Chromium Code Reviews Chromium Code Reviews
Issue 21208002:
Ensure no RWX pages remain after mach_override_ptr (Closed)
Base URL: svn://svn.chromium.org/chrome/trunk/src| Index: third_party/mach_override/mach_override.c |
| diff --git a/third_party/mach_override/mach_override.c b/third_party/mach_override/mach_override.c |
| index 549409d0b30b01a17c54d0f158773117a79a7e9f..21d52e1c2c44e3cbd45ca04f489853dc5180d9ae 100644 |
| --- a/third_party/mach_override/mach_override.c |
| +++ b/third_party/mach_override/mach_override.c |
| @@ -156,7 +156,7 @@ mach_error_t makeIslandExecutable(void *address) { |
| mach_error_t err = err_none; |
| uintptr_t page = (uintptr_t)address & ~(uintptr_t)(kPageSize-1); |
| int e = err_none; |
| - e |= mprotect((void *)page, kPageSize, PROT_EXEC | PROT_READ | PROT_WRITE); |
| + e |= mprotect((void *)page, kPageSize, PROT_EXEC | PROT_READ); |
| e |= msync((void *)page, kPageSize, MS_INVALIDATE ); |
| if (e) { |
| err = err_cannot_override; |
| @@ -335,6 +335,10 @@ mach_override_ptr( |
| #endif |
| if ( !err ) |
| atomic_mov64((uint64_t *)originalFunctionPtr, jumpRelativeInstruction); |
| + |
| + err = vm_protect( mach_task_self(), |
| + (vm_address_t) originalFunctionPtr, 8, false, |
|
Mark Mentovai
2013/07/30 21:02:27
The indentation here is a mess.
|
| + (VM_PROT_READ | VM_PROT_EXECUTE) ); |
| } |
| #endif |
