|
|
You're in the
dotnet security
group:SecurityException: Request Failed on CreateInstanceAndUnwrap
dotnet security:
I am referencing the NUnit libraries in an assembly that is hosted by a COM+
application. Within NUnit it creates a "runner" app domain and then calls CreateInstanceAndUnwrap to create an instance of a class within a unit test assembly. I get a SecurityException on this method when it is executed within the bounds of a COM+ application, even though it is actually in a .NET assembly. If I refernce the same NUnit libraries and the same assembly calls them but is hosted in a .NET forms application I do not get any SecurityExceptions on the CreateInstanceAndUnwrap call. I've tried several imperative and declaritve security options at the assembly, class and method levels but so far nothing has worked. Has anyone
Here is the full stack trace:
========================== Server stack trace: at System.RuntimeType.CreateInstanceImpl(Boolean publicOnly) at System.Activator.CreateInstance(Type type, Boolean nonPublic) at System.RuntimeType.CreateInstanceImpl(BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes) at System.Activator.CreateInstance(Type type, BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes) at System.Activator.CreateInstance(String assemblyName, String typeName, Boolean ignoreCase, BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes, Evidence securityInfo, StackCrawlMark& stackMark) at System.Activator.CreateInstance(String assemblyName, String typeName, Boolean ignoreCase, BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes, Evidence securityInfo) at System.AppDomain.CreateInstance(String assemblyName, String typeName, Boolean ignoreCase, BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes, Evidence securityAttributes) at System.AppDomain.CreateInstanceAndUnwrap(String assemblyName, String typeName, Boolean ignoreCase, BindingFlags bindingAttr, Binder binder, Object[] args, CultureInfo culture, Object[] activationAttributes, Evidence securityAttributes) at System.Runtime.Remoting.Messaging.StackBuilderSink.PrivateProcessMessage(MethodBase mb, Object[] args, Object server, Int32 methodPtr, Boolean fExecuteInContext, Object[]& outArgs) at System.Runtime.Remoting.Messaging.StackBuilderSink.SyncProcessMessage(IMessage msg, Int32 methodPtr, Boolean fExecuteInContext) ============================= The Nunit code is actually creating the app domain but I do have the source so I can change it if necessary. I don't know that any app domain policies are being applied but I will look into this. Would I look for this using caspol or through the "Microsoft .NET Framework 1.1 Configuration" tool? The evidence for the new domain is created from the evidence from the currentdomain. Evidence baseEvidence = AppDomain.CurrentDomain.Evidence; Evidence evidence = new Evidence(baseEvidence); Let me know if this is not enough information and I can see if I can put together a small code sample. The one real hitch in this is that the COM+ application that is hosting the .NET assemblies is Groove and I probably cannot even attempt to represent it in code. [quoted text, click to view] "Nicole Calinoiu" wrote:
> "Bo George" <BoGeorge@discussions.microsoft.com> wrote in message > news:F2730B27-B9BB-4D08-AFA8-9516A2E07C48@microsoft.com... > >I am referencing the NUnit libraries in an assembly that is hosted by a > >COM+ > > application. Within NUnit it creates a "runner" app domain and then calls > > CreateInstanceAndUnwrap to create an instance of a class within a unit > > test > > assembly. > > Is it your code that's creating the app domain or some other code? Do you > know if any app domain policy is being applied or if any additional evidence > is being provided for the app domain or the target class assembly? > > > > I get a SecurityException on this method when it is executed > > within the bounds of a COM+ application, even though it is actually in a > > .NET > > assembly. > > Could you please provide the full exception details (incl. stack trace > listing) as returned from its ToString method? > > > > > If I refernce the same NUnit libraries and the same assembly calls them > > but > > is hosted in a .NET forms application I do not get any SecurityExceptions > > on > > the CreateInstanceAndUnwrap call. > > > > I've tried several imperative and declaritve security options at the > > assembly, class and method levels but so far nothing has worked. Has > > anyone > > encountered this or have any suggestions on other things to try? > > There are several possible reasons for the difference. App domain policy is > one. Limited CAS permission grants to other assemblies on the call stack is > another. Might you be able to provide a minimal sample > (http://www.yoda.arachsys.com/csharp/complete.html) that demonstrates the > problem? > >
[quoted text, click to view]
"Bo George" <BoGeorge@discussions.microsoft.com> wrote in message news:F2730B27-B9BB-4D08-AFA8-9516A2E07C48@microsoft.com... >I am referencing the NUnit libraries in an assembly that is hosted by a >COM+ > application. Within NUnit it creates a "runner" app domain and then calls > CreateInstanceAndUnwrap to create an instance of a class within a unit > test > assembly. Is it your code that's creating the app domain or some other code? Do you know if any app domain policy is being applied or if any additional evidence is being provided for the app domain or the target class assembly? [quoted text, click to view] > I get a SecurityException on this method when it is executed > within the bounds of a COM+ application, even though it is actually in a > .NET > assembly. Could you please provide the full exception details (incl. stack trace listing) as returned from its ToString method? [quoted text, click to view] > If I refernce the same NUnit libraries and the same assembly calls them > but > is hosted in a .NET forms application I do not get any SecurityExceptions > on > the CreateInstanceAndUnwrap call. > > I've tried several imperative and declaritve security options at the > assembly, class and method levels but so far nothing has worked. Has > anyone > encountered this or have any suggestions on other things to try? There are several possible reasons for the difference. App domain policy is one. Limited CAS permission grants to other assemblies on the call stack is another. Might you be able to provide a minimal sample (http://www.yoda.arachsys.com/csharp/complete.html) that demonstrates the problem?
[quoted text, click to view]
"Bo George" <BoGeorge@discussions.microsoft.com> wrote in message news:7DE8B191-5574-4F49-9F4C-65083C2DF187@microsoft.com... > Here is the full stack trace: > <snip> Unfortunately, it's not very helpful in this case. However, could you please post the rest of the details from the exception's ToString result? [quoted text, click to view] > The Nunit code is actually creating the app domain Is this code that is part of NUnit itself, or code you've written to use NUnit functionality? If the former, could you please identify the relevant NUnit class/method? If the latter, could you please provide a relevant extract? [quoted text, click to view] > but I do have the source > so I can change it if necessary. I don't know that any app domain > policies > are being applied but I will look into this. Would I look for this using > caspol or through the "Microsoft .NET Framework 1.1 Configuration" tool? Neither. App domain policies are applied via code using the AppDomain.SetAppDomainPolicy method. [quoted text, click to view] > The > evidence for the new domain is created from the evidence from the > currentdomain. > > Evidence baseEvidence = AppDomain.CurrentDomain.Evidence; > Evidence evidence = new Evidence(baseEvidence); How is this evidence object used in the code? (The extract you've provided creates the object but doesn't actually do anything meaningful with it.) [quoted text, click to view] > Let me know if this is not enough information and I can see if I can put > together a small code sample. The one real hitch in this is that the COM+ > application that is hosting the .NET assemblies is Groove and I probably > cannot even attempt to represent it in code. Groove itself might be irrelevant here. Attempting to reduce the code to the simplest repro case might actually help identify the problem, so it's a potentially useful exercise. [quoted text, click to view] > > "Nicole Calinoiu" wrote: > >> "Bo George" <BoGeorge@discussions.microsoft.com> wrote in message >> news:F2730B27-B9BB-4D08-AFA8-9516A2E07C48@microsoft.com... >> >I am referencing the NUnit libraries in an assembly that is hosted by a >> >COM+ >> > application. Within NUnit it creates a "runner" app domain and then >> > calls >> > CreateInstanceAndUnwrap to create an instance of a class within a unit >> > test >> > assembly. >> >> Is it your code that's creating the app domain or some other code? Do >> you >> know if any app domain policy is being applied or if any additional >> evidence >> is being provided for the app domain or the target class assembly? >> >> >> > I get a SecurityException on this method when it is executed >> > within the bounds of a COM+ application, even though it is actually in >> > a >> > .NET >> > assembly. >> >> Could you please provide the full exception details (incl. stack trace >> listing) as returned from its ToString method? >> >> >> >> > If I refernce the same NUnit libraries and the same assembly calls them >> > but >> > is hosted in a .NET forms application I do not get any >> > SecurityExceptions >> > on >> > the CreateInstanceAndUnwrap call. >> > >> > I've tried several imperative and declaritve security options at the >> > assembly, class and method levels but so far nothing has worked. Has >> > anyone >> > encountered this or have any suggestions on other things to try? >> >> There are several possible reasons for the difference. App domain policy >> is >> one. Limited CAS permission grants to other assemblies on the call stack >> is >> another. Might you be able to provide a minimal sample >> (http://www.yoda.arachsys.com/csharp/complete.html) that demonstrates the >> problem? >> >> >>
Don't see what you're looking for? Try a search.
|
June 2004
July 2004
August 2004
September 2004
October 2004
November 2004
December 2004
January 2005
February 2005
March 2005
April 2005
May 2005
June 2005
July 2005
August 2005
September 2005
October 2005
November 2005
December 2005
January 2006
February 2006
March 2006
April 2006
May 2006
June 2006
July 2006
August 2006
September 2006
October 2006
November 2006
December 2006
January 2007
February 2007
March 2007
April 2007
May 2007
June 2007
July 2007
August 2007
September 2007
October 2007
November 2007
| home · blog · groups | Questions? Comments? Contact the dn |