[VCRUNTIME] Fix a bug in x64 __security_init_cookie

2025-04-26 16:40:27 +00:00 · 2025-04-06 18:06:16 +03:00 · 2025-04-06 18:06:16 +03:00 · 52719b52ae
commit 52719b52ae
parent 182f353b2f
1 changed files with 6 additions and 5 deletions
--- a/sdk/lib/vcruntime/__security_init_cookie.c
+++ b/sdk/lib/vcruntime/__security_init_cookie.c
@ -70,16 +70,17 @@ void __security_init_cookie(void)
    randomValue += GetCurrentProcessId();
    randomValue = _rotlptr(randomValue, GetCurrentProcessId() >> 2);

-    if (randomValue == DEFAULT_SECURITY_COOKIE)
-    {
-        randomValue++;
-    }
-
 #ifdef _WIN64
    /* Zero out highest 16 bits */
    randomValue &= 0x0000FFFFFFFFFFFFull;
 #endif

+    /* Avoid the default security cookie */
+    if (randomValue == DEFAULT_SECURITY_COOKIE)
+    {
+        randomValue++;
+    }
+
    __security_cookie = randomValue;
    __security_cookie_complement = ~randomValue;
 }