Merge pull request #2856 from nguerrera/shim-crypto-init

 Move EnsureOpenSslInitialized shim from coreclr to corefx

Author: stephentoub

src/Common/src/Interop/Unix/Interop.Libraries.cs

@@ -5,12 +5,14 @@ internal static partial class Interop
 {
     private static partial class Libraries
     {
-        internal const string CryptoInterop = "System.Security.Cryptography.Native";
         internal const string Libc = "libc";                   // C library
         internal const string LibCoreClr= "libcoreclr";        // CoreCLR runtime
         internal const string LibCrypto = "libcrypto";         // OpenSSL crypto library
         internal const string LibCurl = "libcurl";             // Curl HTTP client library
         internal const string Zlib = "libz";                   // zlib compression library
+
+        // Shims
         internal const string SystemNative = "System.Native";
+        internal const string CryptoNative = "System.Security.Cryptography.Native";
     }
 }

src/Common/src/Interop/Unix/System.Security.Cryptography.Native/Interop.NativeCrypto.cs renamed to src/Common/src/Interop/Unix/System.Security.Cryptography.Native/Interop.Crypto.cs

@@ -8,85 +8,85 @@
 
 internal static partial class Interop
 {
-    internal static partial class NativeCrypto
+    internal static partial class Crypto
     {
         private delegate int NegativeSizeReadMethod<in THandle>(THandle handle, byte[] buf, int cBuf);
 
-        [DllImport(Libraries.CryptoInterop)]
+        [DllImport(Libraries.CryptoNative)]
         internal static extern int BioTell(SafeBioHandle bio);
 
-        [DllImport(Libraries.CryptoInterop)]
+        [DllImport(Libraries.CryptoNative)]
         internal static extern int BioSeek(SafeBioHandle bio, int pos);
 
-        [DllImport(Libraries.CryptoInterop)]
+        [DllImport(Libraries.CryptoNative)]
         private static extern int GetX509Thumbprint(SafeX509Handle x509, byte[] buf, int cBuf);
 
-        [DllImport(Libraries.CryptoInterop)]
+        [DllImport(Libraries.CryptoNative)]
         private static extern int GetX509NameRawBytes(IntPtr x509Name, byte[] buf, int cBuf);
 
-        [DllImport(Libraries.CryptoInterop)]
+        [DllImport(Libraries.CryptoNative)]
         internal static extern SafeX509Handle ReadX509AsDerFromBio(SafeBioHandle bio);
 
-        [DllImport(Libraries.CryptoInterop)]
+        [DllImport(Libraries.CryptoNative)]
         internal static extern IntPtr GetX509NotBefore(SafeX509Handle x509);
 
-        [DllImport(Libraries.CryptoInterop)]
+        [DllImport(Libraries.CryptoNative)]
         internal static extern IntPtr GetX509NotAfter(SafeX509Handle x509);
 
-        [DllImport(Libraries.CryptoInterop)]
+        [DllImport(Libraries.CryptoNative)]
         internal static extern int GetX509Version(SafeX509Handle x509);
 
-        [DllImport(Libraries.CryptoInterop)]
+        [DllImport(Libraries.CryptoNative)]
         internal static extern IntPtr GetX509SignatureAlgorithm(SafeX509Handle x509);
 
-        [DllImport(Libraries.CryptoInterop)]
+        [DllImport(Libraries.CryptoNative)]
         internal static extern IntPtr GetX509PublicKeyAlgorithm(SafeX509Handle x509);
 
-        [DllImport(Libraries.CryptoInterop)]
+        [DllImport(Libraries.CryptoNative)]
         private static extern int GetX509PublicKeyParameterBytes(SafeX509Handle x509, byte[] buf, int cBuf);
 
-        [DllImport(Libraries.CryptoInterop)]
+        [DllImport(Libraries.CryptoNative)]
         internal static extern IntPtr GetX509PublicKeyBytes(SafeX509Handle x509);
 
-        [DllImport(Libraries.CryptoInterop)]
+        [DllImport(Libraries.CryptoNative)]
         internal static extern int GetX509EkuFieldCount(SafeEkuExtensionHandle eku);
 
-        [DllImport(Libraries.CryptoInterop)]
+        [DllImport(Libraries.CryptoNative)]
         internal static extern IntPtr GetX509EkuField(SafeEkuExtensionHandle eku, int loc);
 
-        [DllImport(Libraries.CryptoInterop)]
+        [DllImport(Libraries.CryptoNative)]
         internal static extern SafeBioHandle GetX509NameInfo(SafeX509Handle x509, int nameType, [MarshalAs(UnmanagedType.Bool)] bool forIssuer);
 
-        [DllImport(Libraries.CryptoInterop)]
+        [DllImport(Libraries.CryptoNative)]
         private static extern int GetAsn1StringBytes(IntPtr asn1, byte[] buf, int cBuf);
 
-        [DllImport(Libraries.CryptoInterop)]
+        [DllImport(Libraries.CryptoNative)]
         internal static extern SafeX509StackHandle NewX509Stack();
 
-        [DllImport(Libraries.CryptoInterop)]
+        [DllImport(Libraries.CryptoNative)]
         internal static extern int GetX509StackFieldCount(SafeX509StackHandle stack);
 
         /// <summary>
         /// Gets a pointer to a certificate within a STACK_OF(X509). This pointer will later
         /// be freed, so it should be cloned via new X509Certificate2(IntPtr)
         /// </summary>
-        [DllImport(Libraries.CryptoInterop)]
+        [DllImport(Libraries.CryptoNative)]
         internal static extern IntPtr GetX509StackField(SafeX509StackHandle stack, int loc);
 
-        [DllImport(Libraries.CryptoInterop)]
+        [DllImport(Libraries.CryptoNative)]
         [return: MarshalAs(UnmanagedType.Bool)]
         internal static extern bool PushX509StackField(SafeX509StackHandle stack, SafeX509Handle x509);
 
-        [DllImport(Libraries.CryptoInterop)]
+        [DllImport(Libraries.CryptoNative)]
         internal static extern void RecursiveFreeX509Stack(IntPtr stack);
 
-        [DllImport(Libraries.CryptoInterop, CharSet = CharSet.Ansi)]
+        [DllImport(Libraries.CryptoNative, CharSet = CharSet.Ansi)]
         internal static extern string GetX509RootStorePath();
 
-        [DllImport(Libraries.CryptoInterop)]
+        [DllImport(Libraries.CryptoNative)]
         internal static extern int UpRefEvpPkey(SafeEvpPkeyHandle handle);
 
-        [DllImport(Libraries.CryptoInterop)]
+        [DllImport(Libraries.CryptoNative)]
         private static extern int SetX509ChainVerifyTime(
             SafeX509StoreCtxHandle ctx,
             int year,

src/Common/src/Interop/Unix/System.Security.Cryptography.Native/Interop.Initialization.cs

@@ -0,0 +1,76 @@
+// Copyright (c) Microsoft. All rights reserved.
+// Licensed under the MIT license. See LICENSE file in the project root for full license information.
+
+using System;
+using System.Runtime.InteropServices;
+using System.Security.Cryptography;
+
+internal static partial class Interop
+{
+    // Initialization of libcrypto threading support is done in a static constructor.
+    // This enables a project simply to include this file, and any usage of any of
+    // the libcrypto or System.Security.Cryptography.Native functions will trigger 
+    // initialization of the threading support.
+
+    // Note that we can collapse everything into Interop.Crypto once we no longer
+    // have a mix of P/Invokes to libcrypto and System.Security.Crytpography.Native.
+    // In the meantime, a third Interop.CryptoInitializer class is used to prevent
+    // a circular initialization dependency between the two. 
+
+    internal static partial class libcrypto
+    {
+        static libcrypto()
+        {
+            CryptoInitializer.Initialize();
+        }
+    }
+
+    internal static partial class Crypto
+    {
+        static Crypto()
+        {
+            CryptoInitializer.Initialize();
+        }
+    } 
+
+    internal static class CryptoInitializer
+    {
+        static CryptoInitializer()
+        {
+            if (EnsureOpenSslInitialized() != 0)
+            {
+                // Ideally this would be a CryptographicException, but we use
+                // OpenSSL in libraries lower than System.Security.Cryptography.
+                // It's not a big deal, though: this will already be wrapped in a
+                // TypeLoadException, and this failing means something is very
+                // wrong with the system's configuration and any code using
+                // these libraries will be unable to operate correctly.
+                throw new InvalidOperationException();
+            }
+
+            // Load the SHA-2 hash algorithms, and anything else not in the default
+            // support set.
+            OPENSSL_add_all_algorithms_conf();
+
+            // Ensure that the error message table is loaded.
+            ERR_load_crypto_strings();
+        }
+
+        internal static void Initialize()
+        {
+            // No-op that exists to provide a hook for other static constructors
+            // to trigger initialization. Once we stop having direct P/Invokes
+            // to libcrypto and everything is collapsed in to the static constructor
+            // of Interop.Crypto, this function can be removed.
+        }
+
+        [DllImport(Libraries.CryptoNative)]
+        private static extern int EnsureOpenSslInitialized();
+
+        [DllImport(Libraries.LibCrypto)]
+        private static extern void ERR_load_crypto_strings();
+
+        [DllImport(Libraries.LibCrypto)]
+        private static extern void OPENSSL_add_all_algorithms_conf();
+    }
+}

src/Common/src/Interop/Unix/libcoreclr/Interop.EnsureOpenSslInitialized.cs

@@ -10,9 +10,6 @@ internal static partial class Interop
 {
     internal static partial class libcrypto
     {
-        [DllImport(Libraries.LibCrypto)]
-        private static extern void ERR_load_crypto_strings();
-
         [DllImport(Libraries.LibCrypto)]
         private static extern uint ERR_get_error();
 

src/Common/src/Interop/Unix/libcrypto/Interop.ERR.cs

@@ -36,7 +36,7 @@ internal static SafeEvpPkeyHandle DuplicateHandle(SafeEvpPkeyHandle handle)
             // that we don't lose a tracked reference in low-memory situations.
             SafeEvpPkeyHandle safeHandle = new SafeEvpPkeyHandle();
 
-            int newRefCount = Interop.NativeCrypto.UpRefEvpPkey(handle);
+            int newRefCount = Interop.Crypto.UpRefEvpPkey(handle);
 
             // UpRefEvpPkey returns the number of references to this key, if it's less than 2
             // (the incoming handle, and this one) then someone has already Disposed() this key

src/Common/src/Interop/Unix/libcrypto/Interop.Initialization.cs

@@ -82,7 +82,7 @@ private SafeX509StackHandle() :
 
         protected override bool ReleaseHandle()
         {
-            Interop.NativeCrypto.RecursiveFreeX509Stack(handle);
+            Interop.Crypto.RecursiveFreeX509Stack(handle);
             SetHandle(IntPtr.Zero);
             return true;
         }