// SecurityManagerTest.cs - NUnit Test Cases for SecurityManager
//
// Author:
-// Sebastien Pouliot (spouliot@motus.com)
+// Sebastien Pouliot <sebastien@ximian.com>
//
// (C) 2004 Motus Technologies Inc. (http://www.motus.com)
+// Copyright (C) 2004 Novell, Inc (http://www.novell.com)
+//
+// Permission is hereby granted, free of charge, to any person obtaining
+// a copy of this software and associated documentation files (the
+// "Software"), to deal in the Software without restriction, including
+// without limitation the rights to use, copy, modify, merge, publish,
+// distribute, sublicense, and/or sell copies of the Software, and to
+// permit persons to whom the Software is furnished to do so, subject to
+// the following conditions:
+//
+// The above copyright notice and this permission notice shall be
+// included in all copies or substantial portions of the Software.
+//
+// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+// EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+// MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+// NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+// LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+// OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+// WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
//
using NUnit.Framework;
using System;
using System.Collections;
+using System.Reflection;
using System.Security;
using System.Security.Permissions;
using System.Security.Policy;
namespace MonoTests.System.Security {
[TestFixture]
- public class SecurityManagerTest : Assertion {
+ public class SecurityManagerTest {
+
+ static Evidence CurrentEvidence;
+
+ [TestFixtureSetUp]
+ public void FixtureSetUp ()
+ {
+ CurrentEvidence = Assembly.GetExecutingAssembly ().Evidence;
+ }
+
+ [TearDown]
+ public void TearDown ()
+ {
+ SecurityManager.CheckExecutionRights = true;
+ }
[Test]
public void IsGranted_Null ()
{
// null is always granted
- Assert ("IsGranted_Null", SecurityManager.IsGranted (null));
+ Assert.IsTrue (SecurityManager.IsGranted (null));
+ }
+
+ [Test]
+#if MOBILE
+ [ExpectedException (typeof (NotSupportedException))]
+#else
+ [ExpectedException (typeof (ArgumentNullException))]
+#endif
+ public void LoadPolicyLevelFromFile_Null ()
+ {
+ SecurityManager.LoadPolicyLevelFromFile (null, PolicyLevelType.AppDomain);
}
[Test]
+#if MOBILE
+ [ExpectedException (typeof (NotSupportedException))]
+#else
+ [ExpectedException (typeof (ArgumentNullException))]
+#endif
+ public void LoadPolicyLevelFromString_Null ()
+ {
+ SecurityManager.LoadPolicyLevelFromString (null, PolicyLevelType.AppDomain);
+ }
+
+ [Test]
+#if MOBILE
+ [ExpectedException (typeof (NotSupportedException))]
+#endif
public void PolicyHierarchy ()
{
IEnumerator e = SecurityManager.PolicyHierarchy ();
- AssertNotNull ("PolicyHierarchy", e);
+ Assert.IsNotNull (e, "PolicyHierarchy");
+ }
+
+#if !MOBILE && !MONOMAC
+ private void ResolveEvidenceHost (SecurityZone zone, bool unrestricted, bool empty)
+ {
+ string prefix = zone.ToString () + "-";
+ Evidence e = new Evidence ();
+ e.AddHost (new Zone (zone));
+ PermissionSet ps = SecurityManager.ResolvePolicy (e);
+ // as 2.0 use Unrestricted for Identity permissions they have no need to be
+ // kept in resolved permission set
+ Assert.IsTrue ((unrestricted || (ps.Count > 0)), prefix + "Count");
+ Assert.AreEqual (empty, ps.IsEmpty (), prefix + "IsEmpty");
+ Assert.AreEqual (unrestricted, ps.IsUnrestricted (), prefix + "IsUnrestricted");
+ if (unrestricted)
+ Assert.IsNull (ps.GetPermission (typeof (ZoneIdentityPermission)), prefix + "GetPermission(ZoneIdentityPermission)");
+ else
+ Assert.IsNotNull (ps.GetPermission (typeof (ZoneIdentityPermission)), prefix + "GetPermission(ZoneIdentityPermission)");
+ }
+
+ [Category ("NotWorking")]
+ [Test]
+ public void ResolvePolicy_Evidence_Host_Zone ()
+ {
+ ResolveEvidenceHost (SecurityZone.Internet, false, false);
+ ResolveEvidenceHost (SecurityZone.Intranet, false, false);
+ ResolveEvidenceHost (SecurityZone.MyComputer, true, false);
+ ResolveEvidenceHost (SecurityZone.Trusted, false, false);
+ ResolveEvidenceHost (SecurityZone.Untrusted, false, false);
+ ResolveEvidenceHost (SecurityZone.NoZone, false, true);
+ }
+
+ private void ResolveEvidenceAssembly (SecurityZone zone)
+ {
+ string prefix = zone.ToString () + "-";
+ Evidence e = new Evidence ();
+ e.AddAssembly (new Zone (zone));
+ PermissionSet ps = SecurityManager.ResolvePolicy (e);
+ Assert.AreEqual (0, ps.Count, prefix + "Count");
+ Assert.IsTrue (ps.IsEmpty (), prefix + "IsEmpty");
+ Assert.IsFalse (ps.IsUnrestricted (), prefix + "IsUnrestricted");
+ }
+
+ [Test]
+ public void ResolvePolicy_Evidence_Assembly_Zone ()
+ {
+ ResolveEvidenceAssembly (SecurityZone.Internet);
+ ResolveEvidenceAssembly (SecurityZone.Intranet);
+ ResolveEvidenceAssembly (SecurityZone.MyComputer);
+ ResolveEvidenceAssembly (SecurityZone.Trusted);
+ ResolveEvidenceAssembly (SecurityZone.Untrusted);
+ ResolveEvidenceAssembly (SecurityZone.NoZone);
+ }
+
+ [Test]
+ public void ResolvePolicy_Evidence_Null ()
+ {
+ Evidence e = null;
+ PermissionSet ps = SecurityManager.ResolvePolicy (e);
+ // no exception thrown
+ Assert.IsNotNull (ps);
+ Assert.IsFalse (ps.IsUnrestricted (), "IsUnrestricted");
+ }
+
+ [Test]
+ public void ResolvePolicy_Evidence_CurrentAssembly ()
+ {
+ PermissionSet granted = SecurityManager.ResolvePolicy (CurrentEvidence);
+ Assert.IsNotNull (granted);
+ Assert.IsTrue (granted.IsUnrestricted (), "IsUnrestricted");
+ }
+
+ [Test]
+ public void ResolvePolicy_Evidences_Null ()
+ {
+ Evidence[] e = null;
+ PermissionSet ps = SecurityManager.ResolvePolicy (e);
+ // no exception thrown
+ Assert.IsNotNull (ps);
+ Assert.IsFalse (ps.IsUnrestricted (), "IsUnrestricted");
+ }
+
+ [Test]
+ public void ResolvePolicy_Evidence_AllNull_NoExecution ()
+ {
+ PermissionSet denied = null;
+ SecurityManager.CheckExecutionRights = false;
+ PermissionSet granted = SecurityManager.ResolvePolicy (null, null, null, null, out denied);
+ Assert.IsNull (denied, "Denied");
+ Assert.AreEqual (0, granted.Count, "Granted.Count");
+ Assert.IsFalse (granted.IsUnrestricted (), "!Granted.IsUnrestricted");
+ }
+
+ [Test]
+ public void ResolvePolicy_Evidence_NullRequests_CurrentAssembly ()
+ {
+ PermissionSet denied = null;
+ PermissionSet granted = SecurityManager.ResolvePolicy (CurrentEvidence, null, null, null, out denied);
+ Assert.IsNull (denied, "Denied");
+ Assert.IsTrue (granted.IsUnrestricted (), "Granted.IsUnrestricted");
+ }
+
+ [Test]
+ [ExpectedException (typeof (PolicyException))]
+ [Category ("NotWorking")]
+ public void ResolvePolicy_Evidence_DenyUnrestricted_CurrentAssembly ()
+ {
+ PermissionSet deny = new PermissionSet (PermissionState.Unrestricted);
+ PermissionSet denied = null;
+ PermissionSet granted = SecurityManager.ResolvePolicy (CurrentEvidence, null, null, deny, out denied);
+ }
+
+ [Test]
+ [Category ("NotDotNet")] // MS bug - throws a NullReferenceException
+ public void ResolvePolicy_Evidence_DenyUnrestricted_NoExecution ()
+ {
+ PermissionSet deny = new PermissionSet (PermissionState.Unrestricted);
+ PermissionSet denied = null;
+ SecurityManager.CheckExecutionRights = false;
+ PermissionSet granted = SecurityManager.ResolvePolicy (CurrentEvidence, null, null, deny, out denied);
+ }
+
+ [Test]
+ [ExpectedException (typeof (ArgumentNullException))]
+ public void ResolvePolicyGroups_Null ()
+ {
+ IEnumerator e = SecurityManager.ResolvePolicyGroups (null);
+ }
+
+ [Test]
+ [ExpectedException (typeof (NullReferenceException))]
+ public void SavePolicyLevel_Null ()
+ {
+ SecurityManager.SavePolicyLevel (null);
+ }
+
+ [Test]
+ [ExpectedException (typeof (PolicyException))]
+ public void SavePolicyLevel_AppDomain ()
+ {
+ PolicyLevel adl = PolicyLevel.CreateAppDomainLevel ();
+ SecurityManager.SavePolicyLevel (adl);
+ }
+
+ [Test]
+ public void GetZoneAndOrigin ()
+ {
+ ArrayList zone = null;
+ ArrayList origin = null;
+ SecurityManager.GetZoneAndOrigin (out zone, out origin);
+ Assert.IsNotNull (zone, "Zone");
+ Assert.AreEqual (0, zone.Count, "Zone.Count");
+ Assert.IsNotNull (origin, "Origin");
+ Assert.AreEqual (0, origin.Count, "Origin.Count");
+ }
+
+ [Test]
+ public void ResolvePolicy_Evidence_ArrayNull ()
+ {
+ Evidence[] e = null;
+ PermissionSet ps = SecurityManager.ResolvePolicy (e);
+ Assert.IsNotNull (ps, "PermissionSet");
+ Assert.IsFalse (ps.IsUnrestricted (), "IsUnrestricted");
+ Assert.AreEqual (0, ps.Count, "Count");
+ }
+
+ [Test]
+ public void ResolvePolicy_Evidence_ArrayEmpty ()
+ {
+ Evidence[] e = new Evidence [0];
+ PermissionSet ps = SecurityManager.ResolvePolicy (e);
+ Assert.IsNotNull (ps, "PermissionSet");
+ Assert.IsFalse (ps.IsUnrestricted (), "IsUnrestricted");
+ Assert.AreEqual (0, ps.Count, "Count");
+ }
+
+ [Test]
+ public void ResolvePolicy_Evidence_Array ()
+ {
+ Evidence[] e = new Evidence[] { new Evidence () };
+ PermissionSet ps = SecurityManager.ResolvePolicy (e);
+ Assert.IsNotNull (ps, "PermissionSet");
+ Assert.IsFalse (ps.IsUnrestricted (), "IsUnrestricted");
+ Assert.AreEqual (0, ps.Count, "Count");
+ }
+
+ [Test]
+ [ExpectedException (typeof (NullReferenceException))]
+ [Category ("NotWorking")]
+ public void ResolveSystemPolicy_Null ()
+ {
+ SecurityManager.ResolveSystemPolicy (null);
}
+#endif
}
}