linux-packaging-mono/mcs/class/referencesource/System.ServiceModel.Internals/System/Runtime/PartialTrustHelpers.cs

//------------------------------------------------------------
// Copyright (c) Microsoft Corporation.  All rights reserved.
//------------------------------------------------------------

namespace System.Runtime
{
    using System.Security;
    using System.Security.Permissions;
    using System.Runtime.CompilerServices;
    using System.Reflection;

    static class PartialTrustHelpers
    {
        [Fx.Tag.SecurityNote(Critical = "used in a security-sensitive decision")]
        [SecurityCritical]
        static Type aptca;

        [Fx.Tag.SecurityNote(Critical = "used in a security-sensitive decision")]
        [SecurityCritical]
        static volatile bool checkedForFullTrust;
        [Fx.Tag.SecurityNote(Critical = "used in a security-sensitive decision")]
        [SecurityCritical]
        static bool inFullTrust;

        internal static bool ShouldFlowSecurityContext
        {
            [Fx.Tag.SecurityNote(Critical = "used in a security-sensitive decision")]
            [SecurityCritical]
            get
            {
                return SecurityManager.CurrentThreadRequiresSecurityContextCapture();
            }
        }

        [Fx.Tag.SecurityNote(Critical = "used in a security-sensitive decision")]
        [SecurityCritical]
        internal static bool IsInFullTrust()
        {
#if MONO_FEATURE_CAS
            if (!SecurityManager.CurrentThreadRequiresSecurityContextCapture())
            {
                return true;
            }

            try
            {
                DemandForFullTrust();
                return true;
            }
            catch (SecurityException)
            {
                return false;
            }
#else
            return true;
#endif
        }
#if FEATURE_COMPRESSEDSTACK
        [Fx.Tag.SecurityNote(Critical = "Captures security context with identity flow suppressed, " +
            "this requires satisfying a LinkDemand for infrastructure.")]
        [SecurityCritical]
        internal static SecurityContext CaptureSecurityContextNoIdentityFlow()
        {
            // capture the security context but never flow windows identity
            if (SecurityContext.IsWindowsIdentityFlowSuppressed())
            {
                return SecurityContext.Capture();
            }
            else
            {
                using (SecurityContext.SuppressFlowWindowsIdentity())
                {
                    return SecurityContext.Capture();
                }
            }
        }
#endif
        [Fx.Tag.SecurityNote(Critical = "used in a security-sensitive decision")]
        [SecurityCritical]
        internal static bool IsTypeAptca(Type type)
        {
            Assembly assembly = type.Assembly;
            return IsAssemblyAptca(assembly) || !IsAssemblySigned(assembly);
        }

        [SecuritySafeCritical]
        [PermissionSet(SecurityAction.Demand, Unrestricted = true)]
        [MethodImpl(MethodImplOptions.NoInlining)]
        internal static void DemandForFullTrust()
        {
        }

        [Fx.Tag.SecurityNote(Critical = "used in a security-sensitive decision")]
        [SecurityCritical]
        static bool IsAssemblyAptca(Assembly assembly)
        {
            if (aptca == null)
            {
                aptca = typeof(AllowPartiallyTrustedCallersAttribute);
            }
            return assembly.GetCustomAttributes(aptca, false).Length > 0;
        }

        [Fx.Tag.SecurityNote(Critical = "used in a security-sensitive decision")]
        [SecurityCritical]
        [FileIOPermission(SecurityAction.Assert, Unrestricted = true)]
        static bool IsAssemblySigned(Assembly assembly)
        {
            byte[] publicKeyToken = assembly.GetName().GetPublicKeyToken();
            return publicKeyToken != null & publicKeyToken.Length > 0;
        }

        [Fx.Tag.SecurityNote(Critical = "used in a security-sensitive decision")]
        [SecurityCritical]
        internal static bool CheckAppDomainPermissions(PermissionSet permissions)
        {
#if MONO_FEATURE_CAS
            return AppDomain.CurrentDomain.IsHomogenous &&
                   permissions.IsSubsetOf(AppDomain.CurrentDomain.PermissionSet);
#else
            return true;
#endif
        }

        [Fx.Tag.SecurityNote(Critical = "used in a security-sensitive decision")]
        [SecurityCritical]
        internal static bool HasEtwPermissions()
        {
#if MONO_FEATURE_CAS
            //Currently unrestricted permissions are required to create Etw provider. 
            PermissionSet permissions = new PermissionSet(PermissionState.Unrestricted);
            return CheckAppDomainPermissions(permissions);
#else
            return true;
#endif
        }

        internal static bool AppDomainFullyTrusted
        {
            [Fx.Tag.SecurityNote(Critical = "used in a security-sensitive decision",
                Safe = "Does not leak critical resources")]
            [SecuritySafeCritical]
            get
            {
#if MONO_FEATURE_CAS
                if (!checkedForFullTrust)
                {
                    inFullTrust = AppDomain.CurrentDomain.IsFullyTrusted;
                    checkedForFullTrust = true;
                }

                return inFullTrust;
#else
                return true;
#endif
            }
        }
    }
}
Imported Upstream version 4.6.0.125 Former-commit-id: a2155e9bd80020e49e72e86c44da02a8ac0e57a4 2016-08-03 10:59:49 +00:00			`//------------------------------------------------------------`
			`// Copyright (c) Microsoft Corporation. All rights reserved.`
			`//------------------------------------------------------------`

			`namespace System.Runtime`
			`{`
			`using System.Security;`
			`using System.Security.Permissions;`
			`using System.Runtime.CompilerServices;`
			`using System.Reflection;`

			`static class PartialTrustHelpers`
			`{`
			`[Fx.Tag.SecurityNote(Critical = "used in a security-sensitive decision")]`
			`[SecurityCritical]`
			`static Type aptca;`

			`[Fx.Tag.SecurityNote(Critical = "used in a security-sensitive decision")]`
			`[SecurityCritical]`
			`static volatile bool checkedForFullTrust;`
			`[Fx.Tag.SecurityNote(Critical = "used in a security-sensitive decision")]`
			`[SecurityCritical]`
			`static bool inFullTrust;`

			`internal static bool ShouldFlowSecurityContext`
			`{`
			`[Fx.Tag.SecurityNote(Critical = "used in a security-sensitive decision")]`
			`[SecurityCritical]`
			`get`
			`{`
			`return SecurityManager.CurrentThreadRequiresSecurityContextCapture();`
			`}`
			`}`

			`[Fx.Tag.SecurityNote(Critical = "used in a security-sensitive decision")]`
			`[SecurityCritical]`
			`internal static bool IsInFullTrust()`
			`{`
Imported Upstream version 5.0.0.42 Former-commit-id: fd56571888259555122d8a0f58c68838229cea2b 2017-04-10 11:41:01 +00:00			`#if MONO_FEATURE_CAS`
Imported Upstream version 4.6.0.125 Former-commit-id: a2155e9bd80020e49e72e86c44da02a8ac0e57a4 2016-08-03 10:59:49 +00:00			`if (!SecurityManager.CurrentThreadRequiresSecurityContextCapture())`
			`{`
			`return true;`
			`}`

			`try`
			`{`
			`DemandForFullTrust();`
			`return true;`
			`}`
			`catch (SecurityException)`
			`{`
			`return false;`
			`}`
			`#else`
			`return true;`
			`#endif`
			`}`
			`#if FEATURE_COMPRESSEDSTACK`
			`[Fx.Tag.SecurityNote(Critical = "Captures security context with identity flow suppressed, " +`
			`"this requires satisfying a LinkDemand for infrastructure.")]`
			`[SecurityCritical]`
			`internal static SecurityContext CaptureSecurityContextNoIdentityFlow()`
			`{`
			`// capture the security context but never flow windows identity`
			`if (SecurityContext.IsWindowsIdentityFlowSuppressed())`
			`{`
			`return SecurityContext.Capture();`
			`}`
			`else`
			`{`
			`using (SecurityContext.SuppressFlowWindowsIdentity())`
			`{`
			`return SecurityContext.Capture();`
			`}`
			`}`
			`}`
			`#endif`
			`[Fx.Tag.SecurityNote(Critical = "used in a security-sensitive decision")]`
			`[SecurityCritical]`
			`internal static bool IsTypeAptca(Type type)`
			`{`
			`Assembly assembly = type.Assembly;`
			`return IsAssemblyAptca(assembly) \|\| !IsAssemblySigned(assembly);`
			`}`

			`[SecuritySafeCritical]`
			`[PermissionSet(SecurityAction.Demand, Unrestricted = true)]`
			`[MethodImpl(MethodImplOptions.NoInlining)]`
			`internal static void DemandForFullTrust()`
			`{`
			`}`

			`[Fx.Tag.SecurityNote(Critical = "used in a security-sensitive decision")]`
			`[SecurityCritical]`
			`static bool IsAssemblyAptca(Assembly assembly)`
			`{`
			`if (aptca == null)`
			`{`
			`aptca = typeof(AllowPartiallyTrustedCallersAttribute);`
			`}`
			`return assembly.GetCustomAttributes(aptca, false).Length > 0;`
			`}`

			`[Fx.Tag.SecurityNote(Critical = "used in a security-sensitive decision")]`
			`[SecurityCritical]`
			`[FileIOPermission(SecurityAction.Assert, Unrestricted = true)]`
			`static bool IsAssemblySigned(Assembly assembly)`
			`{`
			`byte[] publicKeyToken = assembly.GetName().GetPublicKeyToken();`
			`return publicKeyToken != null & publicKeyToken.Length > 0;`
			`}`

			`[Fx.Tag.SecurityNote(Critical = "used in a security-sensitive decision")]`
			`[SecurityCritical]`
			`internal static bool CheckAppDomainPermissions(PermissionSet permissions)`
			`{`
Imported Upstream version 5.0.0.42 Former-commit-id: fd56571888259555122d8a0f58c68838229cea2b 2017-04-10 11:41:01 +00:00			`#if MONO_FEATURE_CAS`
Imported Upstream version 4.6.0.125 Former-commit-id: a2155e9bd80020e49e72e86c44da02a8ac0e57a4 2016-08-03 10:59:49 +00:00			`return AppDomain.CurrentDomain.IsHomogenous &&`
			`permissions.IsSubsetOf(AppDomain.CurrentDomain.PermissionSet);`
			`#else`
			`return true;`
			`#endif`
			`}`

			`[Fx.Tag.SecurityNote(Critical = "used in a security-sensitive decision")]`
			`[SecurityCritical]`
			`internal static bool HasEtwPermissions()`
			`{`
Imported Upstream version 5.0.0.42 Former-commit-id: fd56571888259555122d8a0f58c68838229cea2b 2017-04-10 11:41:01 +00:00			`#if MONO_FEATURE_CAS`
Imported Upstream version 4.6.0.125 Former-commit-id: a2155e9bd80020e49e72e86c44da02a8ac0e57a4 2016-08-03 10:59:49 +00:00			`//Currently unrestricted permissions are required to create Etw provider.`
			`PermissionSet permissions = new PermissionSet(PermissionState.Unrestricted);`
			`return CheckAppDomainPermissions(permissions);`
			`#else`
			`return true;`
			`#endif`
			`}`

			`internal static bool AppDomainFullyTrusted`
			`{`
			`[Fx.Tag.SecurityNote(Critical = "used in a security-sensitive decision",`
			`Safe = "Does not leak critical resources")]`
			`[SecuritySafeCritical]`
			`get`
			`{`
Imported Upstream version 5.0.0.42 Former-commit-id: fd56571888259555122d8a0f58c68838229cea2b 2017-04-10 11:41:01 +00:00			`#if MONO_FEATURE_CAS`
Imported Upstream version 4.6.0.125 Former-commit-id: a2155e9bd80020e49e72e86c44da02a8ac0e57a4 2016-08-03 10:59:49 +00:00			`if (!checkedForFullTrust)`
			`{`
			`inFullTrust = AppDomain.CurrentDomain.IsFullyTrusted;`
			`checkedForFullTrust = true;`
			`}`

			`return inFullTrust;`
			`#else`
			`return true;`
			`#endif`
			`}`
			`}`
			`}`
			`}`