Add an interface to the sandbox to block dll from loading in the target process

- new interface is TargetPolicy::AddDllToUnload - Added integration tests and unit tests. Review URL: http://codereview.chromium.org/2413 git-svn-id: svn://svn.chromium.org/chrome/trunk/src@2348 0039d316-1c4b-4281-b951-d872f2087c98
author: cpu@google.com <cpu@google.com@0039d316-1c4b-4281-b951-d872f2087c98> 2008-09-18 00:26:01 +0000
committer: cpu@google.com <cpu@google.com@0039d316-1c4b-4281-b951-d872f2087c98> 2008-09-18 00:26:01 +0000
commit: 9cd0144cccf979ecce9f193f77e50c05544bc4a7 (patch)
tree: 548283eb1965017d2f1c46e9bb63aa8cbc7816d5 /sandbox/src/target_interceptions.cc
parent: 35aa85ac00fbfa16bd9f52b05e47eb09a3b6a0ce (diff)
download: chromium_src-9cd0144cccf979ecce9f193f77e50c05544bc4a7.zip
chromium_src-9cd0144cccf979ecce9f193f77e50c05544bc4a7.tar.gz
chromium_src-9cd0144cccf979ecce9f193f77e50c05544bc4a7.tar.bz2
1 files changed, 18 insertions, 8 deletions
diff --git a/sandbox/src/target_interceptions.cc b/sandbox/src/target_interceptions.cc
index 0bf9cd6..466c9ba 100644
--- a/sandbox/src/target_interceptions.cc
+++ b/sandbox/src/target_interceptions.cc
@@ -11,6 +11,8 @@
 
 namespace sandbox {
 
+SANDBOX_INTERCEPT NtExports g_nt;
+
 // Hooks NtMapViewOfSection to detect the load of DLLs. If hot patching is
 // required for this dll, this functions patches it.
 NTSTATUS WINAPI TargetNtMapViewOfSection(
@@ -41,18 +43,26 @@ NTSTATUS WINAPI TargetNtMapViewOfSection(
     if (!IsValidImageSection(section, base, offset, view_size))
       break;
 
-    UNICODE_STRING* module_name = GetImageNameFromModule(
-                                      reinterpret_cast<HMODULE>(*base));
-
-    if (!module_name)
-      break;
-
+    UINT image_flags;
+    UNICODE_STRING* module_name =
+        GetImageInfoFromModule(reinterpret_cast<HMODULE>(*base), &image_flags);
     UNICODE_STRING* file_name = GetBackingFilePath(*base);
 
+    if ((!module_name) && (image_flags & MODULE_HAS_CODE)) {
+      // If the module has no exports we retrieve the module name from the
+      // full path of the mapped section.
+      module_name = ExtractModuleName(file_name);
+    }
+
     InterceptionAgent* agent = InterceptionAgent::GetInterceptionAgent();
 
-    if (agent)
-      agent->OnDllLoad(file_name, module_name, *base);
+    if (agent) {
+      if (!agent->OnDllLoad(file_name, module_name, image_flags, *base)) {
+        // Interception agent is demanding to un-map the module.
+        g_nt.UnmapViewOfSection(process, *base);
+        ret = STATUS_UNSUCCESSFUL;
+      }
+    }
 
     if (module_name)
       operator delete(module_name, NT_ALLOC);
author	cpu@google.com <cpu@google.com@0039d316-1c4b-4281-b951-d872f2087c98>	2008-09-18 00:26:01 +0000
committer	cpu@google.com <cpu@google.com@0039d316-1c4b-4281-b951-d872f2087c98>	2008-09-18 00:26:01 +0000
commit	9cd0144cccf979ecce9f193f77e50c05544bc4a7 (patch)
tree	548283eb1965017d2f1c46e9bb63aa8cbc7816d5 /sandbox/src/target_interceptions.cc
parent	35aa85ac00fbfa16bd9f52b05e47eb09a3b6a0ce (diff)
download	chromium_src-9cd0144cccf979ecce9f193f77e50c05544bc4a7.zip chromium_src-9cd0144cccf979ecce9f193f77e50c05544bc4a7.tar.gz chromium_src-9cd0144cccf979ecce9f193f77e50c05544bc4a7.tar.bz2