sandbox/win/src/security_level.h - Issue 2369563002: Add header comments documenting extra constraints for some sandbox mitigations: MITIGATION_RELOCATE…

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: sandbox/win/src/security_level.h

Issue 2369563002: Add header comments documenting extra constraints for some sandbox mitigations: MITIGATION_RELOCATE… (Closed)

Patch Set: Fix typo Created 4 years, 3 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

Index: sandbox/win/src/security_level.h

diff --git a/sandbox/win/src/security_level.h b/sandbox/win/src/security_level.h

index d8524c1facc14ae8b565008529d0795f85ca37b2..ecca64d8fc75cf9c6b89549154576eb5a184df08 100644

--- a/sandbox/win/src/security_level.h

+++ b/sandbox/win/src/security_level.h

@@ -154,11 +154,13 @@ const MitigationFlags MITIGATION_DEP_NO_ATL_THUNK = 0x00000002;

// PROCESS_CREATION_MITIGATION_POLICY_SEHOP_ENABLE.

const MitigationFlags MITIGATION_SEHOP = 0x00000004;

-// Forces ASLR on all images in the child process. Corresponds to

+// Forces ASLR on all images in the child process. In debug builds, must be

+// enabled after startup. Corresponds to

// PROCESS_CREATION_MITIGATION_POLICY_FORCE_RELOCATE_IMAGES_ALWAYS_ON .

const MitigationFlags MITIGATION_RELOCATE_IMAGE = 0x00000008;

-// Refuses to load DLLs that cannot support ASLR. Corresponds to

+// Refuses to load DLLs that cannot support ASLR. In debug builds, must be

+// enabled after startup. Corresponds to

Will Harris 2016/09/23 19:31:10 hmm if this is true and these can be set post star

Joe Mason 2016/09/23 22:34:34 Done.

// PROCESS_CREATION_MITIGATION_POLICY_FORCE_RELOCATE_IMAGES_ALWAYS_ON_REQ_RELOCS.

const MitigationFlags MITIGATION_RELOCATE_IMAGE_REQUIRED = 0x00000010;

@@ -185,6 +187,11 @@ const MitigationFlags MITIGATION_STRICT_HANDLE_CHECKS = 0x00000100;

// Prevents the process from making Win32k calls. Corresponds to

// PROCESS_CREATION_MITIGATION_POLICY_WIN32K_SYSTEM_CALL_DISABLE_ALWAYS_ON.

+//

+// Applications linked to user32.dll or gdi32.dll make Win32k calls during

+// setup, even if Win32k is not otherwise used. So they also need to add a rule

+// with SUBSYS_WIN32K_LOCKDOWN and semantics FAKE_USER_GDI_INIT to allow the

+// initialization to succeed.

const MitigationFlags MITIGATION_WIN32K_DISABLE = 0x00000200;

// Prevents certain built-in third party extension points from being used.

« no previous file with comments | « no previous file | no next file » | no next file with comments »