move cfg registration oop

MikeHolman · MikeHolman · commit 4194cdbc96fc · 2016-10-04T13:48:14.000-07:00
diff --git a/lib/Backend/Encoder.cpp b/lib/Backend/Encoder.cpp
@@ -341,6 +341,9 @@ Encoder::Encode()
 
     m_func->GetJITOutput()->SetCodeAddress(m_func->GetJITOutput()->GetCodeAddress() | 0x1); // Set thumb mode
 #endif
+
+    m_func->GetThreadContextInfo()->SetValidCallTargetForCFG((PVOID)m_func->GetJITOutput()->GetCodeAddress());
+
     const bool isSimpleJit = m_func->IsSimpleJit();
 
     if (this->m_inlineeFrameMap->Count() > 0 &&
diff --git a/lib/Backend/NativeCodeGenerator.cpp b/lib/Backend/NativeCodeGenerator.cpp
@@ -1100,7 +1100,6 @@ NativeCodeGenerator::CodeGen(PageAllocator * pageAllocator, CodeGenWorkItem* wor
     }
 #endif
 
-    scriptContext->GetThreadContext()->SetValidCallTargetForCFG((PVOID)jitWriteData.codeAddress);
     workItem->SetCodeAddress((size_t)jitWriteData.codeAddress);
 
     workItem->GetEntryPoint()->SetCodeGenRecorded((Js::JavascriptMethod)jitWriteData.codeAddress, jitWriteData.codeSize);
@@ -3215,8 +3214,11 @@ NativeCodeGenerator::QueueFreeNativeCodeGenAllocation(void* address)
         return;
     }
 
-    //DeRegister Entry Point for CFG
-    ThreadContext::GetContextForCurrentThread()->SetValidCallTargetForCFG(address, false);
+    if (!JITManager::GetJITManager()->IsOOPJITEnabled())
+    {
+        //DeRegister Entry Point for CFG
+        ThreadContext::GetContextForCurrentThread()->SetValidCallTargetForCFG(address, false);
+    }
 
     // The foreground allocators may have been used
     ThreadContext * context = this->scriptContext->GetThreadContext();
diff --git a/lib/JITServer/JITServer.cpp b/lib/JITServer/JITServer.cpp
@@ -317,6 +317,9 @@ ServerFreeAllocation(
         return RPC_S_INVALID_ARG;
     }
 
+    //DeRegister Entry Point for CFG
+    context->SetValidCallTargetForCFG((PVOID)address, false);
+
     bool succeeded = context->GetCodeGenAllocators()->emitBufferManager.FreeAllocation((void*)address);
     return succeeded ? S_OK : E_FAIL;
 }
diff --git a/lib/Runtime/Base/ThreadContext.cpp b/lib/Runtime/Base/ThreadContext.cpp
@@ -4311,14 +4311,6 @@ void ThreadContext::ClearThreadContextFlag(ThreadContextFlags contextFlag)
 }
 
 #ifdef ENABLE_GLOBALIZATION
-#ifdef _CONTROL_FLOW_GUARD
-Js::DelayLoadWinCoreMemory * ThreadContext::GetWinCoreMemoryLibrary()
-{
-    delayLoadWinCoreMemoryLibrary.EnsureFromSystemDirOnly();
-    return &delayLoadWinCoreMemoryLibrary;
-}
-#endif
-
 Js::DelayLoadWinRtString * ThreadContext::GetWinRTStringLibrary()
 {
     delayLoadWinRtString.EnsureFromSystemDirOnly();
@@ -4378,80 +4370,6 @@ Js::DelayLoadWinRtFoundation* ThreadContext::GetWinRtFoundationLibrary()
 #endif
 #endif // ENABLE_GLOBALIZATION
 
-bool ThreadContext::IsCFGEnabled()
-{
-#if defined(_CONTROL_FLOW_GUARD)
-    PROCESS_MITIGATION_CONTROL_FLOW_GUARD_POLICY CfgPolicy;
-    BOOL isGetMitigationPolicySucceeded = GetWinCoreProcessThreads()->GetMitigationPolicyForProcess(
-        GetCurrentProcess(),
-        ProcessControlFlowGuardPolicy,
-        &CfgPolicy,
-        sizeof(CfgPolicy));
-    Assert(isGetMitigationPolicySucceeded || !AutoSystemInfo::Data.IsCFGEnabled());
-    return CfgPolicy.EnableControlFlowGuard && AutoSystemInfo::Data.IsCFGEnabled();
-#else
-    return false;
-#endif
-}
-
-
-//Masking bits according to AutoSystemInfo::PageSize
-#define PAGE_START_ADDR(address) ((size_t)(address) & ~(size_t)(AutoSystemInfo::PageSize - 1))
-#define IS_16BYTE_ALIGNED(address) (((size_t)(address) & 0xF) == 0)
-#define OFFSET_ADDR_WITHIN_PAGE(address) ((size_t)(address) & (AutoSystemInfo::PageSize - 1))
-
-void ThreadContext::SetValidCallTargetForCFG(PVOID callTargetAddress, bool isSetValid)
-{
-#ifdef _CONTROL_FLOW_GUARD
-    if (IsCFGEnabled())
-    {
-        AssertMsg(IS_16BYTE_ALIGNED(callTargetAddress), "callTargetAddress is not 16-byte page aligned?");
-
-        PVOID startAddressOfPage = (PVOID) (PAGE_START_ADDR(callTargetAddress));
-        size_t codeOffset = OFFSET_ADDR_WITHIN_PAGE(callTargetAddress);
-
-        CFG_CALL_TARGET_INFO callTargetInfo[1];
-
-        callTargetInfo[0].Offset = codeOffset;
-        callTargetInfo[0].Flags = (isSetValid? CFG_CALL_TARGET_VALID : 0);
-
-        AssertMsg((size_t)callTargetAddress - (size_t)startAddressOfPage <= AutoSystemInfo::PageSize - 1, "Only last bits corresponding to PageSize should be masked");
-        AssertMsg((size_t)startAddressOfPage + (size_t)codeOffset == (size_t)callTargetAddress, "Wrong masking of address?");
-
-        BOOL isCallTargetRegistrationSucceed = GetWinCoreMemoryLibrary()->SetProcessCallTargets(GetCurrentProcess(), startAddressOfPage, AutoSystemInfo::PageSize, 1, callTargetInfo);
-
-        if (!isCallTargetRegistrationSucceed)
-        {
-            if (GetLastError() == ERROR_COMMITMENT_LIMIT)
-            {
-                //Throw OOM, if there is not enough virtual memory for paging (required for CFG BitMap)
-                Js::Throw::OutOfMemory();
-            }
-            else
-            {
-                Js::Throw::InternalError();
-            }
-        }
-#if DBG
-        if (isSetValid)
-        {
-            _guard_check_icall((uintptr_t) callTargetAddress);
-        }
-
-        if (PHASE_TRACE1(Js::CFGPhase))
-        {
-            if (!isSetValid)
-            {
-                Output::Print(_u("DEREGISTER:"));
-            }
-            Output::Print(_u("CFGRegistration: StartAddr: 0x%p , Offset: 0x%x, TargetAddr: 0x%x \n"), (char*) startAddressOfPage, callTargetInfo[0].Offset, ((size_t) startAddressOfPage + (size_t) callTargetInfo[0].Offset));
-            Output::Flush();
-        }
-#endif
-    }
-#endif // _CONTROL_FLOW_GUARD
-}
-
 // Despite the name, callers expect this to return the highest propid + 1.
 
 uint ThreadContext::GetHighestPropertyNameIndex() const
diff --git a/lib/Runtime/Base/ThreadContext.h b/lib/Runtime/Base/ThreadContext.h
@@ -798,9 +798,6 @@ class ThreadContext sealed :
     Js::DelayLoadWinRtFoundation delayLoadWinRtFoundationLibrary;
     Js::WindowsFoundationAdapter windowsFoundationAdapter;
 #endif
-#ifdef _CONTROL_FLOW_GUARD
-    Js::DelayLoadWinCoreMemory delayLoadWinCoreMemoryLibrary;
-#endif
 #endif
 
     // Number of script context attached with probe manager.
@@ -894,9 +891,6 @@ class ThreadContext sealed :
     Js::DelayLoadWinRtFoundation *GetWinRtFoundationLibrary();
     Js::WindowsFoundationAdapter *GetWindowsFoundationAdapter();
 #endif
-#ifdef _CONTROL_FLOW_GUARD
-    Js::DelayLoadWinCoreMemory * GetWinCoreMemoryLibrary();
-#endif
 #endif
 
 #ifdef ENABLE_BASIC_TELEMETRY
@@ -947,8 +941,6 @@ class ThreadContext sealed :
         return res;
     }
 
-    bool IsCFGEnabled();
-    void SetValidCallTargetForCFG(PVOID callTargetAddress, bool isSetValid = true);
     BOOL HasPreviousHostScriptContext();
     HostScriptContext* GetPreviousHostScriptContext() ;
     void PushHostScriptContext(HostScriptContext* topProvider);
diff --git a/lib/Runtime/Base/ThreadContextInfo.cpp b/lib/Runtime/Base/ThreadContextInfo.cpp
@@ -325,6 +325,13 @@ ThreadContextInfo::GetWinCoreProcessThreads()
     m_delayLoadWinCoreProcessThreads.EnsureFromSystemDirOnly();
     return &m_delayLoadWinCoreProcessThreads;
 }
+
+Js::DelayLoadWinCoreMemory *
+ThreadContextInfo::GetWinCoreMemoryLibrary()
+{
+    m_delayLoadWinCoreMemoryLibrary.EnsureFromSystemDirOnly();
+    return &m_delayLoadWinCoreMemoryLibrary;
+}
 #endif
 
 bool
@@ -346,6 +353,64 @@ ThreadContextInfo::IsCFGEnabled()
 }
 #endif // ENABLE_GLOBALIZATION
 
+//Masking bits according to AutoSystemInfo::PageSize
+#define PAGE_START_ADDR(address) ((size_t)(address) & ~(size_t)(AutoSystemInfo::PageSize - 1))
+#define IS_16BYTE_ALIGNED(address) (((size_t)(address) & 0xF) == 0)
+#define OFFSET_ADDR_WITHIN_PAGE(address) ((size_t)(address) & (AutoSystemInfo::PageSize - 1))
+
+void
+ThreadContextInfo::SetValidCallTargetForCFG(PVOID callTargetAddress, bool isSetValid)
+{
+#ifdef _CONTROL_FLOW_GUARD
+    if (IsCFGEnabled())
+    {
+        AssertMsg(IS_16BYTE_ALIGNED(callTargetAddress), "callTargetAddress is not 16-byte page aligned?");
+
+        PVOID startAddressOfPage = (PVOID)(PAGE_START_ADDR(callTargetAddress));
+        size_t codeOffset = OFFSET_ADDR_WITHIN_PAGE(callTargetAddress);
+
+        CFG_CALL_TARGET_INFO callTargetInfo[1];
+
+        callTargetInfo[0].Offset = codeOffset;
+        callTargetInfo[0].Flags = (isSetValid ? CFG_CALL_TARGET_VALID : 0);
+
+        AssertMsg((size_t)callTargetAddress - (size_t)startAddressOfPage <= AutoSystemInfo::PageSize - 1, "Only last bits corresponding to PageSize should be masked");
+        AssertMsg((size_t)startAddressOfPage + (size_t)codeOffset == (size_t)callTargetAddress, "Wrong masking of address?");
+
+        BOOL isCallTargetRegistrationSucceed = GetWinCoreMemoryLibrary()->SetProcessCallTargets(GetProcessHandle(), startAddressOfPage, AutoSystemInfo::PageSize, 1, callTargetInfo);
+
+        if (!isCallTargetRegistrationSucceed)
+        {
+            if (GetLastError() == ERROR_COMMITMENT_LIMIT)
+            {
+                //Throw OOM, if there is not enough virtual memory for paging (required for CFG BitMap)
+                Js::Throw::OutOfMemory();
+            }
+            else
+            {
+                Js::Throw::InternalError();
+            }
+        }
+#if DBG
+        if (isSetValid && !JITManager::GetJITManager()->IsOOPJITEnabled())
+        {
+            _guard_check_icall((uintptr_t)callTargetAddress);
+        }
+
+        if (PHASE_TRACE1(Js::CFGPhase))
+        {
+            if (!isSetValid)
+            {
+                Output::Print(_u("DEREGISTER:"));
+            }
+            Output::Print(_u("CFGRegistration: StartAddr: 0x%p , Offset: 0x%x, TargetAddr: 0x%x \n"), (char*)startAddressOfPage, callTargetInfo[0].Offset, ((size_t)startAddressOfPage + (size_t)callTargetInfo[0].Offset));
+            Output::Flush();
+        }
+#endif
+    }
+#endif // _CONTROL_FLOW_GUARD
+}
+
 void
 ThreadContextInfo::BeginJIT()
 {
diff --git a/lib/Runtime/Base/ThreadContextInfo.h b/lib/Runtime/Base/ThreadContextInfo.h
@@ -67,6 +67,7 @@ class ThreadContextInfo
     intptr_t GetStringMatchNameAddr() const;
 #endif
 
+    void SetValidCallTargetForCFG(PVOID callTargetAddress, bool isSetValid = true);
     void ResetIsAllJITCodeInPreReservedRegion();
     bool IsAllJITCodeInPreReservedRegion() const;
 
@@ -104,8 +105,10 @@ class ThreadContextInfo
     bool IsJITActive();
 
 #if defined(ENABLE_GLOBALIZATION) && defined(_CONTROL_FLOW_GUARD)
+    Js::DelayLoadWinCoreMemory * GetWinCoreMemoryLibrary();
     Js::DelayLoadWinCoreProcessThreads * GetWinCoreProcessThreads();
 
+    Js::DelayLoadWinCoreMemory m_delayLoadWinCoreMemoryLibrary;
     Js::DelayLoadWinCoreProcessThreads m_delayLoadWinCoreProcessThreads;
 #endif
 protected:

Original file line number	Diff line number	Diff line change
`@@ -317,6 +317,9 @@ ServerFreeAllocation(`
`317`	`317`	`return RPC_S_INVALID_ARG;`
`318`	`318`	`}`
`319`	`319`
	`320`	`+ //DeRegister Entry Point for CFG`
	`321`	`+ context->SetValidCallTargetForCFG((PVOID)address, false);`
	`322`	`+`
`320`	`323`	`bool succeeded = context->GetCodeGenAllocators()->emitBufferManager.FreeAllocation((void*)address);`
`321`	`324`	`return succeeded ? S_OK : E_FAIL;`
`322`	`325`	`}`