diff options
author | Jan Kotas <jkotas@microsoft.com> | 2015-03-21 15:40:51 -0700 |
---|---|---|
committer | Jan Kotas <jkotas@microsoft.com> | 2015-03-21 15:40:51 -0700 |
commit | 725d6a91fffdf4603c8a9c74e15cbc83ebf0e3d6 (patch) | |
tree | fcb60d394c01d951c870c9c9b6bb2a1ad9250314 /src/vm/security.cpp | |
parent | 4b3c47ac23abc7526204eaf001c2e9564eb6ab75 (diff) | |
download | coreclr-725d6a91fffdf4603c8a9c74e15cbc83ebf0e3d6.tar.gz coreclr-725d6a91fffdf4603c8a9c74e15cbc83ebf0e3d6.tar.bz2 coreclr-725d6a91fffdf4603c8a9c74e15cbc83ebf0e3d6.zip |
Add host flag to disable transparency checks in CoreCLR
A lot of security transparency annotations in corefx is missing or inconsistent. People keep running into MethodAccessExceptions because of that. It is not easy (nor cheap) to fix the annotations to make them consistent, and they are not actually required for any of the .NET Core scenarios.
This change is introducing a hosting flag to disable security transparency checks on CoreCLR, and adds this flag to all .NET Core hosts. The .NET Core hosts outside of the CoreCLR tree (e.g. ASP.NET 5) will need this flag added as well.
[tfs-changeset: 1437325]
Diffstat (limited to 'src/vm/security.cpp')
-rw-r--r-- | src/vm/security.cpp | 17 |
1 files changed, 17 insertions, 0 deletions
diff --git a/src/vm/security.cpp b/src/vm/security.cpp index f30ecd799c..e263c326f4 100644 --- a/src/vm/security.cpp +++ b/src/vm/security.cpp @@ -44,6 +44,23 @@ IPEFileSecurityDescriptor* Security::CreatePEFileSecurityDescriptor(AppDomain* p } #endif +BOOL Security::IsTransparencyEnforcementEnabled() +{ + LIMITED_METHOD_CONTRACT; + +#ifdef FEATURE_CORECLR + if (GetAppDomain()->IsTransparencyEnforcementDisabled()) + return FALSE; +#endif + +#ifdef _DEBUG + if (g_pConfig->DisableTransparencyEnforcement()) + return FALSE; +#endif + + return TRUE; +} + //--------------------------------------------------------------------------------------- // // Determine if security checks should be bypassed for a method because the method is |