mirror of https://github.com/google/sandboxed-api.git synced 2024-03-22 13:11:30 +08:00

History

Kevin Hamacher 77ad64ac30 Use high FD numbers in the forkserver to avoid collision with FDs mapped by the user

PiperOrigin-RevId: 242106285
Change-Id: I0f4bd130f8e66e6b47ad1d7311e0fff519aa9e90

2019-04-05 04:51:41 -07:00

docs

Formatting fixes and include file hygiene.

2019-03-26 07:54:21 -07:00

examples

Use a longer string in the CRC4 buffer overflow example.

2019-03-26 07:28:15 -07:00

testcases

Formatting fixes and include file hygiene.

2019-03-26 07:54:21 -07:00

unwind

Formatting fixes and include file hygiene.

2019-03-26 07:54:21 -07:00

util

Formatting fixes and include file hygiene.

2019-03-26 07:54:21 -07:00

bpfdisassembler.cc

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

bpfdisassembler.h

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

buffer_test.cc

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

buffer.cc

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

buffer.h

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

BUILD.bazel

Rename deathrattle_fatalmsg proto

2019-03-20 05:19:55 -07:00

client.cc

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

client.h

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

comms_test.cc

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

comms_test.proto

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

comms.cc

Formatting fixes and include file hygiene.

2019-03-26 07:54:21 -07:00

comms.h

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

executor.cc

Improve internal<->external code transforms

2019-03-19 05:51:53 -07:00

executor.h

Formatting fixes and include file hygiene.

2019-03-26 07:54:21 -07:00

forkingclient.cc

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

forkingclient.h

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

forkserver_test.cc

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

forkserver.cc

Use high FD numbers in the forkserver to avoid collision with FDs mapped by the user

2019-04-05 04:51:41 -07:00

forkserver.h

Formatting fixes and include file hygiene.

2019-03-26 07:54:21 -07:00

forkserver.proto

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

global_forkclient.cc

Use high FD numbers in the forkserver to avoid collision with FDs mapped by the user

2019-04-05 04:51:41 -07:00

global_forkclient.h

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

ipc_test.cc

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

ipc.cc

Formatting fixes.

2019-03-19 03:41:32 -07:00

ipc.h

Formatting fixes.

2019-03-19 03:41:32 -07:00

limits_test.cc

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

limits.h

Formatting fixes.

2019-03-19 03:41:32 -07:00

logserver.cc

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

logserver.h

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

logserver.proto

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

logsink.cc

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

logsink.h

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

monitor.cc

Formatting fixes and include file hygiene.

2019-03-26 07:54:21 -07:00

monitor.h

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

mounts_test.cc

Formatting fixes and include file hygiene.

2019-03-26 07:54:21 -07:00

mounts.cc

mounts: Validate interpreter as early as possible

2019-03-29 07:07:55 -07:00

mounts.h

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

mounttree.proto

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

namespace_test.cc

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

namespace.cc

Formatting fixes and include file hygiene.

2019-03-26 07:54:21 -07:00

namespace.h

Formatting fixes and include file hygiene.

2019-03-26 07:54:21 -07:00

network_proxy_client.cc

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

network_proxy_client.h

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

network_proxy_server.cc

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

network_proxy_server.h

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

notify_test.cc

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

notify.h

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

policy_test.cc

Formatting fixes and include file hygiene.

2019-03-26 07:54:21 -07:00

policy.cc

Improve internal<->external code transforms

2019-03-19 05:51:53 -07:00

policy.h

Rename deathrattle_fatalmsg proto

2019-03-20 05:19:55 -07:00

policybuilder_test.cc

Formatting fixes and include file hygiene.

2019-03-26 07:54:21 -07:00

policybuilder.cc

Allow TCMalloc to call madvise with MADV_NOHUGEPAGE

2019-03-27 07:40:57 -07:00

policybuilder.h

Formatting fixes and include file hygiene.

2019-03-26 07:54:21 -07:00

README.md

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

regs.cc

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

regs.h

Rename deathrattle_fatalmsg proto

2019-03-20 05:19:55 -07:00

result.cc

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

result.h

Formatting fixes and include file hygiene.

2019-03-26 07:54:21 -07:00

sandbox2_test.cc

Formatting fixes and include file hygiene.

2019-03-26 07:54:21 -07:00

sandbox2.cc

Formatting fixes.

2019-03-19 03:41:32 -07:00

sandbox2.h

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

sanitizer_test.cc

Formatting fixes and include file hygiene.

2019-03-26 07:54:21 -07:00

sanitizer.cc

Formatting fixes and include file hygiene.

2019-03-26 07:54:21 -07:00

sanitizer.h

Formatting fixes and include file hygiene.

2019-03-26 07:54:21 -07:00

stack-trace_test.cc

Formatting fixes and include file hygiene.

2019-03-26 07:54:21 -07:00

stack-trace.cc

Formatting fixes and include file hygiene.

2019-03-26 07:54:21 -07:00

stack-trace.h

Formatting fixes and include file hygiene.

2019-03-26 07:54:21 -07:00

syscall_defs.cc

Formatting fixes and include file hygiene.

2019-03-26 07:54:21 -07:00

syscall_defs.h

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

syscall_test.cc

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

syscall.cc

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

syscall.h

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

testing.cc

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

testing.h

Sandboxed API OSS release.

2019-03-18 19:00:48 +01:00

util_test.cc

Formatting fixes and include file hygiene.

2019-03-26 07:54:21 -07:00

util.cc

Formatting fixes and include file hygiene.

2019-03-26 07:54:21 -07:00

util.h

Formatting fixes and include file hygiene.

2019-03-26 07:54:21 -07:00

violation.proto

Disable "mini" debug format support in libunwind to avoid additional library dependency

2019-03-20 08:03:08 -07:00

README.md

Sandbox2

Sandbox2 is a C++ security sandbox for Linux which can be used to run untrusted programs or portions of programs in confined environments. The idea is that the runtime environment is so restricted that security bugs such as buffer overflows in the protected region cause no harm.

Who is it for?

Sandbox2 is aimed to sandbox C/C++ code or whole binaries in production.

See the sandboxing options overview page to make sure this is the type of sandboxing you are looking for.

How does it work?

Read our How it works page to learn everything about this technology.