c# - Code Access Security exception in restricted AppDomain -


goal: need run code in appdomain limited permissions - should have no access @ fancy or unsafe, except few helper methods have defined elsewhere.

what i've done: i'm creating sandbox appdomain required basic permissions, , creating proxy object, runs code:

static appdomain createsandbox() {     var e = new evidence();     e.addhostevidence(new zone(securityzone.internet));      var ps = securitymanager.getstandardsandbox(e);     var security = new securitypermission(securitypermissionflag.execution);      ps.addpermission(security);      var setup = new appdomainsetup {          applicationbase = path.getdirectoryname(assembly.getexecutingassembly().location)      };     return appdomain.createdomain("sandbox" + datetime.now, null, setup, ps); }  public class proxy : marshalbyrefobject {     public proxy() { }      public dostuff()     {        // perform custom operation requiring permission        helperassembly.helpermethods.method1();         // other stuff low permission level        ...        ...        ...        } }

i've put helper methods in dedicated strong-named assembly, , marked them , container class [securitysafecritical]:

// helperassembly.dll  namespace helperassembly {     [securitysafecritical]     public class helpermethods     {         [securitysafecritical]         public static void method1()         {             new securitypermission(securitypermissionflag.unmanagedcode)                 .assert();             try             {                 // logic requiring unmanaged code                 ...             }                         {                 codeaccesssecurity.revertall();             }          }     } }

then, load helper assembly in sandbox appdomain , run proxy.dostuff(), expecting execute helper method , on way:

var appdomain = createsandbox();  appdomain.load(typeof(helperassembly.helpermethods).assembly.fullname);  var proxy = (proxy)sandbox.createinstance(     typeof(proxy).assembly.fullname,      typeof(proxy).fullname).unwrap();  proxy.dostuff();

however, running code causes exception on assert() line in helper method:

unhandled exception: system.invalidoperationexception: cannot perform cas asserts in security transparent methods

what reason behavior , how can achieve i'm trying do? understanding, code in untrusted appdomain security transparent, while code in helper assembly security safe-critical, meaning should able request permissions assert().

i'm missing piece of puzzle, it's better understanding of code access security explain going wrong. appreciated.

your "trusted" assembly needs have allowpartiallytrustedcallers attribute securitysafecritical callable across assembly boundary. must added fulltrustassemblies in call createdomain.


Comments

Post a Comment

Popular posts from this blog

java.util.scanner - How to read and add only numbers to array from a text file -

i'm learning java , have question regarding reading file want read numbers file contains strings well. here example of file: 66.56 "3 java 3-43 5-42 2.1 1 and here coding: public class test { public static void main (string [] args){ if (0 < args.length) { file x = new file(args[0]); try{ scanner in = new scanner( new fileinputstream(x)); arraylist<double> test = new arraylist<>(); while(in.hasnext()){ if(in.hasnextdouble()){ double f=in.nextdouble(); test.add(f);} else {in.next();} } catch(ioexception e) { system.err.println("exception during reading: " + e); } } my problem add 66.56,2.1 , 1 doesn't add 3 after "3 or ignores 3-43 , 5-42 can tell me how skip strings , add doubles here? thanks all said 3 ie; "3, 3-43 , 4-42 strings either u read string , split , check number @ " , - or put in space between characters , integers. jvm after compilation tre...
Read more

rewrite - Trouble with Wordpress multiple custom querystrings -

i'm working on adding multiple querystring , doesn't seem work. i've found codes seems work others might i'm missing something. i want like: http://mydomain.com/board/?getyear=2013&getsometext2=sometext to http://mydomain.com/board/2013/sometext/ i added code below functions.php file. doesn't seem work should though. this works. echoing querystring gets both variable without problem. http://mydomain.com/board/2013/sometext/ but doesn't. tested querystring vis isset() seems nothing being set/get http://mydomain.com/board/2013/ function add_query_vars($vars) { $vars[] = "getyear"; $vars[] = "getsometext2"; return $vars; } add_filter('query_vars', 'add_query_vars'); function add_rewrite_rules($arules) { $anewrules = array('board/([^/]+)/([^/]+)/?$' => 'index.php?pagename=board&getyear=$matches[1]&getsometext2=$matches[2]'); $arules = $a...
Read more