| /external/chromium/chrome/common/ |
| sandbox_policy.h | 14 namespace sandbox { namespace
18 void InitBrokerServices(sandbox::BrokerServices* broker_services);
25 } // namespace sandbox
|
| /external/chromium_org/sandbox/linux/seccomp-bpf-helpers/ |
| sigsys_handlers.h | 13 // See sandbox/linux/seccomp-bpf/trap.h to see how they work.
15 namespace sandbox { namespace
37 } // namespace sandbox.
|
| syscall_parameters_restrictions.h | 11 // sandbox that reduces the Linux kernel's attack surface. They return an
14 namespace sandbox { namespace
23 ErrorCode RestrictCloneToThreadsAndEPERMFork(SandboxBPF* sandbox);
27 ErrorCode RestrictPrctl(SandboxBPF* sandbox);
31 ErrorCode RestrictIoctl(SandboxBPF* sandbox);
37 ErrorCode RestrictMmapFlags(SandboxBPF* sandbox);
41 ErrorCode RestrictMprotectFlags(SandboxBPF* sandbox);
48 ErrorCode RestrictFcntlCommands(SandboxBPF* sandbox);
53 ErrorCode RestrictSocketcallCommand(SandboxBPF* sandbox);
56 } // namespace sandbox
[all...] |
| /external/chromium_org/sandbox/linux/services/ |
| init_process_reaper.h | 10 namespace sandbox { namespace
21 } // namespace sandbox.
|
| libc_urandom_override.h | 8 namespace sandbox { namespace
12 } // namespace sandbox
|
| /external/chromium_org/sandbox/win/src/ |
| acl.h | 12 #include "sandbox/win/src/sid.h"
14 namespace sandbox { namespace
40 } // namespace sandbox
|
| filesystem_interception.h | 5 #include "sandbox/win/src/nt_internals.h"
6 #include "sandbox/win/src/sandbox_types.h"
11 namespace sandbox { namespace
51 } // namespace sandbox
|
| handle_interception.h | 5 #include "sandbox/win/src/nt_internals.h"
6 #include "sandbox/win/src/sandbox_types.h"
11 namespace sandbox { namespace
21 } // namespace sandbox
|
| interceptors_64.h | 5 #include "sandbox/win/src/nt_internals.h"
6 #include "sandbox/win/src/sandbox_types.h"
11 namespace sandbox { namespace
168 } // namespace sandbox
|
| policy_broker.h | 8 #include "sandbox/win/src/interception.h"
10 namespace sandbox { namespace
21 } // namespace sandbox
|
| policy_target.h | 5 #include "sandbox/win/src/nt_internals.h"
6 #include "sandbox/win/src/sandbox_types.h"
11 namespace sandbox { namespace
43 } // namespace sandbox
|
| process_mitigations.h | 11 #include "sandbox/win/src/security_level.h"
13 namespace sandbox { namespace
23 // Converts sandbox flags to the PROC_THREAD_ATTRIBUTE_SECURITY_CAPABILITIES
41 } // namespace sandbox
|
| registry_interception.h | 5 #include "sandbox/win/src/nt_internals.h"
6 #include "sandbox/win/src/sandbox_types.h"
11 namespace sandbox { namespace
36 } // namespace sandbox
|
| sandbox_utils.h | 13 #include "sandbox/win/src/nt_internals.h"
15 namespace sandbox { namespace
26 } // namespace sandbox
|
| sync_policy_test.h | 8 #include "sandbox/win/tests/common/controller.h"
10 namespace sandbox { namespace
16 } // namespace sandbox
|
| target_interceptions.h | 5 #include "sandbox/win/src/nt_internals.h"
6 #include "sandbox/win/src/sandbox_types.h"
11 namespace sandbox { namespace
33 } // namespace sandbox
|
| window.h | 12 #include "sandbox/win/src/sandbox_types.h"
14 namespace sandbox { namespace
38 } // namespace sandbox
|
| /external/chromium_org/sandbox/win/tests/validation_tests/ |
| commands.h | 12 namespace sandbox { namespace
46 } // namespace sandbox
|
| /external/chromium_org/content/common/sandbox_linux/ |
| sandbox_seccomp_bpf_linux.h | 13 namespace sandbox { namespace
19 // This class has two main sets of APIs. One can be used to start the sandbox
24 // This is the API to enable a seccomp-bpf sandbox for content/
26 // Is the sandbox globally enabled, can anything use it at all ?
27 // This looks at global command line flags to see if the sandbox
30 // Should the sandbox be enabled for process_type ?
32 // Check if the kernel supports this sandbox. It's useful to "prewarm"
35 // Start the sandbox and apply the policy for process_type, depending on
39 // This is the API to enable a seccomp-bpf sandbox by using an
42 scoped_ptr<sandbox::SandboxBPFPolicy> policy)
[all...] |
| /external/chromium_org/content/common/ |
| sandbox_win.h | 8 #include "sandbox/win/src/security_level.h"
12 namespace sandbox { namespace
20 // Wrapper around sandbox::TargetPolicy::SetJobLevel that checks if the sandbox
23 sandbox::JobLevel job_level,
25 sandbox::TargetPolicy* policy);
28 void AddBaseHandleClosePolicy(sandbox::TargetPolicy* policy);
30 bool InitBrokerServices(sandbox::BrokerServices* broker_services);
32 bool InitTargetServices(sandbox::TargetServices* target_services);
|
| /external/chromium_org/content/public/app/ |
| content_main.h | 15 namespace sandbox { namespace
32 sandbox::SandboxInterfaceInfo* sandbox_info,
|
| startup_helper_win.h | 10 namespace sandbox { namespace
20 // Initializes the sandbox code and turns on DEP. Note: This function
22 // sandbox library); it will not work correctly if it is exported from a
24 void InitializeSandboxInfo(sandbox::SandboxInterfaceInfo* sandbox_info);
|
| /external/chromium_org/content/public/common/ |
| sandbox_init.h | 19 namespace sandbox { namespace
29 // Initialize the sandbox for renderer, gpu, utility, worker, nacl, and plug-in
33 // Returns true if the sandbox was initialized succesfully, false if an error
37 sandbox::SandboxInterfaceInfo* sandbox_info);
40 // that works inside the sandbox and can send handles but not retrieve
49 // Inform the current process's sandbox broker (e.g. the broker for
50 // 32-bit processes) about a process created under a different sandbox
66 // Initialize the sandbox of the given |sandbox_type|, optionally specifying a
68 // supported by the sandbox profile associated with the given |sandbox_type|.
75 // sandbox::SANDBOX_PROCESS_TYPE_AFTER_LAST_TYPE
[all...] |
| /external/chromium_org/sandbox/linux/seccomp-bpf/ |
| basicblock.cc | 5 #include "sandbox/linux/seccomp-bpf/basicblock.h"
7 namespace sandbox { namespace
13 } // namespace sandbox
|
| errorcode.cc | 5 #include "sandbox/linux/seccomp-bpf/die.h"
6 #include "sandbox/linux/seccomp-bpf/errorcode.h"
8 namespace sandbox { namespace
47 SANDBOX_DIE("Invalid opcode in BPF sandbox rules");
104 } // namespace sandbox
|
