Merge pull request #1857 from slluis/fix-assembly-resolver
[mono.git] / mcs / class / corlib / System.Security / CodeAccessPermission.cs
index 152db9cf8b0a780ba422ef064d23a0d1f80f1bab..15fbb4ad39029df6e511b002241ab9ebc47a0124 100644 (file)
@@ -43,9 +43,8 @@ namespace System.Security {
 
        [Serializable]
        [SecurityPermission (SecurityAction.InheritanceDemand, ControlEvidence = true, ControlPolicy = true)]
-#if NET_2_0
        [ComVisible (true)]
-#endif
+       [MonoTODO ("CAS support is experimental (and unsupported).")]
        public abstract class CodeAccessPermission : IPermission, ISecurityEncodable, IStackWalk {
 
 
@@ -53,56 +52,12 @@ namespace System.Security {
                {
                }
 
-               [MonoTODO ("Imperative mode isn't supported")]
+               [MonoTODO ("CAS support is experimental (and unsupported). Imperative mode is not implemented.")]
                public void Assert ()
                {
                        new PermissionSet (this).Assert ();
                }
 
-               internal bool CheckAssert (CodeAccessPermission asserted)
-               {
-                       if (asserted == null)
-                               return false;
-                       if (asserted.GetType () != this.GetType ())
-                               return false;
-                       return IsSubsetOf (asserted);
-               }
-
-               internal bool CheckDemand (CodeAccessPermission target)
-               {
-                       if (target == null)
-                               return false;
-                       if (target.GetType () != this.GetType ())
-                               return false;
-                       return IsSubsetOf (target);
-               }
-
-               internal bool CheckDeny (CodeAccessPermission denied)
-               {
-                       if (denied == null)
-                               return true;
-                       Type t = denied.GetType ();
-                       if (t != this.GetType ())
-                               return true;
-                       IPermission inter = Intersect (denied);
-                       if (inter == null)
-                               return true;
-                       // sadly that's not enough :( at this stage we must also check
-                       // if an empty (PermissionState.None) is a subset of the denied
-                       // (which is like a empty intersection looks like for flag based
-                       // permissions, e.g. AspNetHostingPermission).
-                       return denied.IsSubsetOf (PermissionBuilder.Create (t));
-               }
-
-               internal bool CheckPermitOnly (CodeAccessPermission target)
-               {
-                       if (target == null)
-                               return false;
-                       if (target.GetType () != this.GetType ())
-                               return false;
-                       return IsSubsetOf (target);
-               }
-
                public abstract IPermission Copy ();
 
                public void Demand ()
@@ -115,13 +70,12 @@ namespace System.Security {
                        new PermissionSet (this).CasOnlyDemand (3);
                }
 
-               [MonoTODO ("Imperative mode isn't supported")]
+               [MonoTODO ("CAS support is experimental (and unsupported). Imperative mode is not implemented.")]
                public void Deny ()
                {
                        new PermissionSet (this).Deny ();
                }
 
-#if NET_2_0
                [ComVisible (false)]
                public override bool Equals (object obj)
                {
@@ -132,17 +86,14 @@ namespace System.Security {
                        CodeAccessPermission cap = (obj as CodeAccessPermission);
                        return (IsSubsetOf (cap) && cap.IsSubsetOf (this));
                }
-#endif
 
                public abstract void FromXml (SecurityElement elem);
 
-#if NET_2_0
                [ComVisible (false)]
                public override int GetHashCode ()
                {
                        return base.GetHashCode ();
                }
-#endif
 
                public abstract IPermission Intersect (IPermission target);
 
@@ -163,84 +114,42 @@ namespace System.Security {
                        return null;
                }
 
-               [MonoTODO ("Imperative mode isn't supported")]
+               [MonoTODO ("CAS support is experimental (and unsupported). Imperative mode is not implemented.")]
                public void PermitOnly ()
                {
                        new PermissionSet (this).PermitOnly ();
                }
 
-               [MonoTODO ("Imperative mode isn't supported")]
+               [MonoTODO ("CAS support is experimental (and unsupported). Imperative mode is not implemented.")]
                public static void RevertAll ()
                {
                        if (!SecurityManager.SecurityEnabled)
                                return;
-
-                       SecurityFrame sf = new SecurityFrame (1);
-                       bool revert = false;
-                       if ((sf.Assert != null) && !sf.Assert.DeclarativeSecurity) {
-                               revert = true;
-                               throw new NotSupportedException ("Currently only declarative Assert are supported.");
-                       }
-                       if ((sf.Deny != null) && !sf.Deny.DeclarativeSecurity) {
-                               revert = true;
-                               throw new NotSupportedException ("Currently only declarative Deny are supported.");
-                       }
-                       if ((sf.PermitOnly != null) && !sf.PermitOnly.DeclarativeSecurity) {
-                               revert = true;
-                               throw new NotSupportedException ("Currently only declarative PermitOnly are supported.");
-                       }
-
-                       if (!revert) {
-                               string msg = Locale.GetText ("No stack modifiers are present on the current stack frame.");
-                               // FIXME: we don't (yet) support imperative stack modifiers
-                               msg += Environment.NewLine + "Currently only declarative stack modifiers are supported.";
-                               throw new ExecutionEngineException (msg);
-                       }
+                       throw new NotImplementedException ();
                }
 
-               [MonoTODO ("Imperative mode isn't supported")]
+               [MonoTODO ("CAS support is experimental (and unsupported). Imperative mode is not implemented.")]
                public static void RevertAssert ()
                {
                        if (!SecurityManager.SecurityEnabled)
                                return;
-
-                       SecurityFrame sf = new SecurityFrame (1);
-                       if ((sf.Assert != null) && !sf.Assert.DeclarativeSecurity) {
-                               throw new NotSupportedException ("Currently only declarative Assert are supported.");
-                       } else {
-                               // we can't revert declarative security (or an empty frame) imperatively
-                               ThrowExecutionEngineException (SecurityAction.Assert);
-                       }
+                       throw new NotImplementedException ();
                }
 
-               [MonoTODO ("Imperative mode isn't supported")]
+               [MonoTODO ("CAS support is experimental (and unsupported). Imperative mode is not implemented.")]
                public static void RevertDeny ()
                {
                        if (!SecurityManager.SecurityEnabled)
                                return;
-
-                       SecurityFrame sf = new SecurityFrame (1);
-                       if ((sf.Deny != null) && !sf.Deny.DeclarativeSecurity) {
-                               throw new NotSupportedException ("Currently only declarative Deny are supported.");
-                       } else {
-                               // we can't revert declarative security (or an empty frame) imperatively
-                               ThrowExecutionEngineException (SecurityAction.Deny);
-                       }
+                       throw new NotImplementedException ();
                }
 
-               [MonoTODO ("Imperative mode isn't supported")]
+               [MonoTODO ("CAS support is experimental (and unsupported). Imperative mode is not implemented.")]
                public static void RevertPermitOnly ()
                {
                        if (!SecurityManager.SecurityEnabled)
                                return;
-
-                       SecurityFrame sf = new SecurityFrame (1);
-                       if ((sf.PermitOnly != null) && sf.PermitOnly.DeclarativeSecurity) {
-                               throw new NotSupportedException ("Currently only declarative PermitOnly are supported.");
-                       } else {
-                               // we can't revert declarative security (or an empty frame) imperatively
-                               ThrowExecutionEngineException (SecurityAction.PermitOnly);
-                       }
+                       throw new NotImplementedException ();
                }
 
                // Internal helpers methods
@@ -262,14 +171,7 @@ namespace System.Security {
                        case PermissionState.None:
                                break;
                        case PermissionState.Unrestricted:
-#if NET_2_0
                                // unrestricted permissions are possible for identiy permissions
-#else
-                               if (!allowUnrestricted) {
-                                       msg = Locale.GetText ("Unrestricted isn't not allowed for identity permissions.");
-                                       throw new ArgumentException (msg, "state");
-                               }
-#endif
                                break;
                        default:
                                msg = String.Format (Locale.GetText ("Invalid enum {0}"), state);
@@ -325,76 +227,11 @@ namespace System.Security {
                        return (String.Compare (value, Boolean.TrueString, true, CultureInfo.InvariantCulture) == 0);
                }
 
-               internal bool ProcessFrame (SecurityFrame frame)
-               { 
-                       // 1. CheckPermitOnly
-                       if (frame.PermitOnly != null) {
-                               // the demanded permission must be in one of the permitted...
-                               bool permit = frame.PermitOnly.IsUnrestricted ();
-                               if (!permit) {
-                                       // check individual permissions
-                                       foreach (IPermission p in frame.PermitOnly) {
-                                               if (CheckPermitOnly (p as CodeAccessPermission)) {
-                                                       permit = true;
-                                                       break;
-                                               }
-                                       }
-                               }
-                               if (!permit) {
-                                       // ...or else we throw
-                                       ThrowSecurityException (this, "PermitOnly", frame, SecurityAction.Demand, null);
-                               }
-                       }
-
-                       // 2. CheckDeny
-                       if (frame.Deny != null) {
-                               // special case where everything is denied (i.e. no child to be processed)
-                               if (frame.Deny.IsUnrestricted ())
-                                       ThrowSecurityException (this, "Deny", frame, SecurityAction.Demand, null);
-                               foreach (IPermission p in frame.Deny) {
-                                       if (!CheckDeny (p as CodeAccessPermission))
-                                               ThrowSecurityException (this, "Deny", frame, SecurityAction.Demand, p);
-                               }
-                       }
-
-                       // 3. CheckAssert
-                       if (frame.Assert != null) {
-                               if (frame.Assert.IsUnrestricted ())
-                                       return true; // remove permission and continue stack walk
-                               foreach (IPermission p in frame.Assert) {
-                                       if (CheckAssert (p as CodeAccessPermission)) {
-                                               return true; // remove permission and continue stack walk
-                                       }
-                               }
-                       }
-
-                       // continue the stack walk
-                       return false; 
-               }
-
                internal static void ThrowInvalidPermission (IPermission target, Type expected) 
                {
                        string msg = Locale.GetText ("Invalid permission type '{0}', expected type '{1}'.");
                        msg = String.Format (msg, target.GetType (), expected);
                        throw new ArgumentException (msg, "target");
                }
-
-               internal static void ThrowExecutionEngineException (SecurityAction stackmod)
-               {
-                       string msg = Locale.GetText ("No {0} modifier is present on the current stack frame.");
-                       // FIXME: we don't (yet) support imperative stack modifiers
-                       msg += Environment.NewLine + "Currently only declarative stack modifiers are supported.";
-                       throw new ExecutionEngineException (String.Format (msg, stackmod));
-               }
-
-               internal static void ThrowSecurityException (object demanded, string message, SecurityFrame frame,
-                       SecurityAction action, IPermission failed)
-               {
-                       Assembly a = frame.Assembly;
-                       throw new SecurityException (Locale.GetText (message), 
-                               a.UnprotectedGetName (), a.GrantedPermissionSet, 
-                               a.DeniedPermissionSet, frame.Method, action, demanded, 
-                               failed, a.UnprotectedGetEvidence ());
-               }
        }
 }