| OLD | NEW |
|---|
| 1 // Copyright (c) 2011 The Chromium Authors. All rights reserved. | 1 // Copyright (c) 2011 The Chromium Authors. All rights reserved. |
| 2 // Use of this source code is governed by a BSD-style license that can be | 2 // Use of this source code is governed by a BSD-style license that can be |
| 3 // found in the LICENSE file. | 3 // found in the LICENSE file. |
| 4 | 4 |
| 5 #ifndef SANDBOX_WIN_SRC_SANDBOX_POLICY_BASE_H_ | 5 #ifndef SANDBOX_WIN_SRC_SANDBOX_POLICY_BASE_H_ |
| 6 #define SANDBOX_WIN_SRC_SANDBOX_POLICY_BASE_H_ | 6 #define SANDBOX_WIN_SRC_SANDBOX_POLICY_BASE_H_ |
| 7 | 7 |
| 8 #include <windows.h> | 8 #include <windows.h> |
| 9 | 9 |
| 10 #include <list> | 10 #include <list> |
| (...skipping 64 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
| 75 // Dispatcher: | 75 // Dispatcher: |
| 76 Dispatcher* OnMessageReady(IPCParams* ipc, | 76 Dispatcher* OnMessageReady(IPCParams* ipc, |
| 77 CallbackGeneric* callback) override; | 77 CallbackGeneric* callback) override; |
| 78 bool SetupService(InterceptionManager* manager, int service) override; | 78 bool SetupService(InterceptionManager* manager, int service) override; |
| 79 | 79 |
| 80 // Creates a Job object with the level specified in a previous call to | 80 // Creates a Job object with the level specified in a previous call to |
| 81 // SetJobLevel(). | 81 // SetJobLevel(). |
| 82 ResultCode MakeJobObject(base::win::ScopedHandle* job); | 82 ResultCode MakeJobObject(base::win::ScopedHandle* job); |
| 83 | 83 |
| 84 // Creates the two tokens with the levels specified in a previous call to | 84 // Creates the two tokens with the levels specified in a previous call to |
| 85 // SetTokenLevel(). | 85 // SetTokenLevel(). Also creates a lowbox token if specified based on the |
| 86 // lowbox SID. |
| 86 ResultCode MakeTokens(base::win::ScopedHandle* initial, | 87 ResultCode MakeTokens(base::win::ScopedHandle* initial, |
| 87 base::win::ScopedHandle* lockdown); | 88 base::win::ScopedHandle* lockdown, |
| 89 base::win::ScopedHandle* lowbox); |
| 88 | 90 |
| 89 const AppContainerAttributes* GetAppContainer() const; | 91 const AppContainerAttributes* GetAppContainer() const; |
| 90 | 92 |
| 91 const PSID GetLowBoxSid() const; | 93 const PSID GetLowBoxSid() const; |
| 92 | 94 |
| 93 // Adds a target process to the internal list of targets. Internally a | 95 // Adds a target process to the internal list of targets. Internally a |
| 94 // call to TargetProcess::Init() is issued. | 96 // call to TargetProcess::Init() is issued. |
| 95 bool AddTarget(TargetProcess* target); | 97 bool AddTarget(TargetProcess* target); |
| 96 | 98 |
| 97 // Called when there are no more active processes in a Job. | 99 // Called when there are no more active processes in a Job. |
| (...skipping 81 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
| 179 // This list contains handles other than the stderr/stdout handles which are | 181 // This list contains handles other than the stderr/stdout handles which are |
| 180 // shared with the target at times. | 182 // shared with the target at times. |
| 181 HandleList handles_to_share_; | 183 HandleList handles_to_share_; |
| 182 | 184 |
| 183 DISALLOW_COPY_AND_ASSIGN(PolicyBase); | 185 DISALLOW_COPY_AND_ASSIGN(PolicyBase); |
| 184 }; | 186 }; |
| 185 | 187 |
| 186 } // namespace sandbox | 188 } // namespace sandbox |
| 187 | 189 |
| 188 #endif // SANDBOX_WIN_SRC_SANDBOX_POLICY_BASE_H_ | 190 #endif // SANDBOX_WIN_SRC_SANDBOX_POLICY_BASE_H_ |
| OLD | NEW |
|---|
Chromium Code Reviews
Issue 1263603002:
Rework target process creation to minimize creation routes (Closed)
Base URL: https://chromium.googlesource.com/chromium/src.git@master