content/common/sandbox_policy.cc - Issue 10163013: Fix DXVA2 video decoding which was broken with recent process handle brokering changes

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: content/common/sandbox_policy.cc

Issue 10163013: Fix DXVA2 video decoding which was broken with recent process handle brokering changes (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src/

Patch Set: Created 8 years, 8 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: content/common/sandbox_policy.cc

===================================================================

--- content/common/sandbox_policy.cc (revision 133066)

+++ content/common/sandbox_policy.cc (working copy)

@@ -339,29 +339,28 @@

// Swiftshader path.

policy->SetTokenLevel(sandbox::USER_RESTRICTED_SAME_ACCESS,

sandbox::USER_LIMITED);

- // UI restrictions break when we access Windows from outside our job.

- // However, we don't want a proxy window in this process because it can

- // introduce deadlocks where the renderer blocks on the gpu, which in

- // turn blocks on the browser UI thread. So, instead we forgo a window

- // message pump entirely and just add job restrictions to prevent child

- // processes.

- policy->SetJobLevel(sandbox::JOB_LIMITED_USER,

- JOB_OBJECT_UILIMIT_SYSTEMPARAMETERS |

- JOB_OBJECT_UILIMIT_DESKTOP |

- JOB_OBJECT_UILIMIT_EXITWINDOWS |

- JOB_OBJECT_UILIMIT_DISPLAYSETTINGS);

} else {

// Angle + DirectX path.

policy->SetTokenLevel(sandbox::USER_RESTRICTED_SAME_ACCESS,

sandbox::USER_RESTRICTED);

- policy->SetJobLevel(sandbox::JOB_LOCKDOWN,

- JOB_OBJECT_UILIMIT_HANDLES);

// This is a trick to keep the GPU out of low-integrity processes. It

// starts at low-integrity for UIPI to work, then drops below

// low-integrity after warm-up.

policy->SetDelayedIntegrityLevel(sandbox::INTEGRITY_LEVEL_UNTRUSTED);

}

+ // UI restrictions break when we access Windows from outside our job.

+ // However, we don't want a proxy window in this process because it can

+ // introduce deadlocks where the renderer blocks on the gpu, which in

+ // turn blocks on the browser UI thread. So, instead we forgo a window

+ // message pump entirely and just add job restrictions to prevent child

+ // processes.

+ policy->SetJobLevel(sandbox::JOB_LIMITED_USER,

+ JOB_OBJECT_UILIMIT_SYSTEMPARAMETERS |

+ JOB_OBJECT_UILIMIT_DESKTOP |

+ JOB_OBJECT_UILIMIT_EXITWINDOWS |

+ JOB_OBJECT_UILIMIT_DISPLAYSETTINGS);

policy->SetIntegrityLevel(sandbox::INTEGRITY_LEVEL_LOW);

}

} else {

« no previous file with comments | « content/common/gpu/client/gpu_video_decode_accelerator_host.cc ('k') | no next file » | no next file with comments »