Call SetApplicationIsDaemon() in V2 sandbox.

content/renderer/renderer_main_platform_delegate_mac.mm

 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.
 
 #include "content/renderer/renderer_main_platform_delegate.h"
 
 #include <Carbon/Carbon.h>
 #import <Cocoa/Cocoa.h>
 #include <objc/runtime.h>
 #include <stdint.h>
 
 #include "base/command_line.h"
 #include "base/logging.h"
 #include "base/mac/mac_util.h"
 #include "base/mac/scoped_cftyperef.h"
 #include "base/strings/string_number_conversions.h"
 #include "base/strings/sys_string_conversions.h"
 #include "content/common/sandbox_init_mac.h"
 #include "content/common/sandbox_mac.h"
 #include "content/public/common/content_switches.h"
 
+extern "C" {
+void CGSSetDenyWindowServerConnections(bool);
+void CGSShutdownServerConnections();
+OSStatus SetApplicationIsDaemon(Boolean isDaemon);
+};
+
 namespace content {
 
 namespace {
 
 // You are about to read a pretty disgusting hack. In a static initializer,
 // CoreFoundation decides to connect with cfprefsd(8) using Mach IPC. There is
 // no public way to close this Mach port after-the-fact, nor a way to stop it
 // from happening since it is done pre-main in dyld. But the address of the
 // CFMachPort can be found in the run loop's string description. Below, that
 // address is parsed, cast, and then used to invalidate the Mach port to
@@ skipping 88 matching lines @@
     NSString* string = @"";
     [NSThread detachNewThreadSelector:@selector(length)
                              toTarget:string
                            withObject:nil];
   }
 }
 
 void RendererMainPlatformDelegate::PlatformUninitialize() {
 }
 
 bool RendererMainPlatformDelegate::EnableSandbox() {

[Robert Sesek, 2017/07/06 21:28:09]

(… continuing comment from sandbox_init_mac.h):

The WindowServer calls could then move into a separate function
DisconnectWindowServer(). Then this method could simply make calling calling
InitializeSandboxWithPostWarmupHook() conditional on the v2 flag not being
present.

[Greg K, 2017/07/07 18:10:21]

Done.

+  // Acquire resources before the sandbox is enabled.
+  ExplicitlyWarmupSandbox();
+
+  // `ExplicitlyWarmupSandbox` and `ExplicitlyEnableSandbox` are no-ops

[Greg K, 2017/07/03 21:26:08]

I know there are a lot of comments here but I kept getting confused myself until
I documented it so I think the comment is worthwhile.

[Robert Sesek, 2017/07/06 21:28:09]

I think the comments are very helpful as well.

[Greg K, 2017/07/07 18:10:21]

Acknowledged.

+  // at this stage of execution when the V2 sandbox is enabled. Thus the
+  // calls to shut down window server connections and continue with an ASN
+  // must be made here, as they must still be executed in the V2 sandbox.
+
+  // Now disconnect from WindowServer, after all objects have been warmed up.
+  // Shutting down the connection requires connecting to WindowServer,
+  // so do this before actually engaging the sandbox. This may cause two log
+  // messages to be printed to the system logger on certain OS versions.
+  CGSSetDenyWindowServerConnections(true);
+  CGSShutdownServerConnections();
+  // Allow the process to continue without a LaunchServices ASN. The
+  // INIT_Process function in HIServices will abort if it cannot connect to
+  // launchservicesd to get an ASN. By setting this flag, HIServices skips
+  // that.
+  SetApplicationIsDaemon(true);
+
   // Enable the sandbox.
-  bool sandbox_initialized = InitializeSandbox();
+  bool sandbox_initialized = ExplicitlyEnableSandbox();
 
   // The sandbox is now engaged. Make sure that the renderer has not connected
   // itself to Cocoa.
   CHECK(NSApp == nil);
 
   DisconnectCFNotificationCenter();
 
   return sandbox_initialized;
 }
 
 }  // namespace content