Remove sandbox on Windows.

sandbox/win/src/handle_closer_agent.cc

-// Copyright (c) 2012 The Chromium Authors. All rights reserved.
-// Use of this source code is governed by a BSD-style license that can be
-// found in the LICENSE file.
-
-#include "sandbox/win/src/handle_closer_agent.h"
-
-#include <limits.h>
-#include <stddef.h>
-
-#include "base/logging.h"
-#include "sandbox/win/src/nt_internals.h"
-#include "sandbox/win/src/win_utils.h"
-
-namespace {
-
-// Returns type infomation for an NT object. This routine is expected to be
-// called for invalid handles so it catches STATUS_INVALID_HANDLE exceptions
-// that can be generated when handle tracing is enabled.
-NTSTATUS QueryObjectTypeInformation(HANDLE handle,
-                                    void* buffer,
-                                    ULONG* size) {
-  static NtQueryObject QueryObject = NULL;
-  if (!QueryObject)
-    ResolveNTFunctionPtr("NtQueryObject", &QueryObject);
-
-  NTSTATUS status = STATUS_UNSUCCESSFUL;
-  __try {
-    status = QueryObject(handle, ObjectTypeInformation, buffer, *size, size);
-  } __except(GetExceptionCode() == STATUS_INVALID_HANDLE ?
-                 EXCEPTION_EXECUTE_HANDLER : EXCEPTION_CONTINUE_SEARCH) {
-    status = STATUS_INVALID_HANDLE;
-  }
-  return status;
-}
-
-}  // namespace
-
-namespace sandbox {
-
-// Memory buffer mapped from the parent, with the list of handles.
-SANDBOX_INTERCEPT HandleCloserInfo* g_handles_to_close = NULL;
-
-bool HandleCloserAgent::NeedsHandlesClosed() {
-  return g_handles_to_close != NULL;
-}
-
-HandleCloserAgent::HandleCloserAgent()
-    : dummy_handle_(::CreateEvent(NULL, FALSE, FALSE, NULL)) {
-}
-
-HandleCloserAgent::~HandleCloserAgent() {
-}
-
-// Attempts to stuff |closed_handle| with a duplicated handle for a dummy Event
-// with no access. This should allow the handle to be closed, to avoid
-// generating EXCEPTION_INVALID_HANDLE on shutdown, but nothing else. For now
-// the only supported |type| is Event or File.
-bool HandleCloserAgent::AttemptToStuffHandleSlot(HANDLE closed_handle,
-                                                 const base::string16& type) {
-  // Only attempt to stuff Files and Events at the moment.
-  if (type != L"Event" && type != L"File") {
-    return true;
-  }
-
-  if (!dummy_handle_.IsValid())
-    return false;
-
-  // This should never happen, as g_dummy is created before closing to_stuff.
-  DCHECK(dummy_handle_.Get() != closed_handle);
-
-  std::vector<HANDLE> to_close;
-  HANDLE dup_dummy = NULL;
-  size_t count = 16;
-
-  do {
-    if (!::DuplicateHandle(::GetCurrentProcess(), dummy_handle_.Get(),
-                           ::GetCurrentProcess(), &dup_dummy, 0, FALSE, 0))
-      break;
-    if (dup_dummy != closed_handle)
-      to_close.push_back(dup_dummy);
-  } while (count-- &&
-           reinterpret_cast<uintptr_t>(dup_dummy) <
-               reinterpret_cast<uintptr_t>(closed_handle));
-
-  for (auto h : to_close)
-    ::CloseHandle(h);
-
-  // Useful to know when we're not able to stuff handles.
-  DCHECK(dup_dummy == closed_handle);
-
-  return dup_dummy == closed_handle;
-}
-
-// Reads g_handles_to_close and creates the lookup map.
-void HandleCloserAgent::InitializeHandlesToClose(bool* is_csrss_connected) {
-  CHECK(g_handles_to_close != NULL);
-
-  // Default to connected state
-  *is_csrss_connected = true;
-
-  // Grab the header.
-  HandleListEntry* entry = g_handles_to_close->handle_entries;
-  for (size_t i = 0; i < g_handles_to_close->num_handle_types; ++i) {
-    // Set the type name.
-    base::char16* input = entry->handle_type;
-    if (!wcscmp(input, L"ALPC Port")) {
-      *is_csrss_connected = false;
-    }
-    HandleMap::mapped_type& handle_names = handles_to_close_[input];
-    input = reinterpret_cast<base::char16*>(reinterpret_cast<char*>(entry)
-        + entry->offset_to_names);
-    // Grab all the handle names.
-    for (size_t j = 0; j < entry->name_count; ++j) {
-      std::pair<HandleMap::mapped_type::iterator, bool> name
-          = handle_names.insert(input);
-      CHECK(name.second);
-      input += name.first->size() + 1;
-    }
-
-    // Move on to the next entry.
-    entry = reinterpret_cast<HandleListEntry*>(reinterpret_cast<char*>(entry)
-        + entry->record_bytes);
-
-    DCHECK(reinterpret_cast<base::char16*>(entry) >= input);
-    DCHECK(reinterpret_cast<base::char16*>(entry) - input <
-           static_cast<ptrdiff_t>(sizeof(size_t) / sizeof(base::char16)));
-  }
-
-  // Clean up the memory we copied over.
-  ::VirtualFree(g_handles_to_close, 0, MEM_RELEASE);
-  g_handles_to_close = NULL;
-}
-
-bool HandleCloserAgent::CloseHandles() {
-  DWORD handle_count = UINT_MAX;
-  const int kInvalidHandleThreshold = 100;
-  const size_t kHandleOffset = 4;  // Handles are always a multiple of 4.
-
-  if (!::GetProcessHandleCount(::GetCurrentProcess(), &handle_count))
-    return false;
-
-  // Set up buffers for the type info and the name.
-  std::vector<BYTE> type_info_buffer(sizeof(OBJECT_TYPE_INFORMATION) +
-                                     32 * sizeof(wchar_t));
-  OBJECT_TYPE_INFORMATION* type_info =
-      reinterpret_cast<OBJECT_TYPE_INFORMATION*>(&(type_info_buffer[0]));
-  base::string16 handle_name;
-  HANDLE handle = NULL;
-  int invalid_count = 0;
-
-  // Keep incrementing until we hit the number of handles reported by
-  // GetProcessHandleCount(). If we hit a very long sequence of invalid
-  // handles we assume that we've run past the end of the table.
-  while (handle_count && invalid_count < kInvalidHandleThreshold) {
-    reinterpret_cast<size_t&>(handle) += kHandleOffset;
-    NTSTATUS rc;
-
-    // Get the type name, reusing the buffer.
-    ULONG size = static_cast<ULONG>(type_info_buffer.size());
-    rc = QueryObjectTypeInformation(handle, type_info, &size);
-    while (rc == STATUS_INFO_LENGTH_MISMATCH ||
-           rc == STATUS_BUFFER_OVERFLOW) {
-      type_info_buffer.resize(size + sizeof(wchar_t));
-      type_info = reinterpret_cast<OBJECT_TYPE_INFORMATION*>(
-          &(type_info_buffer[0]));
-      rc = QueryObjectTypeInformation(handle, type_info, &size);
-      // Leave padding for the nul terminator.
-      if (NT_SUCCESS(rc) && size == type_info_buffer.size())
-        rc = STATUS_INFO_LENGTH_MISMATCH;
-    }
-    if (!NT_SUCCESS(rc) || !type_info->Name.Buffer) {
-      ++invalid_count;
-      continue;
-    }
-
-    --handle_count;
-    type_info->Name.Buffer[type_info->Name.Length / sizeof(wchar_t)] = L'\0';
-
-    // Check if we're looking for this type of handle.
-    HandleMap::iterator result =
-        handles_to_close_.find(type_info->Name.Buffer);
-    if (result != handles_to_close_.end()) {
-      HandleMap::mapped_type& names = result->second;
-      // Empty set means close all handles of this type; otherwise check name.
-      if (!names.empty()) {
-        // Move on to the next handle if this name doesn't match.
-        if (!GetHandleName(handle, &handle_name) || !names.count(handle_name))
-          continue;
-      }
-
-      if (!::SetHandleInformation(handle, HANDLE_FLAG_PROTECT_FROM_CLOSE, 0))
-        return false;
-      if (!::CloseHandle(handle))
-        return false;
-      // Attempt to stuff this handle with a new dummy Event.
-      AttemptToStuffHandleSlot(handle, result->first);
-    }
-  }
-
-  return true;
-}
-
-}  // namespace sandbox