1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
755
756
757
758
759
760
761
762
763
764
765
766
767
768
769
770
771
772
773
774
775
776
777
778
779
780
781
782
783
784
785
786
787
788
789
790
791
792
793
794
795
796
797
798
799
800
801
802
803
804
805
806
807
808
809
810
811
812
813
814
815
816
817
818
819
820
821
822
823
824
825
826
827
828
829
830
831
832
833
834
835
|
2009-05-01 Sebastien Pouliot <sebastien@ximian.com>
* SecurityCriticalAttribute.cs: Add simpler version NET_2_1
* SecuritySafeCriticalAttribute.cs: Remove MonoTODO for NET_2_1
* SecurityTransparentAttribute.cs: Remove MonoTODO for NET_2_1
2009-05-01 Sebastien Pouliot <sebastien@ximian.com>
* SecurityState.cs: Implement IsStateAvailable (added in 2.0SP
and part of SL API)
2009-04-27 Sebastien Pouliot <sebastien@ximian.com>
* SecurityException.cs: Remove CAS-specific stuff from ToString
* SecurityManager.cs: Do not include for NET_2_1 build
* SecurityManager_2_1.cs: Alternate implementation for NET_2_1
2009-03-19 Sebastien Pouliot <sebastien@ximian.com>
* SecurityManager.cs: Remove VerificationException (not used from
the runtime anymore) and add FieldAccessException (which is now,
or soon will be, required/used by the runtime).
2009-02-19 Rodrigo Kumpera <rkumpera@novell.com>
* SecurityManager.cs: Make core-clr work under non 2.1 profiles.
2008-09-15 Jb Evain <jbevain@novell.com>
* SecuritySafeCriticalAttribute.cs: Include SecuritySafeCritical in
the net_2_0 profile, as a recent sp includes it.
2008-08-07 Sebastien Pouliot <sebastien@ximian.com>
* SecurityState.cs: New. Silverlight 2.0 abstract type.
2008-05-30 Sebastien Pouliot <sebastien@ximian.com>
* CodeAccessPermission.cs,
* PermissionSet.cs,
* SecurityManager.cs: Provide better MonoTODO messages for the
next version of MoMA.
2008-04-02 Andreas Nahr <ClassDevelopment@A-SoftTech.com>
* VerificationException.cs
* SecurityElement.cs
* SecurityContext.cs
* NamedPermissionSet.cs
* HostProtectionException.cs: Fix parameter names
2008-01-02 Sebastien Pouliot <sebastien@ximian.com>
* SecureString.cs: Fix InsertAt buffer calculation. Fix #350820
2008-01-02 Sebastien Pouliot <sebastien@ximian.com>
* SecureString.cs: Don't forget length in Copy. Fix #350840
2007-11-07 Atsushi Enomoto <atsushi@ximian.com>
* SecurityElement.cs :
set_Text() should unescape the input string. get_Text() should
return unescaped string. It also applies to attribute value.
ToString() should return valid (escaped) XML.
2007-10-14 Gert Driesen <drieseng@users.sourceforge.net>
* SecurityElement.cs: In ctors, do not assign to Tag property to
ensure exception message match that of MS. In Tag property, set name
of parameter in ArgumentNullException and do not filter out
namespace prefixes. Modified Text property to allow null values
after change to IsValidText that no longer considers null value as
valid. Avoid NRE in Escape.
2007-08-28 Mark Probst <mark.probst@gmail.com>
* SecurityManager.cs: Changed method argument of
LinkDemandSecurityException to IntPtr and removed the assembly
argument (which can be gotten to via the method), to avoid having
to embed reference object values in the native code.
2007-08-20 Mark Probst <mark.probst@gmail.com>
* SecurityManager.cs: Changed arguments of MethodAccessException
to IntPtr, to avoid having to embed reference object values in the
native code.
2007-08-20 Mark Probst <mark.probst@gmail.com>
* SecurityManager.cs: Added two methods needed for CoreCLR
security.
2007-08-08 Atsushi Enomoto <atsushi@ximian.com>
* SecureString.cs : commenting out internal call. It somehow seems
to cause timeout on the buildbots :(
2007-08-07 Atsushi Enomoto <atsushi@ximian.com>
* SecureString.cs : adding notes that ProtectedMemory is not
implemented for non-windows environment.
2007-08-07 Atsushi Enomoto <atsushi@ximian.com>
* SecureString.cs : Decrypt() and Encrypt() now use icall wrapper
to ProtectedMemory in System.Security.dll.
2007-02-23 Sebastien Pouliot <sebastien@ximian.com>
* PermissionSet.cs: Fix InvalidCastException on non-CAS permissions.
Fix bug #80936.
2006-06-16 Sebastien Pouliot <sebastien@ximian.com>
* SecurityContext.cs: Don't skip the calling callBack if we don't call
CompressedStack.Run (#78652).
2006-06-15 Sebastien Pouliot <sebastien@ximian.com>
* SecurityContext.cs: Don't call CompressedStack.Run if we don't have
a compressed stack in the context (which can now happen because of
#78652). This should fix MWF bug #78652 (BeginInvoke under 2.0).
2006-04-07 Sebastien Pouliot <sebastien@ximian.com>
* SecurityException.cs: Show Evidence correctly (it's a collection)
but avoid showing the Hash evidence (it's way too big to be useful).
2005-11-11 Sebastien Pouliot <sebastien@ximian.com>
* SecureString.cs: Completed InsertAt, fixed Alloc not to re-alloc a
block of the same size. Fixed missing encryption for the char* ctor.
Only missing is access to ProtectedMemory do to the [en|de]cryption.
2005-10-30 Sebastien Pouliot <sebastien@ximian.com>
* PermissionSet.cs: Forgot to remove virtual from 2.0 IsSubsetOf.
2005-10-29 Sebastien Pouliot <sebastien@ximian.com>
* PermissionSet.cs: Another update to corcompare shows that even more
methods are not virtual in 2.0 final.
2005-10-28 Sebastien Pouliot <sebastien@ximian.com>
* PermissionSet.cs: Some methods are no more virtual in 2.0 final.
2005-10-28 Sebastien Pouliot <sebastien@ximian.com>
* SecureString.cs: Changed the previous (and partial) managed
implementation to one (that will be) based on ProtectedMemory. Work in
progress...
2005-10-17 Sebastien Pouliot <sebastien@ximian.com>
* PermissionSet.cs: If the current permission set is unrestricted then
we must allow "permit only" for unrestricted (all other case are known
to be too restrictive).
2005-09-22 Sebastien Pouliot <sebastien@ximian.com>
* SecurityManager.cs: Added [Obsolete] on SecurityEnabled for 2.0 (as
it cannot be turned off on MS runtime anymore). Removed dependecies
on PermissionSetCollection as this class (related to *Choice actions)
didn't make it to 2.0 RC.
2005-09-02 Sebastien Pouliot <sebastien@ximian.com>
* CodeAccessPermission.cs: Fix Deny for permissions that do not return
null for empty intersection (common on flags-based permissions).
* PermissionBuilder.cs: Add an helper call to create an empty
(PermissionState.None) permission from a type.
* SecurityManager.cs: Added AppDomain support in InheritanceDemand.
Fixed some another small difference between 1.x and 2.0 (wrt
unrestricted permissions). Fixed error reporting for InheritanceDemand
(was LinkDemand).
2005-06-30 Sebastien Pouliot <sebastien@ximian.com>
* SecurityManager.cs: Fixed inheritance demands for 1.x.
2005-06-22 Sebastien Pouliot <sebastien@ximian.com>
* CodeAccessPermission.cs: Fix Unrestricted PermitOnly (which is like
a no-op). Speed up Assert if Unrestricted.
* HostSecurityManager.cs: Updated FIXME description.
* PermissionSet.cs: Remove Copy() of the permission set when non-CAS
permissions are used (replaced by an array of bools). Completed Assert
support by re-using the array of bools. Updated TODO descriptions.
* SecurityException.cs: Added evidence (if available) in the ToString
description of the exception.
* SecurityManager.cs: Reworked CheckExecutionRights to get the correct
behavior.
2005-06-20 Sebastien Pouliot <sebastien@ximian.com>
* CodeAccessPermission.cs: Removed redundant and unrequired TODO.
* PermissionSet.cs: Some 2.0 optimizations (because sets are simpler
without the special case for identity permissions).
* SecurityManager.cs: Shortcut for ResolveIdentityPermissions (in 2.0)
and some more declarative security syntax updates.
2005-06-16 Sebastien Pouliot <sebastien@ximian.com>
* PermissionSet.cs: Added support for non-CAS permissions in the
IsSubsetOf method.
* SecurityManager.cs: Simplified IsGranted and added support for 2.0
(where all permissions support unrestricted). Changed desclarative
security syntax not to use flags (like the rest of the source code).
2005-06-16 Sebastien Pouliot <sebastien@ximian.com>
* NamedPermissionSet.cs: A default NamedPermissionSet is Unrestricted.
* SecurityManager.cs: Simplified LinkDemandFullTrust as FullTrust is
immutable.
2005-06-14 Sebastien Pouliot <sebastien@ximian.com>
* SecurityManager.cs: Added ResolvingPolicyLevel property to enable
support for FullTrustAssemblies during policy resolution. Reworked
(simplified) locking. Moved check for CheckExecutionRights to the
"right" place.
* PermissionSet.cs: Added shortcut in GetPermission(Type).
2005-06-08 Sebastien Pouliot <sebastien@ximian.com>
* AllowPartiallyTrustedCallersAttribute.cs, HostSecurityManagerFlags.cs
IEvidenceFactory.cs, IPermission.cs, ISecurityEncodable.cs,
ISecurityPolicyEncodable.cs, IStackWalk.cs, NamedPermissionSet.cs,
PolicyLevelType.cs, SecureString.cs, SecurityElement.cs,
SecurityZone.cs, UnverifiableCodeAttribute.cs, VerificationException.cs
XmlSyntaxException.cs: Fix 2.0 beta2 API changes (which is mostly
adding ComVisible attributes to classes).
2005-06-01 Sebastien Pouliot <sebastien@ximian.com>
* PermissionBuilder.cs: Removed unification stuff. This is done at a
lower level.
* SecurityManager.cs: Split loading PolicyLevel in two phases. The
PolicyHierarchy is now available after phase 1 which ensures we can
load permission from outside corlib.
2005-05-28 Sebastien Pouliot <sebastien@ximian.com>
* HostSecurityManager.cs: Added check for ActivationArguments in
application evidences.
2005-05-27 Sebastien Pouliot <sebastien@ximian.com>
* CodeAccessPermission.cs: Allow unrestricted identity permissions in
2.0.
* PermissionBuilder.cs: New. Internal class to help create permission
instances from XML or with a fully qualified name. This class also
deals with unification.
* PermissionSet.cs: Use PermissionBuilder to create permissions in
FromXml method. Many 2.0 fixes (mostly to support unrestricted
identity permissions)
2005-05-26 Sebastien Pouliot <sebastien@ximian.com>
* CodeAccessPermission.cs: Fix typo for PermitOnly. Added ComVisible
attribute for NET_2_0 profile.
* PermissionSet.cs: Changed static string to const. Added ComVisible
attribute for NET_2_0 profile.
* SecurityContext.cs: Capture the identity token but don't create a
WindowsIdentity instance unless required (e.g. Run). This requires
less privileges (so it runs better that way under CAS).
2005-05-25 Sebastien Pouliot <sebastien@ximian.com>
* SecurityException.cs: PermissionState isn't always serialized
(depending on the security policy) so it cannot always be deserialized
too (and this must work without throwing exceptions).
2005-05-20 Sebastien Pouliot <sebastien@ximian.com>
* SecurityContext.cs: Includes more methods in NET_1_1 to enable
ThreadPool.UnsafeQueueUserWorkItem to work properly (i.e. without
stack propagation).
2005-05-16 Sebastien Pouliot <sebastien@ximian.com>
* PermissionSet.cs: Add support for "hidden" read-only mode (as used
by PolicyStatement).
* SecurityFrame.cs: Add some debugging code in the ToString method.
* SecurityManager.cs: Changed internal API so we can display the
permission that failed in a PermissionSet (e.g. assembly or appdomain).
2005-05-11 Sebastien Pouliot <sebastien@ximian.com>
* SecurityManager.cs: GetZoneAndOrigin is present in 1.1 too (but is
hidden from mono-api-info because of the LinkDemand for ECMA key).
2005-05-09 Sebastien Pouliot <sebastien@ximian.com>
* SecurityContext.cs: That was the wrong place to capture the stack.
2005-05-09 Sebastien Pouliot <sebastien@ximian.com>
* SecurityContext.cs: Capture the CompressedStack when the current
context one is empty.
* SecurityManager.cs: Class is now static (2.0).
* SecurityTreatAsSafeAttribute.cs: Fixed AttributeTargets.
2005-05-06 Sebastien Pouliot <sebastien@ximian.com>
* CodeAccessPermission.cs: Reworked frames check to check only for
the stack modifiers. Throwing a SecurityException now calls Assembly.
UnprotectedGetName () to avoid throwing (recursively) other
SecurityExceptions.
* PermissionSet.cs: Reworked frames check to include Assembly (moved)
and AppDomain (new) transitions.
* SecurityFrame.cs: Added Domain member to match the runtime structure
definition. Removed debugging code (will be moved into the runtime
later) as it can cause SecurityException is some cases.
* SecurityManager.cs: Added a method to check if a PermissionSet is
granted by an AppDomain.
2005-04-28 Sebastien Pouliot <sebastien@ximian.com>
* PermissionSetCollection.cs: Updated wrt beta2. Seems this will be
removed before 2.0 final.
* HostProtectionException.cs: Updated wrt beta2. Added TODO as it
isn't support by the runtime.
* SecurityContext.cs: Updated wrt beta2. Class is now internal in
NET_1_1 to allow the compressed stack propagation to other threads.
* SecurityCriticalAttribute.cs: Added support for property Scope.
* SecurityException.cs: Removed PermitOnlySetInstance property to
match beta2.
* SecurityTransparentAttribute.cs: Fixed AttributeUsage. Added TODO
as it isn't support by the runtime.
* SuppressUnmanagedCodeSecurityAttribute.cs: Added delegates to usage
in NET_2_0.
2005-04-27 Sebastien Pouliot <sebastien@ximian.com>
* SecurityCriticalScope.cs: New. Enum introduced in 2.0 beta2.
* SecurityTreatAsSafeAttribute.cs: New. Attribute introducted in 2.0
beta2.
2005-04-25 Sebastien Pouliot <sebastien@ximian.com>
* HostSecurityManager.cs: Now refers to HostSecurityManagerOptions.
* HostSecurityManagerFlags.cs: Renamed enum to
HostSecurityManagerOptions.
2005-03-31 Sebastien Pouliot <sebastien@ximian.com>
* SecurityException.cs: Added try/catch in GetObjectData because the
PermissionState property is serialized only if both ControlEvidence
and ControlPolicy are granted.
2005-03-24 Sebastien Pouliot <sebastien@ximian.com>
* CodeAccessPermission.cs: Fixed PermitOnly when used in a set. Added
an InheritanceDemand for ControlEvidence and ControlPolicy on the
class.
* PermissionSet.cs: Added an InheritanceDemand for MS public key on
class.
* SecurityException.cs: Moved PermissionType up in ToString as this
property isn't restricted (i.e. will be part of the output even if
the other properties can't make it).
2005-03-15 Sebastien Pouliot <sebastien@ximian.com>
* CodeAccessPermission.cs: Fixed depth for starting the stack walk
(imperative) and fixed assert condition.
* PermissionSet.cs: Fixed depth for starting the stack walk.
* SecurityFrame.cs: Reversed stack. Added optional debugging code.
2005-03-14 Sebastien Pouliot <sebastien@ximian.com>
* SecurityManager.cs: Fix CodeAccessPermissionTest.CustomCAS unit test
when --security is enabled (code was over-optimized ;-).
2005-03-11 Sebastien Pouliot <sebastien@ximian.com>
* SecurityManager.cs: Added methods to support reflection query and
invoke for LinkDemand and InheritanceDemand. Added method to do a
stack walk (demand) when a p/invoking (called by JIT generated code).
2005-03-02 Sebastien Pouliot <sebastien@ximian.com>
* CodeAccessPermission.cs,
* PermissionSet.cs: Don't throw NotSupportedException if the security
manager (SecurityManager.SecurityEnabled) is off.
2005-02-25 Sebastien Pouliot <sebastien@ximian.com>
* CodeAccessPermission.cs: Implement Equals for NET_2_0 profile.
* PermissionSet.cs: Added code to decode the metadata format used for
declarative security in 2.0 (except enums and arrays now).
* PermissionSetCollection.cs: Added code to decode from the new metadata
format used for declarative security in 2.0.
* SecurityManager.cs: Added support for LinkDemandChoice, Inheritance
DemandChoice and DemandChoice (2.0). Added support for reflected
LinkDemand (promotes the demand to a full Demand).
2005-02-15 Sebastien Pouliot <sebastien@ximian.com>
* SecurityException.cs: Show the method informations when displaying a
SecurityException.
* SecurityManager.cs: Reworked InheritanceDemand implementation. Added
a new method to throw a SecurityException for an InheritanceDemand.
2005-02-10 Sebastien Pouliot <sebastien@ximian.com>
* SecurityManager.cs: Reduced the number of parameters for LinkDemand.
Removed a (forgotten) debugging message.
2005-02-10 Sebastien Pouliot <sebastien@ximian.com>
* SecurityException.cs: Show more information when a SecurityException
occurs to help debugging.
* SecurityManager.cs: Reworked LinkDemand implementation. Supply more
informations when throwing a SecurityException for LinkDemand.
* PermissionSet.cs: Remove (now) unused code for LinkDemand.
2005-02-08 Sebastien Pouliot <sebastien@ximian.com>
* SecurityManager.cs: Updated code for LinkDemand (and it's special
cases).
2005-01-27 Sebastien Pouliot <sebastien@ximian.com>
* CodeAccessPermission.cs: Process Deny for empty PermissionSet (e.g.
an unrestricted permission set must deny all permissions).
* SecurityException.cs: Added missing HResult to NET_2_0 constructors.
Added securiy permissions for GrantedSet, RefusedSet and
PermissionState properties (to avoid leaking policy informations).
Make sure that ToString() always works.
* SecurityManager.cs: Remove outdated comments (now that the
declarative attributes are in place).
2005-01-25 Sebastien Pouliot <sebastien@ximian.com>
* SecurityManager.cs: Now use Environment.InternalGetFolderPath to
avoid recursion when initializing security policies.
2005-01-24 Sebastien Pouliot <sebastien@ximian.com>
* CodeAccessPermission.cs: Made ThrowSecurityException static so it
can be reused from PermissionSet.
* SecurityManager.cs: Use the new icalls for SecurityEnabled and
CheckExecutionRights properties. Fix IsGranted for unrestricted
permissions. Set type correctly when loading policy files.
* PermissionSet.cs: Now supports unrestricted permission set when
evaluating demands.
2005-01-22 Sebastien Pouliot <sebastien@ximian.com>
* SecurityFrame.cs: Keep RuntimeDeclSecurityEntry enum in sync with
runtime (added index to allow AOT to work with declarative security).
2005-01-19 Sebastien Pouliot <sebastien@ximian.com>
* SecurityManager.cs: Fix the regressions on NET_1_1 introduced by my
refactoring 10 days ago.
2005-01-11 Sebastien Pouliot <sebastien@ximian.com>
* PermissionSet.cs: Simplified GetHashCode as two exact copies may
have different hash codes (documented as such). This fix some unit
tests for 2.0.
2005-01-10 Sebastien Pouliot <sebastien@ximian.com>
* HostSecurityManager.cs: Fix signature as DetermineApplicationTrust
doesn't return a boolean anymore.
* SecurityElement.cs: The attributes and children elements are not
indented in 2.0. This fix many unit tests that do string compares.
* PermissionSetCollection.cs: We can't trust all IList implementations
to throw the ArgumentOutOfRangeException - so we better do it here.
2005-01-09 Sebastien Pouliot <sebastien@ximian.com>
* CodeAccessPermission.cs: CheckAssert, CheckDemand, CheckDeny and
CheckPermitOnly are no more publicly avaiable in Fx 2.0 and have been
changed to internal for all profiles. Updated comments to reflect the
(better) documentation available with 2.0.
* HostSecurityManager.cs: Updated to Dec CTP specs. There is missing
documentation (and/or classes) to implement completly the
DetermineApplicationTrust method at this point.
* PermissionSetCollection.cs: Completed implementation.
* PermissionSet.cs: Fix the case where Assert, Deny and PermitOnly
must be ignored for non-CAS permissions.
* SecurityManager.cs: Refactored resolve methods to implements
ResolveSystemPolicy (a resolve without the AppDomain policy level).
Added a default implementation for GetZoneAndOrigin (empty ArrayList)
which seems to be right (at least) for FullTrust.
2005-01-08 Sebastien Pouliot <sebastien@ximian.com>
* AllowPartiallyTrustedCallersAttribute.cs: Cleanup;
* HostSecurityManagerFlags.cs: Updated flags for 2.0 Dec CTP.
* SecurityCriticalAttribute.cs: New. New 2.0 attribute.
* SecurityTransparentAttribute.cs: New. New 2.0 attribute.
* SuppressUnmanagedCodeSecurityAttribute.cs: Cleanup;
2004-12-20 Sebastien Pouliot <sebastien@ximian.com>
* CodeAccessPermission.cs: Refactored to play more nicely with
PermissionSet and the new functionalities in the runtime.
* PermissionSet.cs: Modified to use the new functionalities in the
runtime. This allows the declarative stack modifiers to work in a
stack walk.
* SecurityFrame.cs: New. This is the managed representation of the
security informations associated with a stack frame. This current
version only support declarative stack modifiers.
* SecurityManager.cs: Modified to use the new functionalities in the
runtime.
2004-11-30 Sebastien Pouliot <sebastien@ximian.com>
* CodeAccessPermission.cs:
* NamedPermissionSet.cs:
* PermissionSet.cs:
* SecurityElement.cs:
* SecurityException.cs:
Added ComVisible attributes to match 2.0 October Preview.
* SecureString.cs: Added an internal method to get the unencrypted
string (required to use the string inside mscorlib).
2004-10-19 Sebastien Pouliot <sebastien@ximian.com>
* SecurityManager.cs: Changed private static methods to use a single
parameter (as method permissions overrides class permissions for
demand, assert, deny and permitonly).
2004-10-15 Sebastien Pouliot <sebastien@ximian.com>
* CodeAccessPermission.cs: Implemented stubs (soon to be icalls) to
get/set/clear the current security frame on the stack. Implemented
Assert, Deny and PermitOnly with the new methods. Changed Demand to
use the CheckAssert, CheckDeny, CheckPermitOnly and CheckDemand
introduced in 2.0.
* PermissionSet.cs: Fixed IsEmpty using documentation from 2.0 beta 1.
Implemented immediate (i.e. no stack walk) caller demand (CAS and
non-CAS) required for LinkDemand and InheritanceDemand. Implemented
Assert, Deny and PermitOnly using CodeAccessPermission new methods.
Re-implement Demand to separate CAS and non-CAS permissions.
* SecurityManager.cs: Added new private static methods that will
either be called by the JIT (linkdemand), runtime (inheritancedemand)
or by code emitted by the JIT (demand, assert, deny and permitonly).
2004-10-15 Sebastien Pouliot <sebastien@ximian.com>
* SecurityException.cs: Provide more details when a security exception
is raised (to help debugging).
2004-09-02 Sebastien Pouliot <sebastien@ximian.com>
* PermissionSet.cs: Updated to match latest unit tests, i.e. match
Fx 1.1 on NET_1_1 and Fx 2.0 (beta 1) in NET_2_0.
* SecurityElement.cs: FromString is now internal before NET_2_0.
2004-09-01 Sebastien Pouliot <sebastien@ximian.com>
* NamedPermissionSet.cs: FromXml now calls base class instead of an
internal method of PermissionSet. This should allow class to inherit
from NamedPermissionSet properly.
* PermissionSet.cs: Added an internal PolicyLevel property to allow
policy file class name resolution. Fixed IsEmpty to return true if
the list contains "empty" permissions. Fixed Copy to copy permissions
even for unrestricted sets (again because of IUnrestrictedPermission).
* SecurityManager.cs: Fixed Resolve(Evidence) because permission
classes Intersect methods can either return null or an empty
PermissionSet. Fixed ResolvePolicy(Evidence[]) for null (NET_2_0).
2004-08-31 Sebastien Pouliot <sebastien@ximian.com>
* PermissionSet.cs: Fixed RemovePermission and Intersect (due to typos
in unit tests). Fixed SetPermission (null).
2004-08-30 Sebastien Pouliot <sebastien@ximian.com>
* NamedPermissionSet.cs: Fixed Description in copies, GetHashCode and
Equals (for NET_2_0). Fixed handling of null Name when deserialized
from XML.
* PermissionSet.cs: AddPermission now unions permissions of the same
type. CopyTo throw (most) exceptions only if there are items in the
set. Implemented Demand (but without support for Assert, Deny and
PermitOnly). Fixed deserialized from XML when no class is specified.
Started implementation of ConvertPermissionSet (error cases). Fixed
Intersect to be compatible (including bugs like FDBK14612) with MS.
RemovePermission now compatible with MS (bug? FDBK14622). Fixed Union
to work with permissions that do not implement IUnrestrictedPermission.
2004-08-26 Sebastien Pouliot <sebastien@ximian.com>
* SecurityElement.cs: Fixed the new Copy() in Fx 2.0 as it isn't a
deep copy. Throw proper exceptions in FromString (Fx 2.0).
* SecurityManager.cs: Throw a NullReference exception in
SavePolicyLevel as MS won't fix it (FDBK13121).
2004-08-19 Atsushi Enomoto <atsushi@ximian.com>
* CodeAccessPermission.cs : csc build fix. Currently mcs has bugs on
CS0136 error detection (variable identifiers in switch cases share
the scope).
2004-08-17 Sebastien Pouliot <sebastien@ximian.com>
* CodeAccessPermission.cs: Added common methods to help building all
Permissions classes in corlib. Most are declared static as they can
also help non CodeAccessPermission-derived permissions.
2004-08-12 Sebastien Pouliot <sebastien@ximian.com>
* SecurityManager.cs: Change ResolvePolicy to only care about host
provided evidence to create identity permissions.
* SecurityContextSwitcher.cs: Added missing [ReliabilityContract] to
Undo method.
2004-08-11 Sebastien Pouliot <sebastien@ximian.com>
* CodeAccessPermission.cs: Basic implementation for Demand (without
full stack trace, i.e. Assert, Deny and PermitOnly aren't considered).
Added TODO to unimplemented NET_2_0 methods.
* HostSecurityManager.cs: Added comments (as it looked not implemented
even to myself).
* PermissionSet.cs: Fixed Unrestricted when copied. Changed exception
ordering in Copy (ArgumentNullException couldn't work). Made IsEmpty
more robust.
* SecurityManager.cs: Implemented IsGranted using Assembly.Demand.
Basic implementation for policy resolution.
2004-08-03 Sebastien Pouliot <sebastien@ximian.com>
* PermissionSetCollection.cs: New class in Fx 2.0.
* SecureString.cs: New class in Fx 2.0. Not yet encrypted.
2004-08-02 Sebastien Pouliot <sebastien@ximian.com>
* PolicyTypeLevel.cs: Removed duplicate license.
* SecurityManager.cs: Moved secuirty demands as attributes (but mcs
doesn't seem to encode them properly as they show up in corcompare).
Implemented IsGranted, ResolvePolicy (but some code is still missing
in related classes) and SavePolicy/SavePolicyLevel.
2004-07-14 Sebastien Pouliot <sebastien@ximian.com>
* CodeAccessPermission.cs: Added CheckAssert, CheckDemand, CheckDeny,
CheckPermitOnly, Equals and GetHashCode to NET_2_0 profile. Actualized
TODOs. Removed duplicate license.
* NamedPermissionSet.cs: Added Equals/GetHashCode to NET_2_0 profile.
Removed duplicate license.
* PermissionSet.cs: Added Equals/GetHashCode to NET_2_0 profile.
Removed duplicate license.
* SecurityElement.cs: Added Copy and FromString methods to NET_2_0
profile. Removed duplicate license.
* SecurityException.cs: Added new constructors and properties to
NET_2_0 profile. Removed duplicate license.
* SecurityManager.cs: Added GetZoneAndOrigin and ResolvePolicy to
NET_2_0 profile. Removed duplicate license.
* VerificationException.cs: Implements _Exception for NET_2_0 profile.
Removed duplicate license.
* XmlSyntaxException.cs: Implements _Exception for NET_2_0 profile.
Removed duplicate license.
2004-07-14 Sebastien Pouliot <sebastien@ximian.com>
* HostProtectionException.cs: New class in Fx 2.0.
* HostSecurityManager.cs: New class in Fx 2.0.
* HostSecurityManagerFlags.cs: New enum in Fx 2.0.
* SecurityContext.cs: New class in Fx 2.0.
* SecurityContextSwitcher.cs: New structure in Fx 2.0.
2004-06-15 Gert Driesen <drieseng@users.sourceforge.net>
* XmlSyntaxException.cs: added missing serialization ctor
* SecurityException.cs: fixed typo
2004-03-05 Atsushi Enomoto <atsushi@ximian.com>
* SecurityElement.cs : ignore prefix; this enables RSA.FromXmlString()
to allow namespaced elements.
2004-01-27 Sebastien Pouliot <spouliot@videotron.ca>
* SecurityElement.cs: Attributes are now kept in an ArrayList (but
still returned in an Hashtable) so the attributes order can be
kept like MS implementation (but Hashtable cannot guarantee this).
2004-01-26 Sebastien Pouliot <spouliot@videotron.ca>
* NamedPermissionSet.cs: Changed internal constructor
NamedPermissionSet (SecurityElement e) to NamedPermissionSet ().
* PermissionSet.cs: Changed internal constructor
PermissionSet (SecurityElement e) to PermissionSet ().
2004-01-24 David Sheldon <dave-mono@earth.li>
* SecurityElement.cs: Changed indentation in ToString, it seems
MS indent by 3 spaces, not 4. Also added NewLine to childless
elements.
2004-01-24 David Sheldon <dave-mono@earth.li>
* SecurityElement.cs: Changed newline distribution in ToString.
Matches MS better.
2004-01-06 Sebastien Pouliot <spouliot@videotron.ca>
* CodeAccessPermission.cs: Fixed Demand for custom permissions
(permissions that do not implement, the internal, IBuiltInPermission).
Ref. http://bugzilla.ximian.com/show_bug.cgi?id=52626
* SecurityException.cs: Fixed ToString() which could, when no
PermissionType where specified, throws a NullReferenceException.
Ref. http://bugzilla.ximian.com/show_bug.cgi?id=52626
2004-01-05 Sebastien Pouliot <spouliot@videotron.ca>
* CodeAccessPermission.cs: Fixed Union to match 1.1/1.2 documentation.
Simplified ToString to match MS implementation. Added LAMESPEC to
Assert, Demand, Deny and PermitOnly as they aren't virtual.
* NamedPermissionSet.cs: Added internal constructor for PolicyLevel.
* PermissionSet.cs: Added internal constructor for PolicyLevel.
* SecurityManager.cs: Moved some stuff to PolicyLevel class (e.g. Load).
2004-01-03 Sebastien Pouliot <spouliot@videotron.ca>
* SecurityManager.cs: Added some basic stuff to make some security unit
tests works (mostly when using PolicyHierarchy).
2004-01-02 Sebastien Pouliot <spouliot@videotron.ca>
* AllowPartiallyTrustedCallersAttribute.cs: Fixed AttributeUsage using
1.2 documentation (AllowMultiple=false, Inherited=false)
* NamedPermissionSet.cs: Changes to match unit tests.
* PermissionSet.cs: Implemented Copy, Intersect, IsSubsetOf and Union
methods. Corrected FromXml.
* PolicyLevelType.cs: Added missing [Serializable].
* SecurityElement.cs: Fixed constructor to match unit tests.
* SecurityException.cs: Added support for GrantedSet and RefusedSet
properties (since 1.1). Set HResult to 0x8013150A.
* SecurityZone.cs: Added missing [Serializable].
* SuppressUnmanagedCodeSecurityAttribute.cs: Fixed AttributeUsage using
1.2 documentation (AllowMultiple=true, Inherited=false)
* UnverifiableCodeAttribute.cs: Fixed AttributeUsage using 1.2
documentation (AllowMultiple=true, Inherited=false)
2003-06-29 Sebastien Pouliot <spouliot@videotron.ca>
* PermissionSet.cs: Added missing "virtual" to Count, IsSynchronized
and SyncRoot.
2003-06-29 Nick Drochak <ndrochak@gol.com>
* NamedPermissionSet.cs : Fix buglet/typo/thinko. Thank you unit tests.
2003-06-28 Sebastien Pouliot <spouliot@videotron.ca>
* CodeAccessPermission.cs: Added missing methods. Removed old XML
documentation (present in monodoc). Added missing MonoTODO attrs.
* NamedPermissionSet.cs : Changed some code from result of unit
tests. Updated MonoTODO attributes.
* PermissionSet.cs: Added missing methods. Removed old XML
documentation (present in monodoc). Added missing MonoTODO attrs.
Added code to some methods.
* SecurityManager.cs: Added missing MonoTODO attributes.
2003-05-09 Sebastien Pouliot <spouliot@videotron.ca>
* AllowPartiallyTrustedCallersAttribute.cs: New. Class was missing
from original 1.0 documentation (but inclufed in framework 1.0)
2002-06-10 Duncan Mak <duncan@ximian.com>
* IEvidenceFactory.cs (Evidence): Added missing method.
* SuppressUnmanagedCodeSecurityAttribute.cs:
* UnverifiableCodeAttribute.cs: Added missing
AttributeUsage attribute.
2002-06-05 Nick Drochak <ndrochak@gol.com>
* SecurityElement.cs: Fixed couple of hard to spot typos which were
causing valid names and keys to be rejected.
2002-04-28 Lawrence Pit <loz@cable.a2000.nl>
* CodeAccessPermission.cs : implemented ToString method
2002-04-27 Lawrence Pit <loz@cable.a2000.nl>
* SecurityElement.cs: fixed bugs, implemented several methods
2002-03-12 Duncan Mak <duncan@ximian.com>
* SecurityException.cs: Inherit from SystemException, not Exception.
2002-02-23 Nick Drochak <ndrochak@gol.com>
* SecurityElement.cs: fixed typo
2002-02-13 Dan Lewis <dihlewis@yahoo.co.uk>
* NamedPermissionSet.cs: New file (stub)
2002-02-07 Duncan Mak <duncan@ximian.com>
* SecurityException.cs: Reformatted to fit the form of other
Exceptions. Added serialization bits.
2002-01-05 Ravi Pratap <ravi@ximian.com>
* SecurityElement.cs : Insert MonoTODO attribute.
2002-01-02 Nick Drochak <ndrochak@gol.com>
* CodeAccessPermission.cs: Fix syntax error hidden by exclusion in .build file
2001-12-30 Nick Drochak <ndrochak@gol.com>
* PermissionSet.cs SecurityManager.cs: New Files
* CodeAccessPermission.cs: Add Skeleton code
* IPermission.cs: Make public and inherit from ISecurityEncodable
* ISecurityEncodable.cs: Make interface public
* ISecurityPolicyEncodable.cs: Ditto
* IStackWalk.cs: Ditto
2001-12-29 Nick Drochak <ndrochak@gol.com>
* ISecurityPolicyEncodable.cs, PolicyLevelType.cs,
SecurityZone.cs, SecurityException.cs, UnverifiableCodeAttribute.cs,
SuppressUnmanagedCodeSecurityAttribute.cs,
VerificationException.cs, XmlSyntaxException.cs: New files
2001-12-21 Miguel de Icaza <miguel@ximian.com>
* SecurityElement.cs, CodeAccessPermission.cs IPermission.cs
IStackWalk.cs SecurityElement.cs ISecurityEncodable.cs: New files.
|
