Medium Trust: Disabling reflection optimizer and making DLLs under 4.0 .NET FX SecurityTransparent (for secannotate analysis) and APTCA (for secannotate to be happy) after discussing with Levi.

--HG-- branch : dev
2025-10-15 19:54:57 +08:00 · 2010-11-11 19:37:18 -08:00
parent 99dad40945
commit 1f3ddc98ed
8 changed files with 7 additions and 4 deletions
--- a/lib/lucene.net/Lucene.Net.dll
+++ b/lib/lucene.net/Lucene.Net.dll
--- a/lib/lucene.net/Lucene.Net.pdb
+++ b/lib/lucene.net/Lucene.Net.pdb
--- a/lib/yaml/Yaml.dll
+++ b/lib/yaml/Yaml.dll
--- a/lib/yaml/YamlSerializer.dll
+++ b/lib/yaml/YamlSerializer.dll
--- a/src/Orchard.Web/Web.config
+++ b/src/Orchard.Web/Web.config
@@ -13,8 +13,14 @@
      <section name="host" type="System.Web.WebPages.Razor.Configuration.HostSection, System.Web.WebPages.Razor" requirePermission="false" />
      <section name="pages" type="System.Web.WebPages.Razor.Configuration.RazorPagesSection, System.Web.WebPages.Razor" requirePermission="false" />
    </sectionGroup>
+
+    <section name="hibernate-configuration" requirePermission="false" type="NHibernate.Cfg.ConfigurationSectionHandler, NHibernate" />
  </configSections>

+  <hibernate-configuration xmlns="urn:nhibernate-configuration-2.2">
+    <reflection-optimizer use="false"/>
+  </hibernate-configuration>
+
  <appSettings>
    <!--  
        This is a workaround. There’s a known issue that causes Forms Authentication to always redirect unauthenticated users 
--- a/src/Orchard/Environment/Extensions/Compilers/CSharpExtensionDirectoryCompiler.cs
+++ b/src/Orchard/Environment/Extensions/Compilers/CSharpExtensionDirectoryCompiler.cs
@@ -19,7 +19,6 @@ namespace Orchard.Environment.Extensions.Compilers {
            _buildManager = buildManager;
        }

-        [SecuritySafeCritical]
        public CompilerResults CompileProject(string location) {
            var codeProvider = CodeDomProvider.CreateProvider("cs");

--- a/src/Orchard/Environment/Extensions/Compilers/CSharpProjectFullTrustCompiler.cs
+++ b/src/Orchard/Environment/Extensions/Compilers/CSharpProjectFullTrustCompiler.cs
@@ -23,7 +23,6 @@ namespace Orchard.Environment.Extensions.Compilers {
        /// Compile a csproj file given its virtual path. Use the CSharp CodeDomProvider
        /// class, which is only available in full trust.
        /// </summary>
-        [SecuritySafeCritical]
        public CompilerResults CompileProject(string virtualPath, string outputDirectory) {
            var codeProvider = CodeDomProvider.CreateProvider("cs");
            var directory = _virtualPathProvider.GetDirectoryName(virtualPath);
--- a/src/Orchard/Properties/AssemblyInfo.cs
+++ b/src/Orchard/Properties/AssemblyInfo.cs
@@ -37,5 +37,4 @@ using System.Security;

 [assembly: AssemblyVersion("0.8.0")]
 [assembly: AssemblyFileVersion("0.8.0")]
-[assembly: AllowPartiallyTrustedCallers]
-[assembly: SecurityRules(SecurityRuleSet.Level2)]
+[assembly: SecurityTransparent]