CSHARP-1727: Refactor SecureString related code to not use BSTR and to be compatible with .NET Core.

Author: rstam

README.md

@@ -105,6 +105,7 @@ Please see our [guidelines](CONTRIBUTING.md) for contributing to the driver.
 * Sridhar Nanjundeswaran    https://github.com/sridharn
 * Andrew Rondeau            [email protected]
 * Ed Rooth                  [email protected]
+* Alexey Skalozub           [email protected]
 * Pete Smith                [email protected]
 * staywellandy              https://github.com/staywellandy
 * Testo                     [email protected]   

src/MongoDB.Driver.Core.Dotnet/project.json

@@ -9,6 +9,7 @@
     "System.Net.Security": "4.0.0",
     "System.Security.Cryptography.Algorithms": "4.2.0",
     "System.Security.Cryptography.X509Certificates": "4.1.0",
+    "System.Security.SecureString": "4.0.0",
     "System.Threading": "4.0.11"
   },
 

src/MongoDB.Driver.Core/Core/Authentication/AuthenticationHelper.cs

@@ -60,77 +60,81 @@ public static async Task AuthenticateAsync(IConnection connection, ConnectionDes
             }
         }
 
-#if NET45
         public static string MongoPasswordDigest(string username, SecureString password)
         {
-            IntPtr unmanagedPassword = IntPtr.Zero;
-            try
+            if (password.Length == 0)
+            {
+                return MongoPasswordDigest(username, new byte[0]);
+            }
+            else
             {
-                unmanagedPassword = Marshal.SecureStringToBSTR(password);
-                var passwordChars = new char[password.Length];
-                GCHandle passwordCharsHandle = new GCHandle();
+#if NETSTANDARD1_6
+                var passwordIntPtr = SecureStringMarshal.SecureStringToGlobalAllocUnicode(password);
+#else
+                var passwordIntPtr = Marshal.SecureStringToGlobalAllocUnicode(password);
+#endif
                 try
                 {
-                    passwordCharsHandle = GCHandle.Alloc(passwordChars, GCHandleType.Pinned);
-                    Marshal.Copy(unmanagedPassword, passwordChars, 0, passwordChars.Length);
-
-                    var byteCount = Utf8Encodings.Strict.GetByteCount(passwordChars);
-                    var passwordBytes = new byte[byteCount];
-                    GCHandle passwordBytesHandle = new GCHandle();
+                    var passwordChars = new char[password.Length];
+                    var passwordCharsHandle = GCHandle.Alloc(passwordChars, GCHandleType.Pinned);
                     try
                     {
-                        passwordBytesHandle = GCHandle.Alloc(passwordBytesHandle, GCHandleType.Pinned);
-                        Utf8Encodings.Strict.GetBytes(passwordChars, 0, passwordChars.Length, passwordBytes, 0);
+                        Marshal.Copy(passwordIntPtr, passwordChars, 0, password.Length);
 
-                        return MongoPasswordDigest(username, passwordBytes);
+                        return MongoPasswordDigest(username, passwordChars);
                     }
                     finally
                     {
-                        Array.Clear(passwordBytes, 0, passwordBytes.Length);
-
-                        if (passwordBytesHandle.IsAllocated)
-                        {
-                            passwordBytesHandle.Free();
-                        }
+                        Array.Clear(passwordChars, 0, passwordChars.Length);
+                        passwordCharsHandle.Free();
                     }
                 }
                 finally
                 {
-                    Array.Clear(passwordChars, 0, passwordChars.Length);
-
-                    if (passwordCharsHandle.IsAllocated)
-                    {
-                        passwordCharsHandle.Free();
-                    }
+                    Marshal.ZeroFreeGlobalAllocUnicode(passwordIntPtr);
                 }
             }
+        }
+
+        private static string MongoPasswordDigest(string username, char[] passwordChars)
+        {
+            var passwordBytes = new byte[Utf8Encodings.Strict.GetByteCount(passwordChars)];
+            var passwordBytesHandle = GCHandle.Alloc(passwordBytes, GCHandleType.Pinned);
+            try
+            {
+                Utf8Encodings.Strict.GetBytes(passwordChars, 0, passwordChars.Length, passwordBytes, 0);
+
+                return MongoPasswordDigest(username, passwordBytes);
+            }
             finally
             {
-                if (unmanagedPassword != IntPtr.Zero)
-                {
-                    Marshal.ZeroFreeBSTR(unmanagedPassword);
-                }
+                Array.Clear(passwordBytes, 0, passwordBytes.Length);
+                passwordBytesHandle.Free();
             }
         }
-#endif
 
-        public static string MongoPasswordDigest(string username, string password)
+        private static string MongoPasswordDigest(string username, byte[] passwordBytes)
         {
-            var passwordBytes = Utf8Encodings.Strict.GetBytes(password);
-            return MongoPasswordDigest(username, passwordBytes);
-        }
+            var prefixString = username + ":mongo:";
+            var prefixBytes = Utf8Encodings.Strict.GetBytes(prefixString);
 
-        public static string MongoPasswordDigest(string username, byte[] passwordBytes)
-        {
-            using (var md5 = MD5.Create())
+            var buffer = new byte[prefixBytes.Length + passwordBytes.Length];
+            var bufferHandle = GCHandle.Alloc(buffer, GCHandleType.Pinned);
+            try
             {
-                var bytes = Utf8Encodings.Strict.GetBytes(username + ":mongo:");
-
-                var buffer = new byte[bytes.Length + passwordBytes.Length];
-                Buffer.BlockCopy(bytes, 0, buffer, 0, bytes.Length);
-                Buffer.BlockCopy(passwordBytes, 0, buffer, bytes.Length, passwordBytes.Length);
+                Buffer.BlockCopy(prefixBytes, 0, buffer, 0, prefixBytes.Length);
+                Buffer.BlockCopy(passwordBytes, 0, buffer, prefixBytes.Length, passwordBytes.Length);
 
-                return BsonUtils.ToHexString(md5.ComputeHash(buffer));
+                using (var md5 = MD5.Create())
+                {
+                    var hash = md5.ComputeHash(buffer);
+                    return BsonUtils.ToHexString(hash);
+                }
+            }
+            finally
+            {
+                Array.Clear(buffer, 0, buffer.Length);
+                bufferHandle.Free();
             }
         }
     }

src/MongoDB.Driver.Core/Core/Authentication/MongoDBCRAuthenticator.cs

@@ -142,18 +142,14 @@ private CommandWireProtocol<BsonDocument> CreateGetNonceProtocol()
             return protocol;
         }
 
-#if NETSTANDARD1_6
-        private string CreateKey(string username, string password, string nonce)
-#else
         private string CreateKey(string username, SecureString password, string nonce)
-#endif
         {
             var passwordDigest = AuthenticationHelper.MongoPasswordDigest(username, password);
             using (var md5 = MD5.Create())
             {
                 var bytes = Utf8Encodings.Strict.GetBytes(nonce + username + passwordDigest);
-                bytes = md5.ComputeHash(bytes);
-                return BsonUtils.ToHexString(bytes);
+                var hash = md5.ComputeHash(bytes);
+                return BsonUtils.ToHexString(hash);
             }
         }
     }

src/MongoDB.Driver.Core/Core/Authentication/UsernamePasswordCredential.cs

@@ -27,28 +27,10 @@ public sealed class UsernamePasswordCredential
     {
         // fields
         private string _source;
-#if NETSTANDARD1_6
-        private string _password;
-#else
         private SecureString _password;
-#endif
         private string _username;
 
         // constructors
-#if NETSTANDARD1_6
-        /// <summary>
-        /// Initializes a new instance of the <see cref="UsernamePasswordCredential"/> class.
-        /// </summary>
-        /// <param name="source">The source.</param>
-        /// <param name="username">The username.</param>
-        /// <param name="password">The password.</param>
-        public UsernamePasswordCredential(string source, string username, string password)
-        {
-            _source = Ensure.IsNotNullOrEmpty(source, nameof(source));
-            _username = Ensure.IsNotNullOrEmpty(username, nameof(username));
-            _password = Ensure.IsNotNull(password, nameof(password));
-        }
-#else
         /// <summary>
         /// Initializes a new instance of the <see cref="UsernamePasswordCredential"/> class.
         /// </summary>
@@ -72,7 +54,6 @@ public UsernamePasswordCredential(string source, string username, SecureString p
             _username = Ensure.IsNotNullOrEmpty(username, nameof(username));
             _password = Ensure.IsNotNull(password, nameof(password));
         }
-#endif
 
         // properties
         /// <summary>
@@ -81,11 +62,7 @@ public UsernamePasswordCredential(string source, string username, SecureString p
         /// <value>
         /// The password.
         /// </value>
-#if NETSTANDARD1_6
-        public string Password
-#else
         public SecureString Password
-#endif
         {
             get { return _password; }
         }
@@ -119,26 +96,28 @@ public string Username
         /// <returns>The password.</returns>
         public string GetInsecurePassword()
         {
-#if NETSTANDARD1_6
-            return _password;
-#else
-            IntPtr unmanagedPassword = IntPtr.Zero;
-            try
+            if (_password.Length == 0)
             {
-                unmanagedPassword = Marshal.SecureStringToGlobalAllocUnicode(_password);
-                return Marshal.PtrToStringUni(unmanagedPassword);
+                return "";
             }
-            finally
+            else
             {
-                if (unmanagedPassword != IntPtr.Zero)
+#if NETSTANDARD1_6
+                var passwordIntPtr = SecureStringMarshal.SecureStringToGlobalAllocUnicode(_password);
+#else
+                var passwordIntPtr = Marshal.SecureStringToGlobalAllocUnicode(_password);
+#endif
+                try
                 {
-                    Marshal.ZeroFreeGlobalAllocUnicode(unmanagedPassword);
+                    return Marshal.PtrToStringUni(passwordIntPtr, _password.Length);
+                }
+                finally
+                {
+                    Marshal.ZeroFreeGlobalAllocUnicode(passwordIntPtr);
                 }
             }
-#endif
         }
 
-#if NET45
         private static SecureString ConvertPasswordToSecureString(string password)
         {
             var secureString = new SecureString();
@@ -149,6 +128,5 @@ private static SecureString ConvertPasswordToSecureString(string password)
             secureString.MakeReadOnly();
             return secureString;
         }
-#endif
     }
 }

src/MongoDB.Driver.Legacy.Dotnet/project.json

@@ -1,4 +1,4 @@
-{
+{
   "version": "1.0.0-*",
 
   "dependencies": {

src/MongoDB.Driver/MongoCredential.cs

@@ -97,11 +97,7 @@ public string Password
                 var passwordEvidence = _evidence as PasswordEvidence;
                 if (passwordEvidence != null)
                 {
-#if NETSTANDARD1_6
-                    return passwordEvidence.Password;
-#else
                     return MongoUtils.ToInsecureString(passwordEvidence.SecurePassword);
-#endif
                 }
 
                 return null;
@@ -163,7 +159,6 @@ public static MongoCredential CreateCredential(string databaseName, string usern
                 new PasswordEvidence(password));
         }
 
-#if NET45
         /// <summary>
         /// Creates a default credential.
         /// </summary>
@@ -178,7 +173,6 @@ public static MongoCredential CreateCredential(string databaseName, string usern
                 username,
                 new PasswordEvidence(password));
         }
-#endif
 
         /// <summary>
         /// Creates a GSSAPI credential.
@@ -208,7 +202,6 @@ public static MongoCredential CreateGssapiCredential(string username, string pas
                 new PasswordEvidence(password));
         }
 
-#if NET45
         /// <summary>
         /// Creates a GSSAPI credential.
         /// </summary>
@@ -222,7 +215,6 @@ public static MongoCredential CreateGssapiCredential(string username, SecureStri
                 username,
                 new PasswordEvidence(password));
         }
-#endif
 
         /// <summary>
         /// Creates a credential used with MONGODB-CR.
@@ -239,7 +231,6 @@ public static MongoCredential CreateMongoCRCredential(string databaseName, strin
                 new PasswordEvidence(password));
         }
 
-#if NET45
         /// <summary>
         /// Creates a credential used with MONGODB-CR.
         /// </summary>
@@ -254,7 +245,6 @@ public static MongoCredential CreateMongoCRCredential(string databaseName, strin
                 username,
                 new PasswordEvidence(password));
         }
-#endif
 
         /// <summary>
         /// Creates a credential used with MONGODB-CR.
@@ -284,7 +274,6 @@ public static MongoCredential CreatePlainCredential(string databaseName, string
                 new PasswordEvidence(password));
         }
 
-#if NET45
         /// <summary>
         /// Creates a PLAIN credential.
         /// </summary>
@@ -299,7 +288,6 @@ public static MongoCredential CreatePlainCredential(string databaseName, string
                 username,
                 new PasswordEvidence(password));
         }
-#endif
 
         // public methods
         /// <summary>
@@ -391,11 +379,7 @@ internal IAuthenticator ToAuthenticator()
             var passwordEvidence = _evidence as PasswordEvidence;
             if (passwordEvidence != null)
             {
-#if NETSTANDARD1_6
-                var insecurePassword = passwordEvidence.Password;
-#else
                 var insecurePassword = MongoUtils.ToInsecureString(passwordEvidence.SecurePassword);
-#endif
                 var credential = new UsernamePasswordCredential(
                     _identity.Source,
                     _identity.Username,