Code:
/ FXUpdate3074 / FXUpdate3074 / 1.1 / untmp / whidbey / QFE / ndp / clr / src / BCL / System / Security / SecurityRuntime.cs / 2 / SecurityRuntime.cs
// ==++==
//
// Copyright (c) Microsoft Corporation. All rights reserved.
//
// ==--==
namespace System.Security {
using System;
using System.Globalization;
using System.Threading;
using System.Reflection;
using System.Collections;
using System.Runtime.CompilerServices;
using System.Security.Permissions;
internal class SecurityRuntime
{
private SecurityRuntime(){}
// Returns the security object for the caller of the method containing
// 'stackMark' on its frame.
//
// THE RETURNED OBJECT IS THE LIVE RUNTIME OBJECT. BE CAREFUL WITH IT!
//
// Internal only, do not doc.
//
[MethodImplAttribute(MethodImplOptions.InternalCall)]
internal static extern
FrameSecurityDescriptor GetSecurityObjectForFrame(ref StackCrawlMark stackMark,
bool create);
// Constants used to return status to native
internal const bool StackContinue = true;
internal const bool StackHalt = false;
// Returns the number of negative overrides(deny/permitonly) in this secDesc
private static int OverridesHelper(FrameSecurityDescriptor secDesc)
{
//
int count = OverridesHelper2(secDesc, false);
// add declarative
count += OverridesHelper2(secDesc, true);
return count;
}
private static int OverridesHelper2(FrameSecurityDescriptor secDesc, bool fDeclarative)
{
PermissionSet permSet;
int count = 0;
permSet = secDesc.GetPermitOnly(fDeclarative);
if (permSet != null)
count++;
permSet = secDesc.GetDenials(fDeclarative);
if (permSet != null)
count++;
return count;
}
// this method is a big perf hit, so don't call unnecessarily
internal static MethodInfo GetMethodInfo(RuntimeMethodHandle rmh)
{
if(rmh.IsNullHandle())
return null;
#if _DEBUG
try
{
#endif
// Assert here because reflection will
PermissionSet.s_fullTrust.Assert();
RuntimeTypeHandle rth = rmh.GetDeclaringType();
return(System.RuntimeType.GetMethodBase(rth, rmh) as MethodInfo);
#if _DEBUG
}
catch(Exception)
{
return null;
}
#endif
}
private static bool FrameDescSetHelper(FrameSecurityDescriptor secDesc,
PermissionSet demandSet,
out PermissionSet alteredDemandSet,
RuntimeMethodHandle rmh)
{
return secDesc.CheckSetDemand(demandSet, out alteredDemandSet, rmh);
}
private static bool FrameDescHelper(FrameSecurityDescriptor secDesc,
IPermission demandIn,
PermissionToken permToken,
RuntimeMethodHandle rmh)
{
return secDesc.CheckDemand((CodeAccessPermission) demandIn, permToken, rmh);
}
//
// API for PermissionSets
//
internal static void Assert(PermissionSet permSet, ref StackCrawlMark stackMark)
{
// Note: if the "AssertPermission" is not a permission that implements IUnrestrictedPermission
// you need to change the fourth parameter to a zero.
FrameSecurityDescriptor secObj = CodeAccessSecurityEngine.CheckNReturnSO(
CodeAccessSecurityEngine.AssertPermissionToken,
CodeAccessSecurityEngine.AssertPermission,
ref stackMark,
1,
1 );
BCLDebug.Assert(secObj != null || !SecurityManager._IsSecurityOn(),"Failure in SecurityRuntime.Assert() - secObj != null");
if (secObj == null)
{
if (SecurityManager._IsSecurityOn())
// Security: REQ_SQ flag is missing. Bad compiler ?
throw new ExecutionEngineException( Environment.GetResourceString( "ExecutionEngine_MissingSecurityDescriptor" ) );
}
else
{
if (secObj.HasImperativeAsserts())
throw new SecurityException( Environment.GetResourceString( "Security_MustRevertOverride" ) );
secObj.SetAssert(permSet);
}
}
internal static void AssertAllPossible(ref StackCrawlMark stackMark)
{
FrameSecurityDescriptor secObj =
SecurityRuntime.GetSecurityObjectForFrame(ref stackMark, true);
BCLDebug.Assert(secObj != null || !SecurityManager._IsSecurityOn(),"Failure in SecurityRuntime.AssertAllPossible() - secObj != null");
if (secObj == null)
{
if (SecurityManager._IsSecurityOn())
// Security: REQ_SQ flag is missing. Bad compiler ?
throw new ExecutionEngineException( Environment.GetResourceString( "ExecutionEngine_MissingSecurityDescriptor" ) );
}
else
{
if (secObj.GetAssertAllPossible())
throw new SecurityException( Environment.GetResourceString( "Security_MustRevertOverride" ) );
secObj.SetAssertAllPossible();
}
}
internal static void Deny(PermissionSet permSet, ref StackCrawlMark stackMark)
{
FrameSecurityDescriptor secObj =
SecurityRuntime.GetSecurityObjectForFrame(ref stackMark, true);
BCLDebug.Assert(secObj != null || !SecurityManager._IsSecurityOn(),"Failure in SecurityRuntime.Deny() - secObj != null");
if (secObj == null)
{
if (SecurityManager._IsSecurityOn())
// Security: REQ_SQ flag is missing. Bad compiler ?
throw new ExecutionEngineException( Environment.GetResourceString( "ExecutionEngine_MissingSecurityDescriptor" ) );
}
else
{
if (secObj.HasImperativeDenials())
throw new SecurityException( Environment.GetResourceString( "Security_MustRevertOverride" ) );
secObj.SetDeny(permSet);
}
}
internal static void PermitOnly(PermissionSet permSet, ref StackCrawlMark stackMark)
{
FrameSecurityDescriptor secObj =
SecurityRuntime.GetSecurityObjectForFrame(ref stackMark, true);
BCLDebug.Assert(secObj != null || !SecurityManager._IsSecurityOn(),"Failure in SecurityRuntime.PermitOnly() - secObj != null");
if (secObj == null)
{
if (SecurityManager._IsSecurityOn())
// Security: REQ_SQ flag is missing. Bad compiler ?
throw new ExecutionEngineException( Environment.GetResourceString( "ExecutionEngine_MissingSecurityDescriptor" ) );
}
else
{
if (secObj.HasImperativeRestrictions())
throw new SecurityException( Environment.GetResourceString( "Security_MustRevertOverride" ) );
secObj.SetPermitOnly(permSet);
}
}
//
// Revert API
//
internal static void RevertAssert(ref StackCrawlMark stackMark)
{
FrameSecurityDescriptor secObj = GetSecurityObjectForFrame(ref stackMark, false);
if (secObj != null)
{
secObj.RevertAssert();
}
else if (SecurityManager._IsSecurityOn())
throw new ExecutionEngineException( Environment.GetResourceString( "ExecutionEngine_MissingSecurityDescriptor" ) );
}
internal static void RevertDeny(ref StackCrawlMark stackMark)
{
FrameSecurityDescriptor secObj = GetSecurityObjectForFrame(ref stackMark, false);
if (secObj != null)
{
secObj.RevertDeny();
}
else if (SecurityManager._IsSecurityOn())
throw new ExecutionEngineException( Environment.GetResourceString( "ExecutionEngine_MissingSecurityDescriptor" ) );
}
internal static void RevertPermitOnly(ref StackCrawlMark stackMark)
{
FrameSecurityDescriptor secObj = GetSecurityObjectForFrame(ref stackMark, false);
if (secObj != null)
{
secObj.RevertPermitOnly();
}
else if (SecurityManager._IsSecurityOn())
throw new ExecutionEngineException( Environment.GetResourceString( "ExecutionEngine_MissingSecurityDescriptor" ) );
}
internal static void RevertAll(ref StackCrawlMark stackMark)
{
FrameSecurityDescriptor secObj = GetSecurityObjectForFrame(ref stackMark, false);
if (secObj != null)
{
secObj.RevertAll();
}
else if (SecurityManager._IsSecurityOn())
throw new ExecutionEngineException( Environment.GetResourceString( "ExecutionEngine_MissingSecurityDescriptor" ) );
}
}
}
// File provided for Reference Use Only by Microsoft Corporation (c) 2007.
// Copyright (c) Microsoft Corporation. All rights reserved.
Link Menu
This book is available now!
Buy at Amazon US or
Buy at Amazon UK
- ApplicationProxyInternal.cs
- TextElement.cs
- TraceUtility.cs
- Menu.cs
- ObjectConverter.cs
- SHA512Managed.cs
- Logging.cs
- DataObjectAttribute.cs
- MgmtResManager.cs
- ToolStripItem.cs
- SecurityHeader.cs
- CodeAttributeArgument.cs
- Bitmap.cs
- DynamicUpdateCommand.cs
- SettingsProviderCollection.cs
- LinkArea.cs
- QilList.cs
- IdentitySection.cs
- CultureTable.cs
- DesignTimeTemplateParser.cs
- WindowsTitleBar.cs
- OdbcEnvironmentHandle.cs
- AttachedPropertyBrowsableForChildrenAttribute.cs
- TemplatedWizardStep.cs
- KoreanLunisolarCalendar.cs
- TextMarkerSource.cs
- SymLanguageVendor.cs
- PreviewPageInfo.cs
- WeakEventManager.cs
- AttachedAnnotation.cs
- Fault.cs
- ControlPropertyNameConverter.cs
- DummyDataSource.cs
- PowerStatus.cs
- DbParameterHelper.cs
- DataGridViewTextBoxColumn.cs
- MarshalByRefObject.cs
- ObjectMemberMapping.cs
- BinarySerializer.cs
- InputScope.cs
- BinaryNode.cs
- LocalBuilder.cs
- DoneReceivingAsyncResult.cs
- XmlSchemaInferenceException.cs
- XmlSerializerAssemblyAttribute.cs
- Int32Storage.cs
- QueryReaderSettings.cs
- DataSourceProvider.cs
- ToolStripItemGlyph.cs
- PrintPreviewControl.cs
- DetailsViewPagerRow.cs
- PersonalizationAdministration.cs
- TypeHelpers.cs
- Clause.cs
- GetLedgerRequest.cs
- DurableErrorHandler.cs
- _SingleItemRequestCache.cs
- RequestQueryParser.cs
- PaintValueEventArgs.cs
- SharedPersonalizationStateInfo.cs
- ErrorInfoXmlDocument.cs
- UriGenerator.cs
- PreviousTrackingServiceAttribute.cs
- PrintPreviewGraphics.cs
- LabelExpression.cs
- ArrayEditor.cs
- AppDomainFactory.cs
- NegationPusher.cs
- StorageEntityContainerMapping.cs
- CurrentChangingEventArgs.cs
- CollectionViewProxy.cs
- CodeExporter.cs
- VectorAnimation.cs
- listitem.cs
- StyleSheetRefUrlEditor.cs
- Image.cs
- SignerInfo.cs
- PrivilegeNotHeldException.cs
- MarkedHighlightComponent.cs
- ScrollBar.cs
- AdornedElementPlaceholder.cs
- IncrementalCompileAnalyzer.cs
- AddDataControlFieldDialog.cs
- WinOEToolBoxItem.cs
- ScrollBarAutomationPeer.cs
- Tracking.cs
- ProxyWebPartManager.cs
- EventLogInternal.cs
- TransactionInformation.cs
- ManagedWndProcTracker.cs
- Assert.cs
- DoubleAnimationUsingPath.cs
- EntityCommandCompilationException.cs
- EmbossBitmapEffect.cs
- CellTreeNode.cs
- AsymmetricSignatureDeformatter.cs
- EntityViewGenerator.cs
- IdentityReference.cs
- DataFormats.cs
- VirtualPathProvider.cs