GFG_New
/
ET9_WebGL_Dev


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279
							/* Copyright 2010-present MongoDB Inc.
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/

using System;
using System.Collections;
using System.Collections.Generic;
using System.Linq;
using System.Net.Security;
using System.Reflection;
using System.Security.Authentication;
using System.Security.Cryptography.X509Certificates;
using MongoDB.Shared;

namespace MongoDB.Driver
{
    /// <summary>
    /// Represents the settings for using SSL.
    /// </summary>
    public class SslSettings : IEquatable<SslSettings>
    {
        // private static fields
        private static readonly IEqualityComparer<X509CertificateCollection> __certificateCollectionEqualityComparer = new X509CertificateCollectionEqualityComparer();

        // private fields
        private bool _checkCertificateRevocation = false;
        private X509CertificateCollection _clientCertificateCollection;
        private LocalCertificateSelectionCallback _clientCertificateSelectionCallback;
        private SslProtocols _enabledSslProtocols = SslProtocols.Tls12 | SslProtocols.Tls11 | SslProtocols.Tls;
        private RemoteCertificateValidationCallback _serverCertificateValidationCallback;

        // the following fields are set when the SslSettings are frozen
        private bool _isFrozen;
        private int _hashCode;

        // public properties
        /// <summary>
        /// Gets or sets a value indicating whether to check for certificate revocation.
        /// </summary>
        public bool CheckCertificateRevocation
        {
            get { return _checkCertificateRevocation; }
            set
            {
                if (_isFrozen) { throw new InvalidOperationException("SslSettings is frozen."); }
                _checkCertificateRevocation = value;
            }
        }

        /// <summary>
        /// Gets or sets the client certificates.
        /// </summary>
        public IEnumerable<X509Certificate> ClientCertificates
        {
            get { return (_clientCertificateCollection == null) ? null : ((IEnumerable)_clientCertificateCollection).Cast<X509Certificate>(); }
            set
            {
                if (_isFrozen) { throw new InvalidOperationException("SslSettings is frozen."); }
                _clientCertificateCollection = (value == null) ? null : new X509CertificateCollection(value.ToArray());
            }
        }

        /// <summary>
        /// Gets or sets the client certificate selection callback.
        /// </summary>
        public LocalCertificateSelectionCallback ClientCertificateSelectionCallback
        {
            get { return _clientCertificateSelectionCallback; }
            set
            {
                if (_isFrozen) { throw new InvalidOperationException("SslSettings is frozen."); }
                _clientCertificateSelectionCallback = value;
            }
        }

        /// <summary>
        /// Gets or sets the enabled SSL protocols.
        /// </summary>
        public SslProtocols EnabledSslProtocols
        {
            get { return _enabledSslProtocols; }
            set
            {
                if (_isFrozen) { throw new InvalidOperationException("SslSettings is frozen."); }
                _enabledSslProtocols = value;
            }
        }

        /// <summary>
        /// Gets or sets the server certificate validation callback.
        /// </summary>
        public RemoteCertificateValidationCallback ServerCertificateValidationCallback
        {
            get { return _serverCertificateValidationCallback; }
            set
            {
                if (_isFrozen) { throw new InvalidOperationException("SslSettings is frozen."); }
                _serverCertificateValidationCallback = value;
            }
        }

        // internal properties
        internal X509CertificateCollection ClientCertificateCollection
        {
            get { return _clientCertificateCollection; }
        }

        // public operators
        /// <summary>
        /// Determines whether two <see cref="SslSettings"/> instances are equal.
        /// </summary>
        /// <param name="lhs">The LHS.</param>
        /// <param name="rhs">The RHS.</param>
        /// <returns>
        ///   <c>true</c> if the left hand side is equal to the right hand side; otherwise, <c>false</c>.
        /// </returns>
        public static bool operator ==(SslSettings lhs, SslSettings rhs)
        {
            return object.Equals(lhs, rhs); // handles lhs == null correctly
        }

        /// <summary>
        /// Determines whether two <see cref="SslSettings"/> instances are not equal.
        /// </summary>
        /// <param name="lhs">The LHS.</param>
        /// <param name="rhs">The RHS.</param>
        /// <returns>
        ///   <c>true</c> if the left hand side is not equal to the right hand side; otherwise, <c>false</c>.
        /// </returns>
        public static bool operator !=(SslSettings lhs, SslSettings rhs)
        {
            return !(lhs == rhs);
        }

        // public methods
        /// <summary>
        /// Clones an SslSettings.
        /// </summary>
        /// <returns>The cloned SslSettings.</returns>
        public SslSettings Clone()
        {
            var clone = new SslSettings();
            clone._checkCertificateRevocation = _checkCertificateRevocation;
            clone._clientCertificateCollection = _clientCertificateCollection; // is immutable
            clone._clientCertificateSelectionCallback = _clientCertificateSelectionCallback;
            clone._enabledSslProtocols = _enabledSslProtocols;
            clone._serverCertificateValidationCallback = _serverCertificateValidationCallback;
            return clone;
        }

        /// <summary>
        /// Determines whether the specified <see cref="SslSettings" /> is equal to this instance.
        /// </summary>
        /// <param name="obj">The <see cref="SslSettings" /> to compare with this instance.</param>
        /// <returns>
        ///   <c>true</c> if the specified <see cref="SslSettings" /> is equal to this instance; otherwise, <c>false</c>.
        /// </returns>
        public bool Equals(SslSettings obj)
        {
            return Equals((object)obj); // handles obj == null correctly
        }

        /// <summary>
        /// Determines whether the specified <see cref="System.Object" /> is equal to this instance.
        /// </summary>
        /// <param name="obj">The <see cref="System.Object" /> to compare with this instance.</param>
        /// <returns>
        ///   <c>true</c> if the specified <see cref="System.Object" /> is equal to this instance; otherwise, <c>false</c>.
        /// </returns>
        public override bool Equals(object obj)
        {
            if (object.ReferenceEquals(obj, null) || GetType() != obj.GetType()) { return false; }
            var rhs = (SslSettings)obj;
            return
                _checkCertificateRevocation == rhs._checkCertificateRevocation &&
                __certificateCollectionEqualityComparer.Equals(_clientCertificateCollection, rhs._clientCertificateCollection) &&
                object.Equals(_clientCertificateSelectionCallback, rhs._clientCertificateSelectionCallback) &&
                _enabledSslProtocols == rhs._enabledSslProtocols &&
                object.Equals(_serverCertificateValidationCallback, rhs._serverCertificateValidationCallback);
        }

        /// <summary>
        /// Freezes the settings.
        /// </summary>
        /// <returns>The frozen settings.</returns>
        public SslSettings Freeze()
        {
            if (!_isFrozen)
            {
                _hashCode = GetHashCode();
                _isFrozen = true;
            }
            return this;
        }

        /// <summary>
        /// Returns a hash code for this instance.
        /// </summary>
        /// <returns>
        /// A hash code for this instance, suitable for use in hashing algorithms and data structures like a hash table. 
        /// </returns>
        public override int GetHashCode()
        {
            if (_isFrozen)
            {
                return _hashCode;
            }

            return new Hasher()
                .Hash(_checkCertificateRevocation)
                .HashElements(_clientCertificateCollection)
                .Hash(_clientCertificateSelectionCallback)
                .Hash(_enabledSslProtocols)
                .Hash(_serverCertificateValidationCallback)
                .GetHashCode();
        }

        /// <summary>
        /// Returns a string representation of the settings.
        /// </summary>
        /// <returns>A string representation of the settings.</returns>
        public override string ToString()
        {
            var parts = new List<string>();
            parts.Add(string.Format("CheckCertificateRevocation={0}", _checkCertificateRevocation));
            if (_clientCertificateCollection != null)
            {
                parts.Add(string.Format("ClientCertificates=[{0}]", string.Join(",", ((IEnumerable)_clientCertificateCollection).Cast<X509Certificate>().Select(c => c.Subject).ToArray())));
            }
            if (_clientCertificateSelectionCallback != null)
            {
                parts.Add(string.Format("ClientCertificateSelectionCallback={0}", _clientCertificateSelectionCallback.GetMethodInfo().Name));
            }
            parts.Add(string.Format("EnabledProtocols={0}", _enabledSslProtocols));
            if (_serverCertificateValidationCallback != null)
            {
                parts.Add(string.Format("ServerCertificateValidationCallback={0}", _serverCertificateValidationCallback.GetMethodInfo().Name));
            }

            return string.Format("{{{0}}}", string.Join(",", parts.ToArray()));
        }
        
        // nested classes
        private class X509CertificateCollectionEqualityComparer : IEqualityComparer<X509CertificateCollection>
        {
            public bool Equals(X509CertificateCollection lhs, X509CertificateCollection rhs)
            {
                if (lhs == null) { return rhs == null; }
                return ((IEnumerable)lhs).Cast<X509Certificate>().SequenceEqual(((IEnumerable)rhs).Cast<X509Certificate>());
            }

            public int GetHashCode(X509CertificateCollection obj)
            {
                if (obj == null)
                {
                    throw new ArgumentNullException("obj");
                }

                var hash = 17;
                foreach (X509Certificate certificate in obj)
                {
                    hash += 37 * hash + certificate.GetHashCode();
                }
                return hash;
            }
        }
    }
}