Lines Matching full:sandbox
29 #include "sandbox/linux/seccomp-bpf/sandbox_bpf.h"
33 using playground2::Sandbox;
37 // We don't expect our sandbox to do anything useful yet. So, we will fail
39 // following line should be removed as soon as the sandbox is starting to
214 // log the system call and then deny it. More elaborate sandbox policies
238 ErrorCode Evaluator(Sandbox *sandbox, int sysno, void *) {
327 return sandbox->Cond(1, ErrorCode::TP_32BIT, ErrorCode::OP_EQUAL,
330 sandbox->Cond(1, ErrorCode::TP_32BIT, ErrorCode::OP_EQUAL,
333 sandbox->Trap(DefaultHandler, NULL)));
338 // As is, this sandbox isn't exactly safe :-/
368 return sandbox->Trap(DefaultHandler, NULL);
414 if (Sandbox::SupportsSeccompSandbox(proc_fd) !=
415 Sandbox::STATUS_AVAILABLE) {
416 perror("sandbox");
419 Sandbox sandbox;
420 sandbox.set_proc_fd(proc_fd);
421 sandbox.SetSandboxPolicy(Evaluator, NULL);
422 sandbox.StartSandbox();
505 // Print a message so that the user can see the sandbox is activated.
507 printf("Sandbox has been started at %s", ctime(&tm));
