Add UMA stats to record when DLLs are successfully blocked in the Browser.

chrome_elf/blacklist/blacklist_interceptions.cc

 // Copyright 2013 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.
 //
 // Implementation of NtMapViewOfSection intercept for 32 bit builds.
 //
 // TODO(robertshield): Implement the 64 bit intercept.
 
 #include "chrome_elf/blacklist/blacklist_interceptions.h"
 
@@ skipping 17 matching lines @@
 NtQuerySectionFunction g_nt_query_section_func = NULL;
 NtQueryVirtualMemoryFunction g_nt_query_virtual_memory_func = NULL;
 NtUnmapViewOfSectionFunction g_nt_unmap_view_of_section_func = NULL;
 
 // TODO(robertshield): Merge with ntdll exports cache.
 FARPROC GetNtDllExportByName(const char* export_name) {
   HMODULE ntdll = ::GetModuleHandle(sandbox::kNtdllName);
   return ::GetProcAddress(ntdll, export_name);
 }
 
-bool DllMatch(const base::string16& module_name) {
+int DllMatch(const base::string16& module_name) {
   for (int i = 0; blacklist::g_troublesome_dlls[i] != NULL; ++i) {
     if (_wcsicmp(module_name.c_str(), blacklist::g_troublesome_dlls[i]) == 0)
-      return true;
+      return i;
   }
-  return false;
+  return -1;
 }
 
 // TODO(robertshield): Some of the helper functions below overlap somewhat with
 // code in sandbox_nt_util.cc. See if they can be unified.
 
 // Native reimplementation of PSAPIs GetMappedFileName.
 base::string16 GetBackingModuleFilePath(PVOID address) {
   DCHECK_NT(g_nt_query_virtual_memory_func);
 
   // We'll start with something close to max_path characters for the name.
@@ skipping 142 matching lines @@
     base::string16 module_name(GetImageInfoFromLoadedModule(
         reinterpret_cast<HMODULE>(*base), &image_flags));
     base::string16 file_name(GetBackingModuleFilePath(*base));
 
     if (module_name.empty() && (image_flags & sandbox::MODULE_HAS_CODE)) {
       // If the module has no exports we retrieve the module name from the
       // full path of the mapped section.
       module_name = ExtractLoadedModuleName(file_name);
     }
 
-    if (!module_name.empty() && DllMatch(module_name)) {
-      DCHECK_NT(g_nt_unmap_view_of_section_func);
-      g_nt_unmap_view_of_section_func(process, *base);
-      ret = STATUS_UNSUCCESSFUL;
+    if (!module_name.empty()) {
+      int blocked_index = DllMatch(module_name);
+      if (blocked_index != -1) {
+        DCHECK_NT(g_nt_unmap_view_of_section_func);
+        g_nt_unmap_view_of_section_func(process, *base);
+        ret = STATUS_UNSUCCESSFUL;
+
+        blacklist::BlockedDll(blocked_index);
+      }
     }
   }
 
   return ret;
 }
 
 }  // namespace
 
 namespace blacklist {
 
@@ skipping 41 matching lines @@
 NTSTATUS WINAPI BlNtMapViewOfSection64(
     HANDLE section, HANDLE process, PVOID *base, ULONG_PTR zero_bits,
     SIZE_T commit_size, PLARGE_INTEGER offset, PSIZE_T view_size,
     SECTION_INHERIT inherit, ULONG allocation_type, ULONG protect) {
   return BlNtMapViewOfSection(g_nt_map_view_of_section_func, section, process,
                               base, zero_bits, commit_size, offset, view_size,
                               inherit, allocation_type, protect);
 }
 #endif
 }  // namespace blacklist