Code:
/ 4.0 / 4.0 / untmp / DEVDIV_TFS / Dev10 / Releases / RTMRel / ndp / cdf / src / System.Runtime.DurableInstancing / System / Runtime / Diagnostics / EventLogger.cs / 1305376 / EventLogger.cs
//------------------------------------------------------------ // Copyright (c) Microsoft Corporation. All rights reserved. //----------------------------------------------------------- namespace System.Runtime.Diagnostics { using System.Collections.Generic; using System.Diagnostics; using System.Globalization; using System.Runtime.Interop; using System.Runtime.CompilerServices; using System.Runtime.InteropServices; using System.Runtime.Versioning; using System.Security; using System.Security.Permissions; using System.Security.Principal; using System.Text; using System.Diagnostics.CodeAnalysis; sealed class EventLogger { [Fx.Tag.SecurityNote(Miscellaneous = "RequiresReview - In PT log no more than 5 events.")] const int MaxEventLogsInPT = 5; [SecurityCritical] static int logCountForPT; static bool canLogEvent = true; DiagnosticTrace diagnosticTrace; [Fx.Tag.SecurityNote(Critical = "Protect the string that defines the event source name.", Safe = "It demands UnmanagedCode=true so PT cannot call.")] [SecurityCritical] string eventLogSourceName; bool isInPartialTrust; EventLogger() { this.isInPartialTrust = IsInPartialTrust(); } [Obsolete("For System.Runtime.dll use only. Call FxTrace.EventLog instead")] public EventLogger(string eventLogSourceName, DiagnosticTrace diagnosticTrace) { try { this.diagnosticTrace = diagnosticTrace; //set diagnostics trace prior to calling SafeSetLogSourceName if (canLogEvent) { SafeSetLogSourceName(eventLogSourceName); } } catch (SecurityException) { // running in PT, do not try to log events anymore canLogEvent = false; // not throwing exception on purpose } } [Fx.Tag.SecurityNote(Critical = "Unsafe method to create event logger (sets the event source name).")] [SecurityCritical] public static EventLogger UnsafeCreateEventLogger(string eventLogSourceName, DiagnosticTrace diagnosticTrace) { EventLogger logger = new EventLogger(); logger.SetLogSourceName(eventLogSourceName, diagnosticTrace); return logger; } [Fx.Tag.SecurityNote(Critical = "Logs event to the event log and asserts Unmanaged code.")] [SecurityCritical] public void UnsafeLogEvent(TraceEventType type, ushort eventLogCategory, uint eventId, bool shouldTrace, params string[] values) { if (logCountForPT < MaxEventLogsInPT) { try { // Vista introduces a new limitation: a much smaller max // event log entry size that we need to track. All strings cannot // exceed 31839 characters in length when totalled together. // Choose a max length of 25600 characters (25k) to allow for // buffer since this max length may be reduced without warning. const int MaxEventLogEntryLength = 25600; int eventLogEntryLength = 0; string[] logValues = new string[values.Length + 2]; for (int i = 0; i < values.Length; ++i) { string stringValue = values[i]; if (!string.IsNullOrEmpty(stringValue)) { stringValue = NormalizeEventLogParameter(stringValue); } else { stringValue = String.Empty; } logValues[i] = stringValue; eventLogEntryLength += stringValue.Length + 1; } string normalizedProcessName = NormalizeEventLogParameter(UnsafeGetProcessName()); logValues[logValues.Length - 2] = normalizedProcessName; eventLogEntryLength += (normalizedProcessName.Length + 1); string invariantProcessId = UnsafeGetProcessId().ToString(CultureInfo.InvariantCulture); logValues[logValues.Length - 1] = invariantProcessId; eventLogEntryLength += (invariantProcessId.Length + 1); // If current event log entry length is greater than max length // need to truncate to max length. This probably means that we // have a very long exception and stack trace in our parameter // strings. Truncate each string by MaxEventLogEntryLength // divided by number of strings in the entry. // Truncation algorithm is overly aggressive by design to // simplify the code change due to Product Cycle timing. if (eventLogEntryLength > MaxEventLogEntryLength) { // logValues.Length is always > 0 (minimum value = 2) // Subtract one to insure string ends in '\0' int truncationLength = (MaxEventLogEntryLength / logValues.Length) - 1; for (int i = 0; i < logValues.Length; i++) { if (logValues[i].Length > truncationLength) { logValues[i] = logValues[i].Substring(0, truncationLength); } } } SecurityIdentifier sid = WindowsIdentity.GetCurrent().User; byte[] sidBA = new byte[sid.BinaryLength]; sid.GetBinaryForm(sidBA, 0); IntPtr[] stringRoots = new IntPtr[logValues.Length]; GCHandle stringsRootHandle = new GCHandle(); GCHandle[] stringHandles = null; try { stringsRootHandle = GCHandle.Alloc(stringRoots, GCHandleType.Pinned); stringHandles = new GCHandle[logValues.Length]; for (int strIndex = 0; strIndex < logValues.Length; strIndex++) { stringHandles[strIndex] = GCHandle.Alloc(logValues[strIndex], GCHandleType.Pinned); stringRoots[strIndex] = stringHandles[strIndex].AddrOfPinnedObject(); } UnsafeWriteEventLog(type, eventLogCategory, eventId, logValues, sidBA, stringsRootHandle); } finally { if (stringsRootHandle.AddrOfPinnedObject() != IntPtr.Zero) { stringsRootHandle.Free(); } if (stringHandles != null) { foreach (GCHandle gcHandle in stringHandles) { if (gcHandle != null) { gcHandle.Free(); } } } } if (shouldTrace && this.diagnosticTrace != null && (TraceCore.TraceCodeEventLogCriticalIsEnabled(this.diagnosticTrace) || TraceCore.TraceCodeEventLogVerboseIsEnabled(this.diagnosticTrace) || TraceCore.TraceCodeEventLogInfoIsEnabled(this.diagnosticTrace) || TraceCore.TraceCodeEventLogWarningIsEnabled(this.diagnosticTrace) || TraceCore.TraceCodeEventLogErrorIsEnabled(this.diagnosticTrace))) { const int RequiredValueCount = 4; DictionaryeventValues = new Dictionary (logValues.Length + RequiredValueCount); eventValues["CategoryID.Name"] = "EventLogCategory"; eventValues["CategoryID.Value"] = eventLogCategory.ToString(CultureInfo.InvariantCulture); eventValues["InstanceID.Name"] = "EventId"; eventValues["InstanceID.Value"] = eventId.ToString(CultureInfo.InvariantCulture); for (int i = 0; i < values.Length; ++i) { eventValues.Add("Value" + i.ToString(CultureInfo.InvariantCulture), values[i] == null ? string.Empty : DiagnosticTrace.XmlEncode(values[i])); } TraceRecord traceRecord = new DictionaryTraceRecord((eventValues)); switch(type) { case TraceEventType.Critical: TraceCore.TraceCodeEventLogCritical(this.diagnosticTrace, traceRecord); break; case TraceEventType.Verbose: TraceCore.TraceCodeEventLogVerbose(this.diagnosticTrace, traceRecord); break; case TraceEventType.Information: TraceCore.TraceCodeEventLogInfo(this.diagnosticTrace, traceRecord); break; case TraceEventType.Warning: TraceCore.TraceCodeEventLogWarning(this.diagnosticTrace, traceRecord); break; case TraceEventType.Error: TraceCore.TraceCodeEventLogError(this.diagnosticTrace, traceRecord); break; } } } catch (Exception e) { if (Fx.IsFatal(e)) { throw; } // If not fatal, just eat the exception } // In PT, we only limit 5 event logging per session if (this.isInPartialTrust) { logCountForPT++; } } } public void LogEvent(TraceEventType type, ushort eventLogCategory, uint eventId, bool shouldTrace, params string[] values) { if (canLogEvent) { try { SafeLogEvent(type, eventLogCategory, eventId, shouldTrace, values); } catch (SecurityException ex) { // running in PT, do not try to log events anymore canLogEvent = false; // not throwing exception on purpose if (shouldTrace && this.diagnosticTrace != null && TraceCore.HandledExceptionIsEnabled(this.diagnosticTrace)) { TraceCore.HandledException(this.diagnosticTrace, ex); } } } } public void LogEvent(TraceEventType type, ushort eventLogCategory, uint eventId, params string[] values) { this.LogEvent(type, eventLogCategory, eventId, true, values); } // Converts incompatible serverity enumeration TraceEventType into EventLogEntryType static EventLogEntryType EventLogEntryTypeFromEventType(TraceEventType type) { EventLogEntryType retval = EventLogEntryType.Information; switch (type) { case TraceEventType.Critical: case TraceEventType.Error: retval = EventLogEntryType.Error; break; case TraceEventType.Warning: retval = EventLogEntryType.Warning; break; } return retval; } [Fx.Tag.SecurityNote(Critical = "Logs event to the event log by calling unsafe method.", Safe = "Demands the same permission that is asserted by the unsafe method.")] [SecuritySafeCritical] [SecurityPermission(SecurityAction.Demand, UnmanagedCode = true)] void SafeLogEvent(TraceEventType type, ushort eventLogCategory, uint eventId, bool shouldTrace, params string[] values) { UnsafeLogEvent(type, eventLogCategory, eventId, shouldTrace, values); } [Fx.Tag.SecurityNote(Critical = "Protect the string that defines the event source name.", Safe = "It demands UnmanagedCode=true so PT cannot call.")] [SecuritySafeCritical] [SecurityPermission(SecurityAction.Demand, UnmanagedCode = true)] void SafeSetLogSourceName(string eventLogSourceName) { this.eventLogSourceName = eventLogSourceName; } [Fx.Tag.SecurityNote(Critical = "Sets event source name.")] [SecurityCritical] void SetLogSourceName(string eventLogSourceName, DiagnosticTrace diagnosticTrace) { this.eventLogSourceName = eventLogSourceName; this.diagnosticTrace = diagnosticTrace; } [Fx.Tag.SecurityNote(Critical = "Satisfies a LinkDemand for 'PermissionSetAttribute' on type 'Process' when calling method GetCurrentProcess", Safe="Does not leak any resource")] [SecuritySafeCritical] [SuppressMessage(FxCop.Category.Security, FxCop.Rule.DoNotIndirectlyExposeMethodsWithLinkDemands, Justification = "SecuritySafeCritical method, Does not expose critical resources returned by methods with Link Demands")] bool IsInPartialTrust() { bool retval = false; try { using (Process process = Process.GetCurrentProcess()) { retval = string.IsNullOrEmpty(process.ProcessName); } } catch (SecurityException) { // we are just testing, ignore exception retval = true; } return retval; } [SecurityCritical] [Fx.Tag.SecurityNote(Critical = "Accesses security critical code RegisterEventSource and ReportEvent")] [SecurityPermission(SecurityAction.Assert, UnmanagedCode = true)] [ResourceConsumption(ResourceScope.Machine)] [SuppressMessage(FxCop.Category.Security, FxCop.Rule.SecureAsserts)] void UnsafeWriteEventLog(TraceEventType type, ushort eventLogCategory, uint eventId, string[] logValues, byte[] sidBA, GCHandle stringsRootHandle) { using (SafeEventLogWriteHandle handle = SafeEventLogWriteHandle.RegisterEventSource(null, this.eventLogSourceName)) { if (handle != null) { HandleRef data = new HandleRef(handle, stringsRootHandle.AddrOfPinnedObject()); UnsafeNativeMethods.ReportEvent( handle, (ushort)EventLogEntryTypeFromEventType(type), eventLogCategory, eventId, sidBA, (ushort)logValues.Length, 0, data, null); } } } [Fx.Tag.SecurityNote(Critical = "Satisfies a LinkDemand for 'PermissionSetAttribute' on type 'Process' when calling method GetCurrentProcess", Safe = "Does not leak any resource")] [SecurityCritical] [SecurityPermission(SecurityAction.Assert, UnmanagedCode = true)] [MethodImpl(MethodImplOptions.NoInlining)] [SuppressMessage(FxCop.Category.Security, FxCop.Rule.SecureAsserts)] [SuppressMessage(FxCop.Category.Security, FxCop.Rule.DoNotIndirectlyExposeMethodsWithLinkDemands, Justification = "SecurityCritical method, Does not expose critical resources returned by methods with Link Demands")] string UnsafeGetProcessName() { string retval = null; using (Process process = Process.GetCurrentProcess()) { retval = process.ProcessName; } return retval; } [Fx.Tag.SecurityNote(Critical = "Satisfies a LinkDemand for 'PermissionSetAttribute' on type 'Process' when calling method GetCurrentProcess", Safe = "Does not leak any resource")] [SecurityCritical] [SecurityPermission(SecurityAction.Assert, UnmanagedCode = true)] [MethodImpl(MethodImplOptions.NoInlining)] [SuppressMessage(FxCop.Category.Security, FxCop.Rule.SecureAsserts)] [SuppressMessage(FxCop.Category.Security, FxCop.Rule.DoNotIndirectlyExposeMethodsWithLinkDemands, Justification = "SecurityCritical method, Does not expose critical resources returned by methods with Link Demands")] int UnsafeGetProcessId() { int retval = -1; using (Process process = Process.GetCurrentProcess()) { retval = process.Id; } return retval; } static string NormalizeEventLogParameter(string eventLogParameter) { if (eventLogParameter.IndexOf('%') < 0) { return eventLogParameter; } StringBuilder parameterBuilder = null; int len = eventLogParameter.Length; for (int i = 0; i < len; ++i) { char c = eventLogParameter[i]; // Not '%' if (c != '%') { if (parameterBuilder != null) parameterBuilder.Append(c); continue; } // Last char if ((i + 1) >= len) { if (parameterBuilder != null) parameterBuilder.Append(c); continue; } // Next char is not number if (eventLogParameter[i + 1] < '0' || eventLogParameter[i + 1] > '9') { if (parameterBuilder != null) parameterBuilder.Append(c); continue; } // initialize str builder if (parameterBuilder == null) { parameterBuilder = new StringBuilder(len + 2); for (int j = 0; j < i; ++j) { parameterBuilder.Append(eventLogParameter[j]); } } parameterBuilder.Append(c); parameterBuilder.Append(' '); } return parameterBuilder != null ? parameterBuilder.ToString() : eventLogParameter; } } } // File provided for Reference Use Only by Microsoft Corporation (c) 2007.
Link Menu
This book is available now!
Buy at Amazon US or
Buy at Amazon UK
- OleDbEnumerator.cs
- SettingsPropertyCollection.cs
- FormsAuthenticationUser.cs
- Message.cs
- TypeSemantics.cs
- PrintControllerWithStatusDialog.cs
- WmpBitmapDecoder.cs
- MD5.cs
- CopyOnWriteList.cs
- EntitySqlException.cs
- XmlText.cs
- WindowsListViewItemCheckBox.cs
- WebPartDisplayModeCollection.cs
- XmlDataSourceNodeDescriptor.cs
- XPathNodeHelper.cs
- PageContentCollection.cs
- ParameterCollection.cs
- EventLogPermissionEntry.cs
- SQLResource.cs
- CssStyleCollection.cs
- NamedPermissionSet.cs
- ConstraintEnumerator.cs
- ProxyAttribute.cs
- FixedDocument.cs
- WindowsRegion.cs
- CssStyleCollection.cs
- GradientBrush.cs
- CollectionViewGroup.cs
- MarkupExtensionParser.cs
- AttachedPropertyMethodSelector.cs
- ColumnTypeConverter.cs
- Crc32.cs
- DataGridViewColumnTypeEditor.cs
- MdiWindowListItemConverter.cs
- DataRelationCollection.cs
- SoapExtensionTypeElementCollection.cs
- CollectionsUtil.cs
- PersonalizationStateQuery.cs
- CompareInfo.cs
- _NTAuthentication.cs
- Transform3D.cs
- PeerContact.cs
- SafeHandle.cs
- DbException.cs
- PngBitmapDecoder.cs
- PagePropertiesChangingEventArgs.cs
- MetricEntry.cs
- QuerySafeNavigator.cs
- ScriptingRoleServiceSection.cs
- CodeIndexerExpression.cs
- PathFigureCollection.cs
- RegexRunnerFactory.cs
- ArrayMergeHelper.cs
- EntityDataSourceChangedEventArgs.cs
- SharedStatics.cs
- Knowncolors.cs
- HandleRef.cs
- DecoderFallback.cs
- EntitySqlQueryCacheEntry.cs
- GeometryModel3D.cs
- ThreadInterruptedException.cs
- DelayedRegex.cs
- CacheModeConverter.cs
- AssertHelper.cs
- DmlSqlGenerator.cs
- HtmlCommandAdapter.cs
- ItemContainerGenerator.cs
- DecoderFallbackWithFailureFlag.cs
- FormsAuthenticationUser.cs
- NamedPipeConnectionPool.cs
- HttpCacheVaryByContentEncodings.cs
- DelegateBodyWriter.cs
- SerializationBinder.cs
- SystemIPGlobalProperties.cs
- CompilationLock.cs
- FileUpload.cs
- TextDecoration.cs
- WindowsGraphics2.cs
- TemplateInstanceAttribute.cs
- DirectoryInfo.cs
- SQLGuid.cs
- EnumerableRowCollection.cs
- StickyNote.cs
- filewebrequest.cs
- PropertyNames.cs
- ChangeConflicts.cs
- Queue.cs
- TagPrefixInfo.cs
- TextClipboardData.cs
- VectorCollectionConverter.cs
- DefaultMemberAttribute.cs
- ObjectDataSourceView.cs
- FixedStringLookup.cs
- DesigntimeLicenseContext.cs
- XPathDocumentIterator.cs
- TextPointerBase.cs
- ZoneMembershipCondition.cs
- StrokeCollection2.cs
- ClientRuntimeConfig.cs
- CodeRemoveEventStatement.cs