diff options
| author | Jan Kotas <jkotas@microsoft.com> | 2015-03-21 15:40:51 -0700 |
|---|---|---|
| committer | Jan Kotas <jkotas@microsoft.com> | 2015-03-21 15:40:51 -0700 |
| commit | 725d6a91fffdf4603c8a9c74e15cbc83ebf0e3d6 (patch) | |
| tree | fcb60d394c01d951c870c9c9b6bb2a1ad9250314 /src/vm/methodtablebuilder.cpp | |
| parent | 4b3c47ac23abc7526204eaf001c2e9564eb6ab75 (diff) | |
| download | coreclr-725d6a91fffdf4603c8a9c74e15cbc83ebf0e3d6.tar.gz coreclr-725d6a91fffdf4603c8a9c74e15cbc83ebf0e3d6.tar.bz2 coreclr-725d6a91fffdf4603c8a9c74e15cbc83ebf0e3d6.zip | |
Add host flag to disable transparency checks in CoreCLR
A lot of security transparency annotations in corefx is missing or inconsistent. People keep running into MethodAccessExceptions because of that. It is not easy (nor cheap) to fix the annotations to make them consistent, and they are not actually required for any of the .NET Core scenarios.
This change is introducing a hosting flag to disable security transparency checks on CoreCLR, and adds this flag to all .NET Core hosts. The .NET Core hosts outside of the CoreCLR tree (e.g. ASP.NET 5) will need this flag added as well.
[tfs-changeset: 1437325]
Diffstat (limited to 'src/vm/methodtablebuilder.cpp')
| -rw-r--r-- | src/vm/methodtablebuilder.cpp | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/src/vm/methodtablebuilder.cpp b/src/vm/methodtablebuilder.cpp index b64772eb40..db099e2996 100644 --- a/src/vm/methodtablebuilder.cpp +++ b/src/vm/methodtablebuilder.cpp @@ -12441,6 +12441,9 @@ void MethodTableBuilder::VerifyInheritanceSecurity() if (IsInterface()) return; + if (!Security::IsTransparencyEnforcementEnabled()) + return; + // If we have a non-interface class, then do inheritance security // checks on it. The check starts by checking for inheritance // permission demands on the current class. If these first checks |