2 // SecurityManagerCas.cs - CAS unit tests for System.Security.SecurityManager
5 // Sebastien Pouliot <sebastien@ximian.com>
7 // Copyright (C) 2005 Novell, Inc (http://www.novell.com)
9 // Permission is hereby granted, free of charge, to any person obtaining
10 // a copy of this software and associated documentation files (the
11 // "Software"), to deal in the Software without restriction, including
12 // without limitation the rights to use, copy, modify, merge, publish,
13 // distribute, sublicense, and/or sell copies of the Software, and to
14 // permit persons to whom the Software is furnished to do so, subject to
15 // the following conditions:
17 // The above copyright notice and this permission notice shall be
18 // included in all copies or substantial portions of the Software.
20 // THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
21 // EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
22 // MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
23 // NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
24 // LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
25 // OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
26 // WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
29 using NUnit.Framework;
32 using System.Collections;
33 using System.Reflection;
34 using System.Security;
35 using System.Security.Permissions;
36 using System.Security.Policy;
38 namespace MonoCasTests.System.Security {
42 public class SecurityManagerCas {
47 if (!SecurityManager.SecurityEnabled)
48 Assert.Ignore ("SecurityManager.SecurityEnabled is OFF");
52 public void IsGranted_Null ()
54 // null is always granted
55 Assert.IsTrue (SecurityManager.IsGranted (null));
59 [SecurityPermission (SecurityAction.Deny, ControlPolicy = true)]
60 [ExpectedException (typeof (SecurityException))]
61 public void CheckExecutionRights_DenyControlPolicy ()
63 SecurityManager.CheckExecutionRights = SecurityManager.CheckExecutionRights;
67 [SecurityPermission (SecurityAction.PermitOnly, ControlPolicy = true)]
68 public void CheckExecutionRights_PermitOnlyControlPolicy ()
70 SecurityManager.CheckExecutionRights = SecurityManager.CheckExecutionRights;
74 [SecurityPermission (SecurityAction.Deny, ControlPolicy = true)]
76 // it seems that this was removed in 2.0 - maybe because you can't turn CAS off ?!?
78 [ExpectedException (typeof (SecurityException))]
80 public void SecurityEnabled_DenyControlPolicy ()
82 SecurityManager.SecurityEnabled = false;
86 [SecurityPermission (SecurityAction.PermitOnly, ControlPolicy = true)]
87 public void SecurityEnabled_PermitOnlyControlPolicy ()
89 SecurityManager.SecurityEnabled = SecurityManager.SecurityEnabled;
92 // identities permission are unrestricted since 2.0
93 // the Deny shows that IsGranted only checks for assembly
94 // granted set (and not the stack modifiers)
98 [PermissionSet (SecurityAction.Deny, Unrestricted = true)]
99 public void IsGranted_GacIdentityPermission ()
101 GacIdentityPermission gip = new GacIdentityPermission ();
102 Assert.IsTrue (SecurityManager.IsGranted (gip));
106 [PermissionSet (SecurityAction.Deny, Unrestricted = true)]
107 public void IsGranted_ZoneIdentityPermission ()
109 ZoneIdentityPermission zip = new ZoneIdentityPermission (SecurityZone.Internet);
111 Assert.IsTrue (SecurityManager.IsGranted (zip));
113 Assert.IsFalse (SecurityManager.IsGranted (zip));
118 [ExpectedException (typeof (PolicyException))]
119 public void ResolvePolicy_Evidence_AllNull ()
121 Assert.IsTrue (SecurityManager.CheckExecutionRights, "CheckExecutionRights");
122 PermissionSet denied = null;
123 // null (2nd) is missing the Execution right
124 SecurityManager.ResolvePolicy (null, null, null, null, out denied);
128 [ExpectedException (typeof (PolicyException))]
129 public void ResolvePolicy_Evidence_MinExec ()
131 Assert.IsTrue (SecurityManager.CheckExecutionRights, "CheckExecutionRights");
132 PermissionSet ps = new PermissionSet (PermissionState.None);
133 ps.AddPermission (new SecurityPermission (SecurityPermissionFlag.Execution));
134 PermissionSet denied = null;
135 SecurityManager.ResolvePolicy (null, ps, null, null, out denied);
136 // the security manager doesn't try the optional permissions to find the execution right
140 [ExpectedException (typeof (PolicyException))]
141 public void ResolvePolicy_Evidence_MinNullExecOpt ()
143 Assert.IsTrue (SecurityManager.CheckExecutionRights, "CheckExecutionRights");
144 PermissionSet ps = new PermissionSet (PermissionState.None);
145 ps.AddPermission (new SecurityPermission (SecurityPermissionFlag.Execution));
146 PermissionSet denied = null;
147 // null (2nd) is missing the Execution right
148 SecurityManager.ResolvePolicy (null, null, ps, null, out denied);