sandbox/src/handle_policy_test.cc - Issue 9960045: Add sandbox support for associating peer processes - Code Review

Chromium Code Reviews

chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out

(274)

My Issues | Starred Open | Closed | All

Unified Diff: sandbox/src/handle_policy_test.cc

Issue 9960045: Add sandbox support for associating peer processes (Closed) Base URL: svn://chrome-svn/chrome/trunk/src/

Patch Set: Created 8 years, 8 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

« sandbox/src/broker_services.cc ('K') | « sandbox/src/broker_services.cc ('k') | sandbox/src/sandbox.h » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

Index: sandbox/src/handle_policy_test.cc

===================================================================

--- sandbox/src/handle_policy_test.cc (revision 131361)

+++ sandbox/src/handle_policy_test.cc (working copy)

@@ -65,5 +65,27 @@

EXPECT_EQ(SBOX_TEST_SUCCEEDED, runner.RunTest(cmd_line.c_str()));

}

+// Tests that duplicating an object works only when the policy allows it.

+TEST(HandlePolicyTest, DuplicatePeerHandle) {

+ TestRunner target;

+ TestRunner runner;

+

+ // Kick off an asynchronous target process for testing.

+ target.SetAsynchronous(true);

+ target.SetUnsandboxed(true);

+ EXPECT_EQ(SBOX_TEST_SUCCEEDED, target.RunTest(L"Handle_WaitProcess 30000"));

+

+ // First test that we fail to open the event.

+ std::wstring cmd_line = base::StringPrintf(L"Handle_DuplicateEvent %d",

+ target.process_id());

+ EXPECT_EQ(SBOX_TEST_DENIED, runner.RunTest(cmd_line.c_str()));

+

+ // Now successfully open the event after adding a duplicate handle rule.

+ EXPECT_TRUE(runner.AddRule(TargetPolicy::SUBSYS_HANDLES,

+ TargetPolicy::HANDLES_DUP_ANY,

+ L"Event"));

+ EXPECT_EQ(SBOX_TEST_SUCCEEDED, runner.RunTest(cmd_line.c_str()));

+}

+

} // namespace sandbox

« sandbox/src/broker_services.cc ('K') | « sandbox/src/broker_services.cc ('k') | sandbox/src/sandbox.h » ('j') | no next file with comments »

Powered by Google App Engine

This is Rietveld 408576698