Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(363)

Side by Side Diff: sandbox/win/src/sandbox_policy_base.h

Issue 1225183003: CreateThread interception, to use CreateRemoteThread (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master
Patch Set: fix up casts Created 4 years, 10 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View unified diff | Download patch
« no previous file with comments | « sandbox/win/src/sandbox_policy.h ('k') | sandbox/win/src/sandbox_policy_base.cc » ('j') | no next file with comments »
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
OLDNEW
1 // Copyright (c) 2011 The Chromium Authors. All rights reserved. 1 // Copyright (c) 2011 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be 2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file. 3 // found in the LICENSE file.
4 4
5 #ifndef SANDBOX_WIN_SRC_SANDBOX_POLICY_BASE_H_ 5 #ifndef SANDBOX_WIN_SRC_SANDBOX_POLICY_BASE_H_
6 #define SANDBOX_WIN_SRC_SANDBOX_POLICY_BASE_H_ 6 #define SANDBOX_WIN_SRC_SANDBOX_POLICY_BASE_H_
7 7
8 #include <windows.h> 8 #include <windows.h>
9 #include <stddef.h> 9 #include <stddef.h>
10 #include <stdint.h> 10 #include <stdint.h>
(...skipping 43 matching lines...) Expand 10 before | Expand all | Expand 10 after
54 ResultCode SetIntegrityLevel(IntegrityLevel integrity_level) override; 54 ResultCode SetIntegrityLevel(IntegrityLevel integrity_level) override;
55 IntegrityLevel GetIntegrityLevel() const override; 55 IntegrityLevel GetIntegrityLevel() const override;
56 ResultCode SetDelayedIntegrityLevel(IntegrityLevel integrity_level) override; 56 ResultCode SetDelayedIntegrityLevel(IntegrityLevel integrity_level) override;
57 ResultCode SetAppContainer(const wchar_t* sid) override; 57 ResultCode SetAppContainer(const wchar_t* sid) override;
58 ResultCode SetCapability(const wchar_t* sid) override; 58 ResultCode SetCapability(const wchar_t* sid) override;
59 ResultCode SetLowBox(const wchar_t* sid) override; 59 ResultCode SetLowBox(const wchar_t* sid) override;
60 ResultCode SetProcessMitigations(MitigationFlags flags) override; 60 ResultCode SetProcessMitigations(MitigationFlags flags) override;
61 MitigationFlags GetProcessMitigations() override; 61 MitigationFlags GetProcessMitigations() override;
62 ResultCode SetDelayedProcessMitigations(MitigationFlags flags) override; 62 ResultCode SetDelayedProcessMitigations(MitigationFlags flags) override;
63 MitigationFlags GetDelayedProcessMitigations() const override; 63 MitigationFlags GetDelayedProcessMitigations() const override;
64 void SetDisconnectCsrss() override;
64 void SetStrictInterceptions() override; 65 void SetStrictInterceptions() override;
65 ResultCode SetStdoutHandle(HANDLE handle) override; 66 ResultCode SetStdoutHandle(HANDLE handle) override;
66 ResultCode SetStderrHandle(HANDLE handle) override; 67 ResultCode SetStderrHandle(HANDLE handle) override;
67 ResultCode AddRule(SubSystem subsystem, 68 ResultCode AddRule(SubSystem subsystem,
68 Semantics semantics, 69 Semantics semantics,
69 const wchar_t* pattern) override; 70 const wchar_t* pattern) override;
70 ResultCode AddDllToUnload(const wchar_t* dll_name) override; 71 ResultCode AddDllToUnload(const wchar_t* dll_name) override;
71 ResultCode AddKernelObjectToClose(const base::char16* handle_type, 72 ResultCode AddKernelObjectToClose(const base::char16* handle_type,
72 const base::char16* handle_name) override; 73 const base::char16* handle_name) override;
73 void* AddHandleToShare(HANDLE handle) override; 74 void* AddHandleToShare(HANDLE handle) override;
(...skipping 64 matching lines...) Expand 10 before | Expand all | Expand 10 after
138 bool use_alternate_winstation_; 139 bool use_alternate_winstation_;
139 // Helps the file system policy initialization. 140 // Helps the file system policy initialization.
140 bool file_system_init_; 141 bool file_system_init_;
141 bool relaxed_interceptions_; 142 bool relaxed_interceptions_;
142 HANDLE stdout_handle_; 143 HANDLE stdout_handle_;
143 HANDLE stderr_handle_; 144 HANDLE stderr_handle_;
144 IntegrityLevel integrity_level_; 145 IntegrityLevel integrity_level_;
145 IntegrityLevel delayed_integrity_level_; 146 IntegrityLevel delayed_integrity_level_;
146 MitigationFlags mitigations_; 147 MitigationFlags mitigations_;
147 MitigationFlags delayed_mitigations_; 148 MitigationFlags delayed_mitigations_;
149 bool is_csrss_connected_;
148 // Object in charge of generating the low level policy. 150 // Object in charge of generating the low level policy.
149 LowLevelPolicy* policy_maker_; 151 LowLevelPolicy* policy_maker_;
150 // Memory structure that stores the low level policy. 152 // Memory structure that stores the low level policy.
151 PolicyGlobal* policy_; 153 PolicyGlobal* policy_;
152 // The list of dlls to unload in the target process. 154 // The list of dlls to unload in the target process.
153 std::vector<base::string16> blacklisted_dlls_; 155 std::vector<base::string16> blacklisted_dlls_;
154 // This is a map of handle-types to names that we need to close in the 156 // This is a map of handle-types to names that we need to close in the
155 // target process. A null set means we need to close all handles of the 157 // target process. A null set means we need to close all handles of the
156 // given type. 158 // given type.
157 HandleCloser handle_closer_; 159 HandleCloser handle_closer_;
(...skipping 11 matching lines...) Expand all
169 // This list contains handles other than the stderr/stdout handles which are 171 // This list contains handles other than the stderr/stdout handles which are
170 // shared with the target at times. 172 // shared with the target at times.
171 HandleList handles_to_share_; 173 HandleList handles_to_share_;
172 174
173 DISALLOW_COPY_AND_ASSIGN(PolicyBase); 175 DISALLOW_COPY_AND_ASSIGN(PolicyBase);
174 }; 176 };
175 177
176 } // namespace sandbox 178 } // namespace sandbox
177 179
178 #endif // SANDBOX_WIN_SRC_SANDBOX_POLICY_BASE_H_ 180 #endif // SANDBOX_WIN_SRC_SANDBOX_POLICY_BASE_H_
OLDNEW
« no previous file with comments | « sandbox/win/src/sandbox_policy.h ('k') | sandbox/win/src/sandbox_policy_base.cc » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698