diff options
| author | kbr@google.com <kbr@google.com@0039d316-1c4b-4281-b951-d872f2087c98> | 2011-07-22 18:13:28 +0000 |
|---|---|---|
| committer | kbr@google.com <kbr@google.com@0039d316-1c4b-4281-b951-d872f2087c98> | 2011-07-22 18:13:28 +0000 |
| commit | 0b2cec69a613d94f2ee72743ba53f539843e85e3 (patch) | |
| tree | 8ed8627b2fd91716f11b16a5b8174b611f6b33c3 /content/gpu/gpu_main.cc | |
| parent | 638b1808f8c609dbf58c319837a78f1c316f82cd (diff) | |
| download | chromium_src-0b2cec69a613d94f2ee72743ba53f539843e85e3.zip chromium_src-0b2cec69a613d94f2ee72743ba53f539843e85e3.tar.gz chromium_src-0b2cec69a613d94f2ee72743ba53f539843e85e3.tar.bz2 | |
Initialize the sandbox earlier in GPU process bringup, deferring any
errors until receipt of the first IPC message.
Tested by running WebGL content with this patch on Mac and Windows.
BUG=84650
TEST=none
Review URL: http://codereview.chromium.org/7458009
git-svn-id: svn://svn.chromium.org/chrome/trunk/src@93676 0039d316-1c4b-4281-b951-d872f2087c98
Diffstat (limited to 'content/gpu/gpu_main.cc')
| -rw-r--r-- | content/gpu/gpu_main.cc | 46 |
1 files changed, 33 insertions, 13 deletions
diff --git a/content/gpu/gpu_main.cc b/content/gpu/gpu_main.cc index cea11e6..1b0f58b 100644 --- a/content/gpu/gpu_main.cc +++ b/content/gpu/gpu_main.cc @@ -19,9 +19,12 @@ #include "content/common/main_function_params.h" #include "content/gpu/gpu_child_thread.h" #include "content/gpu/gpu_process.h" +#include "ui/gfx/gl/gl_surface.h" #if defined(OS_MACOSX) #include "content/common/chrome_application_mac.h" +#elif defined(OS_WIN) +#include "sandbox/src/sandbox.h" #endif #if defined(USE_X11) @@ -37,6 +40,35 @@ int GpuMain(const MainFunctionParams& parameters) { ChildProcess::WaitForDebugger("Gpu"); } + // Initialization of the OpenGL bindings may fail, in which case we + // will need to tear down this process. However, we can not do so + // safely until the IPC channel is set up, because the detection of + // early return of a child process is implemented using an IPC + // channel error. If the IPC channel is not fully set up between the + // browser and GPU process, and the GPU process crashes or exits + // early, the browser process will never detect it. For this reason + // we defer tearing down the GPU process until receiving the + // GpuMsg_Initialize message from the browser. + bool dead_on_arrival = false; + +#if defined(OS_WIN) + sandbox::TargetServices* target_services = + parameters.sandbox_info_.TargetServices(); + // For windows, if the target_services interface is not zero, the process + // is sandboxed and we must call LowerToken() before rendering untrusted + // content. + if (target_services) + target_services->LowerToken(); +#endif + + // Load the GL implementation and locate the bindings before starting the GPU + // watchdog because this can take a lot of time and the GPU watchdog might + // terminate the GPU process. + if (!gfx::GLSurface::InitializeOneOff()) { + LOG(INFO) << "GLContext::InitializeOneOff failed"; + dead_on_arrival = true; + } + #if defined(OS_MACOSX) chrome_application_mac::RegisterCrApp(); #endif @@ -59,21 +91,9 @@ int GpuMain(const MainFunctionParams& parameters) { base::win::ScopedCOMInitializer com_initializer; - // We can not tolerate early returns from this code, because the - // detection of early return of a child process is implemented using - // an IPC channel error. If the IPC channel is not fully set up - // between the browser and GPU process, and the GPU process crashes - // or exits early, the browser process will never detect it. For - // this reason we defer all work related to the GPU until receiving - // the GpuMsg_Initialize message from the browser. GpuProcess gpu_process; - GpuChildThread* child_thread = -#if defined(OS_WIN) - new GpuChildThread(parameters.sandbox_info_.TargetServices()); -#else - new GpuChildThread; -#endif + GpuChildThread* child_thread = new GpuChildThread(dead_on_arrival); child_thread->Init(start_time); |