| blob | 7adb918237f27a1ffcc46ff4c0884d30130411c5 |
1 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file.
5 #ifndef SANDBOX_SRC_CROSSCALL_PARAMS_H__
6 #define SANDBOX_SRC_CROSSCALL_PARAMS_H__
8 #include <windows.h>
9 #include <lmaccess.h>
11 #include <memory>
17 // Increases |value| until there is no need for padding given an int64
18 // alignment. Returns the increased value.
22 }
24 // This header is part of CrossCall: the sandbox inter-process communication.
25 // This header defines the basic types used both in the client IPC and in the
26 // server IPC code. CrossCallParams and ActualCallParams model the input
27 // parameters of an IPC call and CrossCallReturn models the output params and
28 // the return value.
29 //
30 // An IPC call is defined by its 'tag' which is a (uint32) unique identifier
31 // that is used to route the IPC call to the proper server. Every tag implies
32 // a complete call signature including the order and type of each parameter.
33 //
34 // Like most IPC systems. CrossCall is designed to take as inputs 'simple'
35 // types such as integers and strings. Classes, generic arrays or pointers to
36 // them are not supported.
37 //
38 // Another limitation of CrossCall is that the return value and output
39 // parameters can only be uint32 integers. Returning complex structures or
40 // strings is not supported.
44 // max number of extended return parameters. See CrossCallReturn
47 // Union of multiple types to be used as extended results
48 // in the CrossCallReturn.
50 uint32 unsigned_int;
52 HANDLE handle;
53 ULONG_PTR ulong_ptr;
54 };
56 // Maximum number of IPC parameters currently supported.
57 // To increase this value, we have to:
58 // - Add another Callback typedef to Dispatcher.
59 // - Add another case to the switch on SharedMemIPCServer::InvokeCallback.
60 // - Add another case to the switch in GetActualAndMaxBufferSize
63 // Contains the information about a parameter in the ipc buffer.
65 ArgType type_;
66 uint32 offset_;
67 uint32 size_;
68 };
70 // Models the return value and the return parameters of an IPC call
71 // currently limited to one status code and eight generic return values
72 // which cannot be pointers to other data. For x64 ports this structure
73 // might have to use other integer types.
75 // the IPC tag. It should match the original IPC tag.
76 uint32 tag;
77 // The result of the IPC operation itself.
78 ResultCode call_outcome;
79 // the result of the IPC call as executed in the server. The interpretation
80 // of this value depends on the specific service.
82 NTSTATUS nt_status;
83 DWORD win32_result;
84 };
85 // Number of extended return values.
86 uint32 extended_count;
87 // for calls that should return a windows handle. It is found here.
88 HANDLE handle;
89 // The array of extended values.
91 };
93 // CrossCallParams base class that models the input params all packed in a
94 // single compact memory blob. The representation can vary but in general a
95 // given child of this class is meant to represent all input parameters
96 // necessary to make a IPC call.
97 //
98 // This class cannot have virtual members because its assumed the IPC
99 // parameters start from the 'this' pointer to the end, which is defined by
100 // one of the subclasses
101 //
102 // Objects of this class cannot be constructed directly. Only derived
103 // classes have the proper knowledge to construct it.
106 // Returns the tag (ipc unique id) associated with this IPC.
109 }
111 // Returns the beggining of the buffer where the IPC params can be stored.
112 // prior to an IPC call
115 }
117 // Returns how many parameter this IPC call should have.
120 }
122 // Returns a pointer to the CrossCallReturn structure.
125 }
127 // Returns TRUE if this call contains InOut parameters.
130 }
132 // Tells the CrossCall object if it contains InOut parameters.
136 else
138 }
141 // constructs the IPC call params. Called only from the derived classes
146 uint32 tag_;
147 uint32 is_in_out_;
148 CrossCallReturn call_return;
151 };
153 // ActualCallParams models an specific IPC call parameters with respect to the
154 // storage allocation that the packed parameters should need.
155 // NUMBER_PARAMS: the number of parameters, valid from 1 to N
156 // BLOCK_SIZE: the total storage that the NUMBER_PARAMS parameters can take,
157 // typically the block size is defined by the channel size of the underlying
158 // ipc mechanism.
159 // In practice this class is used to levergage C++ capacity to properly
160 // calculate sizes and displacements given the possibility of the packed params
161 // blob to be complex.
162 //
163 // As is, this class assumes that the layout of the blob is as follows. Assume
164 // that NUMBER_PARAMS = 2 and a 32-bit build:
165 //
166 // [ tag 4 bytes]
167 // [ IsOnOut 4 bytes]
168 // [ call return 52 bytes]
169 // [ params count 4 bytes]
170 // [ parameter 0 type 4 bytes]
171 // [ parameter 0 offset 4 bytes] ---delta to ---\
172 // [ parameter 0 size 4 bytes] |
173 // [ parameter 1 type 4 bytes] |
174 // [ parameter 1 offset 4 bytes] ---------------|--\
175 // [ parameter 1 size 4 bytes] | |
176 // [ parameter 2 type 4 bytes] | |
177 // [ parameter 2 offset 4 bytes] ----------------------\
178 // [ parameter 2 size 4 bytes] | | |
179 // |---------------------------| | | |
180 // | value 0 (x bytes) | <--------------/ | |
181 // | value 1 (y bytes) | <-----------------/ |
182 // | | |
183 // | end of buffer | <---------------------/
184 // |---------------------------|
185 //
186 // Note that the actual number of params is NUMBER_PARAMS + 1
187 // so that the size of each actual param can be computed from the difference
188 // between one parameter and the next down. The offset of the last param
189 // points to the end of the buffer and the type and size are undefined.
190 //
194 // constructor. Pass the ipc unique tag as input
199 }
201 // Testing-only constructor. Allows setting the |number_params| to a
202 // wrong value.
207 }
209 // Testing-only method. Allows setting the apparent size to a wrong value.
210 // returns the previous size.
215 }
217 // Copies each paramter into the internal buffer. For each you must supply:
218 // index: 0 for the first param, 1 for the next an so on
223 }
226 // Memory error while getting the size.
228 }
232 }
236 // It does not fit, abort copy.
238 }
242 // We might be touching user memory, this has to be done from inside a try
243 // except.
244 __try {
246 }
249 }
251 // Set the flag to tell the broker to update the buffer once the call is
252 // made.
257 size);
261 }
263 // Returns a pointer to a parameter in the memory section.
266 }
268 // Returns the total size of the buffer. Only valid once all the paramters
269 // have been copied in with CopyParamIn.
272 }
282 };