dotscope 0.6.0

A high-performance, cross-platform framework for analyzing and reverse engineering .NET PE executables
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280

//! Factory methods for system security validation testing.
//!
//! Contains helper methods migrated from system security validation source files
//! for creating test assemblies with various security validation scenarios.

use crate::{
    metadata::{
        customattributes::{
            encode_custom_attribute_value, CustomAttributeArgument, CustomAttributeValue,
        },
        tables::{
            CodedIndex, CodedIndexType, CustomAttributeRaw, DeclSecurityRaw, TableDataOwned,
            TableId,
        },
        token::Token,
    },
    test::{create_test_assembly, get_testfile_mscorlib, TestAssembly},
    Error, Result,
};

/// Main factory method for system security validation test assemblies
///
/// Originally from: `src/metadata/validation/validators/owned/system/security.rs`
pub fn owned_security_validator_file_factory() -> Result<Vec<TestAssembly>> {
    let mut assemblies = Vec::new();

    let Some(clean_testfile) = get_testfile_mscorlib() else {
        return Err(Error::Other(
            "mscorlib.dll not available - test cannot run".to_string(),
        ));
    };

    // 1. REQUIRED: Clean assembly - should pass all security validation
    assemblies.push(TestAssembly::new(&clean_testfile, true));

    // 2. NEGATIVE TEST: Assembly with invalid security action
    assemblies.push(create_assembly_with_invalid_security_action()?);

    // 3. NEGATIVE TEST: Assembly with malformed permission set XML
    assemblies.push(create_assembly_with_malformed_permission_set()?);

    // 4. NEGATIVE TEST: Assembly with conflicting security attributes
    assemblies.push(create_assembly_with_conflicting_security_attributes()?);

    // 5. NEGATIVE TEST: Assembly with security transparency violations
    assemblies.push(create_assembly_with_security_transparency_violations()?);

    Ok(assemblies)
}

/// Creates an assembly with invalid security action values.
///
/// This test creates a DeclSecurity entry with an invalid action value (outside 1-14 range)
/// to trigger security action validation failure.
///
/// Originally from: `src/metadata/validation/validators/owned/system/security.rs`
pub fn create_assembly_with_invalid_security_action() -> Result<TestAssembly> {
    create_test_assembly(get_testfile_mscorlib, |assembly| {
        // Create a DeclSecurity entry with invalid action (0 is outside valid range 1-14)
        let invalid_declsecurity = DeclSecurityRaw {
            rid: 1,
            token: Token::new(0x0E000001),
            offset: 0,
            action: 99, // Invalid action (outside 1-14 range)
            parent: CodedIndex::new(TableId::TypeDef, 1, CodedIndexType::HasDeclSecurity),
            permission_set: 1, // Point to a blob index that should exist
        };

        assembly.table_row_add(
            TableId::DeclSecurity,
            TableDataOwned::DeclSecurity(invalid_declsecurity),
        )?;

        Ok(())
    })
}

/// Creates an assembly with malformed permission set XML.
///
/// This test creates a DeclSecurity entry with permission set XML that is missing
/// required elements, triggering XML validation failure.
///
/// Originally from: `src/metadata/validation/validators/owned/system/security.rs`
pub fn create_assembly_with_malformed_permission_set() -> Result<TestAssembly> {
    create_test_assembly(get_testfile_mscorlib, |assembly| {
        // Create malformed XML without required PermissionSet element
        let malformed_xml = b"<InvalidRoot><Permission>SomePermission</Permission></InvalidRoot>";

        // Add the malformed XML to blob heap
        let blob_index = assembly.blob_add(malformed_xml)?;

        // Create a DeclSecurity entry pointing to the malformed XML blob
        let declsecurity_with_bad_xml = DeclSecurityRaw {
            rid: 1,
            token: Token::new(0x0E000001),
            offset: 0,
            action: 3, // Valid action (Demand)
            parent: CodedIndex::new(TableId::TypeDef, 1, CodedIndexType::HasDeclSecurity),
            permission_set: blob_index.placeholder(),
        };

        assembly.table_row_add(
            TableId::DeclSecurity,
            TableDataOwned::DeclSecurity(declsecurity_with_bad_xml),
        )?;

        Ok(())
    })
}

/// Creates an assembly with conflicting security attributes.
///
/// This test creates custom attributes with conflicting security specifications
/// (SecurityCritical AND SecurityTransparent on the same type) that should trigger
/// security attribute validation failure.
///
/// Originally from: `src/metadata/validation/validators/owned/system/security.rs`
pub fn create_assembly_with_conflicting_security_attributes() -> Result<TestAssembly> {
    create_test_assembly(get_testfile_mscorlib, |assembly| {
        // Add SecurityCritical attribute to TypeDef 1
        let critical_attr_value = CustomAttributeValue {
            fixed_args: vec![CustomAttributeArgument::String(
                "SecurityCritical".to_string(),
            )],
            named_args: vec![],
        };

        let critical_blob = encode_custom_attribute_value(&critical_attr_value).map_err(|e| {
            Error::Other(format!("Failed to encode SecurityCritical attribute: {e}"))
        })?;

        let critical_blob_index = assembly.blob_add(&critical_blob)?;

        let next_rid = assembly.original_table_row_count(TableId::CustomAttribute) + 1;

        let critical_custom_attr = CustomAttributeRaw {
            rid: next_rid,
            token: Token::new(0x0C000000 + next_rid),
            offset: 0,
            parent: CodedIndex::new(TableId::TypeDef, 2, CodedIndexType::HasCustomAttribute),
            constructor: CodedIndex::new(
                TableId::MethodDef,
                1,
                CodedIndexType::CustomAttributeType,
            ),
            value: critical_blob_index.placeholder(),
        };

        assembly.table_row_add(
            TableId::CustomAttribute,
            TableDataOwned::CustomAttribute(critical_custom_attr),
        )?;

        // Add SecurityTransparent attribute to the same TypeDef
        let transparent_attr_value = CustomAttributeValue {
            fixed_args: vec![CustomAttributeArgument::String(
                "SecurityTransparent".to_string(),
            )],
            named_args: vec![],
        };

        let transparent_blob =
            encode_custom_attribute_value(&transparent_attr_value).map_err(|e| {
                Error::Other(format!(
                    "Failed to encode SecurityTransparent attribute: {e}"
                ))
            })?;

        let transparent_blob_index = assembly.blob_add(&transparent_blob)?;

        let next_rid2 = assembly.original_table_row_count(TableId::CustomAttribute) + 2;

        let transparent_custom_attr = CustomAttributeRaw {
            rid: next_rid2,
            token: Token::new(0x0C000000 + next_rid2),
            offset: 0,
            parent: CodedIndex::new(TableId::TypeDef, 2, CodedIndexType::HasCustomAttribute),
            constructor: CodedIndex::new(
                TableId::MethodDef,
                1,
                CodedIndexType::CustomAttributeType,
            ),
            value: transparent_blob_index.placeholder(),
        };

        assembly.table_row_add(
            TableId::CustomAttribute,
            TableDataOwned::CustomAttribute(transparent_custom_attr),
        )?;

        Ok(())
    })
}

/// Creates an assembly with security transparency violations.
///
/// This test creates security transparency boundary violations where a transparent
/// type inherits from a critical type, which violates security transparency rules.
///
/// In mscorlib, TypeDef 2 is typically System.Object and TypeDef 3 inherits from it.
/// We mark the base type as SecurityCritical and the derived type as SecurityTransparent
/// to trigger a transparency violation.
///
/// Originally from: `src/metadata/validation/validators/owned/system/security.rs`
pub fn create_assembly_with_security_transparency_violations() -> Result<TestAssembly> {
    create_test_assembly(get_testfile_mscorlib, |assembly| {
        // Mark TypeDef 2 (base type, typically System.Object) as SecurityCritical
        let critical_attr_value = CustomAttributeValue {
            fixed_args: vec![CustomAttributeArgument::String(
                "SecurityCritical".to_string(),
            )],
            named_args: vec![],
        };

        let critical_blob = encode_custom_attribute_value(&critical_attr_value).map_err(|e| {
            Error::Other(format!("Failed to encode SecurityCritical attribute: {e}"))
        })?;

        let critical_blob_index = assembly.blob_add(&critical_blob)?;

        let next_rid = assembly.original_table_row_count(TableId::CustomAttribute) + 1;

        let critical_custom_attr = CustomAttributeRaw {
            rid: next_rid,
            token: Token::new(0x0C000000 + next_rid),
            offset: 0,
            parent: CodedIndex::new(TableId::TypeDef, 2, CodedIndexType::HasCustomAttribute),
            constructor: CodedIndex::new(
                TableId::MethodDef,
                1,
                CodedIndexType::CustomAttributeType,
            ),
            value: critical_blob_index.placeholder(),
        };

        assembly.table_row_add(
            TableId::CustomAttribute,
            TableDataOwned::CustomAttribute(critical_custom_attr),
        )?;

        // Mark TypeDef 3 (derived type that inherits from TypeDef 2) as SecurityTransparent
        let transparent_attr_value = CustomAttributeValue {
            fixed_args: vec![CustomAttributeArgument::String(
                "SecurityTransparent".to_string(),
            )],
            named_args: vec![],
        };

        let transparent_blob =
            encode_custom_attribute_value(&transparent_attr_value).map_err(|e| {
                Error::Other(format!(
                    "Failed to encode SecurityTransparent attribute: {e}"
                ))
            })?;

        let transparent_blob_index = assembly.blob_add(&transparent_blob)?;

        let next_rid2 = assembly.original_table_row_count(TableId::CustomAttribute) + 2;

        let transparent_custom_attr = CustomAttributeRaw {
            rid: next_rid2,
            token: Token::new(0x0C000000 + next_rid2),
            offset: 0,
            parent: CodedIndex::new(TableId::TypeDef, 3, CodedIndexType::HasCustomAttribute),
            constructor: CodedIndex::new(
                TableId::MethodDef,
                1,
                CodedIndexType::CustomAttributeType,
            ),
            value: transparent_blob_index.placeholder(),
        };

        assembly.table_row_add(
            TableId::CustomAttribute,
            TableDataOwned::CustomAttribute(transparent_custom_attr),
        )?;

        Ok(())
    })
}