/*=============================================================================
**
** Class: AsmExecute
**
** Purpose: Used to setup the correct hosting environment before executing an assembly
**
** Date: 10/20/2000
** 5/10/2001 Rev for CLR Beta2
**
** Copyright (c) Microsoft, 1999-2001
**
=============================================================================*/
using System.Reflection;
using System.Configuration.Assemblies;
[assembly:AssemblyCultureAttribute("")]
[assembly:AssemblyVersionAttribute("1.0.128.0")]
[assembly:AssemblyKeyFileAttribute(/*"..\..\*/"asmexecKey.snk")]
[assembly:AssemblyTitleAttribute("Microsoft Fusion .Net Assembly Execute Host")]
[assembly:AssemblyDescriptionAttribute("Microsoft Fusion Network Services CLR Host for executing .Net assemblies")]
[assembly:AssemblyProductAttribute("Microsoft Fusion Network Services")]
[assembly:AssemblyInformationalVersionAttribute("1.0.0.0")]
[assembly:AssemblyTrademarkAttribute("Microsoft® is a registered trademark of Microsoft Corporation. Windows(TM) is a trademark of Microsoft Corporation")]
[assembly:AssemblyCompanyAttribute("Microsoft Corporation")]
[assembly:AssemblyCopyrightAttribute("Copyright © Microsoft Corp. 1999-2001. All rights reserved.")]
//BUGBUG??
[assembly:System.CLSCompliant(true)]
//namespace Microsoft {
namespace FusionCLRHost {
using System;
using System.Text;
using System.Runtime.Remoting;
using System.Globalization;
using System.Security;
using System.Security.Policy;
using System.Security.Permissions;
using System.Collections;
using System.Runtime.InteropServices;
// [GuidAttribute("E612D54D-B42A-32B5-B1D7-8490CE09705C")]
public interface IAsmExecute
{
int Execute(string codebase, Int32 flags, Int32 evidenceZone, string evidenceSrcUrl, string stringArg);
}
[GuidAttribute("7EB9A84D-646E-3764-BBCA-3789CDB3447B")]
public class AsmExecute : MarshalByRefObject, IAsmExecute
{
// this must be the same as defined in the caller...
private static readonly int SECURITY_NONE = 0x00;
private static readonly int SECURITY_ZONE = 0x01;
private static readonly int SECURITY_SITE = 0x02;
// Arguments: Codebase, flags, zone, srcurl
// If the flags indicate zone then a zone must be provided.
// If the flags indicate a site then a srcurl must be provided, codebase must be a filepath
public int Execute(string codebase, Int32 flags, Int32 evidenceZone, string evidenceSrcUrl, string stringArg)
{
string file = codebase;
if((file.Length == 0) || (file[0] == '\0'))
throw new ArgumentException("Invalid codebase");
Console.WriteLine("Codebase- {0}", file);
// Find the appbase of the executable. For now we assume the
// form to be http://blah/... with forward slashes. This
// need to be update.
// Note: aso works with '\' as in file paths
string appbase = null;
string ConfigurationFile = null;
int k = file.LastIndexOf('/');
if(k <= 0)
{
k = file.LastIndexOf('\\');
if(k == 0)
{
appbase = file;
ConfigurationFile = file;
}
}
if(k != 0)
{
// if k is still < 0 at this point, appbase should be an empty string
appbase = file.Substring(0,k+1);
if(k+1 < file.Length)
ConfigurationFile = file.Substring(k+1);
}
// Check 1: disallow non-fully qualified path/codebase
if ((appbase.Length == 0) || (appbase[0] == '.'))
throw new ArgumentException("Codebase must be fully qualified");
// BUGBUG: should appbase be the source of the code, not local?
Console.WriteLine("AppBase- {0}", appbase);
// Build up the configuration File name
if(ConfigurationFile != null)
{
StringBuilder bld = new StringBuilder();
bld.Append(ConfigurationFile);
bld.Append(".config");
ConfigurationFile = bld.ToString();
}
Console.WriteLine("Config- {0}", ConfigurationFile);
// Get the flags
// 0x1 we have Zone
// 0x2 we have a unique id.
int dwFlag = flags;
Evidence documentSecurity = null;
// Check 2: disallow called with no evidence
if (dwFlag == SECURITY_NONE)
{
// BUGBUG?: disallow executing with no evidence
throw new ArgumentException("Flag set at no evidence");
}
if((dwFlag & SECURITY_SITE) != 0 ||
(dwFlag & SECURITY_ZONE) != 0)
documentSecurity = new Evidence();
// BUGBUG: check other invalid cases for dwFlag
if((dwFlag & SECURITY_ZONE) != 0)
{
int zone = evidenceZone;
documentSecurity.AddHost( new Zone((System.Security.SecurityZone)zone) );
Console.WriteLine("Evidence Zone- {0}", zone);
}
if((dwFlag & SECURITY_SITE) != 0)
{
if (file.Length<7||String.Compare(file.Substring(0,7),"file://",true)!=0)
{
documentSecurity.AddHost( System.Security.Policy.Site.CreateFromUrl(evidenceSrcUrl) );
Console.WriteLine("Evidence SiteFromUrl- {0}", evidenceSrcUrl);
// if srcUrl is given, assume file/appbase is a local file path
StringBuilder bld = new StringBuilder();
bld.Append("file://");
bld.Append(appbase);
documentSecurity.AddHost( new ApplicationDirectory(bld.ToString()) );
Console.WriteLine("Evidence AppDir- {0}", bld);
}
// URLs may be matched exactly or by a wildcard in the final position,
// for example: http://www.fourthcoffee.com/process/*
StringBuilder bld2 = new StringBuilder();
if (evidenceSrcUrl[evidenceSrcUrl.Length-1] == '/')
bld2.Append(evidenceSrcUrl);
else
{
int j = evidenceSrcUrl.LastIndexOf('/');
if(j > 0)
{
if (j > 7) // evidenceSrcUrl == "http://a/file.exe"
bld2.Append(evidenceSrcUrl.Substring(0,j+1));
else
{
// evidenceSrcUrl == "http://foo.com" -> but why?
bld2.Append(evidenceSrcUrl);
bld2.Append('/');
}
}
else
throw new ArgumentException("Invalid Url format");
}
bld2.Append('*');
documentSecurity.AddHost( new Url(bld2.ToString()) );
Console.WriteLine("Evidence Url- {0}", bld2);
}
// other evidence: Hash, Publisher, StrongName
// Set domain name to site name if possible
string friendlyName = null;
if((dwFlag & SECURITY_SITE) != 0)
friendlyName = GetSiteName(evidenceSrcUrl);
else
friendlyName = GetSiteName(file);
Console.WriteLine("AppDomain friendlyName- {0}", friendlyName);
// set up arguments
// only allow 1 for now
string[] args;
if (stringArg != null)
{
args = new string[1];
args[0] = stringArg;
}
else
args = new string[0];
AppDomainSetup properties = new AppDomainSetup();
properties.ApplicationBase = appbase;
properties.PrivateBinPath = "bin";
if(ConfigurationFile != null)
properties.ConfigurationFile = ConfigurationFile;
AppDomain proxy = AppDomain.CreateDomain(friendlyName, documentSecurity, properties);
if(proxy != null)
{
AssemblyName asmname = Assembly.GetExecutingAssembly().GetName();
Console.WriteLine("AsmExecute name- {0}", asmname);
try
{
// Use remoting. Otherwise asm will be loaded both in current and the new AppDomain
// ... as explained by URT dev
// asmexec.dll must be found on path (CorPath?) or in the GAC for this to work.
ObjectHandle handle = proxy.CreateInstance(asmname.FullName, "FusionCLRHost.AsmExecute");
if (handle != null)
{
AsmExecute execproxy = (AsmExecute)handle.Unwrap();
int retVal = -1;
Console.WriteLine("\n========");
if (execproxy != null)
retVal = execproxy.ExecuteAsAssembly(file, documentSecurity, args);
Console.WriteLine("\n========");
return retVal;
}
}
catch(Exception e)
{
Console.WriteLine("AsmExecute CreateInstance(AsmExecute) failed: {0}", e.Message);
throw e;
}
}
else
Console.WriteLine("AsmExecute CreateDomain failed");
// BUGBUG: throw Exception?
return -1;
}
// This method must be internal, since it asserts the ControlEvidence permission.
// private --> require ReflectionPermission not known how
// solution: public but LinkDemand StrongNameIdentity of ours
[ComVisible(false)]
[StrongNameIdentityPermissionAttribute(SecurityAction.LinkDemand, PublicKey = "0x002400000480000094000000060200000024000052534131000400000100010013F3CD6C291DF1566D3C6E7269800C35D9212A622FA934492AD0833DAEA2574D12A9AA2A9392FF30A892ECD3F7F9B57211A541CC4712A184450992E143C1BDBC864E31826598B0D90BB2F04C5C50F004771370F9C76444696E8DC18999A3D8448D26EBF3A9E68796CA3A7D2ACC47B491455E462F4E6DDD9DF338171D911D88B2" )]
public int ExecuteAsAssembly(string file, Evidence evidence, string[] args)
{
new PermissionSet(PermissionState.Unrestricted).Assert();
return AppDomain.CurrentDomain.ExecuteAssembly(file, evidence, args);
}
private static string GetSiteName(string pURL)
{
// BUGBUG: this does not work w/ UNC or file:// (?)
string siteName = null;
if(pURL != null) {
int j = pURL.IndexOf(':');
// If there is a protocal remove it. In a URL of the form
// yyyy://xxxx/zzzz where yyyy is the protocal, xxxx is
// the site and zzzz is extra we want to get xxxx.
if(j != -1 &&
j+3 < pURL.Length &&
pURL[j+1] == '/' &&
pURL[j+2] == '/')
{
j+=3;
// Remove characters after the
// next /.
int i = pURL.IndexOf('/',j);
if(i > -1)
siteName = pURL.Substring(j,i-j);
else
siteName = pURL.Substring(j);
}
if(siteName == null)
siteName = pURL;
}
return siteName;
}
}
}