| Index: sandbox/win/src/handle_closer_agent.cc
|
| diff --git a/sandbox/win/src/handle_closer_agent.cc b/sandbox/win/src/handle_closer_agent.cc
|
| deleted file mode 100644
|
| index 6b17f6547a8682f834b7d01352a21b5b325a6b8c..0000000000000000000000000000000000000000
|
| --- a/sandbox/win/src/handle_closer_agent.cc
|
| +++ /dev/null
|
| @@ -1,203 +0,0 @@
|
| -// Copyright (c) 2012 The Chromium Authors. All rights reserved.
|
| -// Use of this source code is governed by a BSD-style license that can be
|
| -// found in the LICENSE file.
|
| -
|
| -#include "sandbox/win/src/handle_closer_agent.h"
|
| -
|
| -#include <limits.h>
|
| -#include <stddef.h>
|
| -
|
| -#include "base/logging.h"
|
| -#include "sandbox/win/src/nt_internals.h"
|
| -#include "sandbox/win/src/win_utils.h"
|
| -
|
| -namespace {
|
| -
|
| -// Returns type infomation for an NT object. This routine is expected to be
|
| -// called for invalid handles so it catches STATUS_INVALID_HANDLE exceptions
|
| -// that can be generated when handle tracing is enabled.
|
| -NTSTATUS QueryObjectTypeInformation(HANDLE handle,
|
| - void* buffer,
|
| - ULONG* size) {
|
| - static NtQueryObject QueryObject = NULL;
|
| - if (!QueryObject)
|
| - ResolveNTFunctionPtr("NtQueryObject", &QueryObject);
|
| -
|
| - NTSTATUS status = STATUS_UNSUCCESSFUL;
|
| - __try {
|
| - status = QueryObject(handle, ObjectTypeInformation, buffer, *size, size);
|
| - } __except(GetExceptionCode() == STATUS_INVALID_HANDLE ?
|
| - EXCEPTION_EXECUTE_HANDLER : EXCEPTION_CONTINUE_SEARCH) {
|
| - status = STATUS_INVALID_HANDLE;
|
| - }
|
| - return status;
|
| -}
|
| -
|
| -} // namespace
|
| -
|
| -namespace sandbox {
|
| -
|
| -// Memory buffer mapped from the parent, with the list of handles.
|
| -SANDBOX_INTERCEPT HandleCloserInfo* g_handles_to_close = NULL;
|
| -
|
| -bool HandleCloserAgent::NeedsHandlesClosed() {
|
| - return g_handles_to_close != NULL;
|
| -}
|
| -
|
| -HandleCloserAgent::HandleCloserAgent()
|
| - : dummy_handle_(::CreateEvent(NULL, FALSE, FALSE, NULL)) {
|
| -}
|
| -
|
| -HandleCloserAgent::~HandleCloserAgent() {
|
| -}
|
| -
|
| -// Attempts to stuff |closed_handle| with a duplicated handle for a dummy Event
|
| -// with no access. This should allow the handle to be closed, to avoid
|
| -// generating EXCEPTION_INVALID_HANDLE on shutdown, but nothing else. For now
|
| -// the only supported |type| is Event or File.
|
| -bool HandleCloserAgent::AttemptToStuffHandleSlot(HANDLE closed_handle,
|
| - const base::string16& type) {
|
| - // Only attempt to stuff Files and Events at the moment.
|
| - if (type != L"Event" && type != L"File") {
|
| - return true;
|
| - }
|
| -
|
| - if (!dummy_handle_.IsValid())
|
| - return false;
|
| -
|
| - // This should never happen, as g_dummy is created before closing to_stuff.
|
| - DCHECK(dummy_handle_.Get() != closed_handle);
|
| -
|
| - std::vector<HANDLE> to_close;
|
| - HANDLE dup_dummy = NULL;
|
| - size_t count = 16;
|
| -
|
| - do {
|
| - if (!::DuplicateHandle(::GetCurrentProcess(), dummy_handle_.Get(),
|
| - ::GetCurrentProcess(), &dup_dummy, 0, FALSE, 0))
|
| - break;
|
| - if (dup_dummy != closed_handle)
|
| - to_close.push_back(dup_dummy);
|
| - } while (count-- &&
|
| - reinterpret_cast<uintptr_t>(dup_dummy) <
|
| - reinterpret_cast<uintptr_t>(closed_handle));
|
| -
|
| - for (auto h : to_close)
|
| - ::CloseHandle(h);
|
| -
|
| - // Useful to know when we're not able to stuff handles.
|
| - DCHECK(dup_dummy == closed_handle);
|
| -
|
| - return dup_dummy == closed_handle;
|
| -}
|
| -
|
| -// Reads g_handles_to_close and creates the lookup map.
|
| -void HandleCloserAgent::InitializeHandlesToClose(bool* is_csrss_connected) {
|
| - CHECK(g_handles_to_close != NULL);
|
| -
|
| - // Default to connected state
|
| - *is_csrss_connected = true;
|
| -
|
| - // Grab the header.
|
| - HandleListEntry* entry = g_handles_to_close->handle_entries;
|
| - for (size_t i = 0; i < g_handles_to_close->num_handle_types; ++i) {
|
| - // Set the type name.
|
| - base::char16* input = entry->handle_type;
|
| - if (!wcscmp(input, L"ALPC Port")) {
|
| - *is_csrss_connected = false;
|
| - }
|
| - HandleMap::mapped_type& handle_names = handles_to_close_[input];
|
| - input = reinterpret_cast<base::char16*>(reinterpret_cast<char*>(entry)
|
| - + entry->offset_to_names);
|
| - // Grab all the handle names.
|
| - for (size_t j = 0; j < entry->name_count; ++j) {
|
| - std::pair<HandleMap::mapped_type::iterator, bool> name
|
| - = handle_names.insert(input);
|
| - CHECK(name.second);
|
| - input += name.first->size() + 1;
|
| - }
|
| -
|
| - // Move on to the next entry.
|
| - entry = reinterpret_cast<HandleListEntry*>(reinterpret_cast<char*>(entry)
|
| - + entry->record_bytes);
|
| -
|
| - DCHECK(reinterpret_cast<base::char16*>(entry) >= input);
|
| - DCHECK(reinterpret_cast<base::char16*>(entry) - input <
|
| - static_cast<ptrdiff_t>(sizeof(size_t) / sizeof(base::char16)));
|
| - }
|
| -
|
| - // Clean up the memory we copied over.
|
| - ::VirtualFree(g_handles_to_close, 0, MEM_RELEASE);
|
| - g_handles_to_close = NULL;
|
| -}
|
| -
|
| -bool HandleCloserAgent::CloseHandles() {
|
| - DWORD handle_count = UINT_MAX;
|
| - const int kInvalidHandleThreshold = 100;
|
| - const size_t kHandleOffset = 4; // Handles are always a multiple of 4.
|
| -
|
| - if (!::GetProcessHandleCount(::GetCurrentProcess(), &handle_count))
|
| - return false;
|
| -
|
| - // Set up buffers for the type info and the name.
|
| - std::vector<BYTE> type_info_buffer(sizeof(OBJECT_TYPE_INFORMATION) +
|
| - 32 * sizeof(wchar_t));
|
| - OBJECT_TYPE_INFORMATION* type_info =
|
| - reinterpret_cast<OBJECT_TYPE_INFORMATION*>(&(type_info_buffer[0]));
|
| - base::string16 handle_name;
|
| - HANDLE handle = NULL;
|
| - int invalid_count = 0;
|
| -
|
| - // Keep incrementing until we hit the number of handles reported by
|
| - // GetProcessHandleCount(). If we hit a very long sequence of invalid
|
| - // handles we assume that we've run past the end of the table.
|
| - while (handle_count && invalid_count < kInvalidHandleThreshold) {
|
| - reinterpret_cast<size_t&>(handle) += kHandleOffset;
|
| - NTSTATUS rc;
|
| -
|
| - // Get the type name, reusing the buffer.
|
| - ULONG size = static_cast<ULONG>(type_info_buffer.size());
|
| - rc = QueryObjectTypeInformation(handle, type_info, &size);
|
| - while (rc == STATUS_INFO_LENGTH_MISMATCH ||
|
| - rc == STATUS_BUFFER_OVERFLOW) {
|
| - type_info_buffer.resize(size + sizeof(wchar_t));
|
| - type_info = reinterpret_cast<OBJECT_TYPE_INFORMATION*>(
|
| - &(type_info_buffer[0]));
|
| - rc = QueryObjectTypeInformation(handle, type_info, &size);
|
| - // Leave padding for the nul terminator.
|
| - if (NT_SUCCESS(rc) && size == type_info_buffer.size())
|
| - rc = STATUS_INFO_LENGTH_MISMATCH;
|
| - }
|
| - if (!NT_SUCCESS(rc) || !type_info->Name.Buffer) {
|
| - ++invalid_count;
|
| - continue;
|
| - }
|
| -
|
| - --handle_count;
|
| - type_info->Name.Buffer[type_info->Name.Length / sizeof(wchar_t)] = L'\0';
|
| -
|
| - // Check if we're looking for this type of handle.
|
| - HandleMap::iterator result =
|
| - handles_to_close_.find(type_info->Name.Buffer);
|
| - if (result != handles_to_close_.end()) {
|
| - HandleMap::mapped_type& names = result->second;
|
| - // Empty set means close all handles of this type; otherwise check name.
|
| - if (!names.empty()) {
|
| - // Move on to the next handle if this name doesn't match.
|
| - if (!GetHandleName(handle, &handle_name) || !names.count(handle_name))
|
| - continue;
|
| - }
|
| -
|
| - if (!::SetHandleInformation(handle, HANDLE_FLAG_PROTECT_FROM_CLOSE, 0))
|
| - return false;
|
| - if (!::CloseHandle(handle))
|
| - return false;
|
| - // Attempt to stuff this handle with a new dummy Event.
|
| - AttemptToStuffHandleSlot(handle, result->first);
|
| - }
|
| - }
|
| -
|
| - return true;
|
| -}
|
| -
|
| -} // namespace sandbox
|
|
|
Chromium Code Reviews
Issue 1851213002:
Remove sandbox on Windows. (Closed)
Base URL: https://chromium.googlesource.com/chromium/src.git@master