Czarlii

Issues with sandboxing in Google Chrome 31 and later

Recommended Posts

When Google Chrome updated to version 31 an issue appeared when running Online Armor (and it continues in latest Chrome versions). It seems it has to do with the new sandboxing features introduced in Chrome. The problem appears only when using Online Armor HIPS features. I have OA configured to let me decide which applications can connect to Internet and which to trust. After updating to the new Chrome it stopped working. From debug logs you can find out that Chrome fails to launch child processes.

 

Here are OA logs when launching Chrome:

Program Guard: chrome.exe,14/8/2014 3:23:08 PM,Allowed,C:\Program Files (x86)\totalcmd\TOTALCMD64.EXE -> c:\Program Files (x86)\Google\Chrome\Application\chrome.exe

Program Guard: chrome.exe,14/8/2014 3:23:08 PM,Allowed,c:\Program Files (x86)\Google\Chrome\Application\chrome.exe wants to get a list of the files C:\Windows\Performance\WinSAT\DataStore\* * Formal.Assessment (*).WinSAT.xml

Program Guard: kernel event,14/8/2014 3:23:08 PM,None,"OADriver: OB_OPERATION_HANDLE_DUPLICATE, PID: 5040, pid: 2512, SP: 274352944, TP: 274352944, Mask: 1FFFFF - 1FF414",2512 - chrome.exe 5040 - chrome.exe
Program Guard: kernel event,14/8/2014 3:23:08 PM,None,"OADriver: OB_OPERATION_HANDLE_DUPLICATE, PID: 5040, pid: 2512, SP: 274352944, TP: 274352944, Mask: 1FFFFF - 1FFBCC",2512 - chrome.exe 5040 - chrome.exe

Program Guard: chrome.exe,14/8/2014 3:23:09 PM,Allowed,c:\Program Files (x86)\Google\Chrome\Application\chrome.exe -> c:\Program Files (x86)\Google\Chrome\Application\chrome.exe

Program Guard: kernel event,14/8/2014 3:23:09 PM,None,"OADriver: OB_OPERATION_HANDLE_DUPLICATE, PID: 5040, pid: 4736, SP: 274352944, TP: 274352944, Mask: 1FFFFF - 1FFBCC",4736 - chrome.exe 5040 - chrome.exe
Program Guard: kernel event,14/8/2014 3:23:09 PM,None,"OADriver: OB_OPERATION_HANDLE_DUPLICATE, PID: 5040, pid: 4736, SP: 274352944, TP: 274352944, Mask: 1FFFFF - 1FF414",4736 - chrome.exe 5040 - chrome.exe

This did not occur in Chrome 29. The solution to this problem was to add "chrome.exe" to trusted programs in OA. Then it works fine. But this issue continues to occur in other application that use Chromium Embedded Framework.

 

In earlier versions of Chrome it was enough to Allow for internet connections and program worked fine. Now I have to completely trust all programs that embed Chromium engine, for them to work. There is a lot of applications that internally embed Chromium engine, so this issue is not limited only to Google Chrome. It's not a big issue for me now, since I understand where the problem lies. But for other users this might be troublesome and would be great if there was a fix for that in OA.

 

Thank you for the great software.

Using latest OA 7.0.0.1866 on Win7 x64.

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.


  • Recently Browsing   0 members

    No registered users viewing this page.