chromium/src
0
Fork 0
Code Activity
Files
087f254cc65ea6c9fd69fa0ba0ac67bf25729ccf
src/sandbox
History
Kevin McNee 087f254cc6 Reland "Don't include hang_watcher.h from thread_restrictions.h" 
This is a reland of 0e6733427f
This reland fixes more IWYU issues.

Original change's description:
> Don't include hang_watcher.h from thread_restrictions.h
>
> This is only needed in thread_restrictions.cc.
> We also fix IWYU issues that this removal revealed.
>
> Bug: 1227131
> Change-Id: I68e19fc27b3ab32f3b423b44c6b4a431a9927732
> Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/3060580
> Auto-Submit: Kevin McNee <mcnee@chromium.org>
> Reviewed-by: Lei Zhang <thestig@chromium.org>
> Reviewed-by: Albert J. Wong <ajwong@chromium.org>
> Reviewed-by: Kinuko Yasuda <kinuko@chromium.org>
> Owners-Override: Lei Zhang <thestig@chromium.org>
> Commit-Queue: Kevin McNee <mcnee@chromium.org>
> Cr-Commit-Position: refs/heads/master@{#912313}

Bug: 1227131
Cq-Include-Trybots: luci.chromium.try:win-official;luci.chrome.try:win-chrome,mac-chrome,linux-chrome
Change-Id: I436be161287647e132c49ec9a31ad0eeda202564
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/3098329
Reviewed-by: Lei Zhang <thestig@chromium.org>
Owners-Override: Lei Zhang <thestig@chromium.org>
Commit-Queue: Kevin McNee <mcnee@chromium.org>
Cr-Commit-Position: refs/heads/master@{#912712}
2021-08-17 20:10:02 +00:00
..
linux
Fix some -Wunreachable-code-aggressive warnings
2021-08-16 17:16:24 +00:00
mac
Swap from base/stl_util.h to cxx17_backports.h in sandbox/ .cc files.
2021-06-17 18:48:38 +00:00
policy
Mac: Let Print Compositor processes access SystemAppearance.bundle.
2021-08-17 17:44:09 +00:00
win
Reland "Don't include hang_watcher.h from thread_restrictions.h"
2021-08-17 20:10:02 +00:00
BUILD.gn
constants.h
DEPS
DIR_METADATA
[COIL] Change chromium code search type links to use main rather than master for sandbox
2021-05-20 21:02:58 +00:00
features.gni
ipc.dict
OWNERS
README.md
sandbox_export.h

README.md

Sandbox Library

This directory contains platform-specific sandboxing libraries. Sandboxing is a technique that can improve the security of an application by separating untrustworthy code (or code that handles untrustworthy data) and restricting its privileges and capabilities.

Each platform relies on the operating system's process primitive to isolate code into distinct security principals, and platform-specific technologies are used to implement the privilege reduction. At a high-level:

  • mac/ uses the Seatbelt sandbox. See the detailed design for more.
  • linux/ uses namespaces and Seccomp-BPF. See the detailed design for more.
  • win/ uses a combination of restricted tokens, distinct job objects, alternate desktops, and integrity levels. See the detailed design for more.

Built on top of the low-level sandboxing library is the //sandbox/policy component, which provides concrete policies and helper utilities for sandboxing specific Chromium processes and services. The core sandbox library cannot depend on the policy component.