src/vm/certificatecache.cpp


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85

// Licensed to the .NET Foundation under one or more agreements.
// The .NET Foundation licenses this file to you under the MIT license.
// See the LICENSE file in the project root for more information.
// 

// 


#include "common.h"

#ifdef FEATURE_CAS_POLICY
#include "certificatecache.h"

CertificateCache::CertificateCache () {
    WRAPPER_NO_CONTRACT;
    m_dwNumEntries = 0;
    for (DWORD i=0; i < MAX_CACHED_CERTIFICATES; i++) {
        m_Entry[i] = NULL;
    }
    m_CertificateCacheCrst.Init(CrstPublisherCertificate);
}

CertificateCache::~CertificateCache () {
    // Let the OS collect the memory allocated for the cached certificates.
}

COR_TRUST* CertificateCache::GetEntry (DWORD index) {
    LIMITED_METHOD_CONTRACT;
    if (index < 0 || index >= MAX_CACHED_CERTIFICATES)
        return NULL;
    return m_Entry[index];
}

EnumCertificateAdditionFlags CertificateCache::AddEntry (COR_TRUST* pCertificate, DWORD* pIndex) {
    CONTRACTL {
        THROWS;
        GC_TRIGGERS;
        MODE_PREEMPTIVE;
        PRECONDITION(pIndex != NULL);
    } CONTRACTL_END;

    *pIndex = FindEntry(pCertificate);
    if (*pIndex < MAX_CACHED_CERTIFICATES)
        return AlreadyExists; // the certificate is already cached.
    if (m_dwNumEntries >= MAX_CACHED_CERTIFICATES)
        return CacheSaturated; // the cache is full

    CrstHolder csh(&m_CertificateCacheCrst);
    if (m_dwNumEntries >= MAX_CACHED_CERTIFICATES)
        return CacheSaturated;

    // check again now that we have the lock.
    *pIndex = FindEntry(pCertificate);
    if (*pIndex < MAX_CACHED_CERTIFICATES)
        return AlreadyExists;

    *pIndex = m_dwNumEntries;
    m_Entry[m_dwNumEntries++] = pCertificate;
    return Success;
}

BOOL CertificateCache::Contains (COR_TRUST* pCertificate) {
    WRAPPER_NO_CONTRACT;
    DWORD index = FindEntry(pCertificate);
    return (index < MAX_CACHED_CERTIFICATES && index >= 0);
}

DWORD CertificateCache::FindEntry (COR_TRUST* pCertificate) {
    CONTRACTL 
    {
        MODE_ANY;
        GC_NOTRIGGER;
        NOTHROW;
    }CONTRACTL_END;

    for (DWORD i=0; i < MAX_CACHED_CERTIFICATES; i++) {
        if (m_Entry[i] != NULL) {
            if ((pCertificate->cbSigner == m_Entry[i]->cbSigner) &&
                (memcmp(pCertificate->pbSigner, m_Entry[i]->pbSigner, m_Entry[i]->cbSigner) == 0))
                return i;
        }
    }
    return 0xFFFFFFFF;
}
#endif // FEATURE_CAS_POLICY