Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(140)

Issues Search
    My Issues | Starred     Open | Closed | All

Side by Side Diff: sandbox/win/src/job.h

Issue 319573006: Add sandbox support for process memory limits (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src
Patch Set: ready for review Created 6 years, 6 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View unified diff | Download patch | Annotate | Revision Log
« sandbox/win/src/broker_services.cc ('K') | « sandbox/win/src/broker_services.cc ('k') | sandbox/win/src/job.cc » ('j') | sandbox/win/src/sandbox_policy.h » ('J')
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
OLDNEW
1 // Copyright (c) 2010 The Chromium Authors. All rights reserved. 1 // Copyright (c) 2010 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be 2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file. 3 // found in the LICENSE file.
4 4
5 #ifndef SANDBOX_SRC_JOB_H_ 5 #ifndef SANDBOX_SRC_JOB_H_
6 #define SANDBOX_SRC_JOB_H_ 6 #define SANDBOX_SRC_JOB_H_
7 7
8 #include "base/basictypes.h" 8 #include "base/basictypes.h"
9 #include "sandbox/win/src/restricted_token_utils.h" 9 #include "sandbox/win/src/restricted_token_utils.h"
10 10
11 namespace sandbox { 11 namespace sandbox {
12 12
13 // Handles the creation of job objects based on a security profile. 13 // Handles the creation of job objects based on a security profile.
14 // Sample usage: 14 // Sample usage:
15 // Job job; 15 // Job job;
16 // job.Init(JOB_LOCKDOWN, NULL); //no job name 16 // job.Init(JOB_LOCKDOWN, NULL); //no job name
17 // job.AssignProcessToJob(process_handle); 17 // job.AssignProcessToJob(process_handle);
18 class Job { 18 class Job {
19 public: 19 public:
20 Job() : job_handle_(NULL) { } 20 Job() : job_handle_(NULL), process_memory_limit_(0) { }
21 21
22 ~Job(); 22 ~Job();
23 23
24 // Initializes and creates the job object. The security of the job is based 24 // Initializes and creates the job object. The security of the job is based
25 // on the security_level parameter. 25 // on the security_level parameter.
26 // job_name can be NULL if the job is unnamed. 26 // job_name can be NULL if the job is unnamed.
27 // If the chosen profile has too many ui restrictions, you can disable some 27 // If the chosen profile has too many ui restrictions, you can disable some
28 // by specifying them in the ui_exceptions parameters. 28 // by specifying them in the ui_exceptions parameters.
29 // If the function succeeds, the return value is ERROR_SUCCESS. If the 29 // If the function succeeds, the return value is ERROR_SUCCESS. If the
30 // function fails, the return value is the win32 error code corresponding to 30 // function fails, the return value is the win32 error code corresponding to
31 // the error. 31 // the error.
32 DWORD Init(JobLevel security_level, 32 DWORD Init(JobLevel security_level,
33 const wchar_t* job_name, 33 const wchar_t* job_name,
34 DWORD ui_exceptions); 34 DWORD ui_exceptions);
35 35
36 DWORD SetProcessMemoryLimit(size_t limit);
37
36 // Assigns the process referenced by process_handle to the job. 38 // Assigns the process referenced by process_handle to the job.
37 // If the function succeeds, the return value is ERROR_SUCCESS. If the 39 // If the function succeeds, the return value is ERROR_SUCCESS. If the
38 // function fails, the return value is the win32 error code corresponding to 40 // function fails, the return value is the win32 error code corresponding to
39 // the error. 41 // the error.
40 DWORD AssignProcessToJob(HANDLE process_handle); 42 DWORD AssignProcessToJob(HANDLE process_handle);
41 43
42 // Grants access to "handle" to the job. All processes in the job can 44 // Grants access to "handle" to the job. All processes in the job can
43 // subsequently recognize and use the handle. 45 // subsequently recognize and use the handle.
44 // If the function succeeds, the return value is ERROR_SUCCESS. If the 46 // If the function succeeds, the return value is ERROR_SUCCESS. If the
45 // function fails, the return value is the win32 error code corresponding to 47 // function fails, the return value is the win32 error code corresponding to
46 // the error. 48 // the error.
47 DWORD UserHandleGrantAccess(HANDLE handle); 49 DWORD UserHandleGrantAccess(HANDLE handle);
48 50
49 // Revokes ownership to the job handle and returns it. The destructor of the 51 // Revokes ownership to the job handle and returns it. The destructor of the
50 // class won't close the handle when called. 52 // class won't close the handle when called.
51 // If the object is not yet initialized, it returns 0. 53 // If the object is not yet initialized, it returns 0.
52 HANDLE Detach(); 54 HANDLE Detach();
53 55
54 private: 56 private:
55 // Handle to the job referenced by the object. 57 // Handle to the job referenced by the object.
56 HANDLE job_handle_; 58 HANDLE job_handle_;
59 // Per-process memory limit for each process in the job.
60 size_t process_memory_limit_;
57 61
58 DISALLOW_COPY_AND_ASSIGN(Job); 62 DISALLOW_COPY_AND_ASSIGN(Job);
59 }; 63 };
60 64
61 } // namespace sandbox 65 } // namespace sandbox
62 66
63 67
64 #endif // SANDBOX_SRC_JOB_H_ 68 #endif // SANDBOX_SRC_JOB_H_
OLDNEW
« sandbox/win/src/broker_services.cc ('K') | « sandbox/win/src/broker_services.cc ('k') | sandbox/win/src/job.cc » ('j') | sandbox/win/src/sandbox_policy.h » ('J')

Powered by Google App Engine
This is Rietveld 408576698