chromium/src
0
Fork 0
Code Activity
Files
25055f432bb6d531201978d2949af4df9ab1c52a
src/sandbox
History
Alex Gough d8fb60ff43 Fix missing link in sandbox docs 
Bug: 349860656
Change-Id: I415ffe2964cbc61513d382620e18f12b04e81b21
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/5671199
Reviewed-by: Matthew Denton <mpdenton@chromium.org>
Commit-Queue: Alex Gough <ajgo@chromium.org>
Cr-Commit-Position: refs/heads/main@{#1321843}
2024-07-01 20:54:38 +00:00
..
linux
sandbox/linux: add README.md
2024-06-11 15:46:15 +00:00
mac
sandbox/mac: add README.md
2024-06-03 21:59:43 +00:00
policy
[Windows] Add Creating AppContainer Profiles Without Firewall Setup.
2024-06-27 23:09:30 +00:00
win
[Windows] Add Creating AppContainer Profiles Without Firewall Setup.
2024-06-27 23:09:30 +00:00
BUILD.gn
COMMON_METADATA
constants.h
DEPS
DIR_METADATA
features.cc
features.gni
features.h
OWNERS
README.md
Fix missing link in sandbox docs
2024-07-01 20:54:38 +00:00
sandbox_export.h

README.md

Sandbox Library

This directory contains platform-specific sandboxing libraries. Sandboxing is a technique that can improve the security of an application by separating untrustworthy code (or code that handles untrustworthy data) and restricting its privileges and capabilities.

Each platform relies on the operating system's process primitive to isolate code into distinct security principals, and platform-specific technologies are used to implement the privilege reduction. At a high-level:

  • mac/ uses the Seatbelt sandbox. See the detailed design for more.
  • linux/ uses namespaces and Seccomp-BPF. See the detailed design for more.
  • win/ uses a combination of restricted tokens, distinct job objects, alternate desktops, and integrity levels. See the detailed design for more.

Built on top of the low-level sandboxing library is the //sandbox/policy component, which provides concrete policies and helper utilities for sandboxing specific Chromium processes and services. The core sandbox library cannot depend on the policy component.