Changeset 21427


Ignore:
Timestamp:
Aug 27, 2010, 2:20:14 AM (15 years ago)
Author:
dmik
Message:

SEH: Save EXCEPTION_RECORD and CONTEXT on heap when jumping back from the exception handler to execute the except() filter expression because they are stored on stack and may be overwritten during execution of the filter expression. This fixes garbage in structures pointed to by _exception_info()'s pointers.

Location:
trunk
Files:
1 added
3 edited

Legend:

Unmodified
Added
Removed

  • TabularUnified trunk/include/excpt.h

    r21387 r21427  
    4949#define __try \
    5050    volatile __seh_PEXCEPTION_FRAME __seh_frame;                               \
     51    __seh_frame.Pointers.ExceptionRecord = NULL;                               \
     52    __seh_frame.Pointers.ContextRecord = NULL;                                 \
    5153    __seh_frame.state = 0;                                                     \
    5254    __asm__("\n0:\n"); /* pFilterCallback */                                   \

  • TabularUnified trunk/src/kernel32/seh/makefile

    r21381 r21427  
    2929#
    3030OBJS = \
     31$(OBJDIR)\seh.obj \
    3132$(OBJDIR)\sehutil.obj
    3233

  • TabularUnified trunk/src/kernel32/seh/sehutil.s

    r21383 r21427  
    6464    /* save the handler's stack on heap */
    6565    movl %ecx, %eax /* size_t */
    66     subl $16, %esp
     66    subl $4, %esp
    6767    movl %eax, 0(%esp)
    6868    call odin_malloc /* _Optlink, rtl, EAX/EDX/ECX-in, caller cleans stack */
    69     addl $16, %esp
     69    addl $4, %esp
    7070    testl %eax, %eax
    7171    je ___seh_handler_Error /* No memory! */
     
    7777
    7878    /* prepare a jump to the filter callback */
    79     movl 12(%ebp), %eax
    80 
     79    subl $12, %esp
     80    movl 12(%ebp), %ebx
     81    movl %ebx, 0(%esp)
    8182    movl 8(%ebp), %ebx
    82     movl %ebx, 48(%eax) /* pFrame->Pointers.ExceptionRecord */
     83    movl %ebx, 4(%esp)
    8384    movl 16(%ebp), %ebx
    84     movl %ebx, 52(%eax) /* pFrame->Pointers.ContextRecord */
     85    movl %ebx, 8(%esp)
     86    call ___seh_makePointers  /* _cdecl, rtl, caller cleans stack */
     87    addl $12, %esp
    8588
    8689    /* restore __try/__catch context */
     90    movl 12(%ebp), %eax
    8791    movl 24(%eax), %ebx /* pFrame->pTryRegs */
    8892    movl 28(%eax), %esi
     
    109113    popl %ebp
    110114
    111     /* free heap block */
    112     movl 16(%ebx), %eax /* pFrame->pHandlerContext */
    113     subl $16, %esp
     115    /* free heap blocks */
     116    movl 52(%ebx), %eax /* pFrame->Pointers.ContextRecord */
     117    subl $4, %esp
    114118    movl %eax, 0(%esp)
    115119    call odin_free /* _Optlink, rtl, EAX/EDX/ECX-in, caller cleans stack */
    116     addl $16, %esp
     120    addl $4, %esp
     121
     122    movl 48(%ebx), %eax /* pFrame->Pointers.ExceptionRecord */
     123    subl $4, %esp
     124    movl %eax, 0(%esp)
     125    call odin_free /* _Optlink, rtl, EAX/EDX/ECX-in, caller cleans stack */
     126    addl $4, %esp
     127
     128    movl 16(%ebx), %eax /* pFrame->pHandlerContext */
     129    subl $4, %esp
     130    movl %eax, 0(%esp)
     131    call odin_free /* _Optlink, rtl, EAX/EDX/ECX-in, caller cleans stack */
     132    addl $4, %esp
    117133
    118134    /* analyze filter result */
Note: See TracChangeset for help on using the changeset viewer.