diff options
| author | halyavin@google.com <halyavin@google.com@0039d316-1c4b-4281-b951-d872f2087c98> | 2012-03-22 13:08:36 +0000 |
|---|---|---|
| committer | halyavin@google.com <halyavin@google.com@0039d316-1c4b-4281-b951-d872f2087c98> | 2012-03-22 13:08:36 +0000 |
| commit | a575da5c40e31faf4aebf4aa83201fc22d780a9a (patch) | |
| tree | 83e48d7979e4f9a8471e1329c289c6730c5f955a /chrome/browser/nacl_host | |
| parent | be91c96444ef52ff074a27da913e1bf74d9d116d (diff) | |
| download | chromium_src-a575da5c40e31faf4aebf4aa83201fc22d780a9a.zip chromium_src-a575da5c40e31faf4aebf4aa83201fc22d780a9a.tar.gz chromium_src-a575da5c40e31faf4aebf4aa83201fc22d780a9a.tar.bz2 | |
Fix memory leak when errors happens in NaClProcessHost::Launch. Allow Launch to
be asynchronous. This is needed to support manifest autodetection for nacl-gdb.
Fix problems with Broker::OnLoaderDied due to new correct error handling in
Launch.
BUG= 115392
TEST= browser_tests.exe --gtest_filter=NaClGdbTest.*, manual testing.
Review URL: http://codereview.chromium.org/9748012
git-svn-id: svn://svn.chromium.org/chrome/trunk/src@128201 0039d316-1c4b-4281-b951-d872f2087c98
Diffstat (limited to 'chrome/browser/nacl_host')
| -rw-r--r-- | chrome/browser/nacl_host/nacl_process_host.cc | 44 | ||||
| -rw-r--r-- | chrome/browser/nacl_host/nacl_process_host.h | 12 |
2 files changed, 30 insertions, 26 deletions
diff --git a/chrome/browser/nacl_host/nacl_process_host.cc b/chrome/browser/nacl_host/nacl_process_host.cc index 77f3db1..7e4c4c3 100644 --- a/chrome/browser/nacl_host/nacl_process_host.cc +++ b/chrome/browser/nacl_host/nacl_process_host.cc @@ -235,7 +235,11 @@ static bool RunningOnWOW64() { #endif NaClProcessHost::NaClProcessHost(const std::wstring& url) - : reply_msg_(NULL), + : +#if defined(OS_WIN) + process_launched_by_broker_(false), +#endif + reply_msg_(NULL), internal_(new NaClInternal()), ALLOW_THIS_IN_INITIALIZER_LIST(weak_factory_(this)), enable_exception_handling_(false) { @@ -287,14 +291,8 @@ NaClProcessHost::~NaClProcessHost() { chrome_render_message_filter_->Send(reply_msg_); } #if defined(OS_WIN) - if (RunningOnWOW64()) { - // If the nacl-gdb switch is not empty, the NaCl loader has been launched - // without the broker and so we shouldn't inform the broker about - // the loader termination. - if (CommandLine::ForCurrentProcess()->GetSwitchValuePath( - switches::kNaClGdb).empty()) { - NaClBrokerService::GetInstance()->OnLoaderDied(); - } + if (process_launched_by_broker_) { + NaClBrokerService::GetInstance()->OnLoaderDied(); } if (debug_context_ != NULL) { debug_context_->SetChildProcessHost(NULL); @@ -330,22 +328,27 @@ void NaClProcessHost::EarlyStartup() { #endif } -bool NaClProcessHost::Launch( +void NaClProcessHost::Launch( ChromeRenderMessageFilter* chrome_render_message_filter, int socket_count, IPC::Message* reply_msg) { + chrome_render_message_filter_ = chrome_render_message_filter; + reply_msg_ = reply_msg; + // Place an arbitrary limit on the number of sockets to limit // exposure in case the renderer is compromised. We can increase // this if necessary. if (socket_count > 8) { - return false; + delete this; + return; } // Start getting the IRT open asynchronously while we launch the NaCl process. // We'll make sure this actually finished in OnProcessLaunched, below. if (!NaClBrowser::GetInstance()->EnsureIrtAvailable()) { LOG(ERROR) << "Cannot launch NaCl process after IRT file open failed"; - return false; + delete this; + return; } // Rather than creating a socket pair in the renderer, and passing @@ -360,8 +363,10 @@ bool NaClProcessHost::Launch( for (int i = 0; i < socket_count; i++) { nacl::Handle pair[2]; // Create a connected socket - if (nacl::SocketPair(pair) == -1) - return false; + if (nacl::SocketPair(pair) == -1) { + delete this; + return; + } internal_->sockets_for_renderer.push_back(pair[0]); internal_->sockets_for_sel_ldr.push_back(pair[1]); SetCloseOnExec(pair[0]); @@ -370,14 +375,8 @@ bool NaClProcessHost::Launch( // Launch the process if (!LaunchSelLdr()) { - return false; + delete this; } - - chrome_render_message_filter_ = chrome_render_message_filter; - - // On success, we take responsibility for sending the reply. - reply_msg_ = reply_msg; - return true; } scoped_ptr<CommandLine> NaClProcessHost::LaunchWithNaClGdb( @@ -485,6 +484,9 @@ bool NaClProcessHost::LaunchSelLdr() { } void NaClProcessHost::OnProcessLaunchedByBroker(base::ProcessHandle handle) { +#if defined(OS_WIN) + process_launched_by_broker_ = true; +#endif process_->SetHandle(handle); OnProcessLaunched(); } diff --git a/chrome/browser/nacl_host/nacl_process_host.h b/chrome/browser/nacl_host/nacl_process_host.h index 1bc54af..57a1475 100644 --- a/chrome/browser/nacl_host/nacl_process_host.h +++ b/chrome/browser/nacl_host/nacl_process_host.h @@ -37,11 +37,9 @@ class NaClProcessHost : public content::BrowserChildProcessHostDelegate { // Do any minimal work that must be done at browser startup. static void EarlyStartup(); - // Initialize the new NaCl process, returning true on success. On success, - // the NaCl process host will assume responsibility for sending the reply - // message. On failure, the reply will not be sent and this is the caller's - // responsibility to avoid hanging the renderer. - bool Launch(ChromeRenderMessageFilter* chrome_render_message_filter, + // Initialize the new NaCl process. Result is returned by sending ipc + // message reply_msg. + void Launch(ChromeRenderMessageFilter* chrome_render_message_filter, int socket_count, IPC::Message* reply_msg); @@ -74,6 +72,10 @@ class NaClProcessHost : public content::BrowserChildProcessHostDelegate { class DebugContext; scoped_refptr<DebugContext> debug_context_; + + // This field becomes true when the broker successfully launched + // the NaCl loader. + bool process_launched_by_broker_; #endif // The ChromeRenderMessageFilter that requested this NaCl process. We use // this for sending the reply once the process has started. |