blob: a462dc95c19a728f1ebf5b87878f8be61062f594 [file] [log] [blame]
// Copyright (c) 2012 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include <memory>
#include <string>
#include "base/files/scoped_file.h"
#include "base/macros.h"
#include "sandbox/linux/bpf_dsl/policy.h"
namespace content {
// This class has two main sets of APIs. One can be used to start the sandbox
// for internal content process types, the other is indirectly exposed as
// a public content/ API and uses a supplied policy.
class SandboxSeccompBPF {
// This is the API to enable a seccomp-bpf sandbox for content/
// process-types:
// Is the sandbox globally enabled, can anything use it at all ?
// This looks at global command line flags to see if the sandbox
// should be enabled at all.
static bool IsSeccompBPFDesired();
// Should the sandbox be enabled for process_type ?
static bool ShouldEnableSeccompBPF(const std::string& process_type);
// Check if the kernel supports seccomp-bpf.
static bool SupportsSandbox();
// Check if the kernel supports TSYNC (thread synchronization) with seccomp.
static bool SupportsSandboxWithTsync();
// Start the sandbox and apply the policy for process_type, depending on
// command line switches.
static bool StartSandbox(const std::string& process_type,
base::ScopedFD proc_fd);
// This is the API to enable a seccomp-bpf sandbox by using an
// external policy.
static bool StartSandboxWithExternalPolicy(
std::unique_ptr<sandbox::bpf_dsl::Policy> policy,
base::ScopedFD proc_fd);
// The "baseline" policy can be a useful base to build a sandbox policy.
static std::unique_ptr<sandbox::bpf_dsl::Policy> GetBaselinePolicy();
} // namespace content