ui/base: Deprecate use of base::ProtectedMemory

base::ProtectedMemory is being deprecated because it's not widely used enough to make a security impact and justify its maintenance burden. Replace use of base::ProtectedMemory with raw function pointers and add an attribute to disable CFI-icall checking. Bug: 1018834 Change-Id: If05a835c62dbb81850b4e0ba3a9a96f606adc2dc Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/1884366Reviewed-by: Sadrul Chowdhury <sadrul@chromium.org> Commit-Queue: Vlad Tsyrklevich <vtsyrklevich@chromium.org> Cr-Commit-Position: refs/heads/master@{#710654}

ui/base: Deprecate use of base::ProtectedMemory
base::ProtectedMemory is being deprecated because it's not widely used enough to make a security impact and justify its maintenance burden. Replace use of base::ProtectedMemory with raw function pointers and add an attribute to disable CFI-icall checking. Bug: 1018834 Change-Id: If05a835c62dbb81850b4e0ba3a9a96f606adc2dc Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/1884366Reviewed-by: Sadrul Chowdhury <sadrul@chromium.org> Commit-Queue: Vlad Tsyrklevich <vtsyrklevich@chromium.org> Cr-Commit-Position: refs/heads/master@{#710654}
3db8561a · Vlad Tsyrklevich · Commit Bot · 10dfc048 · 3db8561a
Commit 3db8561a authored Oct 30, 2019 by Vlad Tsyrklevich Committed by Commit Bot Oct 30, 2019
Hide whitespace changes
Inline Side-by-side

Showing with 11 additions and 16 deletions

ui/base/x/x11_display_util.cc ui/base/x/x11_display_util.cc +11 -16

No files found.
--- a/ui/base/x/x11_display_util.cc
+++ b/ui/base/x/x11_display_util.cc
@@ -6,8 +6,8 @@

 #include <dlfcn.h>

+#include "base/compiler_specific.h"
 #include "base/logging.h"
-#include "base/memory/protected_memory_cfi.h"
 #include "ui/base/x/x11_util.h"
 #include "ui/display/util/display_util.h"
 #include "ui/display/util/x11/edid_parser_x11.h"
@@ -23,11 +23,7 @@ constexpr int kMinVersionXrandr = 103;  // Need at least xrandr version 1.3.
 typedef XRRMonitorInfo* (*XRRGetMonitors)(::Display*, Window, bool, int*);
 typedef void (*XRRFreeMonitors)(XRRMonitorInfo*);

-PROTECTED_MEMORY_SECTION base::ProtectedMemory<XRRGetMonitors>
-    g_XRRGetMonitors_ptr;
-PROTECTED_MEMORY_SECTION base::ProtectedMemory<XRRFreeMonitors>
-    g_XRRFreeMonitors_ptr;
-
+NO_SANITIZE("cfi-icall")
 std::map<RROutput, int> GetMonitors(int version,
                                    XDisplay* xdisplay,
                                    GLXWindow window) {
@@ -35,22 +31,21 @@ std::map<RROutput, int> GetMonitors(int version,
  if (version >= 105) {
    void* xrandr_lib = dlopen(nullptr, RTLD_NOW);
    if (xrandr_lib) {
-      static base::ProtectedMemory<XRRGetMonitors>::Initializer get_init(
-          &g_XRRGetMonitors_ptr, reinterpret_cast<XRRGetMonitors>(
-                                     dlsym(xrandr_lib, "XRRGetMonitors")));
-      static base::ProtectedMemory<XRRFreeMonitors>::Initializer free_init(
-          &g_XRRFreeMonitors_ptr, reinterpret_cast<XRRFreeMonitors>(
-                                      dlsym(xrandr_lib, "XRRFreeMonitors")));
-      if (*g_XRRGetMonitors_ptr && *g_XRRFreeMonitors_ptr) {
+      static XRRGetMonitors XRRGetMonitors_ptr =
+          reinterpret_cast<XRRGetMonitors>(dlsym(xrandr_lib, "XRRGetMonitors"));
+      static XRRFreeMonitors XRRFreeMonitors_ptr =
+          reinterpret_cast<XRRFreeMonitors>(
+              dlsym(xrandr_lib, "XRRFreeMonitors"));
+      if (XRRGetMonitors_ptr && XRRFreeMonitors_ptr) {
        int nmonitors = 0;
-        XRRMonitorInfo* monitors = base::UnsanitizedCfiCall(
-            g_XRRGetMonitors_ptr)(xdisplay, window, false, &nmonitors);
+        XRRMonitorInfo* monitors =
+            XRRGetMonitors_ptr(xdisplay, window, false, &nmonitors);
        for (int monitor = 0; monitor < nmonitors; monitor++) {
          for (int j = 0; j < monitors[monitor].noutput; j++) {
            output_to_monitor[monitors[monitor].outputs[j]] = monitor;
          }
        }
-        base::UnsanitizedCfiCall(g_XRRFreeMonitors_ptr)(monitors);
+        XRRFreeMonitors_ptr(monitors);
      }
    }
  }