Remove ElevatedController

remoting/host/win/chromoting_module.cc

 // Copyright (c) 2013 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.
 
 #include "remoting/host/win/chromoting_module.h"
 
-#include <sddl.h>
-
 #include "base/lazy_instance.h"
 #include "base/logging.h"
 #include "base/message_loop/message_loop.h"
 #include "base/run_loop.h"
 #include "base/strings/utf_string_conversions.h"
 #include "base/win/scoped_handle.h"
 #include "base/win/windows_version.h"
 #include "remoting/base/auto_thread_task_runner.h"
 #include "remoting/base/typed_buffer.h"
 #include "remoting/host/host_exit_codes.h"
-#include "remoting/host/win/com_security.h"
-#include "remoting/host/win/elevated_controller.h"
 #include "remoting/host/win/rdp_desktop_session.h"
 
 namespace remoting {
 
 namespace {
 
-// A security descriptor allowing local processes running under SYSTEM, built-in
-// administrators and interactive users to call COM methods.
-const wchar_t kElevatedControllerSd[] =
-    SDDL_OWNER L":" SDDL_BUILTIN_ADMINISTRATORS
-    SDDL_GROUP L":" SDDL_BUILTIN_ADMINISTRATORS
-    SDDL_DACL L":"
-    SDDL_ACE(SDDL_ACCESS_ALLOWED, SDDL_COM_EXECUTE_LOCAL, SDDL_LOCAL_SYSTEM)
-    SDDL_ACE(SDDL_ACCESS_ALLOWED, SDDL_COM_EXECUTE_LOCAL,
-             SDDL_BUILTIN_ADMINISTRATORS)
-    SDDL_ACE(SDDL_ACCESS_ALLOWED, SDDL_COM_EXECUTE_LOCAL, SDDL_INTERACTIVE);
-
 // Holds a reference to the task runner used by the module.
 base::LazyInstance<scoped_refptr<AutoThreadTaskRunner> > g_module_task_runner =
     LAZY_INSTANCE_INITIALIZER;
 
 // Lowers the process integrity level such that it does not exceed |max_level|.
 // |max_level| is expected to be one of SECURITY_MANDATORY_XXX constants.
 bool LowerProcessIntegrityLevel(DWORD max_level) {
   HANDLE temp_handle;
   if (!OpenProcessToken(GetCurrentProcess(), TOKEN_QUERY | TOKEN_WRITE,
                         &temp_handle)) {
@@ skipping 140 matching lines @@
 HRESULT ChromotingModule::RevokeClassObjects() {
   for (ATL::_ATL_OBJMAP_ENTRY* i = classes_; i != classes_end_; ++i) {
     HRESULT result = i->RevokeClassObject();
     if (FAILED(result))
       return result;
   }
 
   return S_OK;
 }
 
-// Elevated controller entry point.
-int ElevatedControllerMain() {
-  ATL::_ATL_OBJMAP_ENTRY elevated_controller_entry[] = {
-    OBJECT_ENTRY(__uuidof(ElevatedController), ElevatedController)
-  };
-
-  ChromotingModule module(elevated_controller_entry,
-                          elevated_controller_entry + 1);
-
-  if (!InitializeComSecurity(base::WideToUTF8(kElevatedControllerSd), "", true))
-    return kInitializationFailed;
-
-  if (!module.Run())
-    return kInitializationFailed;
-
-  return kSuccessExitCode;
-}
-
 // RdpClient entry point.
 int RdpDesktopSessionMain() {
   // Lower the integrity level to medium, which is the lowest level at which
   // the RDP ActiveX control can run.
   if (base::win::GetVersion() >= base::win::VERSION_VISTA) {
     if (!LowerProcessIntegrityLevel(SECURITY_MANDATORY_MEDIUM_RID))
       return kInitializationFailed;
   }
 
   ATL::_ATL_OBJMAP_ENTRY rdp_client_entry[] = {
     OBJECT_ENTRY(__uuidof(RdpDesktopSession), RdpDesktopSession)
   };
 
   ChromotingModule module(rdp_client_entry, rdp_client_entry + 1);
   return module.Run() ? kSuccessExitCode : kInitializationFailed;
 }
 
 } // namespace remoting