Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(2093)

Issues Search
    My Issues | Starred     Open | Closed | All

Side by Side Diff: components/nacl/loader/nacl_helper_linux.cc

Issue 1158793003: Enable one PID namespace per process for NaCl processes. (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master
Patch Set: Respond to comments. Created 5 years, 6 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View unified diff | Download patch
« no previous file with comments | « no previous file | components/nacl/loader/sandbox_linux/nacl_sandbox_linux.cc » ('j') | sandbox/linux/services/namespace_sandbox.h » ('J')
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
OLDNEW
1 // Copyright 2013 The Chromium Authors. All rights reserved. 1 // Copyright 2013 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be 2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file. 3 // found in the LICENSE file.
4 4
5 // A mini-zygote specifically for Native Client. 5 // A mini-zygote specifically for Native Client.
6 6
7 #include "components/nacl/loader/nacl_helper_linux.h" 7 #include "components/nacl/loader/nacl_helper_linux.h"
8 8
9 #include <errno.h> 9 #include <errno.h>
10 #include <fcntl.h> 10 #include <fcntl.h>
(...skipping 23 matching lines...) Expand all
34 #include "components/nacl/common/nacl_switches.h" 34 #include "components/nacl/common/nacl_switches.h"
35 #include "components/nacl/loader/nacl_listener.h" 35 #include "components/nacl/loader/nacl_listener.h"
36 #include "components/nacl/loader/nonsfi/nonsfi_listener.h" 36 #include "components/nacl/loader/nonsfi/nonsfi_listener.h"
37 #include "components/nacl/loader/sandbox_linux/nacl_sandbox_linux.h" 37 #include "components/nacl/loader/sandbox_linux/nacl_sandbox_linux.h"
38 #include "content/public/common/content_descriptors.h" 38 #include "content/public/common/content_descriptors.h"
39 #include "content/public/common/send_zygote_child_ping_linux.h" 39 #include "content/public/common/send_zygote_child_ping_linux.h"
40 #include "content/public/common/zygote_fork_delegate_linux.h" 40 #include "content/public/common/zygote_fork_delegate_linux.h"
41 #include "crypto/nss_util.h" 41 #include "crypto/nss_util.h"
42 #include "ipc/ipc_descriptors.h" 42 #include "ipc/ipc_descriptors.h"
43 #include "ipc/ipc_switches.h" 43 #include "ipc/ipc_switches.h"
44 #include "sandbox/linux/services/credentials.h"
44 #include "sandbox/linux/services/libc_urandom_override.h" 45 #include "sandbox/linux/services/libc_urandom_override.h"
46 #include "sandbox/linux/services/namespace_sandbox.h"
45 47
46 #if defined(OS_NACL_NONSFI) 48 #if defined(OS_NACL_NONSFI)
47 #include "native_client/src/public/nonsfi/irt_exception_handling.h" 49 #include "native_client/src/public/nonsfi/irt_exception_handling.h"
48 #else 50 #else
49 #include <link.h> 51 #include <link.h>
50 #include "components/nacl/loader/nonsfi/irt_exception_handling.h" 52 #include "components/nacl/loader/nonsfi/irt_exception_handling.h"
51 #endif 53 #endif
52 54
53 namespace { 55 namespace {
54 56
(...skipping 128 matching lines...) Expand 10 before | Expand all | Expand 10 after
183 return false; 185 return false;
184 } 186 }
185 187
186 if (content::ZygoteForkDelegate::kNumPassedFDs != child_fds.size()) { 188 if (content::ZygoteForkDelegate::kNumPassedFDs != child_fds.size()) {
187 LOG(ERROR) << "nacl_helper: unexpected number of fds, got " 189 LOG(ERROR) << "nacl_helper: unexpected number of fds, got "
188 << child_fds.size(); 190 << child_fds.size();
189 return false; 191 return false;
190 } 192 }
191 193
192 VLOG(1) << "nacl_helper: forking"; 194 VLOG(1) << "nacl_helper: forking";
193 pid_t child_pid = fork(); 195 pid_t child_pid;
196 #if !defined(OS_NACL_NONSFI)
197 if (sandbox::NamespaceSandbox::InNewUserNamespace()) {
198 // The NaCl runtime will install signal handlers for SIGINT, SIGTERM, etc.
199 // so we do not need to install termination signal handlers ourselves.
200 child_pid = sandbox::NamespaceSandbox::ForkInNewPidNamespace(
201 /*drop_capabilities_in_child=*/true);
202 } else
203 #endif
204 {
205 child_pid = sandbox::Credentials::ForkAndDropCapabilitiesInChild();
206 }
207
194 if (child_pid < 0) { 208 if (child_pid < 0) {
195 PLOG(ERROR) << "*** fork() failed."; 209 PLOG(ERROR) << "*** fork() failed.";
196 } 210 }
197 211
198 if (child_pid == 0) { 212 if (child_pid == 0) {
199 ChildNaClLoaderInit(child_fds.Pass(), 213 ChildNaClLoaderInit(child_fds.Pass(),
200 system_info, 214 system_info,
201 uses_nonsfi_mode, 215 uses_nonsfi_mode,
202 nacl_sandbox, 216 nacl_sandbox,
203 channel_id); 217 channel_id);
(...skipping 273 matching lines...) Expand 10 before | Expand all | Expand 10 after
477 // Now handle requests from the Zygote. 491 // Now handle requests from the Zygote.
478 while (true) { 492 while (true) {
479 bool request_handled = HandleZygoteRequest( 493 bool request_handled = HandleZygoteRequest(
480 kNaClZygoteDescriptor, system_info, nacl_sandbox.get()); 494 kNaClZygoteDescriptor, system_info, nacl_sandbox.get());
481 // Do not turn this into a CHECK() without thinking about robustness 495 // Do not turn this into a CHECK() without thinking about robustness
482 // against malicious IPC requests. 496 // against malicious IPC requests.
483 DCHECK(request_handled); 497 DCHECK(request_handled);
484 } 498 }
485 NOTREACHED(); 499 NOTREACHED();
486 } 500 }
OLDNEW
« no previous file with comments | « no previous file | components/nacl/loader/sandbox_linux/nacl_sandbox_linux.cc » ('j') | sandbox/linux/services/namespace_sandbox.h » ('J')

Powered by Google App Engine
This is Rietveld 408576698