[runtime] Remove more unused CAS code.

Author: vargaz

mono/metadata/class-internals.h

@@ -195,8 +195,6 @@ struct _MonoEvent {
 /* type of exception being "on hold" for later processing (see exception_type) */
 enum {
 	MONO_EXCEPTION_NONE = 0,
-	MONO_EXCEPTION_SECURITY_LINKDEMAND = 1,
-	MONO_EXCEPTION_SECURITY_INHERITANCEDEMAND = 2,
 	MONO_EXCEPTION_INVALID_PROGRAM = 3,
 	MONO_EXCEPTION_UNVERIFIABLE_IL = 4,
 	MONO_EXCEPTION_MISSING_METHOD = 5,

mono/metadata/class.c

@@ -3909,7 +3909,8 @@ is_wcf_hack_disabled (void)
 }
 
 static gboolean
-check_interface_method_override (MonoClass *class, MonoMethod *im, MonoMethod *cm, gboolean require_newslot, gboolean interface_is_explicitly_implemented_by_class, gboolean slot_is_empty, gboolean security_enabled) {
+check_interface_method_override (MonoClass *class, MonoMethod *im, MonoMethod *cm, gboolean require_newslot, gboolean interface_is_explicitly_implemented_by_class, gboolean slot_is_empty)
+{
 	MonoMethodSignature *cmsig, *imsig;
 	if (strcmp (im->name, cm->name) == 0) {
 		if (! (cm->flags & METHOD_ATTRIBUTE_PUBLIC)) {
@@ -3944,11 +3945,6 @@ check_interface_method_override (MonoClass *class, MonoMethod *im, MonoMethod *c
 			return FALSE;
 		}
 		TRACE_INTERFACE_VTABLE (printf ("[SECURITY CHECKS]"));
-		/* CAS - SecurityAction.InheritanceDemand on interface */
-		if (security_enabled && (im->flags & METHOD_ATTRIBUTE_HAS_SECURITY)) {
-			mono_secman_inheritancedemand_method (cm, im);
-		}
-
 		if (mono_security_core_clr_enabled ())
 			mono_security_core_clr_check_override (class, cm, im);
 
@@ -4030,11 +4026,6 @@ check_interface_method_override (MonoClass *class, MonoMethod *im, MonoMethod *c
 		}
 
 		TRACE_INTERFACE_VTABLE (printf ("[SECURITY CHECKS (INJECTED CASE)]"));
-		/* CAS - SecurityAction.InheritanceDemand on interface */
-		if (security_enabled && (im->flags & METHOD_ATTRIBUTE_HAS_SECURITY)) {
-			mono_secman_inheritancedemand_method (cm, im);
-		}
-
 		if (mono_security_core_clr_enabled ())
 			mono_security_core_clr_check_override (class, cm, im);
 
@@ -4267,7 +4258,6 @@ mono_class_setup_vtable_general (MonoClass *class, MonoMethod **overrides, int o
 	int i, max_vtsize = 0, max_iid, cur_slot = 0;
 	GPtrArray *ifaces = NULL;
 	GHashTable *override_map = NULL;
-	gboolean security_enabled = mono_security_enabled ();
 	MonoMethod *cm;
 #if (DEBUG_INTERFACE_VTABLE_CODE|TRACE_INTERFACE_VTABLE_CODE)
 	int first_non_interface_slot;
@@ -4511,7 +4501,7 @@ mono_class_setup_vtable_general (MonoClass *class, MonoMethod **overrides, int o
 				for (l = virt_methods; l; l = l->next) {
 					cm = l->data;
 					TRACE_INTERFACE_VTABLE (printf ("    For slot %d ('%s'.'%s':'%s'), trying method '%s'.'%s':'%s'... [EXPLICIT IMPLEMENTATION = %d][SLOT IS NULL = %d]", im_slot, ic->name_space, ic->name, im->name, cm->klass->name_space, cm->klass->name, cm->name, interface_is_explicitly_implemented_by_class, (vtable [im_slot] == NULL)));
-					if (check_interface_method_override (class, im, cm, TRUE, interface_is_explicitly_implemented_by_class, (vtable [im_slot] == NULL), security_enabled)) {
+					if (check_interface_method_override (class, im, cm, TRUE, interface_is_explicitly_implemented_by_class, (vtable [im_slot] == NULL))) {
 						TRACE_INTERFACE_VTABLE (printf ("[check ok]: ASSIGNING"));
 						vtable [im_slot] = cm;
 						/* Why do we need this? */
@@ -4532,7 +4522,7 @@ mono_class_setup_vtable_general (MonoClass *class, MonoMethod **overrides, int o
 						MonoMethod *cm = parent->vtable [cm_index];
 
 						TRACE_INTERFACE_VTABLE ((cm != NULL) && printf ("    For slot %d ('%s'.'%s':'%s'), trying (ancestor) method '%s'.'%s':'%s'... ", im_slot, ic->name_space, ic->name, im->name, cm->klass->name_space, cm->klass->name, cm->name));
-						if ((cm != NULL) && check_interface_method_override (class, im, cm, FALSE, FALSE, TRUE, security_enabled)) {
+						if ((cm != NULL) && check_interface_method_override (class, im, cm, FALSE, FALSE, TRUE)) {
 							TRACE_INTERFACE_VTABLE (printf ("[everything ok]: ASSIGNING"));
 							vtable [im_slot] = cm;
 							/* Why do we need this? */
@@ -4610,11 +4600,6 @@ mono_class_setup_vtable_general (MonoClass *class, MonoMethod **overrides, int o
 					if (!strcmp(cm->name, m1->name) && 
 					    mono_metadata_signature_equal (cmsig, m1sig)) {
 
-						/* CAS - SecurityAction.InheritanceDemand */
-						if (security_enabled && (m1->flags & METHOD_ATTRIBUTE_HAS_SECURITY)) {
-							mono_secman_inheritancedemand_method (cm, m1);
-						}
-
 						if (mono_security_core_clr_enabled ())
 							mono_security_core_clr_check_override (class, cm, m1);
 
@@ -5104,11 +5089,6 @@ mono_class_init (MonoClass *class)
 		}
 	}
 
-	/* CAS - SecurityAction.InheritanceDemand */
-	if (mono_security_enabled () && class->parent && (class->parent->flags & TYPE_ATTRIBUTE_HAS_SECURITY)) {
-		mono_secman_inheritancedemand_class (class, class->parent);
-	}
-
 	mono_stats.initialized_class_count++;
 
 	if (class->generic_class && !class->generic_class->is_dynamic) {
@@ -9777,24 +9757,6 @@ mono_class_get_exception_for_failure (MonoClass *klass)
 	gpointer exception_data = mono_class_get_exception_data (klass);
 
 	switch (klass->exception_type) {
-#ifndef DISABLE_SECURITY
-	case MONO_EXCEPTION_SECURITY_INHERITANCEDEMAND: {
-		MonoDomain *domain = mono_domain_get ();
-		MonoSecurityManager* secman = mono_security_manager_get_methods ();
-		MonoMethod *method = exception_data;
-		guint32 error = (method) ? MONO_METADATA_INHERITANCEDEMAND_METHOD : MONO_METADATA_INHERITANCEDEMAND_CLASS;
-		MonoObject *exc = NULL;
-		gpointer args [4];
-
-		args [0] = &error;
-		args [1] = mono_assembly_get_object (domain, mono_image_get_assembly (klass->image));
-		args [2] = mono_type_get_object (domain, &klass->byval_arg);
-		args [3] = (method) ? mono_method_get_object (domain, method, NULL) : NULL;
-
-		mono_runtime_invoke (secman->inheritsecurityexception, NULL, args, &exc);
-		return (MonoException*) exc;
-	}
-#endif
 	case MONO_EXCEPTION_TYPE_LOAD: {
 		MonoString *name;
 		MonoException *ex;

mono/metadata/icall.c

@@ -3999,19 +3999,13 @@ ves_icall_System_Reflection_Assembly_InternalGetType (MonoReflectionAssembly *as
 	if (type->type == MONO_TYPE_CLASS) {
 		MonoClass *klass = mono_type_get_class (type);
 
-		if (mono_security_enabled () && !klass->exception_type)
-			/* Some security problems are detected during generic vtable construction */
-			mono_class_setup_vtable (klass);
-
 		/* need to report exceptions ? */
 		if (throwOnError && klass->exception_type) {
 			/* report SecurityException (or others) that occured when loading the assembly */
 			MonoException *exc = mono_class_get_exception_for_failure (klass);
 			mono_loader_clear_error ();
 			mono_set_pending_exception (exc);
 			return NULL;
-		} else if (mono_security_enabled () && klass->exception_type == MONO_EXCEPTION_SECURITY_INHERITANCEDEMAND) {
-			return NULL;
 		}
 	}
 

mono/metadata/object.c

@@ -2197,10 +2197,6 @@ mono_class_create_runtime_vtable (MonoDomain *domain, MonoClass *class, gboolean
 	mono_domain_unlock (domain);
 	mono_loader_unlock ();
 
-	/* Initialization is now complete, we can throw if the InheritanceDemand aren't satisfied */
-	if (mono_security_enabled () && (class->exception_type == MONO_EXCEPTION_SECURITY_INHERITANCEDEMAND) && raise_on_error)
-		mono_raise_exception (mono_class_get_exception_for_failure (class));
-
 	/* make sure the parent is initialized */
 	/*FIXME shouldn't this fail the current type?*/
 	if (class->parent)

mono/metadata/security-manager.c

@@ -10,9 +10,6 @@
 #include "security-manager.h"
 
 static MonoSecurityMode mono_security_mode = MONO_SECURITY_MODE_NONE;
-static MonoBoolean mono_security_manager_activated = FALSE;
-static MonoBoolean mono_security_manager_enabled = TRUE;
-static MonoBoolean mono_security_manager_execution = TRUE;
 
 void
 mono_security_set_mode (MonoSecurityMode mode)
@@ -26,22 +23,6 @@ mono_security_get_mode (void)
 	return mono_security_mode;
 }
 
-/*
- * Note: The security manager is activate once when executing the Mono. This 
- * is not meant to be a turn on/off runtime switch.
- */
-void
-mono_activate_security_manager (void)
-{
-	mono_security_manager_activated = TRUE;
-}
-
-gboolean
-mono_is_security_manager_active (void)
-{
-	return mono_security_manager_activated;
-}
-
 #ifndef DISABLE_SECURITY
 
 static MonoSecurityManager secman;
@@ -59,120 +40,10 @@ mono_security_manager_get_methods (void)
 	g_assert (secman.securitymanager);
 	if (!secman.securitymanager->inited)
 		mono_class_init (secman.securitymanager);
-		
-	secman.demand = mono_class_get_method_from_name (secman.securitymanager,
-		"InternalDemand", 2);	
-	g_assert (secman.demand);
-
-	secman.demandchoice = mono_class_get_method_from_name (secman.securitymanager,
-		"InternalDemandChoice", 2);	
-	g_assert (secman.demandchoice);
-
-	secman.demandunmanaged = mono_class_get_method_from_name (secman.securitymanager,
-		"DemandUnmanaged", 0);
-	g_assert (secman.demandunmanaged);
-
-	secman.inheritancedemand = mono_class_get_method_from_name (secman.securitymanager,
-		"InheritanceDemand", 3);	
-	g_assert (secman.inheritancedemand);
-
-	secman.inheritsecurityexception = mono_class_get_method_from_name (secman.securitymanager,
-		"InheritanceDemandSecurityException", 4);	
-	g_assert (secman.inheritsecurityexception);
-
-	secman.linkdemand = mono_class_get_method_from_name (secman.securitymanager,
-		"LinkDemand", 3);
-	g_assert (secman.linkdemand);
-
-	secman.linkdemandunmanaged = mono_class_get_method_from_name (secman.securitymanager,
-		"LinkDemandUnmanaged", 1);
-	g_assert (secman.linkdemandunmanaged);
-
-	secman.linkdemandfulltrust = mono_class_get_method_from_name (secman.securitymanager,
-		"LinkDemandFullTrust", 1);
-	g_assert (secman.linkdemandfulltrust);
-
-	secman.linkdemandsecurityexception = mono_class_get_method_from_name (secman.securitymanager,
-		"LinkDemandSecurityException", 2);
-	g_assert (secman.linkdemandsecurityexception);
-
-	secman.allowpartiallytrustedcallers = mono_class_from_name (mono_defaults.corlib, "System.Security", 
-		"AllowPartiallyTrustedCallersAttribute");
-	g_assert (secman.allowpartiallytrustedcallers);
-
-	secman.suppressunmanagedcodesecurity = mono_class_from_name (mono_defaults.corlib, "System.Security", 
-		"SuppressUnmanagedCodeSecurityAttribute");
-	g_assert (secman.suppressunmanagedcodesecurity);
 
 	return &secman;
 }
 
-static gboolean
-mono_secman_inheritance_check (MonoClass *klass, MonoDeclSecurityActions *demands)
-{
-	MonoSecurityManager* secman = mono_security_manager_get_methods ();
-	MonoDomain *domain = mono_domain_get ();
-	MonoAssembly *assembly = mono_image_get_assembly (klass->image);
-	MonoReflectionAssembly *refass = mono_assembly_get_object (domain, assembly);
-	MonoObject *res;
-	gpointer args [3];
-
-	args [0] = domain->domain;
-	args [1] = refass;
-	args [2] = demands;
-
-	res = mono_runtime_invoke (secman->inheritancedemand, NULL, args, NULL);
-	return (*(MonoBoolean *) mono_object_unbox (res));
-}
-
-void
-mono_secman_inheritancedemand_class (MonoClass *klass, MonoClass *parent)
-{
-	MonoDeclSecurityActions demands;
-
-	/* don't hide previous results -and- don't calc everything for nothing */
-	if (klass->exception_type != 0)
-		return;
-
-	/* short-circuit corlib as it is fully trusted (within itself)
-	 * and because this cause major recursion headaches */
-	if ((klass->image == mono_defaults.corlib) && (parent->image == mono_defaults.corlib))
-		return;
-
-	/* Check if there are an InheritanceDemand on the parent class */
-	if (mono_declsec_get_inheritdemands_class (parent, &demands)) {
-		/* If so check the demands on the klass (inheritor) */
-		if (!mono_secman_inheritance_check (klass, &demands)) {
-			/* Keep flags in MonoClass to be able to throw a SecurityException later (if required) */
-			mono_class_set_failure (klass, MONO_EXCEPTION_SECURITY_INHERITANCEDEMAND, NULL);
-		}
-	}
-}
-
-void
-mono_secman_inheritancedemand_method (MonoMethod *override, MonoMethod *base)
-{
-	MonoDeclSecurityActions demands;
-
-	/* don't hide previous results -and- don't calc everything for nothing */
-	if (override->klass->exception_type != 0)
-		return;
-
-	/* short-circuit corlib as it is fully trusted (within itself)
-	 * and because this cause major recursion headaches */
-	if ((override->klass->image == mono_defaults.corlib) && (base->klass->image == mono_defaults.corlib))
-		return;
-
-	/* Check if there are an InheritanceDemand on the base (virtual) method */
-	if (mono_declsec_get_inheritdemands_method (base, &demands)) {
-		/* If so check the demands on the overriding method */
-		if (!mono_secman_inheritance_check (override->klass, &demands)) {
-			/* Keep flags in MonoClass to be able to throw a SecurityException later (if required) */
-			mono_class_set_failure (override->klass, MONO_EXCEPTION_SECURITY_INHERITANCEDEMAND, base);
-		}
-	}
-}
-
 #else
 
 MonoSecurityManager*
@@ -181,16 +52,6 @@ mono_security_manager_get_methods (void)
 	return NULL;
 }
 
-void
-mono_secman_inheritancedemand_class (MonoClass *klass, MonoClass *parent)
-{
-}
-
-void
-mono_secman_inheritancedemand_method (MonoMethod *override, MonoMethod *base)
-{
-}
-
 #endif /* DISABLE_SECURITY */
 
 /*
@@ -230,10 +91,8 @@ mono_get_context_capture_method (void)
 {
 	static MonoMethod *method = NULL;
 
-	if (!mono_security_manager_activated) {
-		if (mono_image_get_assembly (mono_defaults.corlib)->aname.major < 2)
-			return NULL;
-	}
+	if (mono_image_get_assembly (mono_defaults.corlib)->aname.major < 2)
+		return NULL;
 
 	/* older corlib revisions won't have the class (nor the method) */
 	if (mono_defaults.executioncontext_class && !method) {
@@ -250,59 +109,30 @@ mono_get_context_capture_method (void)
 MonoBoolean
 ves_icall_System_Security_SecurityManager_get_SecurityEnabled (void)
 {
-	if (!mono_security_manager_activated) {
-		/* SecurityManager is internal for Moonlight and SecurityEnabled is used to know if CoreCLR is active
-		 * (e.g. plugin executing in the browser) or not (e.g. smcs compiling source code with corlib 2.1)
-		 */
-		return (mono_security_get_mode () == MONO_SECURITY_MODE_CORE_CLR);
-	}
-	return mono_security_manager_enabled;
+	/* SecurityManager is internal for Moonlight and SecurityEnabled is used to know if CoreCLR is active
+	 * (e.g. plugin executing in the browser) or not (e.g. smcs compiling source code with corlib 2.1)
+	 */
+	return (mono_security_get_mode () == MONO_SECURITY_MODE_CORE_CLR);
 }
 
 void
 ves_icall_System_Security_SecurityManager_set_SecurityEnabled (MonoBoolean value)
 {
-	/* value can be changed only if the security manager is activated */
-	if (mono_security_manager_activated) {
-		mono_security_manager_enabled = value;
-	}
 }
 
 MonoBoolean
 ves_icall_System_Security_SecurityManager_get_CheckExecutionRights (void)
 {
-	if (!mono_security_manager_activated)
-		return FALSE;
-	return mono_security_manager_execution;
+	return FALSE;
 }
 
 void
 ves_icall_System_Security_SecurityManager_set_CheckExecutionRights (MonoBoolean value)
 {
-	/* value can be changed only id the security manager is activated */
-	if (mono_security_manager_activated) {
-		mono_security_manager_execution = value;
-	}
 }
 
 MonoBoolean
 ves_icall_System_Security_SecurityManager_GetLinkDemandSecurity (MonoReflectionMethod *m, MonoDeclSecurityActions *kactions, MonoDeclSecurityActions *mactions)
 {
-	MonoMethod *method = m->method;
-	/* we want the original as the wrapper is "free" of the security informations */
-	if (method->wrapper_type == MONO_WRAPPER_MANAGED_TO_NATIVE || method->wrapper_type == MONO_WRAPPER_MANAGED_TO_MANAGED) {
-		method = mono_marshal_method_from_wrapper (method);
-	}
-
-	mono_class_init (method->klass);
-
-	/* if either the method or it's class has security (any type) */
-	if ((method->flags & METHOD_ATTRIBUTE_HAS_SECURITY) || (method->klass->flags & TYPE_ATTRIBUTE_HAS_SECURITY)) {
-		memset (kactions, 0, sizeof (MonoDeclSecurityActions));
-		memset (mactions, 0, sizeof (MonoDeclSecurityActions));
-
-		/* get any linkdemand (either on the method or it's class) */
-		return mono_declsec_get_linkdemands (method, kactions, mactions);
-	}
 	return FALSE;
 }