Code:
/ FXUpdate3074 / FXUpdate3074 / 1.1 / untmp / whidbey / QFE / ndp / clr / src / BCL / System / Security / SecurityRuntime.cs / 2 / SecurityRuntime.cs
// ==++==
//
// Copyright (c) Microsoft Corporation. All rights reserved.
//
// ==--==
namespace System.Security {
using System;
using System.Globalization;
using System.Threading;
using System.Reflection;
using System.Collections;
using System.Runtime.CompilerServices;
using System.Security.Permissions;
internal class SecurityRuntime
{
private SecurityRuntime(){}
// Returns the security object for the caller of the method containing
// 'stackMark' on its frame.
//
// THE RETURNED OBJECT IS THE LIVE RUNTIME OBJECT. BE CAREFUL WITH IT!
//
// Internal only, do not doc.
//
[MethodImplAttribute(MethodImplOptions.InternalCall)]
internal static extern
FrameSecurityDescriptor GetSecurityObjectForFrame(ref StackCrawlMark stackMark,
bool create);
// Constants used to return status to native
internal const bool StackContinue = true;
internal const bool StackHalt = false;
// Returns the number of negative overrides(deny/permitonly) in this secDesc
private static int OverridesHelper(FrameSecurityDescriptor secDesc)
{
//
int count = OverridesHelper2(secDesc, false);
// add declarative
count += OverridesHelper2(secDesc, true);
return count;
}
private static int OverridesHelper2(FrameSecurityDescriptor secDesc, bool fDeclarative)
{
PermissionSet permSet;
int count = 0;
permSet = secDesc.GetPermitOnly(fDeclarative);
if (permSet != null)
count++;
permSet = secDesc.GetDenials(fDeclarative);
if (permSet != null)
count++;
return count;
}
// this method is a big perf hit, so don't call unnecessarily
internal static MethodInfo GetMethodInfo(RuntimeMethodHandle rmh)
{
if(rmh.IsNullHandle())
return null;
#if _DEBUG
try
{
#endif
// Assert here because reflection will
PermissionSet.s_fullTrust.Assert();
RuntimeTypeHandle rth = rmh.GetDeclaringType();
return(System.RuntimeType.GetMethodBase(rth, rmh) as MethodInfo);
#if _DEBUG
}
catch(Exception)
{
return null;
}
#endif
}
private static bool FrameDescSetHelper(FrameSecurityDescriptor secDesc,
PermissionSet demandSet,
out PermissionSet alteredDemandSet,
RuntimeMethodHandle rmh)
{
return secDesc.CheckSetDemand(demandSet, out alteredDemandSet, rmh);
}
private static bool FrameDescHelper(FrameSecurityDescriptor secDesc,
IPermission demandIn,
PermissionToken permToken,
RuntimeMethodHandle rmh)
{
return secDesc.CheckDemand((CodeAccessPermission) demandIn, permToken, rmh);
}
//
// API for PermissionSets
//
internal static void Assert(PermissionSet permSet, ref StackCrawlMark stackMark)
{
// Note: if the "AssertPermission" is not a permission that implements IUnrestrictedPermission
// you need to change the fourth parameter to a zero.
FrameSecurityDescriptor secObj = CodeAccessSecurityEngine.CheckNReturnSO(
CodeAccessSecurityEngine.AssertPermissionToken,
CodeAccessSecurityEngine.AssertPermission,
ref stackMark,
1,
1 );
BCLDebug.Assert(secObj != null || !SecurityManager._IsSecurityOn(),"Failure in SecurityRuntime.Assert() - secObj != null");
if (secObj == null)
{
if (SecurityManager._IsSecurityOn())
// Security: REQ_SQ flag is missing. Bad compiler ?
throw new ExecutionEngineException( Environment.GetResourceString( "ExecutionEngine_MissingSecurityDescriptor" ) );
}
else
{
if (secObj.HasImperativeAsserts())
throw new SecurityException( Environment.GetResourceString( "Security_MustRevertOverride" ) );
secObj.SetAssert(permSet);
}
}
internal static void AssertAllPossible(ref StackCrawlMark stackMark)
{
FrameSecurityDescriptor secObj =
SecurityRuntime.GetSecurityObjectForFrame(ref stackMark, true);
BCLDebug.Assert(secObj != null || !SecurityManager._IsSecurityOn(),"Failure in SecurityRuntime.AssertAllPossible() - secObj != null");
if (secObj == null)
{
if (SecurityManager._IsSecurityOn())
// Security: REQ_SQ flag is missing. Bad compiler ?
throw new ExecutionEngineException( Environment.GetResourceString( "ExecutionEngine_MissingSecurityDescriptor" ) );
}
else
{
if (secObj.GetAssertAllPossible())
throw new SecurityException( Environment.GetResourceString( "Security_MustRevertOverride" ) );
secObj.SetAssertAllPossible();
}
}
internal static void Deny(PermissionSet permSet, ref StackCrawlMark stackMark)
{
FrameSecurityDescriptor secObj =
SecurityRuntime.GetSecurityObjectForFrame(ref stackMark, true);
BCLDebug.Assert(secObj != null || !SecurityManager._IsSecurityOn(),"Failure in SecurityRuntime.Deny() - secObj != null");
if (secObj == null)
{
if (SecurityManager._IsSecurityOn())
// Security: REQ_SQ flag is missing. Bad compiler ?
throw new ExecutionEngineException( Environment.GetResourceString( "ExecutionEngine_MissingSecurityDescriptor" ) );
}
else
{
if (secObj.HasImperativeDenials())
throw new SecurityException( Environment.GetResourceString( "Security_MustRevertOverride" ) );
secObj.SetDeny(permSet);
}
}
internal static void PermitOnly(PermissionSet permSet, ref StackCrawlMark stackMark)
{
FrameSecurityDescriptor secObj =
SecurityRuntime.GetSecurityObjectForFrame(ref stackMark, true);
BCLDebug.Assert(secObj != null || !SecurityManager._IsSecurityOn(),"Failure in SecurityRuntime.PermitOnly() - secObj != null");
if (secObj == null)
{
if (SecurityManager._IsSecurityOn())
// Security: REQ_SQ flag is missing. Bad compiler ?
throw new ExecutionEngineException( Environment.GetResourceString( "ExecutionEngine_MissingSecurityDescriptor" ) );
}
else
{
if (secObj.HasImperativeRestrictions())
throw new SecurityException( Environment.GetResourceString( "Security_MustRevertOverride" ) );
secObj.SetPermitOnly(permSet);
}
}
//
// Revert API
//
internal static void RevertAssert(ref StackCrawlMark stackMark)
{
FrameSecurityDescriptor secObj = GetSecurityObjectForFrame(ref stackMark, false);
if (secObj != null)
{
secObj.RevertAssert();
}
else if (SecurityManager._IsSecurityOn())
throw new ExecutionEngineException( Environment.GetResourceString( "ExecutionEngine_MissingSecurityDescriptor" ) );
}
internal static void RevertDeny(ref StackCrawlMark stackMark)
{
FrameSecurityDescriptor secObj = GetSecurityObjectForFrame(ref stackMark, false);
if (secObj != null)
{
secObj.RevertDeny();
}
else if (SecurityManager._IsSecurityOn())
throw new ExecutionEngineException( Environment.GetResourceString( "ExecutionEngine_MissingSecurityDescriptor" ) );
}
internal static void RevertPermitOnly(ref StackCrawlMark stackMark)
{
FrameSecurityDescriptor secObj = GetSecurityObjectForFrame(ref stackMark, false);
if (secObj != null)
{
secObj.RevertPermitOnly();
}
else if (SecurityManager._IsSecurityOn())
throw new ExecutionEngineException( Environment.GetResourceString( "ExecutionEngine_MissingSecurityDescriptor" ) );
}
internal static void RevertAll(ref StackCrawlMark stackMark)
{
FrameSecurityDescriptor secObj = GetSecurityObjectForFrame(ref stackMark, false);
if (secObj != null)
{
secObj.RevertAll();
}
else if (SecurityManager._IsSecurityOn())
throw new ExecutionEngineException( Environment.GetResourceString( "ExecutionEngine_MissingSecurityDescriptor" ) );
}
}
}
// File provided for Reference Use Only by Microsoft Corporation (c) 2007.
// Copyright (c) Microsoft Corporation. All rights reserved.
Link Menu
This book is available now!
Buy at Amazon US or
Buy at Amazon UK
- XmlValueConverter.cs
- XPathNavigatorReader.cs
- RtfControls.cs
- DataSourceHelper.cs
- Rect3D.cs
- WebScriptServiceHost.cs
- TdsRecordBufferSetter.cs
- EventLog.cs
- IPEndPoint.cs
- DataRelationCollection.cs
- TextSimpleMarkerProperties.cs
- FileDialogPermission.cs
- Pen.cs
- DebugController.cs
- Opcode.cs
- MonthChangedEventArgs.cs
- CompatibleComparer.cs
- QilBinary.cs
- DataSourceView.cs
- NotificationContext.cs
- DataGridPageChangedEventArgs.cs
- DeleteWorkflowOwnerCommand.cs
- EventPrivateKey.cs
- Int32EqualityComparer.cs
- TransactionManager.cs
- InheritedPropertyChangedEventArgs.cs
- ForEachAction.cs
- WebPartCatalogCloseVerb.cs
- RequestBringIntoViewEventArgs.cs
- RenderingEventArgs.cs
- SmtpFailedRecipientException.cs
- ValidatorUtils.cs
- FieldAccessException.cs
- SafeHandle.cs
- XmlSchemas.cs
- TypeLibConverter.cs
- FontSourceCollection.cs
- TableCellAutomationPeer.cs
- QilInvokeLateBound.cs
- QueryContinueDragEvent.cs
- NativeMethods.cs
- Console.cs
- Attributes.cs
- BitmapMetadata.cs
- FormViewUpdatedEventArgs.cs
- StorageFunctionMapping.cs
- SessionStateUtil.cs
- MarshalByValueComponent.cs
- TimeSpanConverter.cs
- HtmlElementCollection.cs
- DependencyObjectPropertyDescriptor.cs
- InstanceKey.cs
- EntityDataSourceSelectedEventArgs.cs
- UnmanagedMemoryStreamWrapper.cs
- TriggerAction.cs
- VisualStyleRenderer.cs
- PartitionedStream.cs
- NamespaceDisplay.xaml.cs
- TemplateBindingExtension.cs
- TreeNodeEventArgs.cs
- OutputWindow.cs
- SecurityTimestamp.cs
- AccessControlList.cs
- TokenBasedSet.cs
- AccessDataSourceView.cs
- RowUpdatedEventArgs.cs
- SrgsOneOf.cs
- ChangeTracker.cs
- HttpHostedTransportConfiguration.cs
- ClientUrlResolverWrapper.cs
- Switch.cs
- XPathAncestorIterator.cs
- WebSysDescriptionAttribute.cs
- RestHandlerFactory.cs
- BinHexEncoder.cs
- Type.cs
- CompoundFileStreamReference.cs
- DynamicDiscoveryDocument.cs
- LinearGradientBrush.cs
- indexingfiltermarshaler.cs
- HelloMessageCD1.cs
- HTTP_SERVICE_CONFIG_URLACL_KEY.cs
- BufferCache.cs
- TcpClientChannel.cs
- CharacterMetrics.cs
- GridView.cs
- xdrvalidator.cs
- TextBox.cs
- ParserExtension.cs
- MessageBox.cs
- IsolationInterop.cs
- ButtonPopupAdapter.cs
- webbrowsersite.cs
- DesignTimeResourceProviderFactoryAttribute.cs
- wgx_sdk_version.cs
- RepeatInfo.cs
- BinaryObjectWriter.cs
- Triplet.cs
- EditingCoordinator.cs
- PropertyCondition.cs