412 lines
12 KiB
C#
412 lines
12 KiB
C#
|
//
|
||
|
// permview.cs: Managed Permission Viewer for .NET assemblies
|
||
|
//
|
||
|
// Author:
|
||
|
// Sebastien Pouliot <sebastien@ximian.com>
|
||
|
//
|
||
|
// Copyright (C) 2004-2007 Novell, Inc (http://www.novell.com)
|
||
|
//
|
||
|
|
||
|
using System;
|
||
|
using System.Collections;
|
||
|
using System.Collections.Generic;
|
||
|
using System.IO;
|
||
|
using System.Reflection;
|
||
|
using System.Security;
|
||
|
using SSP = System.Security.Permissions;
|
||
|
using System.Text;
|
||
|
|
||
|
using Mono.Cecil;
|
||
|
|
||
|
[assembly: AssemblyTitle ("Mono PermView")]
|
||
|
[assembly: AssemblyDescription ("Managed Permission Viewer for .NET assemblies")]
|
||
|
|
||
|
namespace Mono.Tools {
|
||
|
|
||
|
static class SecurityDeclarationRocks {
|
||
|
|
||
|
public static PermissionSet ToPermissionSet (this SecurityDeclaration self)
|
||
|
{
|
||
|
if (self == null)
|
||
|
throw new ArgumentNullException ("self");
|
||
|
|
||
|
PermissionSet set;
|
||
|
if (TryProcessPermissionSetAttribute (self, out set))
|
||
|
return set;
|
||
|
|
||
|
return CreatePermissionSet (self);
|
||
|
}
|
||
|
|
||
|
static bool TryProcessPermissionSetAttribute (SecurityDeclaration declaration, out PermissionSet set)
|
||
|
{
|
||
|
set = null;
|
||
|
|
||
|
if (!declaration.HasSecurityAttributes && declaration.SecurityAttributes.Count != 1)
|
||
|
return false;
|
||
|
|
||
|
var security_attribute = declaration.SecurityAttributes [0];
|
||
|
var attribute_type = security_attribute.AttributeType;
|
||
|
|
||
|
if (attribute_type.Name != "PermissionSetAttribute" || attribute_type.Namespace != "System.Security.Permissions")
|
||
|
return false;
|
||
|
|
||
|
var named_argument = security_attribute.Properties [0];
|
||
|
if (named_argument.Name != "XML")
|
||
|
throw new NotSupportedException ();
|
||
|
|
||
|
var attribute = new SSP.PermissionSetAttribute ((SSP.SecurityAction) declaration.Action);
|
||
|
attribute.XML = (string) named_argument.Argument.Value;
|
||
|
|
||
|
set = attribute.CreatePermissionSet ();
|
||
|
return true;
|
||
|
}
|
||
|
|
||
|
static PermissionSet CreatePermissionSet (SecurityDeclaration declaration)
|
||
|
{
|
||
|
var set = new PermissionSet (SSP.PermissionState.None);
|
||
|
|
||
|
foreach (var attribute in declaration.SecurityAttributes) {
|
||
|
var permission = CreatePermission (declaration, attribute);
|
||
|
set.AddPermission (permission);
|
||
|
}
|
||
|
|
||
|
return set;
|
||
|
}
|
||
|
|
||
|
static IPermission CreatePermission (SecurityDeclaration declaration, SecurityAttribute attribute)
|
||
|
{
|
||
|
var attribute_type = Type.GetType (attribute.AttributeType.FullName);
|
||
|
if (attribute_type == null)
|
||
|
throw new ArgumentException ();
|
||
|
|
||
|
var security_attribute = CreateSecurityAttribute (attribute_type, declaration);
|
||
|
if (security_attribute == null)
|
||
|
throw new InvalidOperationException ();
|
||
|
|
||
|
CompleteSecurityAttribute (security_attribute, attribute);
|
||
|
|
||
|
return security_attribute.CreatePermission ();
|
||
|
}
|
||
|
|
||
|
static void CompleteSecurityAttribute (SSP.SecurityAttribute security_attribute, SecurityAttribute attribute)
|
||
|
{
|
||
|
if (attribute.HasFields)
|
||
|
CompleteSecurityAttributeFields (security_attribute, attribute);
|
||
|
|
||
|
if (attribute.HasProperties)
|
||
|
CompleteSecurityAttributeProperties (security_attribute, attribute);
|
||
|
}
|
||
|
|
||
|
static void CompleteSecurityAttributeFields (SSP.SecurityAttribute security_attribute, SecurityAttribute attribute)
|
||
|
{
|
||
|
var type = security_attribute.GetType ();
|
||
|
|
||
|
foreach (var named_argument in attribute.Fields)
|
||
|
type.GetField (named_argument.Name).SetValue (security_attribute, named_argument.Argument.Value);
|
||
|
}
|
||
|
|
||
|
static void CompleteSecurityAttributeProperties (SSP.SecurityAttribute security_attribute, SecurityAttribute attribute)
|
||
|
{
|
||
|
var type = security_attribute.GetType ();
|
||
|
|
||
|
foreach (var named_argument in attribute.Properties)
|
||
|
type.GetProperty (named_argument.Name).SetValue (security_attribute, named_argument.Argument.Value, null);
|
||
|
}
|
||
|
|
||
|
static SSP.SecurityAttribute CreateSecurityAttribute (Type attribute_type, SecurityDeclaration declaration)
|
||
|
{
|
||
|
SSP.SecurityAttribute security_attribute;
|
||
|
try {
|
||
|
security_attribute = (SSP.SecurityAttribute) Activator.CreateInstance (
|
||
|
attribute_type, new object [] { (SSP.SecurityAction) declaration.Action });
|
||
|
} catch (MissingMethodException) {
|
||
|
security_attribute = (SSP.SecurityAttribute) Activator.CreateInstance (attribute_type, new object [0]);
|
||
|
}
|
||
|
|
||
|
return security_attribute;
|
||
|
}
|
||
|
}
|
||
|
|
||
|
class SecurityElementComparer : IComparer {
|
||
|
|
||
|
public int Compare (object x, object y)
|
||
|
{
|
||
|
SecurityElement sx = (x as SecurityElement);
|
||
|
SecurityElement sy = (y as SecurityElement);
|
||
|
if (sx == null)
|
||
|
return (sy == null) ? 0 : -1;
|
||
|
else if (sy == null)
|
||
|
return 1;
|
||
|
|
||
|
// compare by name (type name, method name, action name)
|
||
|
return String.Compare (sx.Attribute ("Name"), sy.Attribute ("Name"));
|
||
|
}
|
||
|
}
|
||
|
|
||
|
class PermView {
|
||
|
|
||
|
private const string NotSpecified = "\tNot specified.";
|
||
|
|
||
|
static private void Help ()
|
||
|
{
|
||
|
Console.WriteLine ("Usage: permview [options] assembly{0}", Environment.NewLine);
|
||
|
Console.WriteLine ("where options are:");
|
||
|
Console.WriteLine (" -output filename Output information into specified file.");
|
||
|
Console.WriteLine (" -decl Show declarative security attributes on classes and methods.");
|
||
|
Console.WriteLine (" -xml Output in XML format");
|
||
|
Console.WriteLine (" -help Show help informations (this text)");
|
||
|
Console.WriteLine ();
|
||
|
}
|
||
|
|
||
|
static bool declarative = false;
|
||
|
static bool xmloutput = false;
|
||
|
|
||
|
static TextWriter ProcessOptions (string[] args)
|
||
|
{
|
||
|
TextWriter tw = Console.Out;
|
||
|
for (int i=0; i < args.Length - 1; i++) {
|
||
|
switch (args [i].ToUpper ()) {
|
||
|
case "/DECL":
|
||
|
case "-DECL":
|
||
|
case "--DECL":
|
||
|
declarative = true;
|
||
|
break;
|
||
|
case "/OUTPUT":
|
||
|
case "-OUTPUT":
|
||
|
case "--OUTPUT":
|
||
|
tw = (TextWriter) new StreamWriter (args [++i]);
|
||
|
break;
|
||
|
case "/XML":
|
||
|
case "-XML":
|
||
|
case "--XML":
|
||
|
xmloutput = true;
|
||
|
break;
|
||
|
case "/HELP":
|
||
|
case "/H":
|
||
|
case "-HELP":
|
||
|
case "-H":
|
||
|
case "--HELP":
|
||
|
case "--H":
|
||
|
case "-?":
|
||
|
case "--?":
|
||
|
Help ();
|
||
|
return null;
|
||
|
}
|
||
|
}
|
||
|
return tw;
|
||
|
}
|
||
|
|
||
|
static bool ProcessAssemblyOnly (TextWriter tw, AssemblyDefinition ad)
|
||
|
{
|
||
|
bool result = true;
|
||
|
string minimal = NotSpecified + Environment.NewLine;
|
||
|
string optional = NotSpecified + Environment.NewLine;
|
||
|
string refused = NotSpecified + Environment.NewLine;
|
||
|
|
||
|
foreach (SecurityDeclaration decl in ad.SecurityDeclarations) {
|
||
|
switch (decl.Action) {
|
||
|
case Mono.Cecil.SecurityAction.RequestMinimum:
|
||
|
minimal = decl.ToPermissionSet ().ToString ();
|
||
|
break;
|
||
|
case Mono.Cecil.SecurityAction.RequestOptional:
|
||
|
optional = decl.ToPermissionSet ().ToString ();
|
||
|
break;
|
||
|
case Mono.Cecil.SecurityAction.RequestRefuse:
|
||
|
refused = decl.ToPermissionSet ().ToString ();
|
||
|
break;
|
||
|
default:
|
||
|
tw.WriteLine ("Invalid assembly level declaration {0}{1}{2}",
|
||
|
decl.Action, Environment.NewLine, decl.ToPermissionSet ());
|
||
|
result = false;
|
||
|
break;
|
||
|
}
|
||
|
}
|
||
|
|
||
|
tw.WriteLine ("Minimal Permission Set:");
|
||
|
tw.WriteLine (minimal);
|
||
|
tw.WriteLine ("Optional Permission Set:");
|
||
|
tw.WriteLine (optional);
|
||
|
tw.WriteLine ("Refused Permission Set:");
|
||
|
tw.WriteLine (refused);
|
||
|
return result;
|
||
|
}
|
||
|
|
||
|
static void ShowSecurity (TextWriter tw, string header, IEnumerable<SecurityDeclaration> declarations)
|
||
|
{
|
||
|
foreach (SecurityDeclaration declsec in declarations) {
|
||
|
tw.WriteLine ("{0} {1} Permission Set:{2}{3}", header,
|
||
|
declsec.Action, Environment.NewLine, declsec.ToPermissionSet ());
|
||
|
}
|
||
|
}
|
||
|
|
||
|
static bool ProcessAssemblyComplete (TextWriter tw, AssemblyDefinition ad)
|
||
|
{
|
||
|
if (ad.SecurityDeclarations.Count > 0) {
|
||
|
ShowSecurity (tw, "Assembly", ad.SecurityDeclarations);
|
||
|
}
|
||
|
|
||
|
foreach (ModuleDefinition module in ad.Modules) {
|
||
|
|
||
|
foreach (TypeDefinition type in module.Types) {
|
||
|
|
||
|
if (type.SecurityDeclarations.Count > 0) {
|
||
|
ShowSecurity (tw, "Class " + type.ToString (), ad.SecurityDeclarations);
|
||
|
}
|
||
|
|
||
|
foreach (MethodDefinition method in type.Methods) {
|
||
|
if (method.SecurityDeclarations.Count > 0) {
|
||
|
ShowSecurity (tw, "Method " + method.ToString (), method.SecurityDeclarations);
|
||
|
}
|
||
|
}
|
||
|
}
|
||
|
}
|
||
|
return true;
|
||
|
}
|
||
|
|
||
|
static void AddAttribute (SecurityElement se, string attr, string value)
|
||
|
{
|
||
|
value = value.Replace ("&", "&");
|
||
|
se.AddAttribute (attr, value);
|
||
|
}
|
||
|
|
||
|
static SecurityElement AddSecurityXml (IEnumerable<SecurityDeclaration> declarations)
|
||
|
{
|
||
|
ArrayList list = new ArrayList ();
|
||
|
foreach (SecurityDeclaration declsec in declarations) {
|
||
|
SecurityElement child = new SecurityElement ("Action");
|
||
|
AddAttribute (child, "Name", declsec.Action.ToString ());
|
||
|
child.AddChild (declsec.ToPermissionSet ().ToXml ());
|
||
|
list.Add (child);
|
||
|
}
|
||
|
// sort actions
|
||
|
list.Sort (Comparer);
|
||
|
|
||
|
SecurityElement se = new SecurityElement ("Actions");
|
||
|
foreach (SecurityElement child in list) {
|
||
|
se.AddChild (child);
|
||
|
}
|
||
|
return se;
|
||
|
}
|
||
|
|
||
|
static SecurityElementComparer comparer;
|
||
|
static IComparer Comparer {
|
||
|
get {
|
||
|
if (comparer == null)
|
||
|
comparer = new SecurityElementComparer ();
|
||
|
return comparer;
|
||
|
}
|
||
|
}
|
||
|
|
||
|
static bool ProcessAssemblyXml (TextWriter tw, AssemblyDefinition ad)
|
||
|
{
|
||
|
SecurityElement se = new SecurityElement ("Assembly");
|
||
|
se.AddAttribute ("Name", ad.Name.FullName);
|
||
|
|
||
|
if (ad.SecurityDeclarations.Count > 0) {
|
||
|
se.AddChild (AddSecurityXml (ad.SecurityDeclarations));
|
||
|
}
|
||
|
|
||
|
ArrayList tlist = new ArrayList ();
|
||
|
ArrayList mlist = new ArrayList ();
|
||
|
|
||
|
foreach (ModuleDefinition module in ad.Modules) {
|
||
|
|
||
|
foreach (TypeDefinition type in module.Types) {
|
||
|
|
||
|
SecurityElement klass = new SecurityElement ("Class");
|
||
|
SecurityElement methods = new SecurityElement ("Methods");
|
||
|
|
||
|
SecurityElement typelem = null;
|
||
|
if (type.SecurityDeclarations.Count > 0) {
|
||
|
typelem = AddSecurityXml (type.SecurityDeclarations);
|
||
|
}
|
||
|
|
||
|
if (mlist.Count > 0)
|
||
|
mlist.Clear ();
|
||
|
|
||
|
foreach (MethodDefinition method in type.Methods) {
|
||
|
if (method.SecurityDeclarations.Count > 0) {
|
||
|
SecurityElement meth = new SecurityElement ("Method");
|
||
|
AddAttribute (meth, "Name", method.ToString ());
|
||
|
meth.AddChild (AddSecurityXml (method.SecurityDeclarations));
|
||
|
mlist.Add (meth);
|
||
|
}
|
||
|
}
|
||
|
|
||
|
// sort methods
|
||
|
mlist.Sort (Comparer);
|
||
|
foreach (SecurityElement method in mlist) {
|
||
|
methods.AddChild (method);
|
||
|
}
|
||
|
|
||
|
if ((typelem != null) || ((methods.Children != null) && (methods.Children.Count > 0))) {
|
||
|
AddAttribute (klass, "Name", type.ToString ());
|
||
|
if (typelem != null)
|
||
|
klass.AddChild (typelem);
|
||
|
if ((methods.Children != null) && (methods.Children.Count > 0))
|
||
|
klass.AddChild (methods);
|
||
|
tlist.Add (klass);
|
||
|
}
|
||
|
}
|
||
|
|
||
|
// sort types
|
||
|
tlist.Sort (Comparer);
|
||
|
foreach (SecurityElement type in tlist) {
|
||
|
se.AddChild (type);
|
||
|
}
|
||
|
}
|
||
|
|
||
|
tw.WriteLine (se.ToString ());
|
||
|
return true;
|
||
|
}
|
||
|
|
||
|
[STAThread]
|
||
|
static int Main (string[] args)
|
||
|
{
|
||
|
try {
|
||
|
Console.WriteLine (new AssemblyInfo ().ToString ());
|
||
|
if (args.Length == 0) {
|
||
|
Help ();
|
||
|
return 0;
|
||
|
}
|
||
|
|
||
|
TextWriter tw = ProcessOptions (args);
|
||
|
if (tw == null)
|
||
|
return 0;
|
||
|
|
||
|
string assemblyName = args [args.Length - 1];
|
||
|
AssemblyDefinition ad = AssemblyDefinition.ReadAssembly (assemblyName);
|
||
|
if (ad != null) {
|
||
|
bool complete = false;
|
||
|
|
||
|
if (declarative) {
|
||
|
// full output (assembly+classes+methods)
|
||
|
complete = ProcessAssemblyComplete (tw, ad);
|
||
|
} else if (xmloutput) {
|
||
|
// full output in XML (for easier diffs after c14n)
|
||
|
complete = ProcessAssemblyXml (tw, ad);
|
||
|
} else {
|
||
|
// default (assembly only)
|
||
|
complete = ProcessAssemblyOnly (tw, ad);
|
||
|
}
|
||
|
|
||
|
if (!complete) {
|
||
|
Console.Error.WriteLine ("Couldn't reflect informations.");
|
||
|
return 1;
|
||
|
}
|
||
|
} else {
|
||
|
Console.Error.WriteLine ("Couldn't load assembly '{0}'.", assemblyName);
|
||
|
return 2;
|
||
|
}
|
||
|
tw.Close ();
|
||
|
}
|
||
|
catch (Exception e) {
|
||
|
Console.Error.WriteLine ("Error: " + e.ToString ());
|
||
|
Help ();
|
||
|
return 3;
|
||
|
}
|
||
|
return 0;
|
||
|
}
|
||
|
}
|
||
|
}
|