success to have priority over cancellation.
1293 cancellationToken.ThrowIfCancellationRequested();
1294
1295 // Wait for pipe to become free (this will block unless the pipe does not exist).
1296 int timeLeft = timeout - elapsed;
1297 int waitTime;
1298 if (cancellationToken.CanBeCanceled) {
1299 waitTime = Math.Min(CancellationCheckIntervalInMilliseconds, timeLeft);
1300 }
1301 else {
1302 waitTime = timeLeft;
1303 }
1304
1305 if (!UnsafeNativeMethods.WaitNamedPipe(m_normalizedPipePath, waitTime)) {
1306 int errorCode = Marshal.GetLastWin32Error();
1307
1308 // Server is not yet created so let's keep looping.
1309 if (errorCode == UnsafeNativeMethods.ERROR_FILE_NOT_FOUND) {
1310 sw.SpinOnce();
1311 continue;
1312 }
1313
1314 // The timeout has expired.
1315 if (errorCode == UnsafeNativeMethods.ERROR_SUCCESS) {
1316 if (cancellationToken.CanBeCanceled) {
1317 // It may not be real timeout and only checking for cancellation
1318 // let the while condition check it and decide
1319 sw.SpinOnce();
1320 continue;
1321 }
1322 else {
1323 break;
1324 }
1325 }
1326
1327 __Error.WinIOError(errorCode, String.Empty);
1328 }
1329
1330 // Pipe server should be free. Let's try to connect to it.
1331 SafePipeHandle handle = UnsafeNativeMethods.CreateNamedPipeClient(m_normalizedPipePath,
1332 m_access, // read and write access
1333 0, // sharing: none
1334 secAttrs, // security attributes
1335 FileMode.Open, // open existing
1336 _pipeFlags, // impersonation flags
1337 UnsafeNativeMethods.NULL); // template file: null
1338
1339 if (handle.IsInvalid) {
1340 int errorCode = Marshal.GetLastWin32Error();
1341
1342 // Handle the possible race condition of someone else connecting to the server
1343 // between our calls to WaitNamedPipe & CreateFile.
1344 if (errorCode == UnsafeNativeMethods.ERROR_PIPE_BUSY) {
1345 sw.SpinOnce();
1346 continue;
1347 }
1348
1349 __Error.WinIOError(errorCode, String.Empty);
1350 }
1351
1352 // Success!
1353 InitializeHandle(handle, false, (m_pipeOptions & PipeOptions.Asynchronous) != 0);
1354 State = PipeState.Connected;
1355
1356 return;
1357 }
1358 while (timeout == Timeout.Infinite || (elapsed = unchecked(Environment.TickCount - startTime)) < timeout);
1359 // BUGBUG: SerialPort does not use unchecked arithmetic when calculating elapsed times. This is needed
1360 // because Environment.TickCount can overflow (though only every 49.7 days).
1361
1362 throw new TimeoutException();
1363 }
1364
1365 public int NumberOfServerInstances {
1366 [System.Security.SecurityCritical]
1367 [SuppressMessage("Microsoft.Security","CA2122:DoNotIndirectlyExposeMethodsWithLinkDemands", Justification="Security model of pipes: demand at creation but no subsequent demands")]
1368 get {
1369 CheckPipePropertyOperations();
1370
1371 // NOTE: MSDN says that GetNamedPipeHandleState requires that the pipe handle has
1372 // GENERIC_READ access, but we don't check for that because sometimes it works without
1373 // GERERIC_READ access. [Edit: Seems like CreateFile slaps on a READ_ATTRIBUTES
1374 // access request before calling NTCreateFile, so all NamedPipeClientStreams can read
1375 // this if they are created (on WinXP SP2 at least)]
1376 int numInstances;
1377 if (!UnsafeNativeMethods.GetNamedPipeHandleState(InternalHandle, UnsafeNativeMethods.NULL, out numInstances,
1378 UnsafeNativeMethods.NULL, UnsafeNativeMethods.NULL, UnsafeNativeMethods.NULL, 0)) {
1379 WinIOError(Marshal.GetLastWin32Error());
1380 }
1381
1382 return numInstances;
1383 }
1384 }
1385
1386 // override because named pipe clients can't get/set properties when waiting to connect
1387 // or broken
1388 [System.Security.SecurityCritical]
1389 protected override internal void CheckPipePropertyOperations() {
1390 base.CheckPipePropertyOperations();
1391
1392 // Invalid operation
1393 if (State == PipeState.WaitingToConnect) {
1394 throw new InvalidOperationException(SR.GetString(SR.InvalidOperation_PipeNotYetConnected));
1395 }
1396
1397 // IOException
1398 if (State == PipeState.Broken) {
1399 throw new IOException(SR.GetString(SR.IO_IO_PipeBroken));
1400 }
1401 }
1402
1403 // named client is allowed to connect from broken
1404 private void CheckConnectOperationsClient() {
1405
1406 if (State == PipeState.Connected) {
1407 throw new InvalidOperationException(SR.GetString(SR.InvalidOperation_PipeAlreadyConnected));
1408 }
1409 if (State == PipeState.Closed) {
1410 __Error.PipeNotOpen();
1411 }
1412 }
1413 }
1414
1415 unsafe internal sealed class PipeAsyncResult : IAsyncResult {
1416 internal AsyncCallback _userCallback; // User code callback
1417 internal Object _userStateObject;
1418 internal ManualResetEvent _waitHandle;
1419 [SecurityCritical]
1420 internal SafePipeHandle _handle;
1421 [SecurityCritical]
1422 internal NativeOverlapped* _overlapped;
1423
1424 internal int _EndXxxCalled; // Whether we've called EndXxx already.
1425 internal int _errorCode;
1426
1427 internal bool _isComplete; // Value for IsCompleted property
1428 internal bool _completedSynchronously; // Which thread called callback
1429
1430 public Object AsyncState {
1431 get {
1432 return _userStateObject;
1433 }
1434 }
1435
1436 public bool IsCompleted {
1437 get {
1438 return _isComplete;
1439 }
1440 }
1441
1442 public WaitHandle AsyncWaitHandle {
1443 [System.Security.SecurityCritical]
1444 get {
1445 if (_waitHandle == null) {
1446 ManualResetEvent mre = new ManualResetEvent(false);
1447 if (_overlapped != null && _overlapped->EventHandle != IntPtr.Zero) {
1448 mre.SafeWaitHandle = new SafeWaitHandle(_overlapped->EventHandle, true);
1449 }
1450 if (_isComplete) {
1451 mre.Set();
1452 }
1453 _waitHandle = mre;
1454 }
1455 return _waitHandle;
1456 }
1457 }
1458
1459 public bool CompletedSynchronously {
1460 get {
1461 return _completedSynchronously;
1462 }
1463 }
1464
1465 private void CallUserCallbackWorker(Object callbackState) {
1466 _isComplete = true;
1467 if (_waitHandle != null) {
1468 _waitHandle.Set();
1469 }
1470 _userCallback(this);
1471 }
1472
1473 internal void CallUserCallback() {
1474 if (_userCallback != null) {
1475 _completedSynchronously = false;
1476 ThreadPool.QueueUserWorkItem(new WaitCallback(CallUserCallbackWorker));
1477 }
1478 else {
1479 _isComplete = true;
1480 if (_waitHandle != null) {
1481 _waitHandle.Set();
1482 }
1483 }
1484 }
1485 }
1486 }
Mirror of the official Mono project git repository