dotnet
diff --git a/‎src/Common/src/CoreLib/System.Private.CoreLib.Shared.projitems‎
Lines changed: 9 additions & 3 deletions b/‎src/Common/src/CoreLib/System.Private.CoreLib.Shared.projitems‎
Lines changed: 9 additions & 3 deletions
diff --git a/‎src/Common/src/CoreLib/System/IO/StreamHelpers.CopyValidation.cs‎
Lines changed: 46 additions & 0 deletions b/‎src/Common/src/CoreLib/System/IO/StreamHelpers.CopyValidation.cs‎
Lines changed: 46 additions & 0 deletions
diff --git a/‎src/Common/src/CoreLib/System/Security/SecureString.Unix.cs‎
Lines changed: 295 additions & 0 deletions b/‎src/Common/src/CoreLib/System/Security/SecureString.Unix.cs‎
Lines changed: 295 additions & 0 deletions
@@ -157,9 +157,10 @@
     <Compile Include="$(MSBuildThisFileDirectory)System\InvalidProgramException.cs"/>
     <Compile Include="$(MSBuildThisFileDirectory)System\InvalidTimeZoneException.cs"/>
     <Compile Include="$(MSBuildThisFileDirectory)System\IO\Error.cs"/>
-    <Compile Include="$(MSBuildThisFileDirectory)System\IO\FileStream.cs" />
-    <Compile Include="$(MSBuildThisFileDirectory)System\IO\Path.cs" />
-    <Compile Include="$(MSBuildThisFileDirectory)System\IO\PathInternal.cs" />
+    <Compile Include="$(MSBuildThisFileDirectory)System\IO\FileStream.cs"/>
+    <Compile Include="$(MSBuildThisFileDirectory)System\IO\Path.cs"/>
+    <Compile Include="$(MSBuildThisFileDirectory)System\IO\PathInternal.cs"/>
+    <Compile Include="$(MSBuildThisFileDirectory)System\IO\StreamHelpers.CopyValidation.cs"/>
     <Compile Include="$(MSBuildThisFileDirectory)System\IObservable.cs"/>
     <Compile Include="$(MSBuildThisFileDirectory)System\IObserver.cs"/>
     <Compile Include="$(MSBuildThisFileDirectory)System\IProgress.cs"/>
@@ -282,6 +283,7 @@
     <Compile Include="$(MSBuildThisFileDirectory)System\Security\AllowPartiallyTrustedCallersAttribute.cs"/>
     <Compile Include="$(MSBuildThisFileDirectory)System\Security\CryptographicException.cs"/>
     <Compile Include="$(MSBuildThisFileDirectory)System\Security\PartialTrustVisibilityLevel.cs"/>
+    <Compile Include="$(MSBuildThisFileDirectory)System\Security\SecureString.cs"/>
     <Compile Include="$(MSBuildThisFileDirectory)System\Security\SecurityCriticalAttribute.cs"/>
     <Compile Include="$(MSBuildThisFileDirectory)System\Security\SecurityCriticalScope.cs"/>
     <Compile Include="$(MSBuildThisFileDirectory)System\Security\SecurityException.cs"/>
@@ -302,6 +304,9 @@
     <Compile Include="$(MSBuildThisFileDirectory)System\Text\StringBuilder.cs"/>
     <Compile Include="$(MSBuildThisFileDirectory)System\ThreadAttributes.cs"/>
     <Compile Include="$(MSBuildThisFileDirectory)System\Threading\DeferredDisposableLifetime.cs"/>
+    <Compile Include="$(MSBuildThisFileDirectory)System\Threading\Tasks\TaskCanceledException.cs"/>
+    <Compile Include="$(MSBuildThisFileDirectory)System\Threading\Tasks\TaskExtensions.cs"/>
+    <Compile Include="$(MSBuildThisFileDirectory)System\Threading\Tasks\TaskSchedulerException.cs"/>
     <Compile Include="$(MSBuildThisFileDirectory)System\Threading\Timeout.cs"/>
     <Compile Include="$(MSBuildThisFileDirectory)System\ThreadStaticAttribute.cs"/>
     <Compile Include="$(MSBuildThisFileDirectory)System\TimeoutException.cs"/>
@@ -337,6 +342,7 @@
     <Compile Include="$(MSBuildThisFileDirectory)System\IO\FileStream.Unix.cs"/>
     <Compile Include="$(MSBuildThisFileDirectory)System\IO\Path.Unix.cs"/>
     <Compile Include="$(MSBuildThisFileDirectory)System\IO\PathInternal.Unix.cs"/>
+    <Compile Include="$(MSBuildThisFileDirectory)System\Security\SecureString.Unix.cs"/>
   </ItemGroup>
   <ItemGroup Condition="$(TargetsUnix) and $(TargetsOSX)">
     <Compile Include="$(MSBuildThisFileDirectory)System\IO\FileStream.OSX.cs"/>
 
@@ -0,0 +1,46 @@
+// Licensed to the .NET Foundation under one or more agreements.
+// The .NET Foundation licenses this file to you under the MIT license.
+// See the LICENSE file in the project root for more information.
+
+namespace System.IO
+{
+    /// <summary>Provides methods to help in the implementation of Stream-derived types.</summary>
+    internal static partial class StreamHelpers
+    {
+        /// <summary>Validate the arguments to CopyTo, as would Stream.CopyTo.</summary>
+        public static void ValidateCopyToArgs(Stream source, Stream destination, int bufferSize)
+        {
+            if (destination == null)
+            {
+                throw new ArgumentNullException(nameof(destination));
+            }
+
+            if (bufferSize <= 0)
+            {
+                throw new ArgumentOutOfRangeException(nameof(bufferSize), bufferSize, SR.ArgumentOutOfRange_NeedPosNum);
+            }
+
+            bool sourceCanRead = source.CanRead;
+            if (!sourceCanRead && !source.CanWrite)
+            {
+                throw new ObjectDisposedException(null, SR.ObjectDisposed_StreamClosed);
+            }
+
+            bool destinationCanWrite = destination.CanWrite;
+            if (!destinationCanWrite && !destination.CanRead)
+            {
+                throw new ObjectDisposedException(nameof(destination), SR.ObjectDisposed_StreamClosed);
+            }
+
+            if (!sourceCanRead)
+            {
+                throw new NotSupportedException(SR.NotSupported_UnreadableStream);
+            }
+
+            if (!destinationCanWrite)
+            {
+                throw new NotSupportedException(SR.NotSupported_UnwritableStream);
+            }
+        }
+    }
+}
@@ -0,0 +1,295 @@
+// Licensed to the .NET Foundation under one or more agreements.
+// The .NET Foundation licenses this file to you under the MIT license.
+// See the LICENSE file in the project root for more information.
+
+using System.Diagnostics;
+using System.Runtime.InteropServices;
+using System.Text;
+
+namespace System.Security
+{
+    // SecureString attempts to provide a defense-in-depth solution.
+    // 
+    // On Windows, this is done with several mechanisms:
+    // 1. keeping the data in unmanaged memory so that copies of it aren't implicitly made by the GC moving it around
+    // 2. zero'ing out that unmanaged memory so that the string is reliably removed from memory when done with it
+    // 3. encrypting the data while it's not being used (it's unencrypted to manipulate and use it)
+    // 
+    // On Unix, we do 1 and 2, but we don't do 3 as there's no CryptProtectData equivalent.
+
+    public sealed partial class SecureString
+    {
+        private UnmanagedBuffer _buffer;
+
+        internal SecureString(SecureString str)
+        {
+            // Allocate enough space to store the provided string
+            EnsureCapacity(str._decryptedLength);
+            _decryptedLength = str._decryptedLength;
+
+            // Copy the string into the newly allocated space
+            if (_decryptedLength > 0)
+            {
+                UnmanagedBuffer.Copy(str._buffer, _buffer, (ulong)(str._decryptedLength * sizeof(char)));
+            }
+        }
+
+        private unsafe void InitializeSecureString(char* value, int length)
+        {
+            // Allocate enough space to store the provided string
+            EnsureCapacity(length);
+            _decryptedLength = length;
+            if (length == 0)
+            {
+                return;
+            }
+
+            // Copy the string into the newly allocated space
+            byte* ptr = null;
+            try
+            {
+                _buffer.AcquirePointer(ref ptr);
+                Buffer.MemoryCopy(value, ptr, _buffer.ByteLength, (ulong)(length * sizeof(char)));
+            }
+            finally
+            {
+                if (ptr != null)
+                {
+                    _buffer.ReleasePointer();
+                }
+            }
+        }
+
+        private void DisposeCore()
+        {
+            if (_buffer != null && !_buffer.IsInvalid)
+            {
+                _buffer.Dispose();
+                _buffer = null;
+            }
+        }
+
+        private void EnsureNotDisposed()
+        {
+            if (_buffer == null)
+            {
+                throw new ObjectDisposedException(GetType().Name);
+            }
+        }
+
+        private void ClearCore()
+        {
+            _decryptedLength = 0;
+            _buffer.Clear();
+        }
+
+        private unsafe void AppendCharCore(char c)
+        {
+            // Make sure we have enough space for the new character, then write it at the end.
+            EnsureCapacity(_decryptedLength + 1);
+            _buffer.Write((ulong)(_decryptedLength * sizeof(char)), c);
+            _decryptedLength++;
+        }
+
+        private unsafe void InsertAtCore(int index, char c)
+        {
+            // Make sure we have enough space for the new character, then shift all of the characters above it and insert it.
+            EnsureCapacity(_decryptedLength + 1);
+            byte* ptr = null;
+            try
+            {
+                _buffer.AcquirePointer(ref ptr);
+                ptr += index * sizeof(char);
+                long bytesToShift = (_decryptedLength - index) * sizeof(char);
+                Buffer.MemoryCopy(ptr, ptr + sizeof(char), bytesToShift, bytesToShift);
+                *((char*)ptr) = c;
+                ++_decryptedLength;
+            }
+            finally
+            {
+                if (ptr != null)
+                {
+                    _buffer.ReleasePointer();
+                }
+            }
+        }
+
+        private unsafe void RemoveAtCore(int index)
+        {
+            // Shift down all values above the specified index, then null out the empty space at the end.
+            byte* ptr = null;
+            try
+            {
+                _buffer.AcquirePointer(ref ptr);
+                ptr += index * sizeof(char);
+                long bytesToShift = (_decryptedLength - index - 1) * sizeof(char);
+                Buffer.MemoryCopy(ptr + sizeof(char), ptr, bytesToShift, bytesToShift);
+                *((char*)(ptr + bytesToShift)) = (char)0;
+                --_decryptedLength;
+            }
+            finally
+            {
+                if (ptr != null)
+                {
+                    _buffer.ReleasePointer();
+                }
+            }
+        }
+
+        private void SetAtCore(int index, char c)
+        {
+            // Overwrite the character at the specified index
+            _buffer.Write((ulong)(index * sizeof(char)), c);
+        }
+
+        internal unsafe IntPtr MarshalToStringCore(bool globalAlloc, bool unicode)
+        {
+            int length = _decryptedLength;
+
+            byte* bufferPtr = null;
+            IntPtr stringPtr = IntPtr.Zero, result = IntPtr.Zero;
+            try
+            {
+                _buffer.AcquirePointer(ref bufferPtr);
+                if (unicode)
+                {
+                    int resultLength = (length + 1) * sizeof(char);
+                    stringPtr = globalAlloc ? Marshal.AllocHGlobal(resultLength) : Marshal.AllocCoTaskMem(resultLength);
+                    Buffer.MemoryCopy(
+                        source: bufferPtr,
+                        destination: (byte*)stringPtr.ToPointer(),
+                        destinationSizeInBytes: resultLength,
+                        sourceBytesToCopy: length * sizeof(char));
+                    *(length + (char*)stringPtr) = '\0';
+                }
+                else
+                {
+                    int resultLength = Encoding.UTF8.GetByteCount((char*)bufferPtr, length) + 1;
+                    stringPtr = globalAlloc ? Marshal.AllocHGlobal(resultLength) : Marshal.AllocCoTaskMem(resultLength);
+                    int encodedLength = Encoding.UTF8.GetBytes((char*)bufferPtr, length, (byte*)stringPtr, resultLength);
+                    Debug.Assert(encodedLength + 1 == resultLength, $"Expected encoded length to match result, got {encodedLength} != {resultLength}");
+                    *(resultLength - 1 + (byte*)stringPtr) = 0;
+                }
+
+                result = stringPtr;
+            }
+            finally
+            {
+                // If there was a failure, such that result isn't initialized, 
+                // release the string if we had one.
+                if (stringPtr != IntPtr.Zero && result == IntPtr.Zero)
+                {
+                    UnmanagedBuffer.ZeroMemory((byte*)stringPtr, (ulong)(length * sizeof(char)));
+                    MarshalFree(stringPtr, globalAlloc);
+                }
+
+                if (bufferPtr != null)
+                {
+                    _buffer.ReleasePointer();
+                }
+            }
+
+            return result;
+        }
+
+        // -----------------------------
+        // ---- PAL layer ends here ----
+        // -----------------------------
+
+        private void EnsureCapacity(int capacity)
+        {
+            // Make sure the requested capacity doesn't exceed SecureString's defined limit
+            if (capacity > MaxLength)
+            {
+                throw new ArgumentOutOfRangeException(nameof(capacity), SR.ArgumentOutOfRange_Capacity);
+            }
+
+            // If we already have enough space allocated, we're done
+            if (_buffer != null && (capacity * sizeof(char)) <= (int)_buffer.ByteLength)
+            {
+                return;
+            }
+
+            // We need more space, so allocate a new buffer, copy all our data into it,
+            // and then swap the new for the old.
+            UnmanagedBuffer newBuffer = UnmanagedBuffer.Allocate(capacity * sizeof(char));
+            if (_buffer != null)
+            {
+                UnmanagedBuffer.Copy(_buffer, newBuffer, _buffer.ByteLength);
+                _buffer.Dispose();
+            }
+            _buffer = newBuffer;
+        }
+
+        /// <summary>SafeBuffer for managing memory meant to be kept confidential.</summary>
+        private sealed class UnmanagedBuffer : SafeBuffer
+        {
+            internal UnmanagedBuffer() : base(true) { }
+
+            internal static UnmanagedBuffer Allocate(int bytes)
+            {
+                Debug.Assert(bytes >= 0);
+                UnmanagedBuffer buffer = new UnmanagedBuffer();
+                buffer.SetHandle(Marshal.AllocHGlobal(bytes));
+                buffer.Initialize((ulong)bytes);
+                return buffer;
+            }
+
+            internal unsafe void Clear()
+            {
+                byte* ptr = null;
+                try
+                {
+                    AcquirePointer(ref ptr);
+                    ZeroMemory(ptr, ByteLength);
+                }
+                finally
+                {
+                    if (ptr != null)
+                    {
+                        ReleasePointer();
+                    }
+                }
+            }
+
+            internal static unsafe void Copy(UnmanagedBuffer source, UnmanagedBuffer destination, ulong bytesLength)
+            {
+                if (bytesLength == 0)
+                {
+                    return;
+                }
+
+                byte* srcPtr = null, dstPtr = null;
+                try
+                {
+                    source.AcquirePointer(ref srcPtr);
+                    destination.AcquirePointer(ref dstPtr);
+                    Buffer.MemoryCopy(srcPtr, dstPtr, destination.ByteLength, bytesLength);
+                }
+                finally
+                {
+                    if (dstPtr != null)
+                    {
+                        destination.ReleasePointer();
+                    }
+                    if (srcPtr != null)
+                    {
+                        source.ReleasePointer();
+                    }
+                }
+            }
+
+            protected override unsafe bool ReleaseHandle()
+            {
+                Marshal.FreeHGlobal(handle);
+                return true;
+            }
+
+            internal static unsafe void ZeroMemory(byte* ptr, ulong len)
+            {
+                for (ulong i = 0; i < len; i++) *ptr++ = 0;
+            }
+        }
+
+    }
+}