1

我有这个类,我在 AppDomain 中创建的实例没有权限但SecurityPermissionFlag.Execute

class IsolationEntryPoint : MarshalByRefObject
{
    // main is the original AppDomain with all the permissions
    public void Enter(AppDomain main)
    {
        // these work correctly
        Console.WriteLine("Currently in: " + AppDomain.CurrentDomain.FriendlyName);
        Console.WriteLine("Host: " + main.FriendlyName);

        // the exception is thrown here
        main.DoCallBack(this.MyCallBack);
    }

    public void MyCallBack()
    {
        Console.WriteLine("Currently in: " + AppDomain.CurrentDomain.FriendlyName);
    }
}

奇怪的是我在 DoCallback 行中得到 SecurityException 说:

请求“System.Security.Permissions.ReflectionPermission、mscorlib、Version=4.0.0.0、Culture=neutral、PublicKeyToken=b77a5c561934e089”类型的权限失败。

MSDN关于AppDomain.DoCallBack的权限要求这样说:

通过 Type.InvokeMember 等机制在后期绑定时调用 ReflectionPermission。

调用没有使用Type.InvokeMember之类的东西,为什么会出现异常?

编辑

为清楚起见,这里是我用来创建带有隔离对象的 AppDomain 的代码:

    [STAThread]
    static void Main(string[] args)
    {

        var setup = new AppDomainSetup();
        setup.ApplicationBase = Path.GetDirectoryName(Assembly.GetExecutingAssembly().CodeBase);

        var evidence = new Evidence();

        var permissions = new PermissionSet(PermissionState.None);
        permissions.AddPermission(new SecurityPermission(SecurityPermissionFlag.Execution));

        var domain = AppDomain.CreateDomain(
            "isolationDomain",
            evidence,
            setup,
            permissions);

        var handle = Activator.CreateInstanceFrom(
            domain, typeof(IsolationEntryPoint).Assembly.ManifestModule.FullyQualifiedName,
            typeof(IsolationEntryPoint).FullName);

        var instance = (IsolationEntryPoint)handle.Unwrap();

        instance.Enter(AppDomain.CurrentDomain);
    }

这两段代码是我的完整应用程序,没有别的(所以异常应该很容易重现)。

谢谢你的帮助

4

2 回答 2

3

解决方案实际上非常简单:您错过了将公共访问修饰符添加到class IsolationEntryPoint,即在更改类签名之后,您的示例运行得很好:

public class IsolationEntryPoint : MarshalByRefObject
{
    // [...]
}
于 2012-01-25T12:24:20.153 回答
0

我尝试了以下方法,它似乎有效。

class Program
{

    static void Main(string[] args)
    {
        SecurityPermission t = new SecurityPermission(SecurityPermissionFlag.Execution);
        t.Demand();
        IsolationEntryPoint x = new IsolationEntryPoint();
        x.Enter(AppDomain.CurrentDomain);
    }
}


class IsolationEntryPoint : MarshalByRefObject
{
    // main is the original AppDomain with all the permissions 
    public void Enter(AppDomain main)
    {
        // these work correctly 
        Console.WriteLine("Currently in: " + AppDomain.CurrentDomain.FriendlyName);
        Console.WriteLine("Host: " + main.FriendlyName);

        // the exception is thrown here 
        main.DoCallBack(this.MyCallBack);
    }

    public void MyCallBack()
    {
        Console.WriteLine("Currently in: " + AppDomain.CurrentDomain.FriendlyName);
    }
}
于 2012-01-21T19:29:34.223 回答