1 files changed, 85 insertions, 0 deletions

diff --git a/src/vm/certificatecache.cpp b/src/vm/certificatecache.cpp
new file mode 100644
index 0000000000..21ee5a37e1
--- /dev/null
+++ b/src/vm/certificatecache.cpp
@@ -0,0 +1,85 @@
+// Licensed to the .NET Foundation under one or more agreements.
+// The .NET Foundation licenses this file to you under the MIT license.
+// See the LICENSE file in the project root for more information.
+// 
+
+// 
+
+
+#include "common.h"
+
+#ifdef FEATURE_CAS_POLICY
+#include "certificatecache.h"
+
+CertificateCache::CertificateCache () {
+    WRAPPER_NO_CONTRACT;
+    m_dwNumEntries = 0;
+    for (DWORD i=0; i < MAX_CACHED_CERTIFICATES; i++) {
+        m_Entry[i] = NULL;
+    }
+    m_CertificateCacheCrst.Init(CrstPublisherCertificate);
+}
+
+CertificateCache::~CertificateCache () {
+    // Let the OS collect the memory allocated for the cached certificates.
+}
+
+COR_TRUST* CertificateCache::GetEntry (DWORD index) {
+    LIMITED_METHOD_CONTRACT;
+    if (index < 0 || index >= MAX_CACHED_CERTIFICATES)
+        return NULL;
+    return m_Entry[index];
+}
+
+EnumCertificateAdditionFlags CertificateCache::AddEntry (COR_TRUST* pCertificate, DWORD* pIndex) {
+    CONTRACTL {
+        THROWS;
+        GC_TRIGGERS;
+        MODE_PREEMPTIVE;
+        PRECONDITION(pIndex != NULL);
+    } CONTRACTL_END;
+
+    *pIndex = FindEntry(pCertificate);
+    if (*pIndex < MAX_CACHED_CERTIFICATES)
+        return AlreadyExists; // the certificate is already cached.
+    if (m_dwNumEntries >= MAX_CACHED_CERTIFICATES)
+        return CacheSaturated; // the cache is full
+
+    CrstHolder csh(&m_CertificateCacheCrst);
+    if (m_dwNumEntries >= MAX_CACHED_CERTIFICATES)
+        return CacheSaturated;
+
+    // check again now that we have the lock.
+    *pIndex = FindEntry(pCertificate);
+    if (*pIndex < MAX_CACHED_CERTIFICATES)
+        return AlreadyExists;
+
+    *pIndex = m_dwNumEntries;
+    m_Entry[m_dwNumEntries++] = pCertificate;
+    return Success;
+}
+
+BOOL CertificateCache::Contains (COR_TRUST* pCertificate) {
+    WRAPPER_NO_CONTRACT;
+    DWORD index = FindEntry(pCertificate);
+    return (index < MAX_CACHED_CERTIFICATES && index >= 0);
+}
+
+DWORD CertificateCache::FindEntry (COR_TRUST* pCertificate) {
+    CONTRACTL 
+    {
+        MODE_ANY;
+        GC_NOTRIGGER;
+        NOTHROW;
+    }CONTRACTL_END;
+
+    for (DWORD i=0; i < MAX_CACHED_CERTIFICATES; i++) {
+        if (m_Entry[i] != NULL) {
+            if ((pCertificate->cbSigner == m_Entry[i]->cbSigner) &&
+                (memcmp(pCertificate->pbSigner, m_Entry[i]->pbSigner, m_Entry[i]->cbSigner) == 0))
+                return i;
+        }
+    }
+    return 0xFFFFFFFF;
+}
+#endif // FEATURE_CAS_POLICY