OLD | NEW |
1 // Copyright 2013 The Chromium Authors. All rights reserved. | 1 // Copyright 2013 The Chromium Authors. All rights reserved. |
2 // Use of this source code is governed by a BSD-style license that can be | 2 // Use of this source code is governed by a BSD-style license that can be |
3 // found in the LICENSE file. | 3 // found in the LICENSE file. |
4 | 4 |
5 #include "chrome_elf/chrome_elf_security.h" | 5 #include "chrome_elf/chrome_elf_security.h" |
6 | 6 |
7 #include <assert.h> | 7 #include <assert.h> |
8 #include <windows.h> | 8 #include <windows.h> |
9 #include <versionhelpers.h> // windows.h must be before | 9 #include <versionhelpers.h> // windows.h must be before |
10 | 10 |
11 #include "chrome_elf/chrome_elf_constants.h" | 11 #include "chrome_elf/chrome_elf_constants.h" |
12 #include "chrome_elf/nt_registry/nt_registry.h" | 12 #include "chrome_elf/nt_registry/nt_registry.h" |
13 | 13 |
| 14 namespace elf_security { |
| 15 |
14 void EarlyBrowserSecurity() { | 16 void EarlyBrowserSecurity() { |
15 typedef decltype(SetProcessMitigationPolicy)* SetProcessMitigationPolicyFunc; | 17 typedef decltype(SetProcessMitigationPolicy)* SetProcessMitigationPolicyFunc; |
16 | 18 |
17 // This function is called from within DllMain. | 19 // This function is called from within DllMain. |
18 // Don't do anything naughty while we have the loader lock. | 20 // Don't do anything naughty while we have the loader lock. |
19 NTSTATUS ret_val = STATUS_SUCCESS; | 21 NTSTATUS ret_val = STATUS_SUCCESS; |
20 HANDLE handle = INVALID_HANDLE_VALUE; | 22 HANDLE handle = INVALID_HANDLE_VALUE; |
21 | 23 |
22 // Check for kRegistrySecurityFinchPath. If it exists, | 24 // Check for kRegistrySecurityFinchPath. If it exists, |
23 // we do NOT disable extension points. (Emergency off flag.) | 25 // we do NOT disable extension points. (Emergency off flag.) |
(...skipping 16 matching lines...) Expand all Loading... |
40 // Disable extension points in this process. | 42 // Disable extension points in this process. |
41 // (Legacy hooking.) | 43 // (Legacy hooking.) |
42 PROCESS_MITIGATION_EXTENSION_POINT_DISABLE_POLICY policy = {}; | 44 PROCESS_MITIGATION_EXTENSION_POINT_DISABLE_POLICY policy = {}; |
43 policy.DisableExtensionPoints = true; | 45 policy.DisableExtensionPoints = true; |
44 set_process_mitigation_policy(ProcessExtensionPointDisablePolicy, &policy, | 46 set_process_mitigation_policy(ProcessExtensionPointDisablePolicy, &policy, |
45 sizeof(policy)); | 47 sizeof(policy)); |
46 } | 48 } |
47 } | 49 } |
48 return; | 50 return; |
49 } | 51 } |
| 52 } // namespace elf_security |
OLD | NEW |