Perform more security cleanup

[hughbe]

No description provided.

[zsd4yr]

@hughbe you're going to have to break this down more into multiple commits; also the deleted code is concerning

[hughbe]

@zsd4yr hopefully this helps!

[codecov]

Codecov Report

Merging #801 into master will increase coverage by 0.19622%.
The diff coverage is 25.37313%.

@@                Coverage Diff                @@
##            master        #801         +/-   ##
=================================================
+ Coverage   28.642%   28.83822%   +0.19622%     
=================================================
  Files         1075        1078          +3     
  Lines       293506      293919        +413     
  Branches     38399       38408          +9     
=================================================
+ Hits         84066       84761        +695     
+ Misses      205407      205124        -283     
- Partials      4033        4034          +1

Flag	Coverage Δ
#Debug	28.83822% <25.37313%> (+0.19622%)	⬆️
#production	18.75241% <23.31288%> (+0.07146%)	⬆️
#test	98.68151% <100%> (+0.00849%)	⬆️

[zsd4yr]

@zsd4yr hopefully this helps!

That is helpful. Would you mind doing me another favor and breaking these down the first commit even more into:

1. changes to using statements
2. comment changes; and
3. changes inside methods

[zsd4yr]

Mostly because I really only want to PR number 3 😉

[danmoseley]

I believe registry operations throw SecurityException for regular ACL issues (not just CAS) instead of UnauthorizedAccessException - if so this line should be reverted.

[danmoseley]

What happened to UnsafeNativeMethods.ThemingScope.CreateActivationContext(assemblyFileName, nativeResourceID); ?

[danmoseley]

Previously it passed null for the final parameter, now 0. I guess one marshals to the other?

[danmoseley]

Looks OK with couple comments.

@hughe thanks for doing this. Breaking out into commits helped. However, there are still unrelated changes, even within commits. What would really help reviewers is smaller commits and smaller PR's. Eg., pure refactoring to eg., remove or move using statements, fix comments and brackets and braces could be all in 4 commits and one PR, the work to coalesce the "Internal" properties that weren't needed anymore really should be its own PR, the remaining CAS cleanup another PR. This would make it much quicker to review because we need less "state" in our head and can pay more attention where it's needed. As a rule of thumb, changes that shouldn't change IL (formatting, comments) ought to be reall fast to review in their own PR.

Also, this repo isn't yet tested as well as it ideally would be. Separating out commits and PR's (especially given most PR's get squashed) might help us later if we need to bisect and reverse an error.

It's great to get all these changes from you, I'm just thinking about how to get them in most easily and reliably. cc @merriemcgaw

[danmoseley]

Looks like there's some rebasing required. 😸

[RussKie]

especially given most PR's get squashed

Perhaps this practice as blanket rule should be reconsidered, precisely for the above mentioned reasons.

It is author's responsibility to present work in clear and easy to understand manner, separating functional and non functional changes.
A PR should (must) contain only a single functional change, and may contain several NF changes related to the F change.

[hughbe]

I don't expect this PR to build... waiting on #801 to be merged :)

[zsd4yr]

I don't expect this PR to build... waiting on #801 to be merged :)

adding [WIP] since this depends on another PR

[weltkante]

@hughbe this is #801, you probably meant you are waiting for something else?

[hughbe]

Oops! #843

[zsd4yr]

Oops! #843

Why is this change blocked by that one?

[hughbe]

Would cause more merge conflicts.

[danmoseley]

Perhaps this practice as blanket rule should be reconsidered, precisely for the above mentioned reasons. It is author's responsibility to present work in clear and easy to understand manner, separating functional and non functional changes.
A PR should (must) contain only a single functional change, and may contain several NF changes related to the F change.

In CoreFX, we avoid this by asking that significant NF changes are in a separate PR.

[danmoseley]

@hughbe happy to take another look when you've done battle with the merge,

[RussKie]

In CoreFX, we avoid this by asking that significant NF changes are in a separate PR.

Totally in agreement 👍
This typically works well in controlled environments (e.g. in a workplace/where contributors are incentivised to follow up on submissions) and doesn't quite work in the "wild" (afterhours hobby OSS - it may be weeks/months before reviews/feedback/merge occur).

Over the years in different projects I've experienced various styles.
Some years ago in a busy framework repo we've only accepted PRs containing a single commit - F or NF changes. When the team shrunk and amount of changes subsided - a PR with a single F + NF commits became a norm.
In https://github.com/gitextensions/gitextensions we accept PRs with a single F + additional NFs (if needed).

In the end of the day - it is all about the reviewer experience - they must be able to clearly understand what/how/why changed. And it is the author responsibility to present the work in such manner.

[danmoseley]

Looks like we should make a pass (separately) to add visibility specifiers everywhere.

[danmoseley]

@hughbe this seems fine to merge - especially before we get more conflicts - can you remove the WIP ?

[danmoseley]

If you address the feedback please use new commits as usual 😸