mirror of
https://github.com/mozilla/gecko-dev.git
synced 2024-10-22 01:35:35 +00:00
9315656cb2
In order to help unify DLL timings across machines with different performance characteristics, this change collects the load duration of xul.dll. Because xul.dll is always loaded, it can serve as a control value for DLL load times. Differential Revision: https://phabricator.services.mozilla.com/D16012 --HG-- extra : moz-landing-system : lando
340 lines
12 KiB
C++
340 lines
12 KiB
C++
/* -*- Mode: C++; tab-width: 8; indent-tabs-mode: nil; c-basic-offset: 2 -*- */
|
|
/* vim: set ts=8 sts=2 et sw=2 tw=80: */
|
|
/* This Source Code Form is subject to the terms of the Mozilla Public
|
|
* License, v. 2.0. If a copy of the MPL was not distributed with this
|
|
* file, You can obtain one at https://mozilla.org/MPL/2.0/. */
|
|
|
|
#include "ModuleEvaluator_windows.h"
|
|
|
|
#include <windows.h>
|
|
#include <algorithm> // For std::find()
|
|
|
|
#include "mozilla/ArrayUtils.h"
|
|
#include "mozilla/CmdLineAndEnvUtils.h"
|
|
#include "mozilla/UniquePtr.h"
|
|
#include "mozilla/Unused.h"
|
|
#include "nsCOMPtr.h"
|
|
#include "nsDirectoryServiceDefs.h"
|
|
#include "nsIFile.h"
|
|
#include "nsReadableUtils.h"
|
|
#include "nsWindowsHelpers.h"
|
|
#include "WinUtils.h"
|
|
|
|
namespace mozilla {
|
|
|
|
// Utility function to get the parent directory of aFile.
|
|
// Returns true upon success.
|
|
static bool GetDirectoryName(const nsCOMPtr<nsIFile> aFile,
|
|
nsAString& aParent) {
|
|
nsCOMPtr<nsIFile> parentDir;
|
|
if (NS_FAILED(aFile->GetParent(getter_AddRefs(parentDir))) || !parentDir) {
|
|
return false;
|
|
}
|
|
if (NS_FAILED(parentDir->GetPath(aParent))) {
|
|
return false;
|
|
}
|
|
return true;
|
|
}
|
|
|
|
ModuleLoadEvent::ModuleInfo::ModuleInfo(
|
|
const glue::ModuleLoadEvent::ModuleInfo& aOther)
|
|
: mBase(aOther.mBase), mLoadDurationMS(Some(aOther.mLoadDurationMS)) {
|
|
if (aOther.mLdrName) {
|
|
mLdrName.Assign(aOther.mLdrName.get());
|
|
}
|
|
if (aOther.mFullPath) {
|
|
nsDependentString tempPath(aOther.mFullPath.get());
|
|
Unused << NS_NewLocalFile(tempPath, false, getter_AddRefs(mFile));
|
|
}
|
|
}
|
|
|
|
ModuleLoadEvent::ModuleLoadEvent(const ModuleLoadEvent& aOther,
|
|
CopyOption aOption)
|
|
: mIsStartup(aOther.mIsStartup),
|
|
mThreadID(aOther.mThreadID),
|
|
mThreadName(aOther.mThreadName),
|
|
mProcessUptimeMS(aOther.mProcessUptimeMS) {
|
|
Unused << mStack.reserve(aOther.mStack.length());
|
|
for (auto& x : aOther.mStack) {
|
|
Unused << mStack.append(x);
|
|
}
|
|
if (aOption != CopyOption::CopyWithoutModules) {
|
|
Unused << mModules.reserve(aOther.mModules.length());
|
|
for (auto& x : aOther.mModules) {
|
|
Unused << mModules.append(x);
|
|
}
|
|
}
|
|
}
|
|
|
|
ModuleLoadEvent::ModuleLoadEvent(const glue::ModuleLoadEvent& aOther)
|
|
: mIsStartup(
|
|
false) // Events originating in glue:: cannot be a startup event.
|
|
,
|
|
mThreadID(aOther.mThreadID),
|
|
mProcessUptimeMS(aOther.mProcessUptimeMS) {
|
|
for (auto& frame : aOther.mStack) {
|
|
Unused << mStack.append(frame);
|
|
}
|
|
for (auto& module : aOther.mModules) {
|
|
Unused << mModules.append(ModuleInfo(module));
|
|
}
|
|
}
|
|
|
|
// Fills a Vector with keyboard layout DLLs found in the registry.
|
|
// These are leaf names only, not full paths. Here we will convert them to
|
|
// lowercase before returning, to facilitate case-insensitive searches.
|
|
// On error, this may return partial results.
|
|
static void GetKeyboardLayoutDlls(
|
|
Vector<nsString, 0, InfallibleAllocPolicy>& aOut) {
|
|
HKEY rawKey;
|
|
if (::RegOpenKeyExW(HKEY_LOCAL_MACHINE,
|
|
L"SYSTEM\\CurrentControlSet\\Control\\Keyboard Layouts",
|
|
0, KEY_ENUMERATE_SUB_KEYS, &rawKey) != ERROR_SUCCESS) {
|
|
return;
|
|
}
|
|
nsAutoRegKey key(rawKey);
|
|
|
|
DWORD iKey = 0;
|
|
wchar_t strTemp[MAX_PATH] = {0};
|
|
while (true) {
|
|
DWORD strTempSize = ArrayLength(strTemp);
|
|
if (RegEnumKeyExW(rawKey, iKey, strTemp, &strTempSize, nullptr, nullptr,
|
|
nullptr, nullptr) != ERROR_SUCCESS) {
|
|
return; // ERROR_NO_MORE_ITEMS or a real error: bail with what we have.
|
|
}
|
|
iKey++;
|
|
|
|
strTempSize = sizeof(strTemp);
|
|
if (::RegGetValueW(rawKey, strTemp, L"Layout File", RRF_RT_REG_SZ, nullptr,
|
|
strTemp, &strTempSize) == ERROR_SUCCESS) {
|
|
nsString ws(strTemp, (strTempSize / sizeof(wchar_t)) - 1);
|
|
ToLowerCase(ws); // To facilitate searches
|
|
Unused << aOut.emplaceBack(ws);
|
|
}
|
|
}
|
|
}
|
|
|
|
ModuleEvaluator::ModuleEvaluator() {
|
|
GetKeyboardLayoutDlls(mKeyboardLayoutDlls);
|
|
|
|
nsCOMPtr<nsIFile> sysDir;
|
|
if (NS_SUCCEEDED(
|
|
NS_GetSpecialDirectory(NS_OS_SYSTEM_DIR, getter_AddRefs(sysDir)))) {
|
|
sysDir->GetPath(mSysDirectory);
|
|
}
|
|
|
|
nsCOMPtr<nsIFile> winSxSDir;
|
|
if (NS_SUCCEEDED(NS_GetSpecialDirectory(NS_WIN_WINDOWS_DIR,
|
|
getter_AddRefs(winSxSDir)))) {
|
|
if (NS_SUCCEEDED(winSxSDir->Append(NS_LITERAL_STRING("WinSxS")))) {
|
|
winSxSDir->GetPath(mWinSxSDirectory);
|
|
}
|
|
}
|
|
|
|
#ifdef _M_IX86
|
|
mSysWOW64Directory.SetLength(MAX_PATH);
|
|
UINT sysWOWlen =
|
|
::GetSystemWow64DirectoryW((char16ptr_t)mSysWOW64Directory.BeginWriting(),
|
|
mSysWOW64Directory.Length());
|
|
if (!sysWOWlen || (sysWOWlen > mSysWOW64Directory.Length())) {
|
|
// This could be the following cases:
|
|
// - Genuine error
|
|
// - GetLastError == ERROR_CALL_NOT_IMPLEMENTED (32-bit Windows)
|
|
// - Buffer too small. The buffer being MAX_PATH, this should be so rare we
|
|
// don't bother with this case.
|
|
// In all these cases, consider this directory unavailable.
|
|
mSysWOW64Directory.Truncate();
|
|
} else {
|
|
// In this case, GetSystemWow64DirectoryW returns the length of the string,
|
|
// not including the null-terminator.
|
|
mSysWOW64Directory.SetLength(sysWOWlen);
|
|
}
|
|
#endif // _M_IX86
|
|
|
|
nsCOMPtr<nsIFile> exeDir;
|
|
if (NS_SUCCEEDED(
|
|
NS_GetSpecialDirectory(NS_GRE_DIR, getter_AddRefs(exeDir)))) {
|
|
exeDir->GetPath(mExeDirectory);
|
|
}
|
|
|
|
nsCOMPtr<nsIFile> exeFile;
|
|
if (NS_SUCCEEDED(XRE_GetBinaryPath(getter_AddRefs(exeFile)))) {
|
|
nsAutoString exePath;
|
|
if (NS_SUCCEEDED(exeFile->GetPath(exePath))) {
|
|
ModuleVersionInfo exeVi;
|
|
if (exeVi.GetFromImage(exePath)) {
|
|
mExeVersion = Some(exeVi.mFileVersion.Version64());
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
Maybe<bool> ModuleEvaluator::IsModuleTrusted(
|
|
ModuleLoadEvent::ModuleInfo& aDllInfo, const ModuleLoadEvent& aEvent,
|
|
Authenticode* aSvc) const {
|
|
// The JIT profiling module doesn't really have any other practical way to
|
|
// match; hard-code it as being trusted.
|
|
if (aDllInfo.mLdrName.EqualsLiteral("JitPI.dll")) {
|
|
aDllInfo.mTrustFlags = ModuleTrustFlags::JitPI;
|
|
return Some(true);
|
|
}
|
|
|
|
aDllInfo.mTrustFlags = ModuleTrustFlags::None;
|
|
|
|
if (!aDllInfo.mFile) {
|
|
return Nothing(); // Every check here depends on having a valid image file.
|
|
}
|
|
|
|
using PathTransformFlags = widget::WinUtils::PathTransformFlags;
|
|
|
|
Unused << widget::WinUtils::PreparePathForTelemetry(
|
|
aDllInfo.mLdrName,
|
|
PathTransformFlags::Default & ~PathTransformFlags::Canonicalize);
|
|
|
|
nsAutoString dllFullPath;
|
|
if (NS_FAILED(aDllInfo.mFile->GetPath(dllFullPath))) {
|
|
return Nothing();
|
|
}
|
|
widget::WinUtils::MakeLongPath(dllFullPath);
|
|
|
|
aDllInfo.mFilePathClean = dllFullPath;
|
|
if (!widget::WinUtils::PreparePathForTelemetry(
|
|
aDllInfo.mFilePathClean,
|
|
PathTransformFlags::Default & ~(PathTransformFlags::Canonicalize |
|
|
PathTransformFlags::Lengthen))) {
|
|
return Nothing();
|
|
}
|
|
|
|
if (NS_FAILED(NS_NewLocalFile(dllFullPath, false,
|
|
getter_AddRefs(aDllInfo.mFile)))) {
|
|
return Nothing();
|
|
}
|
|
|
|
nsAutoString dllDirectory;
|
|
if (!GetDirectoryName(aDllInfo.mFile, dllDirectory)) {
|
|
return Nothing();
|
|
}
|
|
|
|
nsAutoString dllLeafLower;
|
|
if (NS_FAILED(aDllInfo.mFile->GetLeafName(dllLeafLower))) {
|
|
return Nothing();
|
|
}
|
|
ToLowerCase(dllLeafLower); // To facilitate case-insensitive searching
|
|
|
|
// Accumulate a trustworthiness score as the module passes through several
|
|
// checks. If the score ever reaches above the threshold, it's considered
|
|
// trusted.
|
|
int scoreThreshold = 100;
|
|
#ifdef ENABLE_TESTS
|
|
// Check whether we are running as an xpcshell test.
|
|
if (mozilla::EnvHasValue("XPCSHELL_TEST_PROFILE_DIR")) {
|
|
// During xpcshell tests, these DLLs are hard-coded to pass through all
|
|
// criteria checks and still result in "untrusted" status, so they show up
|
|
// in the untrusted modules ping for the test to examine.
|
|
// Setting the threshold very high ensures the test will cover all criteria.
|
|
if (dllLeafLower.EqualsLiteral("untrusted-startup-test-dll.dll") ||
|
|
dllLeafLower.EqualsLiteral("modules-test.dll")) {
|
|
scoreThreshold = 99999;
|
|
}
|
|
}
|
|
#endif
|
|
|
|
int score = 0;
|
|
|
|
// Is the DLL in the system directory?
|
|
if (!mSysDirectory.IsEmpty() &&
|
|
StringBeginsWith(dllFullPath, mSysDirectory,
|
|
nsCaseInsensitiveStringComparator())) {
|
|
aDllInfo.mTrustFlags |= ModuleTrustFlags::SystemDirectory;
|
|
score += 50;
|
|
}
|
|
|
|
#ifdef _M_IX86
|
|
// Under WOW64, SysWOW64 is the effective system directory. Give SysWOW64 the
|
|
// same trustworthiness as ModuleTrustFlags::SystemDirectory.
|
|
if (!mSysWOW64Directory.IsEmpty() &&
|
|
StringBeginsWith(dllFullPath, mSysWOW64Directory,
|
|
nsCaseInsensitiveStringComparator())) {
|
|
aDllInfo.mTrustFlags |= ModuleTrustFlags::SysWOW64Directory;
|
|
score += 50;
|
|
}
|
|
#endif // _M_IX86
|
|
|
|
// Is the DLL in the WinSxS directory? Some Microsoft DLLs (e.g. comctl32) are
|
|
// loaded from here and don't have digital signatures. So while this is not a
|
|
// guarantee of trustworthiness, but is at least as valid as system32.
|
|
if (!mWinSxSDirectory.IsEmpty() &&
|
|
StringBeginsWith(dllFullPath, mWinSxSDirectory,
|
|
nsCaseInsensitiveStringComparator())) {
|
|
aDllInfo.mTrustFlags |= ModuleTrustFlags::WinSxSDirectory;
|
|
score += 50;
|
|
}
|
|
|
|
// Is it a keyboard layout DLL?
|
|
if (std::find(mKeyboardLayoutDlls.begin(), mKeyboardLayoutDlls.end(),
|
|
dllLeafLower) != mKeyboardLayoutDlls.end()) {
|
|
aDllInfo.mTrustFlags |= ModuleTrustFlags::KeyboardLayout;
|
|
// This doesn't guarantee trustworthiness by itself. Keyboard layouts also
|
|
// must be in the system directory, which will bump the score >= 100.
|
|
score += 50;
|
|
}
|
|
|
|
if (score < scoreThreshold) {
|
|
ModuleVersionInfo vi;
|
|
if (vi.GetFromImage(dllFullPath)) {
|
|
aDllInfo.mFileVersion = vi.mFileVersion.ToString();
|
|
|
|
if (vi.mCompanyName.EqualsLiteral("Microsoft Corporation")) {
|
|
aDllInfo.mTrustFlags |= ModuleTrustFlags::MicrosoftVersion;
|
|
score += 50;
|
|
}
|
|
|
|
if (!mExeDirectory.IsEmpty() &&
|
|
StringBeginsWith(dllFullPath, mExeDirectory,
|
|
nsCaseInsensitiveStringComparator())) {
|
|
score += 50;
|
|
aDllInfo.mTrustFlags |= ModuleTrustFlags::FirefoxDirectory;
|
|
|
|
if (dllLeafLower.EqualsLiteral("xul.dll")) {
|
|
// The caller wants to know if this DLL is xul.dll, but this flag
|
|
// doesn't need to affect trust score. Xul will be considered trusted
|
|
// by other measures.
|
|
aDllInfo.mTrustFlags |= ModuleTrustFlags::Xul;
|
|
}
|
|
|
|
// If it's in the Firefox directory, does it also share the Firefox
|
|
// version info? We only care about this inside the app directory.
|
|
if (mExeVersion.isSome() &&
|
|
(vi.mFileVersion.Version64() == mExeVersion.value())) {
|
|
aDllInfo.mTrustFlags |= ModuleTrustFlags::FirefoxDirectoryAndVersion;
|
|
score += 50;
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
if (score < scoreThreshold) {
|
|
if (aSvc) {
|
|
UniquePtr<wchar_t[]> szSignedBy =
|
|
aSvc->GetBinaryOrgName(dllFullPath.get());
|
|
if (szSignedBy) {
|
|
nsAutoString signedBy(szSignedBy.get());
|
|
if (signedBy.EqualsLiteral("Microsoft Windows")) {
|
|
aDllInfo.mTrustFlags |= ModuleTrustFlags::MicrosoftWindowsSignature;
|
|
score = 100;
|
|
} else if (signedBy.EqualsLiteral("Microsoft Corporation")) {
|
|
aDllInfo.mTrustFlags |= ModuleTrustFlags::MicrosoftWindowsSignature;
|
|
score = 100;
|
|
} else if (signedBy.EqualsLiteral("Mozilla Corporation")) {
|
|
aDllInfo.mTrustFlags |= ModuleTrustFlags::MozillaSignature;
|
|
score = 100;
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
return Some(score >= scoreThreshold);
|
|
}
|
|
|
|
} // namespace mozilla
|