base/process/launch.cc - Issue 197213015: [Linux] Use PR_SET_NO_NEW_PRIVS by default in base/process/launch.h.

Side by Side Diff

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Side by Side Diff: base/process/launch.cc

Issue 197213015: [Linux] Use PR_SET_NO_NEW_PRIVS by default in base/process/launch.h. (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src

Patch Set: Add function Created 6 years, 8 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View unified diff | Download patch | Annotate | Revision Log

OLD	NEW
1 // Copyright (c) 2013 The Chromium Authors. All rights reserved.	1 // Copyright (c) 2013 The Chromium Authors. All rights reserved.

2 // Use of this source code is governed by a BSD-style license that can be	2 // Use of this source code is governed by a BSD-style license that can be

3 // found in the LICENSE file.	3 // found in the LICENSE file.

4	4

5 #include "base/process/launch.h"	5 #include "base/process/launch.h"

6	6

7 namespace base {	7 namespace base {

8	8

9 LaunchOptions::LaunchOptions()	9 LaunchOptions::LaunchOptions()

10 : wait(false),	10 : wait(false),

11 #if defined(OS_WIN)	11 #if defined(OS_WIN)

12 start_hidden(false),	12 start_hidden(false),

13 handles_to_inherit(NULL),	13 handles_to_inherit(NULL),

14 inherit_handles(false),	14 inherit_handles(false),

15 as_user(NULL),	15 as_user(NULL),

16 empty_desktop_name(false),	16 empty_desktop_name(false),

17 job_handle(NULL),	17 job_handle(NULL),

18 stdin_handle(NULL),	18 stdin_handle(NULL),

19 stdout_handle(NULL),	19 stdout_handle(NULL),

20 stderr_handle(NULL),	20 stderr_handle(NULL),

21 force_breakaway_from_job_(false)	21 force_breakaway_from_job_(false)

22 #else	22 #else

23 fds_to_remap(NULL),	23 fds_to_remap(NULL),

24 maximize_rlimits(NULL),	24 maximize_rlimits(NULL),

25 new_process_group(false)	25 new_process_group(false)

26 #if defined(OS_LINUX)	26 #if defined(OS_LINUX)

27 , clone_flags(0)	27 , clone_flags(0)

	28 , allow_new_privs(false)

28 #endif // OS_LINUX	29 #endif // OS_LINUX

29 #if defined(OS_CHROMEOS)	30 #if defined(OS_CHROMEOS)

30 , ctrl_terminal_fd(-1)	31 , ctrl_terminal_fd(-1)

31 #endif // OS_CHROMEOS	32 #endif // OS_CHROMEOS

32 #endif // !defined(OS_WIN)	33 #endif // !defined(OS_WIN)

33 {	34 {

34 }	35 }

35	36

36 LaunchOptions::~LaunchOptions() {	37 LaunchOptions::~LaunchOptions() {

37 }	38 }

38	39

	40 LaunchOptions LaunchOptionsForTest() {

	41 LaunchOptions options;

	42 #if defined(OS_LINUX)

	43 // To prevent accidental privilege sharing to an untrusted child, processes

	44 // are started with PR_SET_NO_NEW_PRIVS. Do not set that here, since this

	45 // new child will be used for testing only.

	46 options.allow_new_privs = true;

	47 #endif

	48 return options;

	49 }

	50

39 } // namespace base	51 } // namespace base

OLD	NEW

« no previous file with comments | « base/process/launch.h ('k') | base/process/launch_posix.cc » ('j') | no next file with comments »