dotscope 0.6.0

A high-performance, cross-platform framework for analyzing and reverse engineering .NET PE executables
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255

//! Raw `DeclSecurity` table representation.
//!
//! This module provides the [`crate::metadata::tables::declsecurity::DeclSecurityRaw`] struct
//! for low-level access to `DeclSecurity` metadata table data with unresolved heap indexes and coded indices.
//! This represents the binary format of security declaration records as they appear in the metadata
//! tables stream, requiring resolution to create usable data structures.
//!
//! # Key Components
//!
//! - [`crate::metadata::tables::declsecurity::DeclSecurityRaw`] - Raw binary representation with unresolved indices
//!
//! # Thread Safety
//!
//! All types in this module are [`Send`] and [`Clone`], enabling safe sharing
//! across threads and efficient copying when needed.
//!
//! # `DeclSecurity` Table Format
//!
//! The `DeclSecurity` table (0x0E) contains security declarations for assemblies, types, and methods
//! with these fields:
//! - **Action** (2 bytes): Security action enumeration value
//! - **Parent** (2/4 bytes): `HasDeclSecurity` coded index to target entity
//! - **`PermissionSet`** (2/4 bytes): Blob heap index for serialized permission data
//!
//! # Usage
//!
//! This type is used internally for metadata parsing and should typically be converted
//! to [`crate::metadata::tables::declsecurity::DeclSecurity`] via [`crate::metadata::tables::declsecurity::DeclSecurityRaw::to_owned`] for practical use.
//! The [`crate::metadata::tables::declsecurity::DeclSecurityRaw::apply`] method can directly process security declarations
//! without creating intermediate owned structures.
//!
//! # Reference
//! - [ECMA-335 II.22.11](https://ecma-international.org/wp-content/uploads/ECMA-335_6th_edition_june_2012.pdf) - `DeclSecurity` table specification

use std::sync::Arc;

use crate::{
    metadata::{
        security::{PermissionSet, Security, SecurityAction},
        streams::Blob,
        tables::{
            CodedIndex, CodedIndexType, DeclSecurity, DeclSecurityRc, TableInfoRef, TableRow,
        },
        token::Token,
        typesystem::CilTypeReference,
    },
    Result,
};

#[derive(Clone, Debug)]
/// Raw `DeclSecurity` table row with unresolved indexes and coded indices
///
/// Represents the binary format of a `DeclSecurity` metadata table entry (table ID 0x0E) as stored
/// in the metadata tables stream. All blob references and parent entity references are stored as
/// indexes that must be resolved using the appropriate heaps and coded index resolution.
///
/// Security declarations specify permissions and security actions that are enforced by the .NET
/// runtime's Code Access Security (CAS) system. Each declaration targets a specific entity
/// (assembly, type, or method) and specifies how certain permissions should be handled.
///
/// # Reference
/// - [ECMA-335 II.22.11](https://ecma-international.org/wp-content/uploads/ECMA-335_6th_edition_june_2012.pdf) - `DeclSecurity` table specification
pub struct DeclSecurityRaw {
    /// Row identifier within the `DeclSecurity` metadata table
    ///
    /// The 1-based index of this security declaration row. Used for metadata
    /// token generation and cross-referencing with other metadata structures.
    pub rid: u32,

    /// Metadata token for this security declaration row
    ///
    /// Combines the table identifier (0x0E for `DeclSecurity`) with the row ID to create
    /// a unique token. Format: `0x0E000000 | rid`
    pub token: Token,

    /// Byte offset of this row within the metadata tables stream
    ///
    /// Physical location of the raw security declaration data within the metadata
    /// binary format. Used for debugging and low-level metadata analysis.
    pub offset: usize,

    /// Security action enumeration value (unresolved)
    ///
    /// 2-byte value representing the security action to be taken. Must be converted
    /// to [`SecurityAction`] for interpretation. Determines whether permissions are
    /// demanded, asserted, denied, etc.
    pub action: u16,

    /// `HasDeclSecurity` coded index to the target entity (unresolved)
    ///
    /// References the entity this security declaration applies to through a coded index.
    /// Can point to `TypeDef`, `MethodDef`, or Assembly tables. Must be resolved using
    /// appropriate coded index resolution to obtain the actual target reference.
    pub parent: CodedIndex,

    /// Blob heap index for serialized permission data (unresolved)
    ///
    /// Index into the Blob heap containing the serialized permission set data.
    /// The blob contains the actual security permissions in binary format that
    /// must be parsed to create a [`PermissionSet`].
    pub permission_set: u32,
}

impl DeclSecurityRaw {
    /// Apply this security declaration directly to its target entity
    ///
    /// This method processes the raw security declaration and applies it to the appropriate
    /// entity (type, method, or assembly) by parsing the permission set and setting up the
    /// security context. This provides a direct path from raw metadata to applied security
    /// without creating intermediate owned structures.
    ///
    /// # Arguments
    ///
    /// * `get_ref` - Closure that resolves coded indices to [`CilTypeReference`]
    /// * `blob` - The blob heap containing serialized permission data
    ///
    /// # Returns
    ///
    /// Returns `Ok(())` on successful application. The security information is stored
    /// in the target entity's security field using [`std::sync::OnceLock`] for thread-safe
    /// initialization.
    ///
    /// # Errors
    ///
    /// - The blob heap lookup fails for the permission set index
    /// - The permission set data cannot be parsed from the blob
    /// - The parent reference cannot be resolved to a valid type reference
    /// - The parent reference points to an unsupported entity type
    pub fn apply<F>(&self, get_ref: F, blob: &Blob) -> Result<()>
    where
        F: Fn(&CodedIndex) -> CilTypeReference,
    {
        let blob_data = blob.get(self.permission_set as usize)?;
        let permission_set = Arc::new(PermissionSet::new(blob_data)?);
        let action = SecurityAction::from(self.action);
        let parent = get_ref(&self.parent);

        match parent {
            CilTypeReference::TypeDef(typedef) => {
                if let Some(strong_ref) = typedef.upgrade() {
                    strong_ref
                        .security
                        .set(Security {
                            action,
                            permission_set,
                        })
                        .ok();
                }
                Ok(())
            }
            CilTypeReference::MethodDef(method) => {
                if let Some(method) = method.upgrade() {
                    method
                        .security
                        .set(Security {
                            action,
                            permission_set,
                        })
                        .ok();
                }
                Ok(())
            }
            CilTypeReference::Assembly(assembly) => {
                assembly
                    .security
                    .set(Security {
                        action,
                        permission_set,
                    })
                    .ok();
                Ok(())
            }
            _ => Err(malformed_error!(
                "Invalid parent for {0}",
                self.token.value()
            )),
        }
    }

    /// Convert to owned `DeclSecurity` with resolved references and owned data
    ///
    /// This method converts the raw security declaration into a fully resolved
    /// [`DeclSecurity`] structure with owned data and resolved references. The resulting
    /// structure provides immediate access to security information without requiring
    /// additional heap lookups or coded index resolution.
    ///
    /// # Arguments
    ///
    /// * `get_ref` - Closure that resolves coded indices to [`CilTypeReference`]
    /// * `blob` - The blob heap containing serialized permission data
    ///
    /// # Returns
    ///
    /// Returns [`DeclSecurityRc`] (Arc-wrapped [`DeclSecurity`]) on success, providing
    /// shared ownership of the resolved security declaration data.
    ///
    /// # Errors
    ///
    /// - The blob heap lookup fails for the permission set index
    /// - The permission set data cannot be parsed from the blob
    /// - The parent reference cannot be resolved to a valid type reference
    /// - The resolved parent reference is [`CilTypeReference::None`]
    pub fn to_owned<F>(&self, get_ref: F, blob: &Blob) -> Result<DeclSecurityRc>
    where
        F: Fn(&CodedIndex) -> CilTypeReference,
    {
        let blob_data = blob.get(self.permission_set as usize)?;
        let permission_set = Arc::new(PermissionSet::new(blob_data)?);
        let action = SecurityAction::from(self.action);

        let parent = get_ref(&self.parent);
        if matches!(parent, CilTypeReference::None) {
            return Err(malformed_error!(
                "Failed to resolve parent token - {}",
                self.parent.token.value()
            ));
        }

        Ok(Arc::new(DeclSecurity {
            rid: self.rid,
            token: self.token,
            offset: self.offset,
            action,
            parent,
            permission_set,
            custom_attributes: Arc::new(boxcar::Vec::new()),
        }))
    }
}

impl TableRow for DeclSecurityRaw {
    /// Calculate the byte size of a DeclSecurity table row
    ///
    /// Computes the total size based on fixed-size fields and variable-size indexes.
    /// The size depends on whether the metadata uses 2-byte or 4-byte indexes.
    ///
    /// # Row Layout (ECMA-335 §II.22.11)
    /// - `action`: 2 bytes (fixed size security action enumeration)
    /// - `parent`: 2 or 4 bytes (`HasDeclSecurity` coded index)
    /// - `permission_set`: 2 or 4 bytes (Blob heap index)
    ///
    /// # Arguments
    /// * `sizes` - Table sizing information for index widths
    ///
    /// # Returns
    /// Total byte size of one DeclSecurity table row
    #[rustfmt::skip]
    fn row_size(sizes: &TableInfoRef) -> u32 {
        u32::from(
            /* action */         2 +
            /* parent */         sizes.coded_index_bytes(CodedIndexType::HasDeclSecurity) +
            /* permission_set */ sizes.blob_bytes()
        )
    }
}