Add handle assignment validation to VM side.

adityamandaleeka · adityamandaleeka · commit 0bd13a2f5108 · 2017-04-17T15:51:58.000-07:00
diff --git a/src/vm/gchandleutilities.h b/src/vm/gchandleutilities.h
@@ -30,15 +30,19 @@ class GCHandleUtilities
     GCHandleUtilities() = delete;
 };
 
-void ValidateHandleAndAppDomain(OBJECTHANDLE handle);
+void ValidateObjectAndAppDomain(OBJECTREF objRef, ADIndex appDomainIndex);
+void ValidateHandleAssignment(OBJECTHANDLE handle, OBJECTREF objRef);
 
 // Given a handle, returns an OBJECTREF for the object it refers to.
 inline OBJECTREF ObjectFromHandle(OBJECTHANDLE handle)
 {
     _ASSERTE(handle);
 
 #ifdef _DEBUG_IMPL
-    ValidateHandleAndAppDomain(handle);
+    DWORD context = (DWORD)GCHandleUtilities::GetGCHandleManager()->GetHandleContext(handle);
+    OBJECTREF objRef = ObjectToOBJECTREF(*(Object**)handle);
+
+    ValidateObjectAndAppDomain(objRef, ADIndex(context));
 #endif // _DEBUG_IMPL
 
     // Wrap the raw OBJECTREF and return it
@@ -173,16 +177,22 @@ inline OBJECTHANDLE CreateVariableHandle(IGCHandleStore* store, OBJECTREF object
 
 inline void StoreObjectInHandle(OBJECTHANDLE handle, OBJECTREF object)
 {
+    ValidateHandleAssignment(handle, object);
+
     GCHandleUtilities::GetGCHandleManager()->StoreObjectInHandle(handle, OBJECTREFToObject(object));
 }
 
 inline bool StoreFirstObjectInHandle(OBJECTHANDLE handle, OBJECTREF object)
 {
+    ValidateHandleAssignment(handle, object);
+
     return GCHandleUtilities::GetGCHandleManager()->StoreObjectInHandleIfNull(handle, OBJECTREFToObject(object));
 }
 
 inline void* InterlockedCompareExchangeObjectInHandle(OBJECTHANDLE handle, OBJECTREF object, OBJECTREF comparandObject)
 {
+    ValidateHandleAssignment(handle, object);
+
     return GCHandleUtilities::GetGCHandleManager()->CompareAndSwapObjectInHandle(handle, OBJECTREFToObject(object), OBJECTREFToObject(comparandObject));
 }
 
diff --git a/src/vm/gcheaputilities.cpp b/src/vm/gcheaputilities.cpp
@@ -40,17 +40,12 @@ bool g_sw_ww_enabled_for_gc_heap = false;
 gc_alloc_context g_global_alloc_context = {};
 
 // Debug-only validation for handle.
-void ValidateHandleAndAppDomain(OBJECTHANDLE handle)
+
+void ValidateObjectAndAppDomain(OBJECTREF objRef, ADIndex appDomainIndex)
 {
 #ifdef _DEBUG_IMPL
-    OBJECTREF objRef = ObjectToOBJECTREF(*(Object**)handle);
     VALIDATEOBJECTREF(objRef);
 
-    IGCHandleManager *pHandleManager = GCHandleUtilities::GetGCHandleManager();
-
-    DWORD context = (DWORD)pHandleManager->GetHandleContext(handle);
-
-    ADIndex appDomainIndex = ADIndex(context);
     AppDomain *domain = SystemDomain::GetAppDomainAtIndex(appDomainIndex);
 
     // Access to a handle in an unloaded domain is not allowed
@@ -72,3 +67,25 @@ void ValidateHandleAndAppDomain(OBJECTHANDLE handle)
 #endif // CHECK_APP_DOMAIN_LEAKS
 #endif // _DEBUG_IMPL
 }
+
+void ValidateHandleAssignment(OBJECTHANDLE handle, OBJECTREF objRef)
+{
+#ifdef _DEBUG_IMPL
+    _ASSERTE(handle);
+
+#ifdef DEBUG_DestroyedHandleValue
+    // Verify that we are not trying to access a freed handle.
+    _ASSERTE("Attempt to access destroyed handle." && *(_UNCHECKED_OBJECTREF*)handle != DEBUG_DestroyedHandleValue);
+#endif
+
+    ADIndex appDomainIndex = HndGetHandleADIndex(handle);
+
+    AppDomain *unloadingDomain = SystemDomain::AppDomainBeingUnloaded();
+    if (unloadingDomain && unloadingDomain->GetIndex() == appDomainIndex && unloadingDomain->NoAccessToHandleTable())
+    {
+        _ASSERTE (!"Access to a handle in unloaded domain is not allowed");
+    }
+
+    ValidateObjectAndAppDomain(objRef, appDomainIndex);
+#endif // _DEBUG_IMPL
+}

Original file line number	Diff line number	Diff line change
`@@ -30,15 +30,19 @@ class GCHandleUtilities`
`30`	`30`	`GCHandleUtilities() = delete;`
`31`	`31`	`};`
`32`	`32`
`33`		`-void ValidateHandleAndAppDomain(OBJECTHANDLE handle);`
	`33`	`+void ValidateObjectAndAppDomain(OBJECTREF objRef, ADIndex appDomainIndex);`
	`34`	`+void ValidateHandleAssignment(OBJECTHANDLE handle, OBJECTREF objRef);`
`34`	`35`
`35`	`36`	`// Given a handle, returns an OBJECTREF for the object it refers to.`
`36`	`37`	`inline OBJECTREF ObjectFromHandle(OBJECTHANDLE handle)`
`37`	`38`	`{`
`38`	`39`	`_ASSERTE(handle);`
`39`	`40`
`40`	`41`	`#ifdef _DEBUG_IMPL`
`41`		`- ValidateHandleAndAppDomain(handle);`
	`42`	`+ DWORD context = (DWORD)GCHandleUtilities::GetGCHandleManager()->GetHandleContext(handle);`
	`43`	`+ OBJECTREF objRef = ObjectToOBJECTREF((Object*)handle);`
	`44`	`+`
	`45`	`+ ValidateObjectAndAppDomain(objRef, ADIndex(context));`
`42`	`46`	`#endif // _DEBUG_IMPL`
`43`	`47`
`44`	`48`	`// Wrap the raw OBJECTREF and return it`
`@@ -173,16 +177,22 @@ inline OBJECTHANDLE CreateVariableHandle(IGCHandleStore* store, OBJECTREF object`
`173`	`177`
`174`	`178`	`inline void StoreObjectInHandle(OBJECTHANDLE handle, OBJECTREF object)`
`175`	`179`	`{`
	`180`	`+ ValidateHandleAssignment(handle, object);`
	`181`	`+`
`176`	`182`	`GCHandleUtilities::GetGCHandleManager()->StoreObjectInHandle(handle, OBJECTREFToObject(object));`
`177`	`183`	`}`
`178`	`184`
`179`	`185`	`inline bool StoreFirstObjectInHandle(OBJECTHANDLE handle, OBJECTREF object)`
`180`	`186`	`{`
	`187`	`+ ValidateHandleAssignment(handle, object);`
	`188`	`+`
`181`	`189`	`return GCHandleUtilities::GetGCHandleManager()->StoreObjectInHandleIfNull(handle, OBJECTREFToObject(object));`
`182`	`190`	`}`
`183`	`191`
`184`	`192`	`inline void* InterlockedCompareExchangeObjectInHandle(OBJECTHANDLE handle, OBJECTREF object, OBJECTREF comparandObject)`
`185`	`193`	`{`
	`194`	`+ ValidateHandleAssignment(handle, object);`
	`195`	`+`
`186`	`196`	`return GCHandleUtilities::GetGCHandleManager()->CompareAndSwapObjectInHandle(handle, OBJECTREFToObject(object), OBJECTREFToObject(comparandObject));`
`187`	`197`	`}`
`188`	`198`