You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Follow up issue from #931, since the problem that it exposed is not restricted to Cecil 0.11.5, and has been there for a long time.
I have made a small program where this issue can be demonstrated, its obvious side effect is the linking of the generic parameter with a wrong constraint list, which #931 described.
The issue here is the appearance of any IL instructions that may have its operand serialized as a TypeSpec. In this specific case the offender is initobj !!0 inside the Save method (and for #931 it was a box !!0).
When reading the operand for that instruction GetTypeSpecification will be called, which, if the token for the generic parameter it references was uninitialized or cleared (which is what replacing the generic parameter effectively does), it will try to fix it (source):
vartype=reader.ReadTypeSignature();// Here type is an instance of `GenericParameter`if(type.token.RID==0)type.token=newMetadataToken(TokenType.TypeSpec,rid);
It can be seen that when the condition is full filled the metadata token for that generic parameter will point to the TypeSpec table.
The issue with it is when the constraints for that same GenericParameter are read, it is assumed that the generic parameter RID will point to the GenericParam table, which is not correct and as such it will point to an arbitrary generic constraint list in the inverse mappings generated by cecil (the dictionary named GenericConstraints) (source):
publicboolTryGetGenericConstraintMapping(GenericParametergeneric_parameter,outCollection<Row<uint,MetadataToken>>mapping){// The RID is used blindly with the inverse mappings generated from the `GenericParamConstraint` table, which always points to the `GenericParam` table, and not to the `TypeSpec` tablereturnGenericConstraints.TryGetValue(generic_parameter.token.RID,outmapping);}
Possible fixes for the issue may be:
do not fix the metadata token, because the new GenericParameter does not have binary representation in the read file, and as such no token can be assigned to it until it is serialized.
verify that the RID points to the correct table when reading mappings.
Now that the issue has been exposed in full detail I want to also explain why the commit c4cfe16 had an impact into this issue manifesting more often.
That commit eliminates the removal of mappings when they have been read, since they should be cached afterwards. But a side effect that it had was making it harder for a GenericParameter with a wrong metadata token linking itself into some generic constraint list.
This is why using Cecil 0.11.5 with MonoMod very easily triggers this issue.
The text was updated successfully, but these errors were encountered:
It is important to point out here that the default reader settings were used, thus ReadingMode.Deferred was used in all my tests.
Obviously using ReadingMode.Immediate fixes all of these issues and is currently the "workaround" we are using.
But this brings up the question, is patching assemblies in that default mode fully supported (either currently or planned in the future) by Cecil?
If it is, this is an issue that should be addressed.
If it is not, then this issue can be closed as-is since its a no-issue.
Follow up issue from #931, since the problem that it exposed is not restricted to Cecil 0.11.5, and has been there for a long time.
I have made a small program where this issue can be demonstrated, its obvious side effect is the linking of the generic parameter with a wrong constraint list, which #931 described.
With the following target dll to patch:
And the following cecil procedure:
The output for the above snippet is the following (compiled with .net sdk 8.0.106):
The issue here is the appearance of any IL instructions that may have its operand serialized as a
TypeSpec
. In this specific case the offender isinitobj !!0
inside theSave
method (and for #931 it was abox !!0
).When reading the operand for that instruction
GetTypeSpecification
will be called, which, if the token for the generic parameter it references was uninitialized or cleared (which is what replacing the generic parameter effectively does), it will try to fix it (source):It can be seen that when the condition is full filled the metadata token for that generic parameter will point to the
TypeSpec
table.The issue with it is when the constraints for that same
GenericParameter
are read, it is assumed that the generic parameter RID will point to theGenericParam
table, which is not correct and as such it will point to an arbitrary generic constraint list in the inverse mappings generated by cecil (the dictionary namedGenericConstraints
) (source):Possible fixes for the issue may be:
GenericParameter
does not have binary representation in the read file, and as such no token can be assigned to it until it is serialized.Now that the issue has been exposed in full detail I want to also explain why the commit
c4cfe16
had an impact into this issue manifesting more often.That commit eliminates the removal of mappings when they have been read, since they should be cached afterwards. But a side effect that it had was making it harder for a
GenericParameter
with a wrong metadata token linking itself into some generic constraint list.This is why using Cecil 0.11.5 with MonoMod very easily triggers this issue.
The text was updated successfully, but these errors were encountered: