chrome/browser/component_updater/component_patcher_operation_out_of_process.cc - Issue 2534873005: Sandbox the component updater's patcher utility process.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: chrome/browser/component_updater/component_patcher_operation_out_of_process.cc

Issue 2534873005: Sandbox the component updater's patcher utility process. (Closed)

Patch Set: Through #29 Created 4 years ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: chrome/browser/component_updater/component_patcher_operation_out_of_process.cc

diff --git a/chrome/browser/component_updater/component_patcher_operation_out_of_process.cc b/chrome/browser/component_updater/component_patcher_operation_out_of_process.cc

index ba3de60e239d1bcdedfe1ac934b4f0d7e5e77b38..27d2795f0d86827290a38ae56d3349d3a9b9efb9 100644

--- a/chrome/browser/component_updater/component_patcher_operation_out_of_process.cc

+++ b/chrome/browser/component_updater/component_patcher_operation_out_of_process.cc

@@ -4,6 +4,7 @@

#include "chrome/browser/component_updater/component_patcher_operation_out_of_process.h"

+#include <memory>

#include <vector>

#include "base/bind.h"

@@ -61,7 +62,6 @@ void PatchHost::StartProcess(std::unique_ptr<IPC::Message> message) {

this, base::ThreadTaskRunnerHandle::Get().get());

host->SetName(l10n_util::GetStringUTF16(

IDS_UTILITY_PROCESS_COMPONENT_PATCHER_NAME));

- host->DisableSandbox();

host->Send(message.release());

}

@@ -102,13 +102,25 @@ void ChromeOutOfProcessPatcher::Patch(

const base::FilePath& output_abs_path,

base::Callback<void(int result)> callback) {

host_ = new PatchHost(callback, task_runner);

+ IPC::PlatformFileForTransit input = IPC::TakePlatformFileForTransit(

+ base::File(

+ input_abs_path, base::File::FLAG_OPEN | base::File::FLAG_READ));

+ IPC::PlatformFileForTransit patch = IPC::TakePlatformFileForTransit(

+ base::File(

+ patch_abs_path, base::File::FLAG_OPEN | base::File::FLAG_READ));

+ IPC::PlatformFileForTransit output = IPC::TakePlatformFileForTransit(

+ base::File(

+ output_abs_path,

+ base::File::FLAG_CREATE |

+ base::File::FLAG_WRITE |

+ base::File::FLAG_EXCLUSIVE_WRITE));

std::unique_ptr<IPC::Message> patch_message;

if (operation == update_client::kBsdiff) {

patch_message.reset(new ChromeUtilityMsg_PatchFileBsdiff(

- input_abs_path, patch_abs_path, output_abs_path));

+ input, patch, output));

} else if (operation == update_client::kCourgette) {

patch_message.reset(new ChromeUtilityMsg_PatchFileCourgette(

- input_abs_path, patch_abs_path, output_abs_path));

+ input, patch, output));

} else {

NOTREACHED();

}

« no previous file with comments | « no previous file | chrome/common/chrome_utility_messages.h » ('j') | chrome/utility/chrome_content_utility_client.cc » ('J')