mac: Fix logic error in dec31e17

dec31e17 (https://chromium-review.googlesource.com/c/2523446) was supposed to make memory allocations use MAP_JIT on macOS ≥ 10.14 whenever the hardened runtime wasn’t active, but a serious goof inverted the logic, causing MAP_JIT to be used whenever the hardened runtime was active. This is only feasible for processes that have the JIT entitlement, and not all do. Attempts to allocate memory in this way in affected processes would fail, which would appear as an out-of-memory condition, which isn’t quite accurate, but it’s definitely a memory allocation problem. Bug: 1144200, 1147831 Change-Id: I9c8f925ec7b311b2d655dd3a5f367fd01e80d7e2 CQ-Include-Trybots: luci.chromium.try:mac-arm64-rel Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/2532728 Auto-Submit: Mark Mentovai <mark@chromium.org> Reviewed-by: Robert Sesek <rsesek@chromium.org> Commit-Queue: Robert Sesek <rsesek@chromium.org> Commit-Queue: Mark Mentovai <mark@chromium.org> Cr-Commit-Position: refs/heads/master@{#826497}

mac: Fix logic error in dec31e17
dec31e17 (https://chromium-review.googlesource.com/c/2523446) was supposed to make memory allocations use MAP_JIT on macOS ≥ 10.14 whenever the hardened runtime wasn’t active, but a serious goof inverted the logic, causing MAP_JIT to be used whenever the hardened runtime was active. This is only feasible for processes that have the JIT entitlement, and not all do. Attempts to allocate memory in this way in affected processes would fail, which would appear as an out-of-memory condition, which isn’t quite accurate, but it’s definitely a memory allocation problem. Bug: 1144200, 1147831 Change-Id: I9c8f925ec7b311b2d655dd3a5f367fd01e80d7e2 CQ-Include-Trybots: luci.chromium.try:mac-arm64-rel Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/2532728 Auto-Submit: Mark Mentovai <mark@chromium.org> Reviewed-by: Robert Sesek <rsesek@chromium.org> Commit-Queue: Robert Sesek <rsesek@chromium.org> Commit-Queue: Mark Mentovai <mark@chromium.org> Cr-Commit-Position: refs/heads/master@{#826497}
c70f5161 · Mark Mentovai · 4e87d75a · c70f5161
Commit c70f5161 authored Nov 11, 2020 by Mark Mentovai
Hide whitespace changes
Inline Side-by-side

Showing with 1 addition and 1 deletion

base/allocator/partition_allocator/page_allocator_internals_posix.h ...ator/partition_allocator/page_allocator_internals_posix.h +1 -1

No files found.
--- a/base/allocator/partition_allocator/page_allocator_internals_posix.h
+++ b/base/allocator/partition_allocator/page_allocator_internals_posix.h
@@ -113,7 +113,7 @@ bool UseMapJit() {
  }
  uint32_t flags = SecTaskGetCodeSignStatus(task);
-  if ((flags & kSecCodeSignatureRuntime) != 0) {
+  if (!(flags & kSecCodeSignatureRuntime)) {
    // The hardened runtime is not enabled. Note that kSecCodeSignatureRuntime
    // == CS_RUNTIME.
    return true;