/dports/www/chromium-legacy/chromium-88.0.4324.182/sandbox/policy/linux/ |
H A D | bpf_broker_policy_linux.cc | 17 const syscall_broker::BrokerCommandSet& allowed_command_set) in BrokerProcessPolicy() 26 if (allowed_command_set_.test(syscall_broker::COMMAND_ACCESS)) in EvaluateSyscall() 32 if (allowed_command_set_.test(syscall_broker::COMMAND_ACCESS)) in EvaluateSyscall() 38 if (allowed_command_set_.test(syscall_broker::COMMAND_MKDIR)) in EvaluateSyscall() 44 if (allowed_command_set_.test(syscall_broker::COMMAND_MKDIR)) in EvaluateSyscall() 50 if (allowed_command_set_.test(syscall_broker::COMMAND_OPEN)) in EvaluateSyscall() 56 if (allowed_command_set_.test(syscall_broker::COMMAND_OPEN)) in EvaluateSyscall() 74 if (allowed_command_set_.test(syscall_broker::COMMAND_STAT)) in EvaluateSyscall() 80 if (allowed_command_set_.test(syscall_broker::COMMAND_STAT)) in EvaluateSyscall() 86 if (allowed_command_set_.test(syscall_broker::COMMAND_STAT)) in EvaluateSyscall() [all …]
|
H A D | sandbox_linux.h | 33 namespace syscall_broker { 231 const syscall_broker::BrokerCommandSet& allowed_command_set, 232 std::vector<syscall_broker::BrokerFilePermission> permissions, 298 syscall_broker::BrokerProcess* broker_process_; // Leaked as global.
|
H A D | bpf_broker_policy_linux.h | 21 const syscall_broker::BrokerCommandSet& allowed_command_set); 27 const syscall_broker::BrokerCommandSet allowed_command_set_;
|
H A D | sandbox_linux.cc | 102 syscall_broker::BrokerCommandSet allowed_command_set) { in UpdateProcessTypeAndEnableSandbox() 488 const syscall_broker::BrokerCommandSet& allowed_command_set, in StartBrokerProcess() 489 std::vector<syscall_broker::BrokerFilePermission> permissions, in StartBrokerProcess() 493 broker_process_ = new syscall_broker::BrokerProcess( in StartBrokerProcess() 495 syscall_broker::BrokerProcess::BrokerType::SIGNAL_BASED); in StartBrokerProcess() 510 sandbox::syscall_broker::BrokerClient::SIGSYS_Handler, in HandleViaBroker()
|
/dports/www/qt5-webengine/qtwebengine-everywhere-src-5.15.2/src/3rdparty/chromium/services/service_manager/sandbox/linux/ |
H A D | bpf_broker_policy_linux.cc | 16 const sandbox::syscall_broker::BrokerCommandSet& allowed_command_set) in BrokerProcessPolicy() 25 if (allowed_command_set_.test(sandbox::syscall_broker::COMMAND_ACCESS)) in EvaluateSyscall() 31 if (allowed_command_set_.test(sandbox::syscall_broker::COMMAND_ACCESS)) in EvaluateSyscall() 37 if (allowed_command_set_.test(sandbox::syscall_broker::COMMAND_MKDIR)) in EvaluateSyscall() 43 if (allowed_command_set_.test(sandbox::syscall_broker::COMMAND_MKDIR)) in EvaluateSyscall() 49 if (allowed_command_set_.test(sandbox::syscall_broker::COMMAND_OPEN)) in EvaluateSyscall() 55 if (allowed_command_set_.test(sandbox::syscall_broker::COMMAND_OPEN)) in EvaluateSyscall() 73 if (allowed_command_set_.test(sandbox::syscall_broker::COMMAND_STAT)) in EvaluateSyscall() 79 if (allowed_command_set_.test(sandbox::syscall_broker::COMMAND_STAT)) in EvaluateSyscall() 85 if (allowed_command_set_.test(sandbox::syscall_broker::COMMAND_STAT)) in EvaluateSyscall() [all …]
|
H A D | sandbox_linux.h | 33 namespace syscall_broker { 230 const sandbox::syscall_broker::BrokerCommandSet& allowed_command_set, 231 std::vector<sandbox::syscall_broker::BrokerFilePermission> permissions, 235 sandbox::syscall_broker::BrokerProcess* broker_process() const { in broker_process() 290 sandbox::syscall_broker::BrokerProcess* broker_process_; // Leaked as global.
|
H A D | bpf_broker_policy_linux.h | 21 const sandbox::syscall_broker::BrokerCommandSet& allowed_command_set); 28 const sandbox::syscall_broker::BrokerCommandSet allowed_command_set_;
|
H A D | sandbox_linux.cc | 102 sandbox::syscall_broker::BrokerCommandSet allowed_command_set) { in UpdateProcessTypeAndEnableSandbox() 482 const sandbox::syscall_broker::BrokerCommandSet& allowed_command_set, in StartBrokerProcess() 483 std::vector<sandbox::syscall_broker::BrokerFilePermission> permissions, in StartBrokerProcess() 487 broker_process_ = new sandbox::syscall_broker::BrokerProcess( in StartBrokerProcess()
|
/dports/www/chromium-legacy/chromium-88.0.4324.182/sandbox/linux/ |
H A D | BUILD.gn | 346 "syscall_broker/broker_channel.cc", 347 "syscall_broker/broker_channel.h", 348 "syscall_broker/broker_client.cc", 349 "syscall_broker/broker_client.h", 350 "syscall_broker/broker_command.cc", 351 "syscall_broker/broker_command.h", 354 "syscall_broker/broker_host.cc", 355 "syscall_broker/broker_host.h", 359 "syscall_broker/broker_process.h", 409 "syscall_broker/broker_host.cc", [all …]
|
/dports/www/qt5-webengine/qtwebengine-everywhere-src-5.15.2/src/3rdparty/chromium/services/network/ |
H A D | network_sandbox_hook_linux.cc | 11 using sandbox::syscall_broker::BrokerFilePermission; 12 using sandbox::syscall_broker::MakeBrokerCommandSet; 23 sandbox::syscall_broker::COMMAND_ACCESS, in NetworkPreSandboxHook() 24 sandbox::syscall_broker::COMMAND_MKDIR, in NetworkPreSandboxHook() 25 sandbox::syscall_broker::COMMAND_OPEN, in NetworkPreSandboxHook() 26 sandbox::syscall_broker::COMMAND_READLINK, in NetworkPreSandboxHook() 27 sandbox::syscall_broker::COMMAND_RENAME, in NetworkPreSandboxHook() 28 sandbox::syscall_broker::COMMAND_RMDIR, in NetworkPreSandboxHook() 29 sandbox::syscall_broker::COMMAND_STAT, in NetworkPreSandboxHook() 30 sandbox::syscall_broker::COMMAND_UNLINK, in NetworkPreSandboxHook()
|
/dports/www/chromium-legacy/chromium-88.0.4324.182/services/network/ |
H A D | network_sandbox_hook_linux.cc | 11 using sandbox::syscall_broker::BrokerFilePermission; 12 using sandbox::syscall_broker::MakeBrokerCommandSet; 23 sandbox::syscall_broker::COMMAND_ACCESS, in NetworkPreSandboxHook() 24 sandbox::syscall_broker::COMMAND_MKDIR, in NetworkPreSandboxHook() 25 sandbox::syscall_broker::COMMAND_OPEN, in NetworkPreSandboxHook() 26 sandbox::syscall_broker::COMMAND_READLINK, in NetworkPreSandboxHook() 27 sandbox::syscall_broker::COMMAND_RENAME, in NetworkPreSandboxHook() 28 sandbox::syscall_broker::COMMAND_RMDIR, in NetworkPreSandboxHook() 29 sandbox::syscall_broker::COMMAND_STAT, in NetworkPreSandboxHook() 30 sandbox::syscall_broker::COMMAND_UNLINK, in NetworkPreSandboxHook()
|
/dports/www/qt5-webengine/qtwebengine-everywhere-src-5.15.2/src/3rdparty/chromium/sandbox/linux/ |
H A D | BUILD.gn | 333 "syscall_broker/broker_channel.cc", 334 "syscall_broker/broker_channel.h", 335 "syscall_broker/broker_client.cc", 336 "syscall_broker/broker_client.h", 337 "syscall_broker/broker_command.cc", 338 "syscall_broker/broker_command.h", 341 "syscall_broker/broker_host.cc", 342 "syscall_broker/broker_host.h", 346 "syscall_broker/broker_process.h", 391 "syscall_broker/broker_host.cc", [all …]
|
/dports/www/chromium-legacy/chromium-88.0.4324.182/sandbox/linux/integration_tests/ |
H A D | seccomp_broker_process_unittest.cc | 625 {syscall_broker::COMMAND_ACCESS, syscall_broker::COMMAND_OPEN}); in ChildSetUpPreSandbox() 652 {syscall_broker::COMMAND_ACCESS, syscall_broker::COMMAND_OPEN}); in ChildSetUpPreSandbox() 801 {syscall_broker::COMMAND_ACCESS, syscall_broker::COMMAND_OPEN}); in ChildSetUpPreSandbox() 868 {syscall_broker::COMMAND_ACCESS, syscall_broker::COMMAND_OPEN}); in ChildSetUpPreSandbox() 925 {syscall_broker::COMMAND_ACCESS, syscall_broker::COMMAND_OPEN}); in ChildSetUpPreSandbox() 970 {syscall_broker::COMMAND_ACCESS, syscall_broker::COMMAND_OPEN}); in ChildSetUpPreSandbox() 1006 {syscall_broker::COMMAND_ACCESS, syscall_broker::COMMAND_OPEN}); in ChildSetUpPreSandbox() 1078 {syscall_broker::COMMAND_ACCESS, syscall_broker::COMMAND_OPEN}); in ChildSetUpPreSandbox() 1229 syscall_broker::MakeBrokerCommandSet({syscall_broker::COMMAND_STAT}); in ChildSetUpPreSandbox() 1260 syscall_broker::MakeBrokerCommandSet({syscall_broker::COMMAND_STAT}); in ChildSetUpPreSandbox() [all …]
|
/dports/www/qt5-webengine/qtwebengine-everywhere-src-5.15.2/src/3rdparty/chromium/sandbox/linux/integration_tests/ |
H A D | seccomp_broker_process_unittest.cc | 44 syscall_broker::BrokerCommandSet command_set; in InitializedOpenBroker() 45 command_set.set(syscall_broker::COMMAND_OPEN); in InitializedOpenBroker() 46 command_set.set(syscall_broker::COMMAND_ACCESS); in InitializedOpenBroker() 47 std::vector<syscall_broker::BrokerFilePermission> permissions = { in InitializedOpenBroker() 48 syscall_broker::BrokerFilePermission::ReadOnly("/proc/allowed"), in InitializedOpenBroker() 49 syscall_broker::BrokerFilePermission::ReadOnly("/proc/cpuinfo")}; in InitializedOpenBroker() 50 broker_process_ = std::make_unique<syscall_broker::BrokerProcess>( in InitializedOpenBroker() 58 syscall_broker::BrokerProcess* broker_process() const { in broker_process() 64 std::unique_ptr<syscall_broker::BrokerProcess> broker_process_; 71 syscall_broker::BrokerProcess* broker_process = in BrokerOpenTrapHandler() [all …]
|
/dports/www/chromium-legacy/chromium-88.0.4324.182/chromeos/services/tts/ |
H A D | tts_sandbox_hook.cc | 17 using sandbox::syscall_broker::BrokerFilePermission; 18 using sandbox::syscall_broker::MakeBrokerCommandSet; 62 sandbox::syscall_broker::COMMAND_ACCESS, in TtsPreSandboxHook() 63 sandbox::syscall_broker::COMMAND_OPEN, in TtsPreSandboxHook() 64 sandbox::syscall_broker::COMMAND_MKDIR, in TtsPreSandboxHook() 65 sandbox::syscall_broker::COMMAND_STAT, in TtsPreSandboxHook() 66 sandbox::syscall_broker::COMMAND_STAT64, in TtsPreSandboxHook() 67 sandbox::syscall_broker::COMMAND_RENAME, in TtsPreSandboxHook() 68 sandbox::syscall_broker::COMMAND_UNLINK, in TtsPreSandboxHook()
|
/dports/www/chromium-legacy/chromium-88.0.4324.182/chromeos/services/ime/ |
H A D | ime_sandbox_hook.cc | 20 using sandbox::syscall_broker::BrokerFilePermission; 21 using sandbox::syscall_broker::MakeBrokerCommandSet; 91 sandbox::syscall_broker::COMMAND_ACCESS, in ImePreSandboxHook() 92 sandbox::syscall_broker::COMMAND_OPEN, in ImePreSandboxHook() 93 sandbox::syscall_broker::COMMAND_MKDIR, in ImePreSandboxHook() 94 sandbox::syscall_broker::COMMAND_STAT, in ImePreSandboxHook() 95 sandbox::syscall_broker::COMMAND_STAT64, in ImePreSandboxHook() 96 sandbox::syscall_broker::COMMAND_RENAME, in ImePreSandboxHook() 97 sandbox::syscall_broker::COMMAND_UNLINK, in ImePreSandboxHook()
|
/dports/www/chromium-legacy/chromium-88.0.4324.182/sandbox/linux/syscall_broker/ |
H A D | broker_process.h | 25 namespace syscall_broker { 60 const syscall_broker::BrokerCommandSet& allowed_command_set, 61 const std::vector<syscall_broker::BrokerFilePermission>& permissions, 86 syscall_broker::BrokerClient* GetBrokerClientSignalBased() const { in GetBrokerClientSignalBased() 115 syscall_broker::BrokerCommandSet allowed_command_set_; 116 syscall_broker::BrokerPermissionList 118 std::unique_ptr<syscall_broker::BrokerClient> broker_client_;
|
H A D | broker_process.cc | 31 namespace syscall_broker { namespace 35 const syscall_broker::BrokerCommandSet& allowed_command_set, in BrokerProcess() 36 const std::vector<syscall_broker::BrokerFilePermission>& permissions, in BrokerProcess()
|
/dports/www/qt5-webengine/qtwebengine-everywhere-src-5.15.2/src/3rdparty/chromium/content/utility/soda/ |
H A D | soda_sandbox_hook_linux.cc | 13 using sandbox::syscall_broker::BrokerFilePermission; 14 using sandbox::syscall_broker::MakeBrokerCommandSet; 45 sandbox::syscall_broker::COMMAND_ACCESS, in SodaPreSandboxHook() 46 sandbox::syscall_broker::COMMAND_OPEN, in SodaPreSandboxHook() 47 sandbox::syscall_broker::COMMAND_READLINK, in SodaPreSandboxHook() 48 sandbox::syscall_broker::COMMAND_STAT, in SodaPreSandboxHook()
|
/dports/www/chromium-legacy/chromium-88.0.4324.182/content/utility/speech/ |
H A D | speech_recognition_sandbox_hook_linux.cc | 13 using sandbox::syscall_broker::BrokerFilePermission; 14 using sandbox::syscall_broker::MakeBrokerCommandSet; 52 sandbox::syscall_broker::COMMAND_ACCESS, in SpeechRecognitionPreSandboxHook() 53 sandbox::syscall_broker::COMMAND_OPEN, in SpeechRecognitionPreSandboxHook() 54 sandbox::syscall_broker::COMMAND_READLINK, in SpeechRecognitionPreSandboxHook() 55 sandbox::syscall_broker::COMMAND_STAT, in SpeechRecognitionPreSandboxHook()
|
/dports/www/qt5-webengine/qtwebengine-everywhere-src-5.15.2/src/3rdparty/chromium/sandbox/linux/syscall_broker/ |
H A D | broker_process.h | 25 namespace syscall_broker { 63 const syscall_broker::BrokerCommandSet& allowed_command_set, 64 const std::vector<syscall_broker::BrokerFilePermission>& permissions, 132 syscall_broker::BrokerCommandSet allowed_command_set_; 133 syscall_broker::BrokerPermissionList 135 std::unique_ptr<syscall_broker::BrokerClient> broker_client_;
|
/dports/www/qt5-webengine/qtwebengine-everywhere-src-5.15.2/src/3rdparty/chromium/services/audio/ |
H A D | audio_sandbox_hook_linux.cc | 21 using sandbox::syscall_broker::BrokerFilePermission; 22 using sandbox::syscall_broker::MakeBrokerCommandSet; 180 sandbox::syscall_broker::COMMAND_ACCESS, in AudioPreSandboxHook() 182 sandbox::syscall_broker::COMMAND_MKDIR, in AudioPreSandboxHook() 184 sandbox::syscall_broker::COMMAND_OPEN, in AudioPreSandboxHook() 185 sandbox::syscall_broker::COMMAND_READLINK, in AudioPreSandboxHook() 186 sandbox::syscall_broker::COMMAND_STAT, in AudioPreSandboxHook() 187 sandbox::syscall_broker::COMMAND_UNLINK, in AudioPreSandboxHook()
|
/dports/www/chromium-legacy/chromium-88.0.4324.182/services/audio/ |
H A D | audio_sandbox_hook_linux.cc | 22 using sandbox::syscall_broker::BrokerFilePermission; 23 using sandbox::syscall_broker::MakeBrokerCommandSet; 181 sandbox::syscall_broker::COMMAND_ACCESS, in AudioPreSandboxHook() 183 sandbox::syscall_broker::COMMAND_MKDIR, in AudioPreSandboxHook() 185 sandbox::syscall_broker::COMMAND_OPEN, in AudioPreSandboxHook() 186 sandbox::syscall_broker::COMMAND_READLINK, in AudioPreSandboxHook() 187 sandbox::syscall_broker::COMMAND_STAT, in AudioPreSandboxHook() 188 sandbox::syscall_broker::COMMAND_UNLINK, in AudioPreSandboxHook()
|
/dports/www/qt5-webengine/qtwebengine-everywhere-src-5.15.2/src/3rdparty/chromium/content/gpu/ |
H A D | gpu_sandbox_hook_linux.cc | 36 using sandbox::syscall_broker::BrokerFilePermission; 37 using sandbox::syscall_broker::BrokerProcess; 412 sandbox::syscall_broker::BrokerCommandSet CommandSetForGPU( in CommandSetForGPU() 414 sandbox::syscall_broker::BrokerCommandSet command_set; in CommandSetForGPU() 415 command_set.set(sandbox::syscall_broker::COMMAND_ACCESS); in CommandSetForGPU() 416 command_set.set(sandbox::syscall_broker::COMMAND_OPEN); in CommandSetForGPU() 417 command_set.set(sandbox::syscall_broker::COMMAND_STAT); in CommandSetForGPU() 420 command_set.set(sandbox::syscall_broker::COMMAND_READLINK); in CommandSetForGPU()
|
/dports/www/chromium-legacy/chromium-88.0.4324.182/content/gpu/ |
H A D | gpu_sandbox_hook_linux.cc | 37 using sandbox::syscall_broker::BrokerFilePermission; 38 using sandbox::syscall_broker::BrokerProcess; 458 sandbox::syscall_broker::BrokerCommandSet CommandSetForGPU( in CommandSetForGPU() 460 sandbox::syscall_broker::BrokerCommandSet command_set; in CommandSetForGPU() 461 command_set.set(sandbox::syscall_broker::COMMAND_ACCESS); in CommandSetForGPU() 462 command_set.set(sandbox::syscall_broker::COMMAND_OPEN); in CommandSetForGPU() 463 command_set.set(sandbox::syscall_broker::COMMAND_STAT); in CommandSetForGPU() 466 command_set.set(sandbox::syscall_broker::COMMAND_READLINK); in CommandSetForGPU()
|