Issue 306123012: Do not double-unref send rights when using POLICY_SUBSTITUE_PORT.

Issue 306123012: Do not double-unref send rights when using POLICY_SUBSTITUE_PORT. (Closed)

Created:
6 years, 6 months ago by Robert Sesek

Modified:
6 years, 6 months ago

Reviewers:
Mark Mentovai

CC:
chromium-reviews

Base URL:
svn://svn.chromium.org/chrome/trunk/src

Visibility:
Public.

More Reviews

Description

Do not double-unref send rights when using POLICY_SUBSTITUE_PORT. By destroying the reply message, the already-copied-out right will be unrefed again, leading to an over-release of send rights. This also requires that Rule(POLICY_SUBSTITUTE_PORT) users provide a send right that can be duplicated with MACH_MSG_TYPE_COPY_SEND, rather than using MAKE_SEND. BUG=367863 R=mark@chromium.org Committed: https://src.chromium.org/viewvc/chrome?view=rev&revision=274467

Patch Set 1 #

Total comments: 2

Patch Set 2 : Adjust comment #

Created: 6 years, 6 months ago

Download [raw] [tar.bz2]

	Unified diffs	Side-by-side diffs	Delta from patch set	Stats (+47 lines, -19 lines)			Patch
M	sandbox/mac/bootstrap_sandbox_unittest.mm	View		2 chunks	+23 lines, -2 lines	0 comments	Download
M	sandbox/mac/launchd_interception_server.h	View	1	2 chunks	+5 lines, -2 lines	0 comments	Download
M	sandbox/mac/launchd_interception_server.cc	View		3 chunks	+16 lines, -13 lines	0 comments	Download
M	sandbox/mac/os_compatibility.cc	View		1 chunk	+1 line, -1 line	0 comments	Download
M	sandbox/mac/policy.h	View		1 chunk	+2 lines, -1 line	0 comments	Download

Messages

Total messages: 6 (0 generated)

Expand Messages | Collapse Messages

Mark Mentovai

LGTM https://codereview.chromium.org/306123012/diff/1/sandbox/mac/launchd_interception_server.h File sandbox/mac/launchd_interception_server.h (right): https://codereview.chromium.org/306123012/diff/1/sandbox/mac/launchd_interception_server.h#newcode92 sandbox/mac/launchd_interception_server.h:92: // copy. This sentence is awkward. “will need ...

6 years, 6 months ago (2014-06-02 22:44:15 UTC) #2

Robert Sesek

https://codereview.chromium.org/306123012/diff/1/sandbox/mac/launchd_interception_server.h File sandbox/mac/launchd_interception_server.h (right): https://codereview.chromium.org/306123012/diff/1/sandbox/mac/launchd_interception_server.h#newcode92 sandbox/mac/launchd_interception_server.h:92: // copy. On 2014/06/02 22:44:15, Mark Mentovai wrote: > ...

6 years, 6 months ago (2014-06-02 23:28:50 UTC) #3

commit-bot: I haz the power

CQ is trying da patch. Follow status at https://chromium-status.appspot.com/cq/rsesek@chromium.org/306123012/20001

6 years, 6 months ago (2014-06-02 23:30:59 UTC) #5

Message was sent while issue was closed.

Change committed as 274467

Expand Messages | Collapse Messages