Ejemplo n.º 1
0
        private static AssemblyDefinition[] LoadAssembliesAndSetUpAssemblyResolver(IEnumerable <string> assembyNames, string profileDirectory)
        {
            var assemblies = assembyNames.Select(a => AssemblyFactory.GetAssembly(Path.Combine(profileDirectory, a))).ToArray();

            AssemblySetResolver.SetUp(assemblies);
            return(assemblies);
        }
Ejemplo n.º 2
0
        public void Test()
        {
            // Step 1 - Step1: Detect methods that will fail at runtime if they're not [SC] or [SSC]

            const string requiresPrivilegesManual = @"
			System.Object Foo::Bar(System.Int32)
";

            var assembly1 = CompileTempAssembly(@"
			public class Foo {
				public static object Bar(int i) { return null; }
			}

			public class A {
				public unsafe void M1(int* i) {}
				public void M2() { Foo.Bar(0); }
				public void M3() { }
				public void M4() { M2(); }
				public unsafe void M5(int* i) { M1(i); }
			}

			unsafe public class CriticalType1 : I1
			{
				int* a;
				
				public void M6()
				{
					Foo.Bar(3);
				}
			}

			public interface I1 {
				void M6();
			}

			public interface I2 {
				void NotImplemented();
			}
");
            var assembly2 = CompileTempAssembly(@"

			using System.Runtime.CompilerServices;

			public class B : I1 {
				public void M1() {
					Foo.Bar(0);
				}

				[MethodImpl(MethodImplOptions.InternalCall)]
				public extern void M2();

				[MethodImpl(MethodImplOptions.InternalCall)]
				internal extern void M3();

				[MethodImpl(MethodImplOptions.InternalCall)]
				public extern void M4();

				public void M5() { M4(); }

				public void M6() { M1(); }
			}
", assembly1.MainModule.Image.FileInformation.FullName);

            var expectedRequiresPrivileges = new[]
            { @"# This file has a list of methods that were automatically detected to require privileges ([sc] or [ssc])
# in order to not generate an exception at runtime.

# using 'System.Int32*' as a parameter type
System.Void A::M1(System.Int32*)

# using 'System.Int32*' as a parameter type
System.Void A::M5(System.Int32*)",

              @"# This file has a list of methods that were automatically detected to require privileges ([sc] or [ssc])
# in order to not generate an exception at runtime.

# internal call
System.Void B::M2()

# internal call
System.Void B::M3()

# internal call
System.Void B::M4()".Replace("\n", "\r\n") };

            var assemblies = new[] { assembly1, assembly2 };

            AssemblySetResolver.SetUp(assemblies);

            var cdf           = new CecilDefinitionFinder(assembly1);
            var criticalTypes = new[] { cdf.GetType("CriticalType1") };

            var actualRequiresPrivileges = DetectMethodsRequiringPrivileges(criticalTypes, assemblies);

            Assert.AreEqual(expectedRequiresPrivileges, actualRequiresPrivileges.ToArray());


            // Step 2 - "Floodfill" requiredprivileges methods to all their callers, only being stopped by [SSC]
            var canBeSscManual = new[]
            {
                // assembly1
                Compatibility.ParseMoonlightAuditFormat(@"
!SSC-AA4CC9592C6775C5327AAA826B6693FF
System.Void A::M2()
	lucas - I checked this, it's totally safe"    ),

                // assembly2
                Compatibility.ParseMoonlightAuditFormat(@"
!SSC-AA4CC9592C6775C5327AAA826B6693FF
System.Void B::M2()
	lucas - I checked this, it's totally safe"    )
            };

            /*
             * publicApis  -> shows for each public entry point wether it's going to be [SC] or not.  for each [SC] method.
             * injectionInstructions -> all methods (public/nonpublic) that require decoration go in here.
             */

            actualRequiresPrivileges[0] += requiresPrivilegesManual;

            var propagationReport = PropagateRequiredPrivileges(criticalTypes, canBeSscManual, actualRequiresPrivileges.ToArray(), assembly1, assembly2);

            const string expectedInjectionInstructions = @"
SC-M: System.Object Foo::Bar(System.Int32)
SC-M: System.Void A::M1(System.Int32*)
SC-M: System.Void A::M5(System.Int32*)
SSC-M: System.Void A::M2()
SC-M: System.Void B::M1()
SSC-M: System.Void B::M2()
SC-M: System.Void B::M3()
SC-M: System.Void B::M4()
SC-M: System.Void B::M5()
SC-M: System.Void B::M6()
SC-M: System.Void I1::M6()
SC-T: CriticalType1
";

            StringAssert.AssertLinesAreEquivalent(expectedInjectionInstructions, propagationReport.InjectionInstructions);

            const string expectedPublicApis = @"
System.Void A::.ctor()    #available
System.Void A::M2()    #available
System.Void A::M3()    #available
System.Void A::M4()    #available
System.Void A::M5(System.Int32*)    #unavailable: method itself requires privileges
System.Void B::.ctor()    #available
System.Void B::M2()    #available
System.Void Foo::.ctor()    #available
System.Void I2::NotImplemented()    #available
System.Void A::M1(System.Int32*)    #unavailable: method itself requires privileges
System.Void B::M1()    #unavailable: calls System.Object Foo::Bar(System.Int32) which requires privileges itself
System.Void B::M4()    #unavailable: method itself requires privileges
System.Void B::M5()    #unavailable: calls System.Void B::M4() which requires privileges itself
System.Void B::M6()    #unavailable: calls System.Void B::M1() which calls System.Object Foo::Bar(System.Int32) which requires privileges itself
System.Object Foo::Bar(System.Int32)    #unavailable: method itself requires privileges
System.Void I1::M6()    #unavailable: is the base method of System.Void B::M6() which calls System.Void B::M1() which calls System.Object Foo::Bar(System.Int32) which requires privileges itself
System.Void CriticalType1::.ctor()    #unavailable: lives in a critical type
System.Void CriticalType1::M6()    #unavailable: lives in a critical type
";

            Console.WriteLine(propagationReport.PublicApis);
            StringAssert.AssertLinesAreEquivalent(expectedPublicApis, propagationReport.PublicApis);
        }