Merge pull request #2213 from jaredpar/fix-pipe

Change named pipe ownership check

Merge pull request #2213 from jaredpar/fix-pipe
Change named pipe ownership check
d71378a7 · Jared Parsons · 8f0df9c7 · 324458c8 · d71378a7
隐藏空白更改
内联并排

Showing with 64 addition and 15 deletion

src/Compilers/Core/MSBuildTask/BuildClient.cs src/Compilers/Core/MSBuildTask/BuildClient.cs +64 -15

未找到文件。
--- a/src/Compilers/Core/MSBuildTask/BuildClient.cs
+++ b/src/Compilers/Core/MSBuildTask/BuildClient.cs
@@ -29,7 +29,7 @@ internal static class BuildClient
        // Spend up to 1s connecting to existing process (existing processes should be always responsive).
        private const int TimeOutMsExistingProcess = 1000;
        // Spend up to 20s connecting to a new process, to allow time for it to start.
-        private const int TimeOutMsNewProcess = 20000; 
+        private const int TimeOutMsNewProcess = 20000;

        /// <summary>
        /// Run a compilation through the compiler server and print the output
@@ -109,7 +109,7 @@ private static int HandleResponse(BuildResponse response)
        /// </summary>
        public static Task<BuildResponse> TryRunServerCompilation(
            RequestLanguage language,
-            string clientDir, 
+            string clientDir,
            string workingDir,
            IList<string> arguments,
            CancellationToken cancellationToken,
@@ -332,10 +332,7 @@ private static int HandleResponse(BuildResponse response)
                cancellationToken.ThrowIfCancellationRequested();

                // Verify that we own the pipe.
-                SecurityIdentifier currentIdentity = WindowsIdentity.GetCurrent().Owner;
-                PipeSecurity remoteSecurity = pipeStream.GetAccessControl();
-                IdentityReference remoteOwner = remoteSecurity.GetOwner(typeof(SecurityIdentifier));
-                if (remoteOwner != currentIdentity)
+                if (!CheckPipeConnectionOwnership(pipeStream))
                {
                    Log("Owner of named pipe is incorrect");
                    return null;
@@ -381,15 +378,15 @@ private static bool TryCreateServerProcess(string clientDir, string pipeName)
            var builder = new StringBuilder($@"""{expectedPath}"" ""-pipename:{pipeName}""");

            bool success = CreateProcess(
-                lpApplicationName:    null,
-                lpCommandLine:        builder,
-                lpProcessAttributes:  NullPtr,
-                lpThreadAttributes:   NullPtr,
-                bInheritHandles:      false,
-                dwCreationFlags:      dwCreationFlags,
-                lpEnvironment:        NullPtr, // Inherit environment
-                lpCurrentDirectory:   clientDir,
-                lpStartupInfo:        ref startInfo,
+                lpApplicationName: null,
+                lpCommandLine: builder,
+                lpProcessAttributes: NullPtr,
+                lpThreadAttributes: NullPtr,
+                bInheritHandles: false,
+                dwCreationFlags: dwCreationFlags,
+                lpEnvironment: NullPtr, // Inherit environment
+                lpCurrentDirectory: clientDir,
+                lpStartupInfo: ref startInfo,
                lpProcessInformation: out processInfo);

            if (success)
@@ -404,5 +401,57 @@ private static bool TryCreateServerProcess(string clientDir, string pipeName)
            }
            return success;
        }
+
+        /// <summary>
+        /// Check to ensure that the named pipe server we connected to is owned by the same
+        /// user.
+        /// </summary>
+        /// <remarks>
+        /// The type is embedded in assemblies that need to run cross platform.  While this particular
+        /// code will never be hit when running on non-Windows platforms it does need to work when
+        /// on Windows.  To facilitate that we use reflection to make the check here to enable it to 
+        /// compile into our cross plat assemblies. 
+        /// </remarks>
+        private static bool CheckPipeConnectionOwnership(NamedPipeClientStream pipeStream)
+        {
+            try
+            {
+                var assembly = typeof(object).Assembly;
+
+                var currentIdentity = assembly
+                    .GetType("System.Security.Principal.WindowsIdentity")
+                    .GetTypeInfo()
+                    .GetDeclaredMethods("GetCurrent")
+                    .Single(x => x.GetParameters().Length == 0)
+                    .Invoke(null, null);
+
+                var currentOwner = assembly
+                    .GetType("System.Security.Principal.WindowsIdentity")
+                    .GetTypeInfo()
+                    .GetDeclaredProperty("Owner")
+                    .GetGetMethod()
+                    .Invoke(currentIdentity, null);
+
+                var remotePipeSecurity = typeof(PipeStream)
+                    .GetTypeInfo()
+                    .GetDeclaredMethods("GetAccessControl")
+                    .Single(x => x.GetParameters().Length == 0)
+                    .Invoke(pipeStream, null);
+
+                var remoteOwner = assembly
+                    .GetType("System.Security.AccessControl.ObjectSecurity")
+                    .GetTypeInfo()
+                    .GetDeclaredMethods("GetOwner")
+                    .Single(x => x.GetParameters().Length == 1 && x.GetParameters()[0].ParameterType == typeof(Type))
+                    .Invoke(remotePipeSecurity, new[] { assembly.GetType("System.Security.Principal.SecurityIdentifier") });
+
+                return currentOwner.Equals(remoteOwner);
+            }
+            catch (Exception ex)
+            {
+                Log("Exception checking pipe connection: {0}", ex.Message);
+                return false;
+            }
+        }
    }
 }