diff options
| author | Ben Murdoch <benm@google.com> | 2010-08-06 12:13:06 +0100 |
|---|---|---|
| committer | Ben Murdoch <benm@google.com> | 2010-08-18 15:49:13 +0100 |
| commit | 06741cbc25cd4227a9fba40dfd0273bfcc1a587a (patch) | |
| tree | ca6f21dec86a8c4f6d3c50e78628c0cf31da0353 /chrome/common/sandbox_mac.h | |
| parent | aa0bf16ed53445f227734aee4274c7aef056f032 (diff) | |
| download | external_chromium-06741cbc25cd4227a9fba40dfd0273bfcc1a587a.zip external_chromium-06741cbc25cd4227a9fba40dfd0273bfcc1a587a.tar.gz external_chromium-06741cbc25cd4227a9fba40dfd0273bfcc1a587a.tar.bz2 | |
Add chrome/common @ 52593
Needed by autofill
Change-Id: Ibfea9ab92382af0bd0cfc6e94d21e4baa4b9d896
Diffstat (limited to 'chrome/common/sandbox_mac.h')
| -rw-r--r-- | chrome/common/sandbox_mac.h | 60 |
1 files changed, 60 insertions, 0 deletions
diff --git a/chrome/common/sandbox_mac.h b/chrome/common/sandbox_mac.h new file mode 100644 index 0000000..249eaa3 --- /dev/null +++ b/chrome/common/sandbox_mac.h @@ -0,0 +1,60 @@ +// Copyright (c) 2009 The Chromium Authors. All rights reserved. +// Use of this source code is governed by a BSD-style license that can be +// found in the LICENSE file. + +#ifndef CHROME_COMMON_SANDBOX_MAC_H_ +#define CHROME_COMMON_SANDBOX_MAC_H_ + +#include "base/file_path.h" + +namespace sandbox { + +enum SandboxProcessType { + + SANDBOX_TYPE_FIRST_TYPE, // Placeholder to ease iteration. + + SANDBOX_TYPE_RENDERER = SANDBOX_TYPE_FIRST_TYPE, + + // The worker processes uses the most restrictive sandbox which has almost + // *everything* locked down. Only a couple of /System/Library/ paths and + // some other very basic operations (e.g., reading metadata to allow + // following symlinks) are permitted. + SANDBOX_TYPE_WORKER, + + // Utility process is as restrictive as the worker process except full access + // is allowed to one configurable directory. + SANDBOX_TYPE_UTILITY, + + // Native Client sandboxes. The plugin contains trusted code and the + // loader contains the user's untrusted code. + SANDBOX_TYPE_NACL_PLUGIN, + SANDBOX_TYPE_NACL_LOADER, + + SANDBOX_AFTER_TYPE_LAST_TYPE, // Placeholder to ease iteration. +}; + +// Warm up System APIs that empirically need to be accessed before the Sandbox +// is turned on. +void SandboxWarmup(); + +// Turns on the OS X sandbox for this process. +// |sandbox_type| - type of Sandbox to use. +// |allowed_dir| - directory to allow access to, currently the only sandbox +// profile that supports this is SANDBOX_TYPE_UTILITY . +// +// |allowed_dir| must be a "simple" string since it's placed as is in a regex +// i.e. it must not contain quotation characters, escaping or any characters +// that might have special meaning when blindly substituted into a regular +// expression - crbug.com/26492 . +// Returns true on success, false if an error occurred enabling the sandbox. +bool EnableSandbox(SandboxProcessType sandbox_type, + const FilePath& allowed_dir); + +// Convert provided path into a "canonical" path matching what the Sandbox +// expects i.e. one without symlinks. +// This path is not necessarily unique e.g. in the face of hardlinks. +void GetCanonicalSandboxPath(FilePath* path); + +} // namespace sandbox + +#endif // CHROME_COMMON_SANDBOX_MAC_H_ |