From 4a94dff0a3a7c847e59b649a8b5b9729e45fa65f Mon Sep 17 00:00:00 2001 From: forshaw Date: Tue, 16 Dec 2014 13:32:53 -0800 Subject: Changed identification level to anonymous for windows IPC channel This patch makes some changes to impersonation levels for pipes used in IPC. It changes the default level for the IPC channel client to use SECURITY_ANONYMOUS and also modified the sandbox's file policy code to always pass a SecurityAnonymous QOS structure to all file creations and opens. This was done to avoid modifying the IPC calls themselves to add the QOS information. The aim of the patch is to reduce the possibility of impersonation tokens leaking to less trusted processes during normal operation. This is a counterpart to CL 799943002 BUG=440694 Review URL: https://codereview.chromium.org/811763002 Cr-Commit-Position: refs/heads/master@{#308670} --- ipc/ipc_channel_win.cc | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to 'ipc') diff --git a/ipc/ipc_channel_win.cc b/ipc/ipc_channel_win.cc index 2d97992..2ad638b 100644 --- a/ipc/ipc_channel_win.cc +++ b/ipc/ipc_channel_win.cc @@ -262,7 +262,7 @@ bool ChannelWin::CreatePipe(const IPC::ChannelHandle &channel_handle, 0, NULL, OPEN_EXISTING, - SECURITY_SQOS_PRESENT | SECURITY_IDENTIFICATION | + SECURITY_SQOS_PRESENT | SECURITY_ANONYMOUS | FILE_FLAG_OVERLAPPED, NULL)); } else { -- cgit v1.1