Only allow assignments of explicitly supported types to DynamicData (#36791)

* Preparation for Core release 1.33.0

* Add allow list converter

* Add test; plumb through

* support anonymous types

* Add todo list of types to support; remaining work is reference semantics

* Add more test cases; refactor a bit

* Add Etag to allow list

* add TODOs about reference semantics

* Refactor

* Back-out early serialization for type validation instead

* pr fb

* Move type validation to dynamic layer

* refactor

* refactor

* Move naming enum to Azure.Core.Serialization

* Rename to PropertyNameConversion

* Add dynamic options to response content

* Plumb through response content options

* Update ClientOptions API

* Enable it in DynamicData

* RequestContent and CLU

* Update docs and samples

* Unify request and response content

* Add TODO

* Rename internal enum

* pr fb

* nit

* undo

* missed update

* more updates from pr fb

* Initial (messy) collection support.

* Refactor to type-only check as a first step

* Add placeholder value check

* Initial collection value check, non-poco

* nit tidy

* architect API feedback

* clu

* refactor pipeline bits to use ProtocolOptions (remove dependency on types in Dynamic namespace)

* Update set behavior as discussed in arch board

* nits

* PR fb

* clu

* revert prepare release change

* In TDD spirit, add failing tests

* fix

* Initial work on value semantics

* nit and fix

* nits

* fix

* make value semantics tests pass

* delete extraneous code:

* updates

* add validation for MJE assignment

* pr fb

* updates post-merge

* pr fb

* fix bug in POCO type

* Add tests of assignment

* add tests

* Allow anonymous types but not POCOs

* disallow IEnumerable

* Remove object from allow list

* remove AllowListConverter per net7.0 bug

* Don't allow heterogeneous collections

* anonymous types

* don't allocate collections for added and removed properties

* pr fb

* renames

* Update MJD tests per value semantics

* Rework primitive type check

* Simplify anonymous type check

* Don't allocate HashSet in allow list

* reallocate visited list more occasionally

* pr fb

* remove cycle detection and simplify; add tests

* simplify further

* more tests of enumerables with changes

* one more test

* Updates post merge

Author: annelo-msft

sdk/core/Azure.Core/src/DynamicData/DynamicData.AllowList.cs

@@ -0,0 +1,200 @@
+// Copyright (c) Microsoft Corporation. All rights reserved.
+// Licensed under the MIT License.
+
+using System;
+using System.Collections;
+using System.Collections.Generic;
+using System.Reflection;
+using System.Text.Json;
+
+namespace Azure.Core.Dynamic
+{
+    public partial class DynamicData
+    {
+        internal class AllowList
+        {
+            public static void AssertAllowedValue<T>(T value)
+            {
+                if (value == null)
+                {
+                    return;
+                }
+
+                if (!IsAllowedValue(value))
+                {
+                    throw new NotSupportedException($"Assigning this value is not supported, either because its type '{value.GetType()}' is not allowed, or because it contains unallowed types.");
+                }
+            }
+
+            private static bool IsAllowedValue<T>(T value)
+            {
+                if (value == null)
+                {
+                    return true;
+                }
+
+                Type type = value.GetType();
+                if (IsAllowedType(type))
+                {
+                    return true;
+                }
+
+                if (IsAllowedCollectionValue(type, value))
+                {
+                    return true;
+                }
+
+                return IsAllowedAnonymousValue(type, value);
+            }
+
+            private static bool IsAllowedType(Type type)
+            {
+                return type.IsPrimitive ||
+                    type == typeof(decimal) ||
+                    type == typeof(string) ||
+                    type == typeof(DateTime) ||
+                    type == typeof(DateTimeOffset) ||
+                    type == typeof(TimeSpan) ||
+                    type == typeof(Uri) ||
+                    type == typeof(Guid) ||
+                    type == typeof(ETag) ||
+                    type == typeof(JsonElement) ||
+                    type == typeof(JsonDocument) ||
+                    type == typeof(DynamicData);
+            }
+
+            private static bool IsAllowedCollectionValue<T>(Type type, T value)
+            {
+                return
+                    IsAllowedArrayValue(type, value) ||
+                    IsAllowedListValue(type, value) ||
+                    IsAllowedDictionaryValue(type, value);
+            }
+
+            private static bool IsAllowedArrayValue<T>(Type type, T value)
+            {
+                if (value is not Array array)
+                {
+                    return false;
+                }
+
+                Type? elementType = type.GetElementType();
+                if (elementType == null)
+                {
+                    return false;
+                }
+
+                if (elementType.IsPrimitive || elementType == typeof(string))
+                {
+                    return true;
+                }
+
+                return IsAllowedEnumerableValue(elementType, array);
+            }
+
+            private static bool IsAllowedListValue<T>(Type type, T value)
+            {
+                if (value == null)
+                {
+                    return true;
+                }
+
+                if (!type.IsGenericType)
+                {
+                    return false;
+                }
+
+                if (type.GetGenericTypeDefinition() != typeof(List<>))
+                {
+                    return false;
+                }
+
+                Type genericArgument = type.GetGenericArguments()[0];
+                if (genericArgument.IsPrimitive || genericArgument == typeof(string))
+                {
+                    return true;
+                }
+
+                return IsAllowedEnumerableValue(genericArgument, (IEnumerable)value);
+            }
+
+            private static bool IsAllowedDictionaryValue<T>(Type type, T value)
+            {
+                if (value == null)
+                {
+                    return true;
+                }
+
+                if (!type.IsGenericType)
+                {
+                    return false;
+                }
+
+                if (type.GetGenericTypeDefinition() != typeof(Dictionary<,>))
+                {
+                    return false;
+                }
+
+                Type[] genericArguments = type.GetGenericArguments();
+                if (genericArguments[0] != typeof(string))
+                {
+                    return false;
+                }
+
+                if (genericArguments[1].IsPrimitive || genericArguments[1] == typeof(string))
+                {
+                    return true;
+                }
+
+                return IsAllowedEnumerableValue(genericArguments[1], ((IDictionary)value).Values);
+            }
+
+            private static bool IsAllowedEnumerableValue(Type elementType, IEnumerable enumerable)
+            {
+                foreach (var item in enumerable)
+                {
+                    if (item == null)
+                    {
+                        continue;
+                    }
+
+                    // Don't allow heterogenous collections
+                    if (item.GetType() != elementType)
+                    {
+                        return false;
+                    }
+
+                    if (!IsAllowedValue(item))
+                    {
+                        return false;
+                    }
+                }
+
+                return true;
+            }
+
+            private static bool IsAllowedAnonymousValue<T>(Type type, T value)
+            {
+                if (!IsAnonymousType(type))
+                {
+                    return false;
+                }
+
+                foreach (PropertyInfo property in type.GetProperties())
+                {
+                    if (!IsAllowedValue(property.GetValue(value)))
+                    {
+                        return false;
+                    }
+                }
+
+                return true;
+            }
+
+            private static bool IsAnonymousType(Type type)
+            {
+                return type.Name.StartsWith("<>f__AnonymousType");
+            }
+        }
+    }
+}

sdk/core/Azure.Core/src/DynamicData/DynamicData.cs

@@ -21,7 +21,7 @@ namespace Azure.Core.Dynamic
     /// This and related types are not intended to be mocked.
     /// </summary>
     [DebuggerDisplay("{DebuggerDisplay,nq}")]
-    [JsonConverter(typeof(JsonConverter))]
+    [JsonConverter(typeof(DynamicDataJsonConverter))]
     public sealed partial class DynamicData : IDisposable
     {
         private static readonly MethodInfo GetPropertyMethod = typeof(DynamicData).GetMethod(nameof(GetProperty), BindingFlags.NonPublic | BindingFlags.Instance)!;
@@ -138,6 +138,7 @@ private IEnumerable GetEnumerable()
         private object? SetProperty(string name, object value)
         {
             Argument.AssertNotNullOrEmpty(name, nameof(name));
+            AllowList.AssertAllowedValue(value);
 
             if (HasTypeConverter(value))
             {
@@ -174,6 +175,8 @@ private object ConvertType(object value)
 
         private object? SetViaIndexer(object index, object value)
         {
+            AllowList.AssertAllowedValue(value);
+
             switch (index)
             {
                 case string propertyName:
@@ -342,7 +345,7 @@ public override int GetHashCode()
         [DebuggerBrowsable(DebuggerBrowsableState.Never)]
         private string DebuggerDisplay => _element.DebuggerDisplay;
 
-        private class JsonConverter : JsonConverter<DynamicData>
+        private class DynamicDataJsonConverter : JsonConverter<DynamicData>
         {
             public override DynamicData Read(ref Utf8JsonReader reader, Type typeToConvert, JsonSerializerOptions options)
             {

sdk/core/Azure.Core/src/DynamicData/DynamicDataOptions.cs

@@ -1,7 +1,6 @@
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
-using System.Collections.Generic;
 using System.Linq;
 using System.Text.Json;
 using System.Text.Json.Serialization;

sdk/core/Azure.Core/src/DynamicData/MutableJsonChange.cs

@@ -1,22 +1,39 @@
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
+using System;
 using System.Text.Json;
 
 namespace Azure.Core.Json
 {
     internal struct MutableJsonChange
     {
-        private readonly JsonSerializerOptions _serializerOptions;
         private JsonElement? _serializedValue;
+        private readonly JsonSerializerOptions _serializerOptions;
 
-        public MutableJsonChange(string path, int index, object? value, bool replacesJsonElement, JsonSerializerOptions options)
+        public MutableJsonChange(string path,
+            int index,
+            object? value,
+            JsonSerializerOptions options,
+            MutableJsonChangeKind changeKind,
+            string? addedPropertyName)
         {
             Path = path;
             Index = index;
             Value = value;
-            ReplacesJsonElement = replacesJsonElement;
             _serializerOptions = options;
+            ChangeKind = changeKind;
+            AddedPropertyName = addedPropertyName;
+
+            if (value is JsonElement element)
+            {
+                _serializedValue = element;
+            }
+
+            if (value is JsonDocument doc)
+            {
+                _serializedValue = doc.RootElement;
+            }
         }
 
         public string Path { get; }
@@ -25,39 +42,57 @@ public MutableJsonChange(string path, int index, object? value, bool replacesJso
 
         public object? Value { get; }
 
-        /// <summary>
-        /// The change invalidates the existing node's JsonElement
-        /// due to changes in JsonValueKind or path structure.
-        /// If this is true, Value holds a new JsonElement.
-        /// </summary>
-        public bool ReplacesJsonElement { get; }
+        public string? AddedPropertyName { get; }
+
+        public MutableJsonChangeKind ChangeKind { get; }
+
+        public JsonValueKind ValueKind => GetSerializedValue().ValueKind;
 
-        internal JsonElement AsJsonElement()
+        internal JsonElement GetSerializedValue()
         {
             if (_serializedValue != null)
             {
                 return _serializedValue.Value;
             }
 
-            if (Value is JsonElement element)
-            {
-                _serializedValue = element;
-                return element;
-            }
-
             byte[] bytes = JsonSerializer.SerializeToUtf8Bytes(Value, _serializerOptions);
             _serializedValue = JsonDocument.Parse(bytes).RootElement;
             return _serializedValue.Value;
         }
 
+        internal bool IsDescendant(string path)
+        {
+            if (path.Length > 0)
+            {
+                // Restrict matches (e.g. so we don't think 'a' is a parent of 'abc').
+                path += MutableJsonDocument.ChangeTracker.Delimiter;
+            }
+
+            return Path.StartsWith(path, StringComparison.Ordinal);
+        }
+
+        internal bool IsDirectDescendant(string path)
+        {
+            if (!IsDescendant(path))
+            {
+                return false;
+            }
+
+            string[] ancestorPath = path.Split(MutableJsonDocument.ChangeTracker.Delimiter);
+            int ancestorPathLength = string.IsNullOrEmpty(ancestorPath[0]) ? 0 : ancestorPath.Length;
+            int descendantPathLength = Path.Split(MutableJsonDocument.ChangeTracker.Delimiter).Length;
+
+            return ancestorPathLength == (descendantPathLength - 1);
+        }
+
         internal string AsString()
         {
-            return AsJsonElement().ToString() ?? "null";
+            return GetSerializedValue().ToString() ?? "null";
         }
 
         public override string ToString()
         {
-            return $"Path={Path}; Value={Value}; ReplacesJsonElement={ReplacesJsonElement}";
+            return $"Path={Path}; Value={Value}; Kind={ValueKind}; ChangeKind={ChangeKind}";
         }
     }
 }

sdk/core/Azure.Core/src/DynamicData/MutableJsonChangeKind.cs

@@ -0,0 +1,12 @@
+// Copyright (c) Microsoft Corporation. All rights reserved.
+// Licensed under the MIT License.
+
+namespace Azure.Core.Json
+{
+    internal enum MutableJsonChangeKind
+    {
+        PropertyValue,
+        PropertyAddition,
+        PropertyRemoval,
+    }
+}