1 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file.
5 #ifndef SANDBOX_WIN_SRC_BROKER_SERVICES_H_
6 #define SANDBOX_WIN_SRC_BROKER_SERVICES_H_
12 #include "base/basictypes.h"
13 #include "base/compiler_specific.h"
14 #include "base/win/scoped_handle.h"
15 #include "sandbox/win/src/crosscall_server.h"
16 #include "sandbox/win/src/job.h"
17 #include "sandbox/win/src/sandbox.h"
18 #include "sandbox/win/src/sharedmem_ipc_server.h"
19 #include "sandbox/win/src/win2k_threadpool.h"
20 #include "sandbox/win/src/win_utils.h"
33 // BrokerServicesBase ---------------------------------------------------------
34 // Broker implementation version 0
36 // This is an implementation of the interface BrokerServices and
37 // of the associated TargetProcess interface. In this implementation
38 // TargetProcess is a friend of BrokerServices where the later manages a
39 // collection of the former.
40 class BrokerServicesBase final
: public BrokerServices
,
41 public SingletonBase
<BrokerServicesBase
> {
45 ~BrokerServicesBase();
47 // BrokerServices interface.
48 ResultCode
Init() override
;
49 TargetPolicy
* CreatePolicy() override
;
50 ResultCode
SpawnTarget(const wchar_t* exe_path
,
51 const wchar_t* command_line
,
53 PROCESS_INFORMATION
* target
) override
;
54 ResultCode
WaitForAllTargets() override
;
55 ResultCode
AddTargetPeer(HANDLE peer_process
) override
;
56 ResultCode
InstallAppContainer(const wchar_t* sid
,
57 const wchar_t* name
) override
;
58 ResultCode
UninstallAppContainer(const wchar_t* sid
) override
;
60 // Checks if the supplied process ID matches one of the broker's active
63 // true if there is an active target process for this ID, otherwise false.
64 bool IsActiveTarget(DWORD process_id
);
67 // Releases the Job and notifies the associated Policy object to its
69 static void FreeResources(JobTracker
* tracker
);
71 // The routine that the worker thread executes. It is in charge of
72 // notifications and cleanup-related tasks.
73 static DWORD WINAPI
TargetEventsThread(PVOID param
);
75 // Removes a target peer from the process list if it expires.
76 static VOID CALLBACK
RemovePeer(PVOID parameter
, BOOLEAN timeout
);
78 // The completion port used by the job objects to communicate events to
82 // Handle to a manual-reset event that is signaled when the total target
83 // process count reaches zero.
86 // Handle to the worker thread that reacts to job notifications.
89 // Lock used to protect the list of targets from being modified by 2
90 // threads at the same time.
91 CRITICAL_SECTION lock_
;
93 // provides a pool of threads that are used to wait on the IPC calls.
94 ThreadProvider
* thread_pool_
;
96 // List of the trackers for closing and cleanup purposes.
97 typedef std::list
<JobTracker
*> JobTrackerList
;
98 JobTrackerList tracker_list_
;
100 // Maps peer process IDs to the saved handle and wait event.
101 // Prevents peer callbacks from accessing the broker after destruction.
102 typedef std::map
<DWORD
, PeerTracker
*> PeerTrackerMap
;
103 PeerTrackerMap peer_map_
;
105 // Provides a fast lookup to identify sandboxed processes that belong to a
106 // job. Consult |jobless_process_handles_| for handles of pocess without job.
107 std::set
<DWORD
> child_process_ids_
;
109 typedef std::map
<uint32_t, std::pair
<HANDLE
, HANDLE
>> TokenCacheMap
;
110 TokenCacheMap token_cache_
;
112 DISALLOW_COPY_AND_ASSIGN(BrokerServicesBase
);
115 } // namespace sandbox
118 #endif // SANDBOX_WIN_SRC_BROKER_SERVICES_H_