Header file for sandbox.c.
More...
#include "orconfig.h"
#include "lib/cc/torint.h"
Go to the source code of this file.
Header file for sandbox.c.
Definition in file sandbox.h.
◆ sandbox_intern_string
#define sandbox_intern_string |
( |
|
s | ) |
(s) |
◆ sandbox_interned_string_is_missing
#define sandbox_interned_string_is_missing |
( |
|
s | ) |
(false) |
◆ SYS_SECCOMP
Used by SIGSYS signal handler to check if the signal was issued due to a seccomp2 filter violation.
Definition at line 24 of file sandbox.h.
◆ sandbox_cfg_t
Typedef to structure used to manage a sandbox configuration.
Definition at line 35 of file sandbox.h.
◆ sandbox_cfg_allow_chmod_filename()
int sandbox_cfg_allow_chmod_filename |
( |
sandbox_cfg_t ** |
cfg, |
|
|
char * |
file |
|
) |
| |
◆ sandbox_cfg_allow_chown_filename()
int sandbox_cfg_allow_chown_filename |
( |
sandbox_cfg_t ** |
cfg, |
|
|
char * |
file |
|
) |
| |
◆ sandbox_cfg_allow_open_filename()
int sandbox_cfg_allow_open_filename |
( |
sandbox_cfg_t ** |
cfg, |
|
|
char * |
file |
|
) |
| |
Function used to add a open allowed filename to a supplied configuration. The (char*) specifies the path to the allowed file; we take ownership of the pointer.
Definition at line 2299 of file sandbox.c.
◆ sandbox_cfg_allow_openat_filename()
int sandbox_cfg_allow_openat_filename |
( |
sandbox_cfg_t ** |
cfg, |
|
|
char * |
file |
|
) |
| |
Function used to add a openat allowed filename to a supplied configuration. The (char*) specifies the path to the allowed file; we steal the pointer to that file.
Definition at line 2306 of file sandbox.c.
◆ sandbox_cfg_allow_opendir_dirname()
int sandbox_cfg_allow_opendir_dirname |
( |
sandbox_cfg_t ** |
cfg, |
|
|
char * |
dir |
|
) |
| |
Function used to add a opendir allowed filename to a supplied configuration. The (char*) specifies the path to the allowed dir; we steal the pointer to that dir.
Definition at line 2313 of file sandbox.c.
◆ sandbox_cfg_allow_rename()
int sandbox_cfg_allow_rename |
( |
sandbox_cfg_t ** |
cfg, |
|
|
char * |
file1, |
|
|
char * |
file2 |
|
) |
| |
◆ sandbox_cfg_allow_stat_filename()
int sandbox_cfg_allow_stat_filename |
( |
sandbox_cfg_t ** |
cfg, |
|
|
char * |
file |
|
) |
| |
Function used to add a stat/stat64 allowed filename to a configuration. The (char*) specifies the path to the allowed file; that pointer is stolen.
Definition at line 2320 of file sandbox.c.
◆ sandbox_cfg_new()
Creates an empty sandbox configuration file.
Definition at line 2269 of file sandbox.c.
◆ sandbox_init()
Function used to initialise a sandbox configuration.
Definition at line 2275 of file sandbox.c.
◆ sandbox_is_active()
int sandbox_is_active |
( |
void |
| ) |
|