| OLD | NEW |
|---|
| (Empty) | |
| 1 // Copyright (c) 2011 The Chromium Authors. All rights reserved. |
| 2 // Use of this source code is governed by a BSD-style license that can be |
| 3 // found in the LICENSE file. |
| 4 |
| 5 #ifndef CONTENT_PUBLIC_COMMON_SANDBOX_TYPE_MAC_H_ |
| 6 #define CONTENT_PUBLIC_COMMON_SANDBOX_TYPE_MAC_H_ |
| 7 #pragma once |
| 8 |
| 9 namespace content { |
| 10 |
| 11 // Defines the Mac sandbox types known within content. Embedders can add |
| 12 // additional sandbox types with IDs starting with SANDBOX_TYPE_AFTER_LAST_TYPE. |
| 13 |
| 14 enum SandboxType { |
| 15 SANDBOX_TYPE_FIRST_TYPE = 0, // Placeholder to ease iteration. |
| 16 |
| 17 SANDBOX_TYPE_RENDERER = SANDBOX_TYPE_FIRST_TYPE, |
| 18 |
| 19 // The worker process uses the most restrictive sandbox which has almost |
| 20 // *everything* locked down. Only a couple of /System/Library/ paths and |
| 21 // some other very basic operations (e.g., reading metadata to allow |
| 22 // following symlinks) are permitted. |
| 23 SANDBOX_TYPE_WORKER, |
| 24 |
| 25 // Utility process is as restrictive as the worker process except full |
| 26 // access is allowed to one configurable directory. |
| 27 SANDBOX_TYPE_UTILITY, |
| 28 |
| 29 // GPU process. |
| 30 SANDBOX_TYPE_GPU, |
| 31 |
| 32 // The PPAPI plugin process. |
| 33 SANDBOX_TYPE_PPAPI, |
| 34 |
| 35 SANDBOX_TYPE_AFTER_LAST_TYPE, // Placeholder to ease iteration. |
| 36 }; |
| 37 |
| 38 } // namespace content |
| 39 |
| 40 #endif // CONTENT_PUBLIC_COMMON_SANDBOX_TYPE_MAC_H_ |
| OLD | NEW |
|---|
Chromium Code Reviews
Issue 8589001:
Load mac sandbox definitions from resources instead of the bundle. (Closed)
Base URL: svn://svn.chromium.org/chrome/trunk/src