sandbox/linux/services/namespace_utils.h - Issue 849893004: Move a couple of utility functions to a new namespace_utils class.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: sandbox/linux/services/namespace_utils.h

Issue 849893004: Move a couple of utility functions to a new namespace_utils class. (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master

Patch Set: Respond to comments Created 5 years, 11 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

« no previous file with comments | « sandbox/linux/services/credentials_unittest.cc ('k') | sandbox/linux/services/namespace_utils.cc » ('j') | sandbox/linux/services/namespace_utils.cc » ('J')
Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

Index: sandbox/linux/services/namespace_utils.h

diff --git a/sandbox/linux/services/namespace_utils.h b/sandbox/linux/services/namespace_utils.h

new file mode 100644

index 0000000000000000000000000000000000000000..98997f2868a8475d09e61d4d5a3d3ca08d4276a0

--- /dev/null

+++ b/sandbox/linux/services/namespace_utils.h

@@ -0,0 +1,39 @@

jln (very slow on Chromium) 2015/01/27 00:06:44 2015

rickyz (no longer on Chrome) 2015/01/27 01:08:03 Done.

+// Use of this source code is governed by a BSD-style license that can be

+// found in the LICENSE file.

+#ifndef SANDBOX_LINUX_SERVICES_NAMESPACE_UTILS_H_

+#define SANDBOX_LINUX_SERVICES_NAMESPACE_UTILS_H_

+#include <sys/types.h>

+#include "base/macros.h"

+#include "base/template_util.h"

+#include "sandbox/sandbox_export.h"

+namespace sandbox {

+// Utility functions for using Linux namepaces.

+class SANDBOX_EXPORT NamespaceUtils {

+ public:

+ COMPILE_ASSERT((base::is_same<uid_t, gid_t>::value), UidAndGidAreSameType);

+ // generic_id_t can be used for either uid_t or gid_t.

+ typedef uid_t generic_id_t;

+ // Write a uid or gid mapping from |id| to |id| in |map_file|.

+ static bool WriteToIdMapFile(const char* map_file, generic_id_t id);

+ // Returns true if unprivileged namespaces of type |type| is supported

+ // (meaning that both CLONE_NEWUSER and type are are supported). |type| must

+ // be one of CLONE_NEWIPC, CLONE_NEWNET, CLONE_NEWNS, CLONE_NEWPID,

+ // CLONE_NEWUSER, or CLONE_NEWUTS. This relies on access to /proc, so it will

+ // not work from within a chroot.

jln (very slow on Chromium) 2015/01/27 00:06:44 Nite: maybe s/chroot/sandbox to be more generic?

rickyz (no longer on Chrome) 2015/01/27 01:08:03 Done.

+ static bool KernelSupportsUnprivilegedNamespace(int type);

+ private:

+ DISALLOW_IMPLICIT_CONSTRUCTORS(NamespaceUtils);

+};

+} // namespace sandbox

+#endif // SANDBOX_LINUX_SERVICES_NAMESPACE_UTILS_H_

« no previous file with comments | « sandbox/linux/services/credentials_unittest.cc ('k') | sandbox/linux/services/namespace_utils.cc » ('j') | sandbox/linux/services/namespace_utils.cc » ('J')