sandbox/linux/seccomp/securemem.cc - Issue 371047: Allow the seccomp sandbox to be enabled, even if the suid sandbox has...

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: sandbox/linux/seccomp/securemem.cc

Issue 371047: Allow the seccomp sandbox to be enabled, even if the suid sandbox has... (Closed) Base URL: svn://chrome-svn/chrome/trunk/src/

Patch Set: '' Created 11 years, 1 month ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: sandbox/linux/seccomp/securemem.cc

===================================================================

--- sandbox/linux/seccomp/securemem.cc (revision 31339)

+++ sandbox/linux/seccomp/securemem.cc (working copy)

@@ -16,23 +16,27 @@

}

-void SecureMem::dieIfParentDied(int parentProc) {

+void SecureMem::dieIfParentDied(int parentMapsFd) {

// The syscall_mutex_ should not be contended. If it is, we are either

// experiencing a very unusual load of system calls that the sandbox is not

// optimized for; or, more likely, the sandboxed process terminated while the

// trusted process was in the middle of waiting for the mutex. We detect

// this situation and terminate the trusted process.

- char proc[80];

- sprintf(proc, "/proc/self/fd/%d/status", parentProc);

- struct stat sb;

- if (stat(proc, &sb)) {

- Sandbox::die();

+ int alive = !lseek(parentMapsFd, 0, SEEK_SET);

+ if (alive) {

+ char buf;

+ do {

+ alive = read(parentMapsFd, &buf, 1);

+ } while (alive < 0 && errno == EINTR);

}

+ if (!alive) {

+ Sandbox::die();

+ }

}

-void SecureMem::lockSystemCall(int parentProc, Args* mem) {

+void SecureMem::lockSystemCall(int parentMapsFd, Args* mem) {

while (!Mutex::lockMutex(&Sandbox::syscall_mutex_, 500)) {

- dieIfParentDied(parentProc);

+ dieIfParentDied(parentMapsFd);

}

asm volatile(

#if defined(__x86_64__)

@@ -47,7 +51,7 @@

: "memory");

}

-void SecureMem::sendSystemCallInternal(int fd, bool locked, int parentProc,

+void SecureMem::sendSystemCallInternal(int fd, bool locked, int parentMapsFd,

Args* mem, int syscallNum, void* arg1,

void* arg2, void* arg3, void* arg4,

void* arg5, void* arg6) {

@@ -87,9 +91,9 @@

if (Sandbox::write(sys, fd, &data, sizeof(data)) != sizeof(data)) {

Sandbox::die("Failed to send system call");

}

- if (parentProc >= 0) {

+ if (parentMapsFd >= 0) {

while (!Mutex::waitForUnlock(&Sandbox::syscall_mutex_, 500)) {

- dieIfParentDied(parentProc);

+ dieIfParentDied(parentMapsFd);

}

Property changes on: sandbox/linux/seccomp/securemem.cc

___________________________________________________________________

Added: svn:eol-style

+ LF

« no previous file with comments | « sandbox/linux/seccomp/sandbox_impl.h ('k') | sandbox/linux/seccomp/socketcall.cc » ('j') | no next file with comments »