Searched refs:bpf_dsl (Results 1 - 25 of 30) sorted by relevance

12

/external/libchrome/sandbox/linux/seccomp-bpf-helpers/
H A Dsyscall_parameters_restrictions.h11 #include "sandbox/linux/bpf_dsl/bpf_dsl_forward.h"
16 // bpf_dsl::ResultExpr suitable to restrict certain system call parameters.
24 SANDBOX_EXPORT bpf_dsl::ResultExpr RestrictCloneToThreadsAndEPERMFork();
28 SANDBOX_EXPORT bpf_dsl::ResultExpr RestrictPrctl();
32 SANDBOX_EXPORT bpf_dsl::ResultExpr RestrictIoctl();
38 SANDBOX_EXPORT bpf_dsl::ResultExpr RestrictMmapFlags();
42 SANDBOX_EXPORT bpf_dsl::ResultExpr RestrictMprotectFlags();
49 SANDBOX_EXPORT bpf_dsl::ResultExpr RestrictFcntlCommands();
54 SANDBOX_EXPORT bpf_dsl::ResultExpr RestrictSocketcallCommand();
60 SANDBOX_EXPORT bpf_dsl
[all...]
H A Dbaseline_policy.h11 #include "sandbox/linux/bpf_dsl/bpf_dsl_forward.h"
12 #include "sandbox/linux/bpf_dsl/policy.h"
28 class SANDBOX_EXPORT BaselinePolicy : public bpf_dsl::Policy {
36 bpf_dsl::ResultExpr EvaluateSyscall(int system_call_number) const override;
37 bpf_dsl::ResultExpr InvalidSyscall() const override;
H A Dsigsys_handlers.h11 #include "sandbox/linux/bpf_dsl/bpf_dsl_forward.h"
62 // Variants of the above functions for use with bpf_dsl.
63 SANDBOX_EXPORT bpf_dsl::ResultExpr CrashSIGSYS();
64 SANDBOX_EXPORT bpf_dsl::ResultExpr CrashSIGSYSClone();
65 SANDBOX_EXPORT bpf_dsl::ResultExpr CrashSIGSYSPrctl();
66 SANDBOX_EXPORT bpf_dsl::ResultExpr CrashSIGSYSIoctl();
67 SANDBOX_EXPORT bpf_dsl::ResultExpr CrashSIGSYSKill();
68 SANDBOX_EXPORT bpf_dsl::ResultExpr CrashSIGSYSFutex();
69 SANDBOX_EXPORT bpf_dsl::ResultExpr RewriteSchedSIGSYS();
H A Dsigsys_handlers.cc17 #include "sandbox/linux/bpf_dsl/bpf_dsl.h"
247 bpf_dsl::ResultExpr CrashSIGSYS() {
248 return bpf_dsl::Trap(CrashSIGSYS_Handler, NULL);
251 bpf_dsl::ResultExpr CrashSIGSYSClone() {
252 return bpf_dsl::Trap(SIGSYSCloneFailure, NULL);
255 bpf_dsl::ResultExpr CrashSIGSYSPrctl() {
256 return bpf_dsl::Trap(SIGSYSPrctlFailure, NULL);
259 bpf_dsl::ResultExpr CrashSIGSYSIoctl() {
260 return bpf_dsl
[all...]
H A Dsyscall_parameters_restrictions_unittests.cc21 #include "sandbox/linux/bpf_dsl/bpf_dsl.h"
22 #include "sandbox/linux/bpf_dsl/policy.h"
43 using sandbox::bpf_dsl::Allow;
44 using sandbox::bpf_dsl::ResultExpr;
46 class RestrictClockIdPolicy : public bpf_dsl::Policy {
114 class RestrictSchedPolicy : public bpf_dsl::Policy {
182 class RestrictPrlimit64Policy : public bpf_dsl::Policy {
211 class RestrictGetrusagePolicy : public bpf_dsl::Policy {
H A Dsyscall_parameters_restrictions.cc26 #include "sandbox/linux/bpf_dsl/bpf_dsl.h"
27 #include "sandbox/linux/bpf_dsl/seccomp_macros.h"
113 using sandbox::bpf_dsl::Allow;
114 using sandbox::bpf_dsl::Arg;
115 using sandbox::bpf_dsl::BoolExpr;
116 using sandbox::bpf_dsl::Error;
117 using sandbox::bpf_dsl::If;
118 using sandbox::bpf_dsl::ResultExpr;
H A Dbaseline_policy.cc16 #include "sandbox/linux/bpf_dsl/bpf_dsl.h"
31 using sandbox::bpf_dsl::Allow;
32 using sandbox::bpf_dsl::Arg;
33 using sandbox::bpf_dsl::Error;
34 using sandbox::bpf_dsl::If;
35 using sandbox::bpf_dsl::ResultExpr;
/external/libchrome/sandbox/linux/bpf_dsl/
H A Dpolicy.cc5 #include "sandbox/linux/bpf_dsl/policy.h"
9 #include "sandbox/linux/bpf_dsl/bpf_dsl.h"
12 namespace bpf_dsl { namespace in namespace:sandbox
18 } // namespace bpf_dsl
H A Dbpf_dsl_forward.h13 namespace bpf_dsl { namespace in namespace:sandbox
16 // types defined in bpf_dsl.h. It's intended for use in user headers
17 // that need to reference bpf_dsl types, but don't require definitions.
35 } // namespace bpf_dsl
40 shared_ptr<const sandbox::bpf_dsl::internal::BoolExprImpl>;
42 shared_ptr<const sandbox::bpf_dsl::internal::ResultExprImpl>;
H A Ddump_bpf.h7 #include "sandbox/linux/bpf_dsl/codegen.h"
11 namespace bpf_dsl { namespace in namespace:sandbox
23 } // namespace bpf_dsl
H A Derrorcode.h12 namespace bpf_dsl { namespace in namespace:sandbox
34 } // namespace bpf_dsl
H A Dpolicy.h9 #include "sandbox/linux/bpf_dsl/bpf_dsl_forward.h"
13 namespace bpf_dsl { namespace in namespace:sandbox
34 } // namespace bpf_dsl
H A Dverifier.h20 namespace bpf_dsl { namespace in namespace:sandbox
42 } // namespace bpf_dsl
H A Dtrap_registry.h23 namespace bpf_dsl { namespace in namespace:sandbox
70 } // namespace bpf_dsl
H A Dbpf_dsl_impl.h11 #include "sandbox/linux/bpf_dsl/codegen.h"
15 namespace bpf_dsl { namespace in namespace:sandbox
65 } // namespace bpf_dsl
H A Dpolicy_compiler.h14 #include "sandbox/linux/bpf_dsl/bpf_dsl_forward.h"
15 #include "sandbox/linux/bpf_dsl/codegen.h"
16 #include "sandbox/linux/bpf_dsl/trap_registry.h"
20 namespace bpf_dsl { namespace in namespace:sandbox
23 // PolicyCompiler implements the bpf_dsl compiler, allowing users to
24 // transform bpf_dsl policies into BPF programs to be executed by the
28 using PanicFunc = bpf_dsl::ResultExpr (*)(const char* error);
51 // Functions below are meant for use within bpf_dsl itself.
150 } // namespace bpf_dsl
H A Dbpf_dsl.h16 #include "sandbox/linux/bpf_dsl/bpf_dsl_forward.h"
17 #include "sandbox/linux/bpf_dsl/cons.h"
18 #include "sandbox/linux/bpf_dsl/trap_registry.h"
21 // The sandbox::bpf_dsl namespace provides a domain-specific language
30 // #include "sandbox/linux/bpf_dsl/bpf_dsl.h"
32 // using namespace sandbox::bpf_dsl;
77 namespace bpf_dsl { namespace in namespace:sandbox
256 // BoolExpr is defined in bpf_dsl, since it's merely a typedef for
259 using bpf_dsl
[all...]
H A Dbpf_dsl.cc5 #include "sandbox/linux/bpf_dsl/bpf_dsl.h"
14 #include "sandbox/linux/bpf_dsl/bpf_dsl_impl.h"
15 #include "sandbox/linux/bpf_dsl/errorcode.h"
16 #include "sandbox/linux/bpf_dsl/policy_compiler.h"
20 namespace bpf_dsl { namespace in namespace:sandbox
337 } // namespace bpf_dsl
341 template class shared_ptr<const sandbox::bpf_dsl::internal::BoolExprImpl>;
342 template class shared_ptr<const sandbox::bpf_dsl::internal::ResultExprImpl>;
/external/libchrome/sandbox/linux/seccomp-bpf/
H A Dsandbox_bpf.h14 #include "sandbox/linux/bpf_dsl/codegen.h"
19 namespace bpf_dsl { namespace in namespace:sandbox
24 // bpf_dsl::Policy object to the current process.
36 explicit SandboxBPF(bpf_dsl::Policy* policy);
108 std::unique_ptr<bpf_dsl::Policy> policy_;
H A Dbpf_tester_compatibility_delegate.h32 std::unique_ptr<bpf_dsl::Policy> GetSandboxBPFPolicy() override {
37 return std::unique_ptr<bpf_dsl::Policy>(new Policy(&aux_));
H A Dbpf_tests_unittest.cc18 #include "sandbox/linux/bpf_dsl/bpf_dsl.h"
19 #include "sandbox/linux/bpf_dsl/policy.h"
26 using sandbox::bpf_dsl::Allow;
27 using sandbox::bpf_dsl::Error;
28 using sandbox::bpf_dsl::ResultExpr;
45 class EmptyClassTakingPolicy : public bpf_dsl::Policy {
86 class EnosysPtracePolicy : public bpf_dsl::Policy {
117 std::unique_ptr<bpf_dsl::Policy> GetSandboxBPFPolicy() override {
118 return std::unique_ptr<bpf_dsl
[all...]
H A Dtrap.h14 #include "sandbox/linux/bpf_dsl/trap_registry.h"
28 class SANDBOX_EXPORT Trap : public bpf_dsl::TrapRegistry {
36 static bpf_dsl::TrapRegistry* Registry();
H A Dsandbox_bpf.cc19 #include "sandbox/linux/bpf_dsl/bpf_dsl.h"
20 #include "sandbox/linux/bpf_dsl/codegen.h"
21 #include "sandbox/linux/bpf_dsl/policy.h"
22 #include "sandbox/linux/bpf_dsl/policy_compiler.h"
23 #include "sandbox/linux/bpf_dsl/seccomp_macros.h"
24 #include "sandbox/linux/bpf_dsl/syscall_set.h"
117 bpf_dsl::ResultExpr SandboxPanic(const char* error) {
118 return bpf_dsl::Trap(SandboxPanicTrap, error);
123 SandboxBPF::SandboxBPF(bpf_dsl
[all...]
H A Dbpf_tests.h109 std::unique_ptr<bpf_dsl::Policy> GetSandboxBPFPolicy() override {
110 return std::unique_ptr<bpf_dsl::Policy>(new PolicyClass());
H A Dsyscall_unittest.cc22 #include "sandbox/linux/bpf_dsl/bpf_dsl.h"
23 #include "sandbox/linux/bpf_dsl/policy.h"
29 using sandbox::bpf_dsl::Allow;
30 using sandbox::bpf_dsl::ResultExpr;
31 using sandbox::bpf_dsl::Trap;
111 class CopyAllArgsOnUnamePolicy : public bpf_dsl::Policy {

Completed in 310 milliseconds

12