dotnet
diff --git a/‎src/Microsoft.DotNet.Wpf/src/PresentationCore/MS/internal/CoreAppContextSwitches.cs
Lines changed: 0 additions & 19 deletions b/‎src/Microsoft.DotNet.Wpf/src/PresentationCore/MS/internal/CoreAppContextSwitches.cs
Lines changed: 0 additions & 19 deletions
diff --git a/‎src/Microsoft.DotNet.Wpf/src/PresentationCore/System/AppContextDefaultValues.cs
Lines changed: 0 additions & 1 deletion b/‎src/Microsoft.DotNet.Wpf/src/PresentationCore/System/AppContextDefaultValues.cs
Lines changed: 0 additions & 1 deletion
diff --git a/‎src/Microsoft.DotNet.Wpf/src/PresentationCore/System/Windows/clipboard.cs
Lines changed: 0 additions & 11 deletions b/‎src/Microsoft.DotNet.Wpf/src/PresentationCore/System/Windows/clipboard.cs
Lines changed: 0 additions & 11 deletions
diff --git a/‎src/Microsoft.DotNet.Wpf/src/PresentationCore/System/Windows/dataobject.cs
Lines changed: 22 additions & 10 deletions b/‎src/Microsoft.DotNet.Wpf/src/PresentationCore/System/Windows/dataobject.cs
Lines changed: 22 additions & 10 deletions
diff --git a/‎src/Microsoft.DotNet.Wpf/src/PresentationFramework/MS/Internal/Ink/XamlClipboardData.cs
Lines changed: 1 addition & 2 deletions b/‎src/Microsoft.DotNet.Wpf/src/PresentationFramework/MS/Internal/Ink/XamlClipboardData.cs
Lines changed: 1 addition & 2 deletions
diff --git a/‎src/Microsoft.DotNet.Wpf/src/PresentationFramework/System/Windows/Documents/TextEditorCopyPaste.cs
Lines changed: 1 addition & 2 deletions b/‎src/Microsoft.DotNet.Wpf/src/PresentationFramework/System/Windows/Documents/TextEditorCopyPaste.cs
Lines changed: 1 addition & 2 deletions
diff --git a/‎src/Microsoft.DotNet.Wpf/src/PresentationFramework/System/Windows/Documents/WpfPayload.cs
Lines changed: 1 addition & 2 deletions b/‎src/Microsoft.DotNet.Wpf/src/PresentationFramework/System/Windows/Documents/WpfPayload.cs
Lines changed: 1 addition & 2 deletions
@@ -337,25 +337,6 @@ public static bool AllowExternalProcessToBlockAccessToTemporaryFiles
 
         #endregion
 
-        #region EnableLegacyDangerousClipboardDeserializationMode
-
-        internal const string EnableLegacyDangerousClipboardDeserializationModeSwitchName = "Switch.System.Windows.EnableLegacyDangerousClipboardDeserializationMode";
-        private static int _enableLegacyDangerousClipboardDeserializationMode;
-        public static bool EnableLegacyDangerousClipboardDeserializationMode
-        {
-            [MethodImpl(MethodImplOptions.AggressiveInlining)]
-            get
-            {
-                /// <summary>
-                /// Malicious managed objects could be placed in the clipboard lying about its format, 
-                /// to fix this OleConverter now restricts object deserialization in some cases.
-                /// When this switch is enabled behavior falls back to deserializing without restriction.
-                /// </summary>
-                return LocalAppContext.GetCachedSwitchValue(EnableLegacyDangerousClipboardDeserializationModeSwitchName, ref _enableLegacyDangerousClipboardDeserializationMode);
-            }
-        }
-
-        #endregion
     }
 #pragma warning restore 436
 }
@@ -60,7 +60,6 @@ private static void InitializeNetFxSwitchDefaultsForNetCoreRuntime()
             LocalAppContext.DefineSwitchDefault(CoreAppContextSwitches.ShouldNotRenderInNonInteractiveWindowStationSwitchName, false);
             LocalAppContext.DefineSwitchDefault(CoreAppContextSwitches.DoNotUsePresentationDpiCapabilityTier3OrGreaterSwitchName, false);
             LocalAppContext.DefineSwitchDefault(CoreAppContextSwitches.AllowExternalProcessToBlockAccessToTemporaryFilesSwitchName, false);
-            LocalAppContext.DefineSwitchDefault(CoreAppContextSwitches.EnableLegacyDangerousClipboardDeserializationModeSwitchName, false);
         }
     }
 #pragma warning restore 436
 
@@ -490,17 +490,6 @@ public static void SetDataObject(object data, bool copy)
         //
         //------------------------------------------------------
 
-        /// <summary>
-        /// Determines whether the legacy dangerous clipboard deserialization mode should be used based on the AppContext switch and Device Guard policies.
-        /// </summary>
-        /// <returns>
-        /// If Device Guard is enabled this method returns false, otherwise it returns the AppContext switch value.
-        /// </returns>
-        internal static bool UseLegacyDangerousClipboardDeserializationMode()
-        {
-            return !IsDeviceGuardEnabled && CoreAppContextSwitches.EnableLegacyDangerousClipboardDeserializationMode;
-        }
-
         /// <summary>
         /// Places data on the system Clipboard and uses copy to specify whether the data 
         /// should remain on the Clipboard after the application exits.
 
@@ -2863,13 +2863,29 @@ private object GetDataFromHGLOBAL(string format, IntPtr hglobal)
                     {
                         data = ReadBitmapSourceFromHandle(hglobal);
                     }
-                    //  Restrict deserialization to only primitives 
-                    // and strings here to prevent potentially malicious objects from
+                    // Limit deserialization to only primitive types, which consist of the following:
+                    //
+                    // DataFormats.CommaSeparatedValue
+                    // DataFormats.FileDrop
+                    // DataFormats.Html
+                    // DataFormats.OemText
+                    // DataFormats.PenData
+                    // DataFormats.Rtf
+                    // DataFormats.Serializable
+                    // DataFormats.Text
+                    // DataFormats.UnicodeText
+                    // DataFormats.WaveAudio
+                    // DataFormats.Xaml
+                    // DataFormats.XamlPackage 
+                    // DataFormats.StringFormat
+                    // 
+                    // Out of these primitive types, we will disallow deserialization of 
+                    // DataFormats.StringFormat to prevent potentially malicious objects from
                     // being deserialized as part of a "text" copy-paste or drag-drop.
+                    // 
                     // The rest of the following formats are pre-defined in the OS, 
-                    // they are not managed objects so we shouldn't try to deserialize them as such,
-                    // allow primitives in a best effort for compat, but restrict other types.
-                    else if (!Clipboard.UseLegacyDangerousClipboardDeserializationMode())
+                    // they are not managed objects - an so we will not attempt to deserialize them. 
+                    else
                     {
                         bool restrictDeserialization =
                           (IsFormatEqual(format, DataFormats.StringFormat) ||
@@ -2888,11 +2904,7 @@ private object GetDataFromHGLOBAL(string format, IntPtr hglobal)
 
                         data = ReadObjectFromHandle(hglobal, restrictDeserialization);
                     }
-                    else
-                    {
-                        data = ReadObjectFromHandle(hglobal, restrictDeserialization: false);
-                    }
-}
+                }
 
                 return data;
             }
 
@@ -100,8 +100,7 @@ protected override void DoPaste(IDataObject dataObject)
 
             if<
F438
/span> ( !String.IsNullOrEmpty(xml) )
             {
-                bool useRestrictiveXamlReader = !Clipboard.UseLegacyDangerousClipboardDeserializationMode();
-                UIElement element = XamlReader.Load(new System.Xml.XmlTextReader(new System.IO.StringReader(xml)), useRestrictiveXamlReader) as UIElement;
+                UIElement element = XamlReader.Load(new System.Xml.XmlTextReader(new System.IO.StringReader(xml)), useRestrictiveXamlReader: true) as UIElement;
                 if (element != null)
                 {
                     ElementList.Add(element);
 
@@ -923,8 +923,7 @@ private static bool PasteXaml(TextEditor This, string pasteXaml)
                 try
                 {
                     // Parse the fragment into a separate subtree
-                    bool useRestrictiveXamlReader = !Clipboard.UseLegacyDangerousClipboardDeserializationMode();
-                    object xamlObject = XamlReader.Load(new XmlTextReader(new System.IO.StringReader(pasteXaml)), useRestrictiveXamlReader);
+                    object xamlObject = XamlReader.Load(new XmlTextReader(new System.IO.StringReader(pasteXaml)), useRestrictiveXamlReader: true);
                     TextElement flowContent = xamlObject as TextElement;
 
                     success = flowContent == null ? false : PasteTextElement(This, flowContent);
 
@@ -343,8 +343,7 @@ internal static object LoadElement(Stream stream)
                     parserContext.BaseUri = entryPartUri;
 
                     // Call xaml parser
-                    bool useRestrictiveXamlReader = !Clipboard.UseLegacyDangerousClipboardDeserializationMode();
-                    xamlObject = XamlReader.Load(xamlEntryPart.GetStream(), parserContext, useRestrictiveXamlReader);
+                    xamlObject = XamlReader.Load(xamlEntryPart.GetStream(), parserContext, useRestrictiveXamlReader: true);
 
                     // Remove the temporary uri from the PackageStore
                     PackageStore.RemovePackage(packageUri);
Original file line number	Diff line number	Diff line change
`@@ -60,7 +60,6 @@ private static void InitializeNetFxSwitchDefaultsForNetCoreRuntime()`
`60`	`60`	`LocalAppContext.DefineSwitchDefault(CoreAppContextSwitches.ShouldNotRenderInNonInteractiveWindowStationSwitchName, false);`
`61`	`61`	`LocalAppContext.DefineSwitchDefault(CoreAppContextSwitches.DoNotUsePresentationDpiCapabilityTier3OrGreaterSwitchName, false);`
`62`	`62`	`LocalAppContext.DefineSwitchDefault(CoreAppContextSwitches.AllowExternalProcessToBlockAccessToTemporaryFilesSwitchName, false);`
`63`		`- LocalAppContext.DefineSwitchDefault(CoreAppContextSwitches.EnableLegacyDangerousClipboardDeserializationModeSwitchName, false);`
`64`	`63`	`}`
`65`	`64`	`}`
`66`	`65`	`#pragma warning restore 436`
Original file line number	Diff line number	Diff line change
`@@ -100,8 +100,7 @@ protected override void DoPaste(IDataObject dataObject)`
`100`	`100`
`101`	`101`	`if< F438 /span> ( !String.IsNullOrEmpty(xml) )`
`102`	`102`	`{`
`103`		`- bool useRestrictiveXamlReader = !Clipboard.UseLegacyDangerousClipboardDeserializationMode();`
`104`		`- UIElement element = XamlReader.Load(new System.Xml.XmlTextReader(new System.IO.StringReader(xml)), useRestrictiveXamlReader) as UIElement;`
	`103`	`+ UIElement element = XamlReader.Load(new System.Xml.XmlTextReader(new System.IO.StringReader(xml)), useRestrictiveXamlReader: true) as UIElement;`
`105`	`104`	`if (element != null)`
`106`	`105`	`{`
`107`	`106`	`ElementList.Add(element);`
Original file line number	Diff line number	Diff line change
`@@ -923,8 +923,7 @@ private static bool PasteXaml(TextEditor This, string pasteXaml)`
`923`	`923`	`try`
`924`	`924`	`{`
`925`	`925`	`// Parse the fragment into a separate subtree`
`926`		`- bool useRestrictiveXamlReader = !Clipboard.UseLegacyDangerousClipboardDeserializationMode();`
`927`		`- object xamlObject = XamlReader.Load(new XmlTextReader(new System.IO.StringReader(pasteXaml)), useRestrictiveXamlReader);`
	`926`	`+ object xamlObject = XamlReader.Load(new XmlTextReader(new System.IO.StringReader(pasteXaml)), useRestrictiveXamlReader: true);`
`928`	`927`	`TextElement flowContent = xamlObject as TextElement;`
`929`	`928`
`930`	`929`	`success = flowContent == null ? false : PasteTextElement(This, flowContent);`