Fix build and add using to WindowsIdentity objects

Paulo Janotti · ericstj · commit d52ee2738f70 · 2018-02-14T10:10:40.000-08:00
diff --git a/src/System.IO.Pipes/src/System/IO/Pipes/NamedPipeClientStream.Windows.cs b/src/System.IO.Pipes/src/System/IO/Pipes/NamedPipeClientStream.Windows.cs
@@ -4,7 +4,6 @@
 
 using System.Diagnostics.CodeAnalysis;
 using System.Runtime.InteropServices;
-using System.Security.AccessControl;
 using System.Security.Principal;
 using System.Threading;
 using Microsoft.Win32.SafeHandles;
@@ -25,15 +24,10 @@ private bool TryConnect(int timeout, CancellationToken cancellationToken)
         {
             Interop.Kernel32.SECURITY_ATTRIBUTES secAttrs = PipeStream.GetSecAttrs(_inheritability);
 
-            if ((_pipeOptions & PipeOptions.CurrentUserOnly) != 0)
-            {
-                // We need to remove this flag from options because it is not a valid flag for windows PInvoke to create a pipe.
-                _pipeOptions &= ~PipeOptions.CurrentUserOnly;
-            }
-
-            Debug.Assert((options & PipeOptions.CurrentUserOnly) == 0);
-
-            int _pipeFlags = (int)_pipeOptions;
+            // PipeOptions.CurrentUserOnly is special since it doesn't match directly to a corresponding Win32 valid flag.
+            // Remove it, while keeping others untouched since historically this has been used as a way to pass flags to
+            // CreateNamedPipeClient that were not defined in the enumeration.
+            int _pipeFlags = (int)(_pipeOptions & ~PipeOptions.CurrentUserOnly);
             if (_impersonationLevel != TokenImpersonationLevel.None)
             {
                 _pipeFlags |= Interop.Kernel32.SecurityOptions.SECURITY_SQOS_PRESENT;
@@ -142,13 +136,16 @@ private void ValidateRemotePipeUser()
             if (!IsCurrentUserOnly)
                 return;
 
-            SecurityIdentifier currentUserSid = WindowsIdentity.GetCurrent().Owner;
             PipeSecurity accessControl = this.GetAccessControl();
             IdentityReference remoteOwnerSid = accessControl.GetOwner(typeof(SecurityIdentifier));
-            if (remoteOwnerSid != currentUserSid)
+            using (WindowsIdentity currentIdentity = WindowsIdentity.GetCurrent())
             {
-                State = PipeState.Closed;
-                throw new UnauthorizedAccessException(SR.UnauthorizedAccess_NotOwnedByCurrentUser);
+                SecurityIdentifier currentUserSid = currentIdentity.Owner;
+                if (remoteOwnerSid != currentUserSid)
+                {
+                    State = PipeState.Closed;
+                    throw new UnauthorizedAccessException(SR.UnauthorizedAccess_NotOwnedByCurrentUser);
+                }
             }
         }
 
diff --git a/src/System.IO.Pipes/src/System/IO/Pipes/NamedPipeServerStream.Windows.cs b/src/System.IO.Pipes/src/System/IO/Pipes/NamedPipeServerStream.Windows.cs
@@ -43,19 +43,22 @@ private void Create(string pipeName, PipeDirection direction, int maxNumberOfSer
 
             if (IsCurrentUserOnly)
             {
-                SecurityIdentifier identifier = WindowsIdentity.GetCurrent().Owner;
-                PipeAccessRule rule = new PipeAccessRule(identifier, PipeAccessRights.ReadWrite, AccessControlType.Allow);
-                pipeSecurity = new PipeSecurity();
+                using (WindowsIdentity currentIdentity = WindowsIdentity.GetCurrent())
+                {
+                    SecurityIdentifier identifier = currentIdentity.Owner;
+                    PipeAccessRule rule = new PipeAccessRule(identifier, PipeAccessRights.ReadWrite, AccessControlType.Allow);
+                    pipeSecurity = new PipeSecurity();
 
-                pipeSecurity.AddAccessRule(rule);
-                pipeSecurity.SetOwner(identifier);
+                    pipeSecurity.AddAccessRule(rule);
+                    pipeSecurity.SetOwner(identifier);
+                }
 
-                // We need to remove this flag from options because it is not a valid flag for windows PInvoke to create a pipe.
+                // PipeOptions.CurrentUserOnly is special since it doesn't match directly to a corresponding Win32 valid flag.
+                // Remove it, while keeping others untouched since historically this has been used as a way to pass flags to CreateNamedPipe
+                // that were not defined in the enumeration.
                 options &= ~PipeOptions.CurrentUserOnly;
             }
 
-            Debug.Assert((options & PipeOptions.CurrentUserOnly) == 0);
-
             int openMode = ((int)direction) |
                            (maxNumberOfServerInstances == 1 ? Interop.Kernel32.FileOperations.FILE_FLAG_FIRST_PIPE_INSTANCE : 0) |
                            (int)options;
