Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(69)

Issues Search
    My Issues | Starred     Open | Closed | All

Unified Diff: components/nacl/loader/nacl_helper_linux.cc

Issue 255903004: NaCl Sandbox: close low-level IPC channel in Non-SFI mode (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src
Patch Set: Address nit. Created 6 years, 8 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
« no previous file with comments | « no previous file | no next file » | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
Index: components/nacl/loader/nacl_helper_linux.cc
diff --git a/components/nacl/loader/nacl_helper_linux.cc b/components/nacl/loader/nacl_helper_linux.cc
index 15f58eb3a5fba07e50a7b578f240a261be23384e..a7c6615e51b11973b9c98d6d1f762de23d48fa31 100644
--- a/components/nacl/loader/nacl_helper_linux.cc
+++ b/components/nacl/loader/nacl_helper_linux.cc
@@ -34,6 +34,7 @@
#include "components/nacl/loader/nacl_listener.h"
#include "components/nacl/loader/nacl_sandbox_linux.h"
#include "components/nacl/loader/nonsfi/nonsfi_sandbox.h"
+#include "content/public/common/content_descriptors.h"
#include "content/public/common/zygote_fork_delegate_linux.h"
#include "crypto/nss_util.h"
#include "ipc/ipc_descriptors.h"
@@ -113,6 +114,17 @@ void InitializeLayerTwoSandbox(bool uses_nonsfi_mode) {
}
}
+// Replace |file_descriptor| with the reading end of a closed pipe.
+void ReplaceFDWithDummy(int file_descriptor) {
+ // Make sure that file_descriptor is an open descriptor.
+ PCHECK(-1 != fcntl(file_descriptor, F_GETFD, 0));
+ int pipefd[2];
+ PCHECK(0 == pipe(pipefd));
+ PCHECK(-1 != dup2(pipefd[0], file_descriptor));
+ PCHECK(0 == IGNORE_EINTR(close(pipefd[0])));
+ PCHECK(0 == IGNORE_EINTR(close(pipefd[1])));
+}
+
// The child must mimic the behavior of zygote_main_linux.cc on the child
// side of the fork. See zygote_main_linux.cc:HandleForkRequest from
// if (!child) {
@@ -120,9 +132,23 @@ void BecomeNaClLoader(const std::vector<int>& child_fds,
const NaClLoaderSystemInfo& system_info,
bool uses_nonsfi_mode) {
VLOG(1) << "NaCl loader: setting up IPC descriptor";
- // don't need zygote FD any more
- if (IGNORE_EINTR(close(kNaClZygoteDescriptor)) != 0)
- LOG(ERROR) << "close(kNaClZygoteDescriptor) failed.";
+ // Close or shutdown IPC channels that we don't need anymore.
+ PCHECK(0 == IGNORE_EINTR(close(kNaClZygoteDescriptor)));
+ // In Non-SFI mode, it's important to close any non-expected IPC channels.
+ if (uses_nonsfi_mode) {
+ // The low-level kSandboxIPCChannel is used by renderers and NaCl for
+ // various operations. See the LinuxSandbox::METHOD_* methods. NaCl uses
+ // LinuxSandbox::METHOD_MAKE_SHARED_MEMORY_SEGMENT in SFI mode, so this
+ // should only be closed in Non-SFI mode.
+ // This file descriptor is insidiously used by a number of APIs. Closing it
+ // could lead to difficult to debug issues. Instead of closing it, replace
+ // it with a dummy.
+ const int sandbox_ipc_channel =
+ base::GlobalDescriptors::kBaseDescriptor + kSandboxIPCChannel;
+
+ ReplaceFDWithDummy(sandbox_ipc_channel);
+ }
+
InitializeLayerTwoSandbox(uses_nonsfi_mode);
base::GlobalDescriptors::GetInstance()->Set(
kPrimaryIPCChannel,
« no previous file with comments | « no previous file | no next file » | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698