| /external/libchrome/sandbox/linux/ |
| D | sandbox_linux.gypi | 126 'bpf_dsl/bpf_dsl.cc',
127 'bpf_dsl/bpf_dsl.h',
128 'bpf_dsl/bpf_dsl_forward.h',
129 'bpf_dsl/bpf_dsl_impl.h',
130 'bpf_dsl/codegen.cc',
131 'bpf_dsl/codegen.h',
132 'bpf_dsl/cons.h',
133 'bpf_dsl/errorcode.h',
134 'bpf_dsl/linux_syscall_ranges.h',
135 'bpf_dsl/policy.cc',
[all …]
|
| D | BUILD.gn | 130 "bpf_dsl/bpf_dsl_unittest.cc",
131 "bpf_dsl/codegen_unittest.cc",
132 "bpf_dsl/cons_unittest.cc",
133 "bpf_dsl/dump_bpf.cc",
134 "bpf_dsl/dump_bpf.h",
135 "bpf_dsl/syscall_set_unittest.cc",
136 "bpf_dsl/test_trap_registry.cc",
137 "bpf_dsl/test_trap_registry.h",
138 "bpf_dsl/test_trap_registry_unittest.cc",
139 "bpf_dsl/verifier.cc",
[all …]
|
| D | sandbox_linux_test_sources.gypi | 43 'bpf_dsl/bpf_dsl_unittest.cc',
44 'bpf_dsl/codegen_unittest.cc',
45 'bpf_dsl/cons_unittest.cc',
46 'bpf_dsl/dump_bpf.cc',
47 'bpf_dsl/dump_bpf.h',
48 'bpf_dsl/syscall_set_unittest.cc',
49 'bpf_dsl/test_trap_registry.cc',
50 'bpf_dsl/test_trap_registry.h',
51 'bpf_dsl/test_trap_registry_unittest.cc',
52 'bpf_dsl/verifier.cc',
[all …]
|
| D | sandbox_linux_nacl_nonsfi.gyp | 32 'bpf_dsl/bpf_dsl.cc',
33 'bpf_dsl/codegen.cc',
34 'bpf_dsl/policy.cc',
35 'bpf_dsl/policy_compiler.cc',
36 'bpf_dsl/syscall_set.cc',
|
| /external/libchrome/sandbox/linux/seccomp-bpf-helpers/ |
| D | syscall_parameters_restrictions.h | 24 SANDBOX_EXPORT bpf_dsl::ResultExpr RestrictCloneToThreadsAndEPERMFork();
28 SANDBOX_EXPORT bpf_dsl::ResultExpr RestrictPrctl();
32 SANDBOX_EXPORT bpf_dsl::ResultExpr RestrictIoctl();
38 SANDBOX_EXPORT bpf_dsl::ResultExpr RestrictMmapFlags();
42 SANDBOX_EXPORT bpf_dsl::ResultExpr RestrictMprotectFlags();
49 SANDBOX_EXPORT bpf_dsl::ResultExpr RestrictFcntlCommands();
54 SANDBOX_EXPORT bpf_dsl::ResultExpr RestrictSocketcallCommand();
60 SANDBOX_EXPORT bpf_dsl::ResultExpr RestrictKillTarget(pid_t target_pid,
64 SANDBOX_EXPORT bpf_dsl::ResultExpr RestrictFutex();
68 SANDBOX_EXPORT bpf_dsl::ResultExpr RestrictGetSetpriority(pid_t target_pid);
[all …]
|
| D | sigsys_handlers.cc | 247 bpf_dsl::ResultExpr CrashSIGSYS() { in CrashSIGSYS()
248 return bpf_dsl::Trap(CrashSIGSYS_Handler, NULL); in CrashSIGSYS()
251 bpf_dsl::ResultExpr CrashSIGSYSClone() { in CrashSIGSYSClone()
252 return bpf_dsl::Trap(SIGSYSCloneFailure, NULL); in CrashSIGSYSClone()
255 bpf_dsl::ResultExpr CrashSIGSYSPrctl() { in CrashSIGSYSPrctl()
256 return bpf_dsl::Trap(SIGSYSPrctlFailure, NULL); in CrashSIGSYSPrctl()
259 bpf_dsl::ResultExpr CrashSIGSYSIoctl() { in CrashSIGSYSIoctl()
260 return bpf_dsl::Trap(SIGSYSIoctlFailure, NULL); in CrashSIGSYSIoctl()
263 bpf_dsl::ResultExpr CrashSIGSYSKill() { in CrashSIGSYSKill()
264 return bpf_dsl::Trap(SIGSYSKillFailure, NULL); in CrashSIGSYSKill()
[all …]
|
| D | sigsys_handlers.h | 63 SANDBOX_EXPORT bpf_dsl::ResultExpr CrashSIGSYS();
64 SANDBOX_EXPORT bpf_dsl::ResultExpr CrashSIGSYSClone();
65 SANDBOX_EXPORT bpf_dsl::ResultExpr CrashSIGSYSPrctl();
66 SANDBOX_EXPORT bpf_dsl::ResultExpr CrashSIGSYSIoctl();
67 SANDBOX_EXPORT bpf_dsl::ResultExpr CrashSIGSYSKill();
68 SANDBOX_EXPORT bpf_dsl::ResultExpr CrashSIGSYSFutex();
69 SANDBOX_EXPORT bpf_dsl::ResultExpr RewriteSchedSIGSYS();
|
| D | syscall_parameters_restrictions_unittests.cc | 43 using sandbox::bpf_dsl::Allow;
44 using sandbox::bpf_dsl::ResultExpr;
46 class RestrictClockIdPolicy : public bpf_dsl::Policy {
114 class RestrictSchedPolicy : public bpf_dsl::Policy {
182 class RestrictPrlimit64Policy : public bpf_dsl::Policy {
211 class RestrictGetrusagePolicy : public bpf_dsl::Policy {
|
| D | baseline_policy.h | 28 class SANDBOX_EXPORT BaselinePolicy : public bpf_dsl::Policy {
36 bpf_dsl::ResultExpr EvaluateSyscall(int system_call_number) const override;
37 bpf_dsl::ResultExpr InvalidSyscall() const override;
|
| D | syscall_parameters_restrictions.cc | 113 using sandbox::bpf_dsl::Allow;
114 using sandbox::bpf_dsl::Arg;
115 using sandbox::bpf_dsl::BoolExpr;
116 using sandbox::bpf_dsl::Error;
117 using sandbox::bpf_dsl::If;
118 using sandbox::bpf_dsl::ResultExpr;
|
| D | baseline_policy.cc | 31 using sandbox::bpf_dsl::Allow;
32 using sandbox::bpf_dsl::Arg;
33 using sandbox::bpf_dsl::Error;
34 using sandbox::bpf_dsl::If;
35 using sandbox::bpf_dsl::ResultExpr;
|
| /external/libchrome/sandbox/linux/seccomp-bpf/ |
| D | bpf_tests_unittest.cc | 26 using sandbox::bpf_dsl::Allow;
27 using sandbox::bpf_dsl::Error;
28 using sandbox::bpf_dsl::ResultExpr;
45 class EmptyClassTakingPolicy : public bpf_dsl::Policy {
86 class EnosysPtracePolicy : public bpf_dsl::Policy {
117 std::unique_ptr<bpf_dsl::Policy> GetSandboxBPFPolicy() override { in GetSandboxBPFPolicy()
118 return std::unique_ptr<bpf_dsl::Policy>(new EnosysPtracePolicy()); in GetSandboxBPFPolicy()
|
| D | sandbox_bpf.cc | 117 bpf_dsl::ResultExpr SandboxPanic(const char* error) { in SandboxPanic()
118 return bpf_dsl::Trap(SandboxPanicTrap, error); in SandboxPanic()
123 SandboxBPF::SandboxBPF(bpf_dsl::Policy* policy) in SandboxBPF()
208 return bpf_dsl::PolicyCompiler::IsRequiredForUnsafeTrap(sysno); in IsRequiredForUnsafeTrap()
223 bpf_dsl::PolicyCompiler compiler(policy_.get(), Trap::Registry()); in AssembleFilter()
|
| D | sandbox_bpf.h | 19 namespace bpf_dsl {
36 explicit SandboxBPF(bpf_dsl::Policy* policy);
108 std::unique_ptr<bpf_dsl::Policy> policy_;
|
| D | syscall_unittest.cc | 29 using sandbox::bpf_dsl::Allow;
30 using sandbox::bpf_dsl::ResultExpr;
31 using sandbox::bpf_dsl::Trap;
111 class CopyAllArgsOnUnamePolicy : public bpf_dsl::Policy {
|
| D | bpf_tester_compatibility_delegate.h | 32 std::unique_ptr<bpf_dsl::Policy> GetSandboxBPFPolicy() override { in GetSandboxBPFPolicy()
37 return std::unique_ptr<bpf_dsl::Policy>(new Policy(&aux_)); in GetSandboxBPFPolicy()
|
| D | trap.h | 28 class SANDBOX_EXPORT Trap : public bpf_dsl::TrapRegistry {
36 static bpf_dsl::TrapRegistry* Registry();
|
| D | bpf_tests.h | 109 std::unique_ptr<bpf_dsl::Policy> GetSandboxBPFPolicy() override { in GetSandboxBPFPolicy()
110 return std::unique_ptr<bpf_dsl::Policy>(new PolicyClass()); in GetSandboxBPFPolicy()
|
| D | DEPS | 2 "+sandbox/linux/bpf_dsl",
|
| /external/libchrome/sandbox/linux/bpf_dsl/ |
| D | bpf_dsl_forward.h | 13 namespace bpf_dsl {
40 shared_ptr<const sandbox::bpf_dsl::internal::BoolExprImpl>;
42 shared_ptr<const sandbox::bpf_dsl::internal::ResultExprImpl>;
|
| D | bpf_dsl.h | 77 namespace bpf_dsl {
259 using bpf_dsl::Not;
260 using bpf_dsl::AllOf;
261 using bpf_dsl::AnyOf;
|
| D | policy_compiler.h | 20 namespace bpf_dsl {
28 using PanicFunc = bpf_dsl::ResultExpr (*)(const char* error);
|
| D | policy.cc | 12 namespace bpf_dsl { namespace
|
| D | errorcode.h | 12 namespace bpf_dsl {
|
| /external/libchrome/ |
| D | SConstruct | 299 linux/bpf_dsl/bpf_dsl.cc
300 linux/bpf_dsl/codegen.cc
301 linux/bpf_dsl/dump_bpf.cc
302 linux/bpf_dsl/policy.cc
303 linux/bpf_dsl/policy_compiler.cc
304 linux/bpf_dsl/syscall_set.cc
305 linux/bpf_dsl/verifier.cc
|