Does anyone have a good reference for PROCESS_CREATION_MITIGATION_POLICY_PROHIBIT_DYNAMIC_CODE_ALWAYS_ON_ALLOW_OPT_OUT?
-
-
(Btw. I'm not sure how that Chakra link is relevant, I'm probably missing something obvious?)
-
Chakra contains code to disable the policy for the thread so it can JIT in process, that's all.
- 1 more reply
New conversation -
-
-
It sets flag 0x40000 in the ETHREAD::CrossThreadFlags which is checked in MiArbitraryCodeBlocked before doing any executable code action.
-
This really is not documented by MS anywhere, is it? How are ppl to use such mitigations if they don't know they exist or how they work?
-
They're not, I don't believe, they just partially document some of them. It's just
@msftsecresponse sticking stuff in for Edge. -
Thanks a lot, that confirms and greatly expands on what I found. Sounds like they should document this so everyone can use it.
-
The flag is documented, though I agree the description isn't great. Will look at improving. See here:https://msdn.microsoft.com/en-us/library/windows/desktop/ms686880(v=vs.85).aspx …
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.