Code:
/ FXUpdate3074 / FXUpdate3074 / 1.1 / untmp / whidbey / QFE / ndp / clr / src / BCL / System / Security / SecurityRuntime.cs / 2 / SecurityRuntime.cs
// ==++==
//
// Copyright (c) Microsoft Corporation. All rights reserved.
//
// ==--==
namespace System.Security {
using System;
using System.Globalization;
using System.Threading;
using System.Reflection;
using System.Collections;
using System.Runtime.CompilerServices;
using System.Security.Permissions;
internal class SecurityRuntime
{
private SecurityRuntime(){}
// Returns the security object for the caller of the method containing
// 'stackMark' on its frame.
//
// THE RETURNED OBJECT IS THE LIVE RUNTIME OBJECT. BE CAREFUL WITH IT!
//
// Internal only, do not doc.
//
[MethodImplAttribute(MethodImplOptions.InternalCall)]
internal static extern
FrameSecurityDescriptor GetSecurityObjectForFrame(ref StackCrawlMark stackMark,
bool create);
// Constants used to return status to native
internal const bool StackContinue = true;
internal const bool StackHalt = false;
// Returns the number of negative overrides(deny/permitonly) in this secDesc
private static int OverridesHelper(FrameSecurityDescriptor secDesc)
{
//
int count = OverridesHelper2(secDesc, false);
// add declarative
count += OverridesHelper2(secDesc, true);
return count;
}
private static int OverridesHelper2(FrameSecurityDescriptor secDesc, bool fDeclarative)
{
PermissionSet permSet;
int count = 0;
permSet = secDesc.GetPermitOnly(fDeclarative);
if (permSet != null)
count++;
permSet = secDesc.GetDenials(fDeclarative);
if (permSet != null)
count++;
return count;
}
// this method is a big perf hit, so don't call unnecessarily
internal static MethodInfo GetMethodInfo(RuntimeMethodHandle rmh)
{
if(rmh.IsNullHandle())
return null;
#if _DEBUG
try
{
#endif
// Assert here because reflection will
PermissionSet.s_fullTrust.Assert();
RuntimeTypeHandle rth = rmh.GetDeclaringType();
return(System.RuntimeType.GetMethodBase(rth, rmh) as MethodInfo);
#if _DEBUG
}
catch(Exception)
{
return null;
}
#endif
}
private static bool FrameDescSetHelper(FrameSecurityDescriptor secDesc,
PermissionSet demandSet,
out PermissionSet alteredDemandSet,
RuntimeMethodHandle rmh)
{
return secDesc.CheckSetDemand(demandSet, out alteredDemandSet, rmh);
}
private static bool FrameDescHelper(FrameSecurityDescriptor secDesc,
IPermission demandIn,
PermissionToken permToken,
RuntimeMethodHandle rmh)
{
return secDesc.CheckDemand((CodeAccessPermission) demandIn, permToken, rmh);
}
//
// API for PermissionSets
//
internal static void Assert(PermissionSet permSet, ref StackCrawlMark stackMark)
{
// Note: if the "AssertPermission" is not a permission that implements IUnrestrictedPermission
// you need to change the fourth parameter to a zero.
FrameSecurityDescriptor secObj = CodeAccessSecurityEngine.CheckNReturnSO(
CodeAccessSecurityEngine.AssertPermissionToken,
CodeAccessSecurityEngine.AssertPermission,
ref stackMark,
1,
1 );
BCLDebug.Assert(secObj != null || !SecurityManager._IsSecurityOn(),"Failure in SecurityRuntime.Assert() - secObj != null");
if (secObj == null)
{
if (SecurityManager._IsSecurityOn())
// Security: REQ_SQ flag is missing. Bad compiler ?
throw new ExecutionEngineException( Environment.GetResourceString( "ExecutionEngine_MissingSecurityDescriptor" ) );
}
else
{
if (secObj.HasImperativeAsserts())
throw new SecurityException( Environment.GetResourceString( "Security_MustRevertOverride" ) );
secObj.SetAssert(permSet);
}
}
internal static void AssertAllPossible(ref StackCrawlMark stackMark)
{
FrameSecurityDescriptor secObj =
SecurityRuntime.GetSecurityObjectForFrame(ref stackMark, true);
BCLDebug.Assert(secObj != null || !SecurityManager._IsSecurityOn(),"Failure in SecurityRuntime.AssertAllPossible() - secObj != null");
if (secObj == null)
{
if (SecurityManager._IsSecurityOn())
// Security: REQ_SQ flag is missing. Bad compiler ?
throw new ExecutionEngineException( Environment.GetResourceString( "ExecutionEngine_MissingSecurityDescriptor" ) );
}
else
{
if (secObj.GetAssertAllPossible())
throw new SecurityException( Environment.GetResourceString( "Security_MustRevertOverride" ) );
secObj.SetAssertAllPossible();
}
}
internal static void Deny(PermissionSet permSet, ref StackCrawlMark stackMark)
{
FrameSecurityDescriptor secObj =
SecurityRuntime.GetSecurityObjectForFrame(ref stackMark, true);
BCLDebug.Assert(secObj != null || !SecurityManager._IsSecurityOn(),"Failure in SecurityRuntime.Deny() - secObj != null");
if (secObj == null)
{
if (SecurityManager._IsSecurityOn())
// Security: REQ_SQ flag is missing. Bad compiler ?
throw new ExecutionEngineException( Environment.GetResourceString( "ExecutionEngine_MissingSecurityDescriptor" ) );
}
else
{
if (secObj.HasImperativeDenials())
throw new SecurityException( Environment.GetResourceString( "Security_MustRevertOverride" ) );
secObj.SetDeny(permSet);
}
}
internal static void PermitOnly(PermissionSet permSet, ref StackCrawlMark stackMark)
{
FrameSecurityDescriptor secObj =
SecurityRuntime.GetSecurityObjectForFrame(ref stackMark, true);
BCLDebug.Assert(secObj != null || !SecurityManager._IsSecurityOn(),"Failure in SecurityRuntime.PermitOnly() - secObj != null");
if (secObj == null)
{
if (SecurityManager._IsSecurityOn())
// Security: REQ_SQ flag is missing. Bad compiler ?
throw new ExecutionEngineException( Environment.GetResourceString( "ExecutionEngine_MissingSecurityDescriptor" ) );
}
else
{
if (secObj.HasImperativeRestrictions())
throw new SecurityException( Environment.GetResourceString( "Security_MustRevertOverride" ) );
secObj.SetPermitOnly(permSet);
}
}
//
// Revert API
//
internal static void RevertAssert(ref StackCrawlMark stackMark)
{
FrameSecurityDescriptor secObj = GetSecurityObjectForFrame(ref stackMark, false);
if (secObj != null)
{
secObj.RevertAssert();
}
else if (SecurityManager._IsSecurityOn())
throw new ExecutionEngineException( Environment.GetResourceString( "ExecutionEngine_MissingSecurityDescriptor" ) );
}
internal static void RevertDeny(ref StackCrawlMark stackMark)
{
FrameSecurityDescriptor secObj = GetSecurityObjectForFrame(ref stackMark, false);
if (secObj != null)
{
secObj.RevertDeny();
}
else if (SecurityManager._IsSecurityOn())
throw new ExecutionEngineException( Environment.GetResourceString( "ExecutionEngine_MissingSecurityDescriptor" ) );
}
internal static void RevertPermitOnly(ref StackCrawlMark stackMark)
{
FrameSecurityDescriptor secObj = GetSecurityObjectForFrame(ref stackMark, false);
if (secObj != null)
{
secObj.RevertPermitOnly();
}
else if (SecurityManager._IsSecurityOn())
throw new ExecutionEngineException( Environment.GetResourceString( "ExecutionEngine_MissingSecurityDescriptor" ) );
}
internal static void RevertAll(ref StackCrawlMark stackMark)
{
FrameSecurityDescriptor secObj = GetSecurityObjectForFrame(ref stackMark, false);
if (secObj != null)
{
secObj.RevertAll();
}
else if (SecurityManager._IsSecurityOn())
throw new ExecutionEngineException( Environment.GetResourceString( "ExecutionEngine_MissingSecurityDescriptor" ) );
}
}
}
// File provided for Reference Use Only by Microsoft Corporation (c) 2007.
// Copyright (c) Microsoft Corporation. All rights reserved.
Link Menu
This book is available now!
Buy at Amazon US or
Buy at Amazon UK
- HMACSHA512.cs
- Window.cs
- EnvelopedPkcs7.cs
- ObjectStateEntryDbUpdatableDataRecord.cs
- CompiledIdentityConstraint.cs
- ProcessModule.cs
- BitmapCacheBrush.cs
- DataGridViewCellStateChangedEventArgs.cs
- InputGestureCollection.cs
- PathFigureCollectionConverter.cs
- PointConverter.cs
- AttachedPropertyMethodSelector.cs
- DataGridViewMethods.cs
- ping.cs
- ProfileService.cs
- WorkerRequest.cs
- BindingList.cs
- SecurityException.cs
- PointKeyFrameCollection.cs
- ReturnValue.cs
- XDRSchema.cs
- DataServiceHostWrapper.cs
- VisualTarget.cs
- BevelBitmapEffect.cs
- ReplacementText.cs
- Win32KeyboardDevice.cs
- Relationship.cs
- UnsafeNativeMethods.cs
- ContentWrapperAttribute.cs
- TypeGeneratedEventArgs.cs
- EmitterCache.cs
- LayoutEngine.cs
- NavigationProgressEventArgs.cs
- COM2ColorConverter.cs
- CompModSwitches.cs
- SpecialFolderEnumConverter.cs
- ScopelessEnumAttribute.cs
- SmtpDateTime.cs
- FixUpCollection.cs
- updateconfighost.cs
- FrameworkElementFactoryMarkupObject.cs
- Attributes.cs
- DataGridParentRows.cs
- EntityType.cs
- MobileResource.cs
- xsdvalidator.cs
- InternalRelationshipCollection.cs
- PhonemeConverter.cs
- AutomationElementIdentifiers.cs
- ObjectQueryExecutionPlan.cs
- _Semaphore.cs
- DeclarativeConditionsCollection.cs
- BuildProviderAppliesToAttribute.cs
- VideoDrawing.cs
- MouseEvent.cs
- EntityDataSourceSelectedEventArgs.cs
- XPathNavigatorKeyComparer.cs
- DuplicateDetector.cs
- TrackingMemoryStreamFactory.cs
- DesignerDataTableBase.cs
- MobileSysDescriptionAttribute.cs
- SoapHeaderAttribute.cs
- FormsAuthenticationModule.cs
- AsyncCompletedEventArgs.cs
- DockPattern.cs
- CallbackException.cs
- CngAlgorithm.cs
- LinkButton.cs
- ListViewGroupConverter.cs
- LoginView.cs
- RetrieveVirtualItemEventArgs.cs
- Parsers.cs
- CipherData.cs
- MultilineStringConverter.cs
- CollectionChangeEventArgs.cs
- IChannel.cs
- PageVisual.cs
- Rect3D.cs
- SHA1.cs
- MessageFilterTable.cs
- HttpContext.cs
- ForeignConstraint.cs
- TemplateEditingVerb.cs
- CategoryNameCollection.cs
- PseudoWebRequest.cs
- FolderNameEditor.cs
- CacheOutputQuery.cs
- PropertyOverridesTypeEditor.cs
- SafeFileMappingHandle.cs
- SessionState.cs
- DifferencingCollection.cs
- RectIndependentAnimationStorage.cs
- MergablePropertyAttribute.cs
- GridViewUpdateEventArgs.cs
- ListControlDesigner.cs
- XmlUtil.cs
- EncryptedType.cs
- SupportingTokenSpecification.cs
- WindowsFormsDesignerOptionService.cs
- WhiteSpaceTrimStringConverter.cs