// Copyright 2014 The Chromium Authors. All rights reserved. // Use of this source code is governed by a BSD-style license that can be // found in the LICENSE file. #include "content/browser/bootstrap_sandbox_mac.h" #include "base/logging.h" #include "base/mac/mac_util.h" #include "base/memory/scoped_ptr.h" #include "base/memory/singleton.h" #include "content/common/sandbox_init_mac.h" #include "content/public/browser/browser_child_process_observer.h" #include "content/public/browser/child_process_data.h" #include "content/public/common/sandbox_type_mac.h" #include "sandbox/mac/bootstrap_sandbox.h" namespace content { namespace { // This class is responsible for creating the BootstrapSandbox global // singleton, as well as registering all associated policies with it. class BootstrapSandboxPolicy : public BrowserChildProcessObserver { public: static BootstrapSandboxPolicy* GetInstance(); sandbox::BootstrapSandbox* sandbox() const { return sandbox_.get(); } // BrowserChildProcessObserver: virtual void BrowserChildProcessHostDisconnected( const ChildProcessData& data) override; virtual void BrowserChildProcessCrashed( const ChildProcessData& data) override; private: friend struct DefaultSingletonTraits; BootstrapSandboxPolicy(); virtual ~BootstrapSandboxPolicy(); void RegisterSandboxPolicies(); scoped_ptr sandbox_; }; BootstrapSandboxPolicy* BootstrapSandboxPolicy::GetInstance() { return Singleton::get(); } void BootstrapSandboxPolicy::BrowserChildProcessHostDisconnected( const ChildProcessData& data) { sandbox()->ChildDied(data.handle); } void BootstrapSandboxPolicy::BrowserChildProcessCrashed( const ChildProcessData& data) { sandbox()->ChildDied(data.handle); } BootstrapSandboxPolicy::BootstrapSandboxPolicy() : sandbox_(sandbox::BootstrapSandbox::Create()) { CHECK(sandbox_.get()); BrowserChildProcessObserver::Add(this); RegisterSandboxPolicies(); } BootstrapSandboxPolicy::~BootstrapSandboxPolicy() { BrowserChildProcessObserver::Remove(this); } void BootstrapSandboxPolicy::RegisterSandboxPolicies() { } } // namespace bool ShouldEnableBootstrapSandbox() { return base::mac::IsOSMountainLionOrEarlier() || base::mac::IsOSMavericks(); } sandbox::BootstrapSandbox* GetBootstrapSandbox() { return BootstrapSandboxPolicy::GetInstance()->sandbox(); } } // namespace content