[2.0>master] [MERGE #2660 @jianchun] remove global operator new/delete override

Merge pull request #2660 from jianchun:newdel

Global operator new/delete override replaces the default used by hosts
unintendedly (not sure if there is reliable way to avoid that). This change
removes the global overrides and replaces all ChakraCore library new/delete
calls with HeapNew/HeapDelete.

HeapDelete: Added an optional flag "AllocatorDeleteFlags::UnknownSize"
for cases of unknown size to avoid size check. Default still checks size.

JITType.h: Add "const" to avoid an unintended copy constructor call, which
causes software write barrier access failure in JIT thread (not expecting
write barrier access on stack value).

Author: Jianchun Xu

lib/Backend/BackendApi.cpp

@@ -197,5 +197,8 @@ SetProfilerFromNativeCodeGen(NativeCodeGenerator * toNativeCodeGen, NativeCodeGe
 
 void DeleteNativeCodeData(NativeCodeData * data)
 {
-    delete data;
+    if (data)
+    {
+        HeapDelete(data);
+    }
 }

lib/Backend/JITType.h

@@ -39,7 +39,7 @@ class JITTypeHolderBase
     JITTypeHolderBase(JITType * t);
 
     template <class S>
-    JITTypeHolderBase(JITTypeHolderBase<S> other) : t(PointerValue(other.t)) {}
+    JITTypeHolderBase(const JITTypeHolderBase<S>& other) : t(PointerValue(other.t)) {}
 
     template <class S>
     void operator =(const JITTypeHolderBase<S> &other) { t = other.t; }

lib/Backend/NativeCodeData.cpp

@@ -4,7 +4,7 @@
 //-------------------------------------------------------------------------------------------------------
 #include "Backend.h"
 
-NativeCodeData::NativeCodeData(DataChunk * chunkList) 
+NativeCodeData::NativeCodeData(DataChunk * chunkList)
     : chunkList(chunkList)
 {
 #ifdef PERF_COUNTERS
@@ -172,7 +172,7 @@ NativeCodeData::VerifyExistFixupEntry(void* targetAddr, void* addrToFixup, void*
     {
         if (entry->addrOffset == offset)
         {
-            // The following assertions can be false positive in case a data field happen to 
+            // The following assertions can be false positive in case a data field happen to
             // have value fall into NativeCodeData memory range
             AssertMsg(entry->targetTotalOffset == targetChunk->offset, "Missing fixup");
             return;
@@ -191,12 +191,14 @@ NativeCodeData::DeleteChunkList(DataChunkT * chunkList)
     {
         DataChunkT * current = next;
         next = next->next;
-        delete current;
+
+        // TODO: Should be HeapDeletePlus, but we don't know plusSize
+        HeapDelete(current, AllocatorDeleteFlags::UnknownSize);
     }
 }
 
-NativeCodeData::Allocator::Allocator() 
-    : chunkList(nullptr), 
+NativeCodeData::Allocator::Allocator()
+    : chunkList(nullptr),
     lastChunkList(nullptr),
     isOOPJIT(JITManager::GetJITManager()->IsJITServer())
 {
@@ -229,7 +231,7 @@ char *
 NativeCodeData::Allocator::Alloc(DECLSPEC_GUARD_OVERFLOW size_t requestSize)
 {
     Assert(!finalized);
-    char * data = nullptr;    
+    char * data = nullptr;
     requestSize = Math::Align(requestSize, sizeof(void*));
 
     if (isOOPJIT)
@@ -240,9 +242,9 @@ NativeCodeData::Allocator::Alloc(DECLSPEC_GUARD_OVERFLOW size_t requestSize)
         // positive while verifying missing fixup entries
         // Allocation without zeroing out, and with bool field in the structure
         // will increase the chance of false positive because of reusing memory
-        // without zeroing, and the bool field is set to false, makes the garbage 
-        // memory not changed, and the garbage memory might be just pointing to the 
-        // same range of NativeCodeData memory, the checking tool will report false 
+        // without zeroing, and the bool field is set to false, makes the garbage
+        // memory not changed, and the garbage memory might be just pointing to the
+        // same range of NativeCodeData memory, the checking tool will report false
         // poisitive, see NativeCodeData::VerifyExistFixupEntry for more
         DataChunk * newChunk = HeapNewStructPlusZ(requestSize, DataChunk);
 #else
@@ -304,7 +306,7 @@ NativeCodeData::Allocator::AllocZero(DECLSPEC_GUARD_OVERFLOW size_t requestSize)
     // Allocated with HeapNewStructPlusZ for chk build
     memset(data, 0, requestSize);
 #else
-    if (!isOOPJIT) 
+    if (!isOOPJIT)
     {
         memset(data, 0, requestSize);
     }

lib/Backend/NativeCodeGenerator.cpp

@@ -953,13 +953,13 @@ NativeCodeGenerator::CodeGen(PageAllocator * pageAllocator, CodeGenWorkItem* wor
             pNumberAllocator,
 #endif
             codeGenProfiler, !foreground);
-        
+
         if (!this->scriptContext->GetThreadContext()->GetPreReservedVirtualAllocator()->IsInRange((void*)jitWriteData.codeAddress))
         {
             this->scriptContext->GetJitFuncRangeCache()->AddFuncRange((void*)jitWriteData.codeAddress, jitWriteData.codeSize);
         }
     }
-    
+
     if (JITManager::GetJITManager()->IsOOPJITEnabled() && PHASE_VERBOSE_TRACE(Js::BackEndPhase, workItem->GetFunctionBody()))
     {
         LARGE_INTEGER freq;
@@ -1200,7 +1200,7 @@ void NativeCodeGenerator::LogCodeGenStart(CodeGenWorkItem * workItem, LARGE_INTE
             size_t sizeInChars = workItem->GetDisplayName(displayName, 256);
             if (sizeInChars > 256)
             {
-                displayName = new WCHAR[sizeInChars];
+                displayName = HeapNewArray(WCHAR, sizeInChars);
                 workItem->GetDisplayName(displayName, 256);
             }
             JS_ETW(EventWriteJSCRIPT_FUNCTION_JIT_START(
@@ -1215,7 +1215,7 @@ void NativeCodeGenerator::LogCodeGenStart(CodeGenWorkItem * workItem, LARGE_INTE
 
             if (displayName != displayNameBuffer)
             {
-                delete[] displayName;
+                HeapDeleteArray(sizeInChars, displayName);
             }
         }
     }
@@ -1317,7 +1317,7 @@ void NativeCodeGenerator::LogCodeGenDone(CodeGenWorkItem * workItem, LARGE_INTEG
             size_t sizeInChars = workItem->GetDisplayName(displayName, 256);
             if (sizeInChars > 256)
             {
-                displayName = new WCHAR[sizeInChars];
+                displayName = HeapNewArray(WCHAR, sizeInChars);
                 workItem->GetDisplayName(displayName, 256);
             }
             void* entryPoint;
@@ -1333,7 +1333,7 @@ void NativeCodeGenerator::LogCodeGenDone(CodeGenWorkItem * workItem, LARGE_INTEG
 
             if (displayName != displayNameBuffer)
             {
-                delete[] displayName;
+                HeapDeleteArray(sizeInChars, displayName);
             }
         }
     }
@@ -3196,7 +3196,7 @@ NativeCodeGenerator::QueueFreeNativeCodeGenAllocation(void* address)
         //DeRegister Entry Point for CFG
         ThreadContext::GetContextForCurrentThread()->SetValidCallTargetForCFG(address, false);
     }
-    
+
     if ((!JITManager::GetJITManager()->IsOOPJITEnabled() && !this->scriptContext->GetThreadContext()->GetPreReservedVirtualAllocator()->IsInRange((void*)address)) ||
         (JITManager::GetJITManager()->IsOOPJITEnabled() && !PreReservedVirtualAllocWrapper::IsInRange((void*)this->scriptContext->GetThreadContext()->GetPreReservedRegionAddr(), (void*)address)))
     {

lib/Common/Core/StackBackTrace.h

@@ -141,8 +141,8 @@ template <class T, LONG count, bool useStatic>
 struct _TraceRingBuffer
 {
     T* buf;
-    _TraceRingBuffer() { buf = new T[count]; }
-    ~_TraceRingBuffer() { delete[] buf; }
+    _TraceRingBuffer() { buf = HeapNewArray(T, count); }
+    ~_TraceRingBuffer() { HeapDeleteArray(count, buf); }
 };
 template <class T, LONG count>
 struct _TraceRingBuffer<T, count, true>

lib/Common/DataStructures/DictionaryStats.cpp

@@ -15,7 +15,7 @@ DictionaryStats* DictionaryStats::Create(const char* name, uint bucketCount)
         Js::Configuration::Global.flags.ProfileDictionary < 0)
         return NULL;
 
-    return ::new DictionaryStats(name, bucketCount);
+    return NoCheckHeapNew(DictionaryStats, name, bucketCount);
 }
 
 DictionaryStats* DictionaryStats::Clone()
@@ -238,10 +238,10 @@ void DictionaryStats::ClearStats()
         {
             DictionaryStats *pCurrent = pNext;
             pNext = pNext->pNext;
-            delete pCurrent;
+            NoCheckHeapDelete(pCurrent);
         }
         current = current->pNext;
-        delete type;
+        NoCheckHeapDelete(type);
     }
     dictionaryTypes = NULL;
 }

lib/Common/DataStructures/ImmutableList.cpp

@@ -50,16 +50,16 @@ void regex::ImmutableStringBuilder<chunkSize>::AppendWithCopy(_In_z_ LPCWSTR str
     AssertMsg(str != nullptr, "str != nullptr");
     size_t strLength = wcslen(str) + 1; // include null-terminated
 
-    WCHAR* buffer = new WCHAR[strLength];
+    WCHAR* buffer = HeapNewNoThrowArray(WCHAR, strLength);
     IfNullThrowOutOfMemory(buffer);
     wcsncpy_s(buffer, strLength, str, strLength);
 
     // append in front of the tracked allocated strings
-    AllocatedStringChunk* newAllocatedString = new AllocatedStringChunk();
+    AllocatedStringChunk* newAllocatedString = HeapNewNoThrow(AllocatedStringChunk);
     if (newAllocatedString == nullptr)
     {
         // cleanup
-        delete[] buffer;
+        HeapDeleteArray(strLength, buffer);
         Js::Throw::OutOfMemory();
     }
 

lib/Common/DataStructures/ImmutableList.h

@@ -678,7 +678,7 @@ namespace regex
         T ** ToReferenceArrayInHeap(size_t size)
         {
             Assert(size == Count());
-            auto result = new T *[size];
+            auto result = HeapNewNoThrowArray(T*, size);
             IfNullThrowOutOfMemory(result);
 
             auto current = this;
@@ -717,7 +717,7 @@ namespace regex
                 current = current->next;
             }
             current->next = nullptr;
-            delete []arr;
+            HeapDeleteArray(size, arr);
             return result;
         }
 
@@ -744,7 +744,7 @@ namespace regex
                 current->next = result;
                 result = current;
             }
-            delete []arr;
+            HeapDeleteArray(size, arr);
             return result;
         }
 
@@ -946,8 +946,11 @@ namespace regex
             {
                 nextAllocatedStringChunk = allocatedStringChunk->next;
 
-                delete[] allocatedStringChunk->dataPtr;
-                delete allocatedStringChunk;
+                // TODO: Should be HeapDeleteArray, but don't know size
+                HeapDelete(allocatedStringChunk->dataPtr,
+                           AllocatorDeleteFlags::UnknownSize);
+
+                HeapDelete(allocatedStringChunk);
 
                 allocatedStringChunk = nextAllocatedStringChunk;
             }
@@ -956,7 +959,7 @@ namespace regex
             {
                 auto current = head;
                 head = head->next;
-                delete current;
+                HeapDelete(current);
             }
         }
 
@@ -987,7 +990,7 @@ namespace regex
             // Generate new chunk
             if (currentIndex == chunkSize)
             {
-                StringChunk *newChunk = new StringChunk();
+                StringChunk *newChunk = HeapNewNoThrow(StringChunk);
                 IfNullThrowOutOfMemory(newChunk);
 
                 if (tail == nullptr)