OLD | NEW |
1 // Copyright (c) 2006-2008 The Chromium Authors. All rights reserved. | 1 // Copyright (c) 2006-2008 The Chromium Authors. All rights reserved. |
2 // Use of this source code is governed by a BSD-style license that can be | 2 // Use of this source code is governed by a BSD-style license that can be |
3 // found in the LICENSE file. | 3 // found in the LICENSE file. |
4 | 4 |
5 #include <stddef.h> | |
6 #include <stdint.h> | |
7 | |
8 #include "sandbox/win/src/policy_engine_processor.h" | 5 #include "sandbox/win/src/policy_engine_processor.h" |
9 | 6 |
10 namespace sandbox { | 7 namespace sandbox { |
11 | 8 |
12 void PolicyProcessor::SetInternalState(size_t index, EvalResult result) { | 9 void PolicyProcessor::SetInternalState(size_t index, EvalResult result) { |
13 state_.current_index_ = index; | 10 state_.current_index_ = index; |
14 state_.current_result_ = result; | 11 state_.current_result_ = result; |
15 } | 12 } |
16 | 13 |
17 EvalResult PolicyProcessor::GetAction() const { | 14 EvalResult PolicyProcessor::GetAction() const { |
18 return state_.current_result_; | 15 return state_.current_result_; |
19 } | 16 } |
20 | 17 |
21 // Decides if an opcode can be skipped (not evaluated) or not. The function | 18 // Decides if an opcode can be skipped (not evaluated) or not. The function |
22 // takes as inputs the opcode and the current evaluation context and returns | 19 // takes as inputs the opcode and the current evaluation context and returns |
23 // true if the opcode should be skipped or not and also can set keep_skipping | 20 // true if the opcode should be skipped or not and also can set keep_skipping |
24 // to false to signal that the current instruction should be skipped but not | 21 // to false to signal that the current instruction should be skipped but not |
25 // the next after the current one. | 22 // the next after the current one. |
26 bool SkipOpcode(const PolicyOpcode& opcode, MatchContext* context, | 23 bool SkipOpcode(const PolicyOpcode& opcode, MatchContext* context, |
27 bool* keep_skipping) { | 24 bool* keep_skipping) { |
28 if (opcode.IsAction()) { | 25 if (opcode.IsAction()) { |
29 uint32_t options = context->options; | 26 uint32 options = context->options; |
30 context->Clear(); | 27 context->Clear(); |
31 *keep_skipping = false; | 28 *keep_skipping = false; |
32 return (kPolUseOREval != options); | 29 return (kPolUseOREval != options); |
33 } | 30 } |
34 *keep_skipping = true; | 31 *keep_skipping = true; |
35 return true; | 32 return true; |
36 } | 33 } |
37 | 34 |
38 PolicyResult PolicyProcessor::Evaluate(uint32_t options, | 35 PolicyResult PolicyProcessor::Evaluate(uint32 options, |
39 ParameterSet* parameters, | 36 ParameterSet* parameters, |
40 size_t param_count) { | 37 size_t param_count) { |
41 if (NULL == policy_) { | 38 if (NULL == policy_) { |
42 return NO_POLICY_MATCH; | 39 return NO_POLICY_MATCH; |
43 } | 40 } |
44 if (0 == policy_->opcode_count) { | 41 if (0 == policy_->opcode_count) { |
45 return NO_POLICY_MATCH; | 42 return NO_POLICY_MATCH; |
46 } | 43 } |
47 if (!(kShortEval & options)) { | 44 if (!(kShortEval & options)) { |
48 return POLICY_ERROR; | 45 return POLICY_ERROR; |
(...skipping 52 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
101 if (evaluation) { | 98 if (evaluation) { |
102 // Reaching the end of the policy with a positive evaluation is probably | 99 // Reaching the end of the policy with a positive evaluation is probably |
103 // an error: we did not find a final action opcode? | 100 // an error: we did not find a final action opcode? |
104 return POLICY_ERROR; | 101 return POLICY_ERROR; |
105 } | 102 } |
106 return NO_POLICY_MATCH; | 103 return NO_POLICY_MATCH; |
107 } | 104 } |
108 | 105 |
109 | 106 |
110 } // namespace sandbox | 107 } // namespace sandbox |
OLD | NEW |