blob: d7c29a4d15855ccebf4d32b3b799364d09103968 [file] [log] [blame]
// Copyright (c) 2012 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include <memory>
#include <string>
#include "base/logging.h"
#include "base/macros.h"
#include "base/threading/simple_thread.h"
#include "content/browser/sandbox_ipc_linux.h"
#include "content/common/content_export.h"
namespace base {
template <typename T>
class NoDestructor;
namespace content {
// This is a singleton object which handles sandbox requests from the
// sandboxed processes.
class CONTENT_EXPORT SandboxHostLinux {
// Returns the singleton instance.
static SandboxHostLinux* GetInstance();
// Get the file descriptor which sandboxed processes should be given in order
// to communicate with the browser. This is used for things like communicating
// renderer crashes to the browser, as well as requesting fonts from sandboxed
// processes.
int GetChildSocket() const {
return child_socket_;
void Init();
bool IsInitialized() const { return initialized_; }
friend class base::NoDestructor<SandboxHostLinux>;
// This object must be constructed on the main thread. It then lives for the
// lifetime of the process (and resources are reclaimed by the OS when the
// process dies).
~SandboxHostLinux() = delete;
// Whether Init() has been called yet.
bool initialized_ = false;
int child_socket_ = 0;
int childs_lifeline_fd_ = 0;
std::unique_ptr<SandboxIPCHandler> ipc_handler_;
std::unique_ptr<base::DelegateSimpleThread> ipc_thread_;
} // namespace content