Linux: SUID sandbox support
* Make processes dumpable when they crash.
* Find crashing processes by searching for a socket inode, rather
than relying on SCM_CREDENTIALS. The kernel doesn't translate PIDs
between PID namespaces with SCM_CREDENTIALS, so we can't use the
PID there.
* Use a command line flag to the renderer to enable crash dumping.
Previously it tried to access the user's home directory for this
information.
* Search for a sandbox helper binary and, if found, use it.
* Include the source for a sandbox helper binary. It's currently not
built by default.
http://codereview.chromium.org/149230
R=evan,markus
BUG=8081
git-svn-id: svn://svn.chromium.org/chrome/trunk/src@20110 0039d316-1c4b-4281-b951-d872f2087c98
Showing
- breakpad/linux/exception_handler.cc 3 additions, 0 deletionsbreakpad/linux/exception_handler.cc
- build/all.gyp 2 additions, 1 deletionbuild/all.gyp
- chrome/app/breakpad_linux.cc 10 additions, 18 deletionschrome/app/breakpad_linux.cc
- chrome/browser/renderer_host/browser_render_process_host.cc 6 additions, 0 deletionschrome/browser/renderer_host/browser_render_process_host.cc
- chrome/browser/renderer_host/render_crash_handler_host_linux.cc 142 additions, 3 deletions.../browser/renderer_host/render_crash_handler_host_linux.cc
- chrome/browser/zygote_host_linux.cc 29 additions, 0 deletionschrome/browser/zygote_host_linux.cc
- chrome/browser/zygote_main_linux.cc 15 additions, 1 deletionchrome/browser/zygote_main_linux.cc
- chrome/common/chrome_switches.cc 5 additions, 0 deletionschrome/common/chrome_switches.cc
- chrome/common/chrome_switches.h 2 additions, 0 deletionschrome/common/chrome_switches.h
- sandbox/linux/suid/sandbox.cc 224 additions, 0 deletionssandbox/linux/suid/sandbox.cc
- sandbox/sandbox.gyp 11 additions, 0 deletionssandbox/sandbox.gyp
Loading
Please register or sign in to comment