chrome/plugin/plugin_main.cc - Issue 3245006: Sandboxing built-in flash...

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: chrome/plugin/plugin_main.cc

Issue 3245006: Sandboxing built-in flash... (Closed) Base URL: svn://chrome-svn/chrome/trunk/src/

Patch Set: Created 10 years, 4 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: chrome/plugin/plugin_main.cc

===================================================================

--- chrome/plugin/plugin_main.cc (revision 57077)

+++ chrome/plugin/plugin_main.cc (working copy)

@@ -47,6 +47,27 @@

void WorkaroundFlashLAHF();

#endif

+#if defined(OS_WIN)

+// This function is provided so that the built-in flash can lock down the

+// sandbox by calling DelayedLowerToken(0).

+extern "C" DWORD __declspec(dllexport) __stdcall DelayedLowerToken(void* ts) {

+ // s_ts is only set the first time the function is called, which happens

+ // in PluginMain.

+ static sandbox::TargetServices* s_ts =

+ reinterpret_cast<sandbox::TargetServices*>(ts);

+ if (ts)

+ return 0;

+ s_ts->LowerToken();

+ return 1;

+};

+// Returns true if the plugin to be loaded is the internal flash.

+bool IsPluginBuiltInFlash(const CommandLine& cmd_line) {

+ FilePath path = cmd_line.GetSwitchValuePath(switches::kPluginPath);

+ return (path.BaseName() == FilePath(L"gcswf32.dll"));

+#endif

// main() routine for running as the plugin process.

int PluginMain(const MainFunctionParams& parameters) {

#if defined(USE_LINUX_BREAKPAD)

@@ -108,9 +129,17 @@

ChildProcess plugin_process;

plugin_process.set_main_thread(new PluginThread());

#if defined(OS_WIN)

- if (!no_sandbox && target_services)

- target_services->LowerToken();

+ if (!no_sandbox && target_services) {

+ // We are sandboxing the plugin. If it is a generic plug-in, we lock down

+ // the sandbox right away, but if it is the built-in flash we let flash

+ // start elevated and it will call DelayedLowerToken(0) when it's ready.

+ if (IsPluginBuiltInFlash(parsed_command_line)) {

+ DLOG(INFO) << "Sandboxing flash";

+ DelayedLowerToken(target_services);

+ } else {

+ target_services->LowerToken();

+ }

if (sandbox_test_module) {

RunRendererTests run_security_tests =

reinterpret_cast<RunPluginTests>(GetProcAddress(sandbox_test_module,

« no previous file with comments | « chrome/common/sandbox_policy.cc ('k') | no next file » | no next file with comments »