Changeset 287908 in webkit

Timestamp:

Jan 11, 2022 8:03:20 PM (2 years ago)

Author:

mark.lam@apple.com

Message:

Update hashThreadState() to exclude opaque_flags.
​https://bugs.webkit.org/show_bug.cgi?id=235081
rdar://86282584

Reviewed by Keith Miller.

Source/JavaScriptCore:

Removed some unused code.

• runtime/MachineContext.h:

(JSC::MachineContext::stackPointer):
(JSC::MachineContext::framePointer):
(JSC::MachineContext::instructionPointer):
(JSC::MachineContext::linkRegister):
(JSC::MachineContext::setStackPointer): Deleted.
(JSC::MachineContext::setFramePointer): Deleted.
(JSC::MachineContext::setLinkRegister): Deleted.

Source/WTF:

The opaque_flags may be used by the OS, and may be altered without our knowledge.
Hence, our hash should not include the opaque_flags field.

Also remove some unused code.

• wtf/PlatformRegisters.h:
• wtf/threads/Signals.cpp:

(WTF::hashThreadState):

Location:

trunk/Source

Files:

• JavaScriptCore/ChangeLog (modified) (1 diff)
• JavaScriptCore/runtime/MachineContext.h (modified) (9 diffs)
• WTF/ChangeLog (modified) (1 diff)
• WTF/wtf/PlatformRegisters.h (modified) (3 diffs)
• WTF/wtf/threads/Signals.cpp (modified) (2 diffs)

trunk/Source/JavaScriptCore/ChangeLog

@@ +1 @@
+2022-01-11  Mark Lam  <mark.lam@apple.com>
+
+        Update hashThreadState() to exclude __opaque_flags.
+        https://bugs.webkit.org/show_bug.cgi?id=235081
+        rdar://86282584
+
+        Reviewed by Keith Miller.
+
+        Removed some unused code.
+
+        * runtime/MachineContext.h:
+        (JSC::MachineContext::stackPointer):
+        (JSC::MachineContext::framePointer):
+        (JSC::MachineContext::instructionPointer):
+        (JSC::MachineContext::linkRegister):
+        (JSC::MachineContext::setStackPointer): Deleted.
+        (JSC::MachineContext::setFramePointer): Deleted.
+        (JSC::MachineContext::setLinkRegister): Deleted.
+
 2022-01-11  Asumu Takikawa  <asumu@igalia.com>
 

trunk/Source/JavaScriptCore/runtime/MachineContext.h

@@ -1 +1 @@
 /*
  * Copyright (C) 2017 Yusuke Suzuki <utatane.tea@gmail.com>.
- * Copyright (C) 2018 Apple Inc. All rights reserved.
+ * Copyright (C) 2018-2022 Apple Inc. All rights reserved.
  *
  * Redistribution and use in source and binary forms, with or without
@@ -40 +40 @@
 
 #if OS(WINDOWS) || HAVE(MACHINE_CONTEXT)
-template<typename T = void*> void setStackPointer(PlatformRegisters&, T);
 template<typename T = void*> T framePointer(const PlatformRegisters&);
-template<typename T = void*> void setFramePointer(PlatformRegisters&, T);
 inline MacroAssemblerCodePtr<PlatformRegistersLRPtrTag> linkRegister(const PlatformRegisters&);
-inline void setLinkRegister(PlatformRegisters&, MacroAssemblerCodePtr<CFunctionPtrTag>);
 inline std::optional<MacroAssemblerCodePtr<PlatformRegistersPCPtrTag>> instructionPointer(const PlatformRegisters&);
 inline void setInstructionPointer(PlatformRegisters&, MacroAssemblerCodePtr<CFunctionPtrTag>);
@@ -68 +65 @@
 
 template<typename T = void*> T stackPointer(const mcontext_t&);
-template<typename T = void*> void setStackPointer(mcontext_t&, T);
 template<typename T = void*> T framePointer(const mcontext_t&);
-template<typename T = void*> void setFramePointer(mcontext_t&, T);
 inline MacroAssemblerCodePtr<PlatformRegistersPCPtrTag> instructionPointer(const mcontext_t&);
-inline void setInstructionPointer(mcontext_t&, MacroAssemblerCodePtr<CFunctionPtrTag>);
 
 template<size_t N> void*& argumentPointer(mcontext_t&);
@@ -151 +145 @@
 }
 
-template<typename T>
-inline void setStackPointer(PlatformRegisters& regs, T value)
-{
-#if USE(PLATFORM_REGISTERS_WITH_PROFILE)
-    assertIsNotTagged(bitwise_cast<void*>(value));
-    WTF_WRITE_PLATFORM_REGISTERS_SP_WITH_PROFILE(regs, bitwise_cast<void*>(value));
-#elif USE(DARWIN_REGISTER_MACROS)
-    __darwin_arm_thread_state64_set_sp(regs, value);
-#else
-    stackPointerImpl(regs) = bitwise_cast<void*>(value);
-#endif
-}
-
 #else // not OS(WINDOWS) || HAVE(MACHINE_CONTEXT)
 
@@ -230 +211 @@
 #endif
 }
-
-template<typename T>
-inline void setStackPointer(mcontext_t& machineContext, T value)
-{
-#if USE(PLATFORM_REGISTERS_WITH_PROFILE)
-    assertIsNotTagged(bitwise_cast<void*>(value));
-    WTF_WRITE_MACHINE_CONTEXT_SP_WITH_PROFILE(machineContext, bitwise_cast<void*>(value));
-#elif USE(DARWIN_REGISTER_MACROS)
-    return setStackPointer(machineContext->__ss, value);
-#else
-    stackPointerImpl(machineContext) = bitwise_cast<void*>(value);
-#endif
-}
 #endif // HAVE(MACHINE_CONTEXT)
 
@@ -312 +280 @@
 #endif
 }
-
-template<typename T>
-inline void setFramePointer(PlatformRegisters& regs, T value)
-{
-#if USE(PLATFORM_REGISTERS_WITH_PROFILE)
-    assertIsNotTagged(bitwise_cast<void*>(value));
-    WTF_WRITE_PLATFORM_REGISTERS_FP_WITH_PROFILE(regs, bitwise_cast<void*>(value));
-#else
-    framePointerImpl(regs) = bitwise_cast<void*>(value);
-#endif
-}
 #endif // OS(WINDOWS) || HAVE(MACHINE_CONTEXT)
 
@@ -383 +340 @@
 #else
     return bitwise_cast<T>(framePointerImpl(const_cast<mcontext_t&>(machineContext)));
-#endif
-}
-
-template<typename T>
-inline void setFramePointer(mcontext_t& machineContext, T value)
-{
-#if USE(PLATFORM_REGISTERS_WITH_PROFILE)
-    assertIsNotTagged(bitwise_cast<void*>(value));
-    WTF_WRITE_MACHINE_CONTEXT_FP_WITH_PROFILE(machineContext, bitwise_cast<void*>(value));
-#else
-    framePointerImpl(machineContext) = bitwise_cast<void*>(value);
 #endif
 }
@@ -542 +488 @@
 #endif
 }
-
-inline void setInstructionPointer(mcontext_t& machineContext, MacroAssemblerCodePtr<CFunctionPtrTag> value)
-{
-#if USE(PLATFORM_REGISTERS_WITH_PROFILE)
-    WTF_WRITE_MACHINE_CONTEXT_PC_WITH_PROFILE(machineContext, value.executableAddress());
-#elif USE(DARWIN_REGISTER_MACROS)
-    setInstructionPointer(machineContext->__ss, value);
-#else
-    instructionPointerImpl(machineContext) = value.executableAddress();
-#endif
-}
 #endif // HAVE(MACHINE_CONTEXT)
 
@@ -568 +503 @@
 #endif
     return MacroAssemblerCodePtr<PlatformRegistersLRPtrTag>(value);
-}
-
-inline void setLinkRegister(PlatformRegisters& regs, MacroAssemblerCodePtr<CFunctionPtrTag> value)
-{
-#if USE(PLATFORM_REGISTERS_WITH_PROFILE)
-    WTF_WRITE_PLATFORM_REGISTERS_PC_WITH_PROFILE(regs, value.executableAddress());
-#else
-    __darwin_arm_thread_state64_set_lr_fptr(regs, value.executableAddress());
-#endif
 }
 #endif // OS(DARWIN) && __DARWIN_UNIX03 && CPU(ARM64)

trunk/Source/WTF/ChangeLog

@@ +1 @@
+2022-01-11  Mark Lam  <mark.lam@apple.com>
+
+        Update hashThreadState() to exclude __opaque_flags.
+        https://bugs.webkit.org/show_bug.cgi?id=235081
+        rdar://86282584
+
+        Reviewed by Keith Miller.
+
+        The __opaque_flags may be used by the OS, and may be altered without our knowledge.
+        Hence, our hash should not include the __opaque_flags field.
+
+        Also remove some unused code.
+
+        * wtf/PlatformRegisters.h:
+        * wtf/threads/Signals.cpp:
+        (WTF::hashThreadState):
+
 2022-01-11  Sam Weinig  <weinig@apple.com>
 

trunk/Source/WTF/wtf/PlatformRegisters.h

@@ -1 +1 @@
 /*
  * Copyright (C) 2017 Yusuke Suzuki <utatane.tea@gmail.com>
- * Copyright (C) 2019 Apple Inc. All rights reserved.
+ * Copyright (C) 2019-2022 Apple Inc. All rights reserved.
  *
  * Redistribution and use in source and binary forms, with or without
@@ -120 +120 @@
     reinterpret_cast<void*>(arm_thread_state64_get_sp(const_cast<PlatformRegisters&>(regs)))
 
-#define WTF_WRITE_PLATFORM_REGISTERS_SP_WITH_PROFILE(regs, newPointer) \
-    arm_thread_state64_set_sp(regs, reinterpret_cast<uintptr_t>(newPointer))
-
 #define WTF_READ_PLATFORM_REGISTERS_FP_WITH_PROFILE(regs) \
     reinterpret_cast<void*>(arm_thread_state64_get_fp(const_cast<PlatformRegisters&>(regs)))
 
-#define WTF_WRITE_PLATFORM_REGISTERS_FP_WITH_PROFILE(regs, newPointer) \
-    arm_thread_state64_set_fp(regs, reinterpret_cast<uintptr_t>(newPointer))
-
 #define WTF_READ_PLATFORM_REGISTERS_LR_WITH_PROFILE(regs) \
     threadStateLRInternal(const_cast<PlatformRegisters&>(regs))
-
-#define WTF_WRITE_PLATFORM_REGISTERS_LR_WITH_PROFILE(regs, newPointer) \
-    arm_thread_state64_set_lr_fptr(regs, newPointer)
 
 #define WTF_READ_PLATFORM_REGISTERS_PC_WITH_PROFILE(regs) \
@@ -144 +135 @@
     WTF_READ_PLATFORM_REGISTERS_SP_WITH_PROFILE(machineContext->__ss)
 
-#define WTF_WRITE_MACHINE_CONTEXT_SP_WITH_PROFILE(machineContext, newPointer) \
-    WTF_WRITE_PLATFORM_REGISTERS_SP_WITH_PROFILE(machineContext->__ss, newPointer)
-
 #define WTF_READ_MACHINE_CONTEXT_FP_WITH_PROFILE(machineContext) \
     WTF_READ_PLATFORM_REGISTERS_FP_WITH_PROFILE(machineContext->__ss)
-
-#define WTF_WRITE_MACHINE_CONTEXT_FP_WITH_PROFILE(machineContext, newPointer) \
-    WTF_WRITE_PLATFORM_REGISTERS_FP_WITH_PROFILE(machineContext->__ss, newPointer)
-
-#define WTF_WRITE_MACHINE_CONTEXT_LR_WITH_PROFILE(machineContext, newPointer) \
-    WTF_WRITE_PLATFORM_REGISTERS_LR_WITH_PROFILE(machineContext->__ss, newPointer)
 
 #define WTF_READ_MACHINE_CONTEXT_PC_WITH_PROFILE(machineContext) \
     WTF_READ_PLATFORM_REGISTERS_PC_WITH_PROFILE(machineContext->__ss)
 
-#define WTF_WRITE_MACHINE_CONTEXT_PC_WITH_PROFILE(machineContext, newPointer) \
-    WTF_WRITE_PLATFORM_REGISTERS_PC_WITH_PROFILE(machineContext->__ss, newPointer)
-
 #endif // USE(PLATFORM_REGISTERS_WITH_PROFILE)
 

trunk/Source/WTF/wtf/threads/Signals.cpp

@@ -1 +1 @@
 /*
- * Copyright (C) 2017-2020 Apple Inc. All rights reserved.
+ * Copyright (C) 2017-2022 Apple Inc. All rights reserved.
  *
  * Redistribution and use in source and binary forms, with or without
@@ -173 +173 @@
     const uintptr_t* srcPtr = reinterpret_cast<const uintptr_t*>(source);
 
-    for (size_t i = 0; i < threadStateSizeInPointers; ++i) {
+    // Exclude the __opaque_flags field which is reserved for OS use.
+    // __opaque_flags is at the end of the payload.
+    for (size_t i = 0; i < threadStateSizeInPointers - 1; ++i) {
         if (i != threadStatePCPointerIndex)
             hash = ptrauth_sign_generic_data(srcPtr[i], hash);
     }
+    const uint32_t* cpsrPtr = reinterpret_cast<const uint32_t*>(&srcPtr[threadStateSizeInPointers - 1]);
+    hash = ptrauth_sign_generic_data(static_cast<uint64_t>(*cpsrPtr), hash);
     
     return hash;