Google Git
Sign in
chromium / chromium / src / f20f380420696d076d4af6c5a505e0c00450b449
commitf20f380420696d076d4af6c5a505e0c00450b449[log] [tgz]
authorjln@chromium.org <jln@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98>Fri May 09 07:01:03 2014
committerjln@chromium.org <jln@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98>Fri May 09 07:01:03 2014
treedfff5030e4c5d858909257d3ef2923fb43a415b9
parent4eacd67739cffc1a14c5579fb4cc1e5012331899 [diff]
GPU Linux sandbox: block clone() and *kill

- Restrict *kill to the current process
- EPERM process creation with clone()
- Restrict thread creation flags to the standard pthread_create()
flags.

BUG=367986
R=jorgelo@chromium.org

Review URL: https://codereview.chromium.org/273963003

git-svn-id: svn://svn.chromium.org/chrome/trunk/src@269174 0039d316-1c4b-4281-b951-d872f2087c98
1 file changed
tree: dfff5030e4c5d858909257d3ef2923fb43a415b9
  1. android_webview/
  2. apps/
  3. ash/
  4. athena/
  5. base/
  6. breakpad/
  7. build/
  8. cc/
  9. chrome/
  10. chrome_elf/
  11. chromecast/
  12. chromeos/
  13. cloud_print/
  14. components/
  15. content/
  16. courgette/
  17. crypto/
  18. dbus/
  19. device/
  20. extensions/
  21. gin/
  22. google_apis/
  23. google_update/
  24. gpu/
  25. ios/
  26. ipc/
  27. jingle/
  28. media/
  29. mojo/
  30. native_client_sdk/
  31. net/
  32. ppapi/
  33. printing/
  34. remoting/
  35. rlz/
  36. sandbox/
  37. sdch/
  38. skia/
  39. sql/
  40. sync/
  41. testing/
  42. third_party/
  43. tools/
  44. ui/
  45. url/
  46. webkit/
  47. win8/
  48. .clang-format
  49. .DEPS.git
  50. .gitattributes
  51. .gitignore
  52. .gn
  53. Android.mk
  54. AUTHORS
  55. BUILD.gn
  56. codereview.settings
  57. DEPS
  58. LICENSE
  59. LICENSE.chromium_os
  60. OWNERS
  61. PRESUBMIT.py
  62. PRESUBMIT_test.py
  63. WATCHLISTS