File: broker_host.h

package info (click to toggle)
chromium 139.0.7258.127-2
  • links: PTS, VCS
  • area: main
  • in suites: forky, sid
  • size: 6,122,156 kB
  • sloc: cpp: 35,100,771; ansic: 7,163,530; javascript: 4,103,002; python: 1,436,920; asm: 946,517; xml: 746,709; pascal: 187,653; perl: 88,691; sh: 88,436; objc: 79,953; sql: 51,488; cs: 44,583; fortran: 24,137; makefile: 22,147; tcl: 15,277; php: 13,980; yacc: 8,984; ruby: 7,485; awk: 3,720; lisp: 3,096; lex: 1,327; ada: 727; jsp: 228; sed: 36
file content (86 lines) | stat: -rw-r--r-- 3,211 bytes parent folder | download | duplicates (7) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
 
// Copyright 2014 The Chromium Authors
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.

#ifndef SANDBOX_LINUX_SYSCALL_BROKER_BROKER_HOST_H_
#define SANDBOX_LINUX_SYSCALL_BROKER_BROKER_HOST_H_

#include <optional>

#include "base/containers/span.h"
#include "base/memory/raw_ref.h"
#include "sandbox/linux/syscall_broker/broker_channel.h"
#include "sandbox/linux/syscall_broker/broker_command.h"
#include "sandbox/linux/syscall_broker/broker_sandbox_config.h"

namespace sandbox {

namespace syscall_broker {

class BrokerSimpleMessage;

// The BrokerHost class should be embedded in a (presumably not sandboxed)
// process. It will honor IPC requests from a BrokerClient sent over
// |ipc_channel| according to |broker_permission_list|.
class BrokerHost {
 public:
  BrokerHost(const BrokerSandboxConfig& policy,
             BrokerChannel::EndPoint ipc_channel,
             pid_t sandboxed_process_pid);

  BrokerHost(const BrokerHost&) = delete;
  BrokerHost& operator=(const BrokerHost&) = delete;

  ~BrokerHost();

  // Receive system call requests and handle them forevermore.
  void LoopAndHandleRequests();

 private:
  [[nodiscard]] std::optional<std::string> RewritePathname(
      const char* pathname);
  [[nodiscard]] std::optional<std::pair<const char*, int>> GetPathAndFlags(
      BrokerSimpleMessage* message);

  void AccessFileForIPC(const char* requested_filename,
                        int mode,
                        BrokerSimpleMessage* reply);
  void MkdirFileForIPC(const char* requested_filename,
                       int mode,
                       BrokerSimpleMessage* reply);
  void OpenFileForIPC(const char* requested_filename,
                      int flags,
                      BrokerSimpleMessage* reply,
                      base::ScopedFD* opened_file);
  void RenameFileForIPC(const char* old_filename,
                        const char* new_filename,
                        BrokerSimpleMessage* reply);
  void ReadlinkFileForIPC(const char* filename, BrokerSimpleMessage* reply);
  void RmdirFileForIPC(const char* requested_filename,
                       BrokerSimpleMessage* reply);
  void StatFileForIPC(BrokerCommand command_type,
                      const char* requested_filename,
                      bool follow_links,
                      BrokerSimpleMessage* reply);
  void UnlinkFileForIPC(const char* requested_filename,
                        BrokerSimpleMessage* message);
  void InotifyAddWatchForIPC(base::ScopedFD inotify_fd,
                             const char* requested_filename,
                             uint32_t mask,
                             BrokerSimpleMessage* message);

  bool HandleRemoteCommand(BrokerSimpleMessage* message,
                           base::span<base::ScopedFD> recv_fds,
                           BrokerSimpleMessage* reply,
                           base::ScopedFD* opened_file);

  const raw_ref<const BrokerSandboxConfig> policy_;
  const BrokerChannel::EndPoint ipc_channel_;
  const pid_t sandboxed_process_pid_;
};

}  // namespace syscall_broker

}  // namespace sandbox

#endif  //  SANDBOX_LINUX_SYSCALL_BROKER_BROKER_HOST_H_