c# - Dynamically load assembly from local file and run with restricted privileges -

-

what need : read local c# text file, execute method that. i'm doing.

  1. read text file
  2. compile local x.dll csharpcodeprovider
  3. load dll assembly.loadfrom()
  4. then execute method gettype().getmethod().invoke()

it works fine. now, want run code securely, i.e. restrict code accessing file system, network etc. basically, need run minimal privileges.

i tried code restrict plugin access file system , network via appdomain (answer @babar), still not working expected. code in text file still able access file system.

what i'm missing here? other way make work?

the code (for loading , executing assembly)

public class sandboxer {     public static t getresult<t>(string untrustedassemblydirectory, string assemblyfullpath, string classname, string methodname, object[] methodparameters)     {         appdomainsetup adsetup = new appdomainsetup();         adsetup.applicationbase = path.getfullpath(untrustedassemblydirectory);          permissionset permset = new permissionset(permissionstate.none);         permset.addpermission(new securitypermission(securitypermissionflag.execution));          strongname fulltrustassembly = typeof(sandboxer).assembly.evidence.gethostevidence<strongname>();          appdomain newdomain = appdomain.createdomain("sandboxer", null, adsetup, permset, fulltrustassembly);          objecthandle handle = activator.createinstancefrom(             newdomain, typeof(sandboxer).assembly.manifestmodule.fullyqualifiedname,             typeof(sandboxer).fullname             );          sandboxer newdomaininstance = (sandboxer)handle.unwrap();         return newdomaininstance.executeuntrustedcode<t>(assemblyfullpath, classname, methodname, methodparameters);     }      public t executeuntrustedcode<t>(string assemblyname, string typename, string entrypoint, object[] parameters)     {         var method = assembly.loadfrom(assemblyname).gettype(typename).getmethod(entrypoint);         try         {             t retval = (t)method.invoke(null, parameters);             return retval;         }         catch (exception ex)         {             var expmsg = string.empty;             (new permissionset(permissionstate.unrestricted)).assert();             expmsg = "exception :\n{0}" + ex.tostring();             codeaccesspermission.revertassert();             throw new applicationexception(expmsg);         }     } }


Comments

Post a Comment

Popular posts from this blog

Hatching array of circles in AutoCAD using c# -

-
i beginner in autocad plugins .i have created array of circle using following code. now, have hatch circles in array .how that??how hatch circles @ once? moreover, how can return hatch method , use hatch objects.sorry language.thanks in advance. [assembly: commandclass(typeof(beamsection.class1))] namespace beamsection { public class class1 { //class1 obj = new class1(); [commandmethod("beamatsupport")] public void addlightweightpolyline() { // current document , database document acdoc = application.documentmanager.mdiactivedocument; database accurdb = acdoc.database; promptpointresult ppr = acdoc.editor.getpoint("\nselect starting point "); var ucs = acdoc.editor.currentusercoordinatesystem; point3d startingpt = ppr.value.transformby(ucs); list<double> radius = new list<double>(); radius.add(0.5);
Read more

ios - UITEXTFIELD InputView Uipicker not working in swift -

-
hello trying pop uipickerview view programmatically when user clicks on textfield. have tried doesn't doing anything. isn't working. nothing happening when click textfield class userprofiletableviewcontroller: uitableviewcontroller,uitextfielddelegate,uipickerviewdelegate,uipickerviewdatasource { var itempicker: uipickerview! = uipickerview() @iboutlet weak var gendertxtfield: uitextfield! var gender = ["male","female"] override func viewdidload() { super.viewdidload() gendertxtfield.delegate = self itempicker!.delegate = self itempicker!.datasource = self itempicker!.backgroundcolor = uicolor.blackcolor() self.gendertxtfield.inputview = itempicker } func numberofcomponentsinpickerview(pickerview: uipickerview) -> int{ return 1 } // returns # of rows in each component.. func pickerview(pickerview: uipickerview, numberofrowsincomponent component:
Read more