Lines Matching refs:jail
31 void Minijail::Destroy(struct minijail* jail) { in Destroy() argument
32 minijail_destroy(jail); in Destroy()
35 void Minijail::DropRoot(struct minijail* jail, uid_t uid, gid_t gid) { in DropRoot() argument
36 minijail_change_uid(jail, uid); in DropRoot()
37 minijail_change_gid(jail, gid); in DropRoot()
40 bool Minijail::DropRoot(struct minijail* jail, in DropRoot() argument
45 return !minijail_change_user(jail, user) && in DropRoot()
46 !minijail_change_group(jail, group); in DropRoot()
49 void Minijail::EnterNewPidNamespace(struct minijail* jail) { in EnterNewPidNamespace() argument
50 minijail_namespace_pids(jail); in EnterNewPidNamespace()
53 void Minijail::MountTmp(struct minijail* jail) { in MountTmp() argument
54 minijail_mount_tmp(jail); in MountTmp()
57 void Minijail::UseSeccompFilter(struct minijail* jail, const char* path) { in UseSeccompFilter() argument
58 minijail_no_new_privs(jail); in UseSeccompFilter()
59 minijail_use_seccomp_filter(jail); in UseSeccompFilter()
60 minijail_parse_seccomp_filters(jail, path); in UseSeccompFilter()
63 void Minijail::UseCapabilities(struct minijail* jail, uint64_t capmask) { in UseCapabilities() argument
64 minijail_use_caps(jail, capmask); in UseCapabilities()
67 void Minijail::ResetSignalMask(struct minijail* jail) { in ResetSignalMask() argument
68 minijail_reset_signal_mask(jail); in ResetSignalMask()
71 void Minijail::CloseOpenFds(struct minijail* jail) { in CloseOpenFds() argument
72 minijail_close_open_fds(jail); in CloseOpenFds()
75 void Minijail::PreserveFd(struct minijail* jail, int parent_fd, int child_fd) { in PreserveFd() argument
76 minijail_preserve_fd(jail, parent_fd, child_fd); in PreserveFd()
79 void Minijail::Enter(struct minijail* jail) { in Enter() argument
80 minijail_enter(jail); in Enter()
83 bool Minijail::Run(struct minijail* jail, vector<char*> args, pid_t* pid) { in Run() argument
84 return minijail_run_pid(jail, args[0], args.data(), pid) == 0; in Run()
87 bool Minijail::RunSync(struct minijail* jail, vector<char*> args, int* status) { in RunSync() argument
89 if (Run(jail, args, &pid) && waitpid(pid, status, 0) == pid) { in RunSync()
96 bool Minijail::RunPipe(struct minijail* jail, in RunPipe() argument
101 return minijail_run_pid_pipes_no_preload(jail, args[0], args.data(), pid, in RunPipe()
104 return minijail_run_pid_pipes(jail, args[0], args.data(), pid, stdin, NULL, in RunPipe()
109 bool Minijail::RunPipes(struct minijail* jail, in RunPipes() argument
116 return minijail_run_pid_pipes_no_preload(jail, args[0], args.data(), pid, in RunPipes()
119 return minijail_run_pid_pipes(jail, args[0], args.data(), pid, stdin, stdout, in RunPipes()
124 bool Minijail::RunEnvPipes(struct minijail* jail, in RunEnvPipes() argument
132 return minijail_run_env_pid_pipes_no_preload(jail, args[0], args.data(), in RunEnvPipes()
136 return minijail_run_env_pid_pipes(jail, args[0], args.data(), env.data(), pid, in RunEnvPipes()
141 bool Minijail::RunAndDestroy(struct minijail* jail, in RunAndDestroy() argument
144 bool res = Run(jail, args, pid); in RunAndDestroy()
145 Destroy(jail); in RunAndDestroy()
149 bool Minijail::RunSyncAndDestroy(struct minijail* jail, in RunSyncAndDestroy() argument
152 bool res = RunSync(jail, args, status); in RunSyncAndDestroy()
153 Destroy(jail); in RunSyncAndDestroy()
157 bool Minijail::RunPipeAndDestroy(struct minijail* jail, in RunPipeAndDestroy() argument
161 bool res = RunPipe(jail, args, pid, stdin); in RunPipeAndDestroy()
162 Destroy(jail); in RunPipeAndDestroy()
166 bool Minijail::RunPipesAndDestroy(struct minijail* jail, in RunPipesAndDestroy() argument
172 bool res = RunPipes(jail, args, pid, stdin, stdout, stderr); in RunPipesAndDestroy()
173 Destroy(jail); in RunPipesAndDestroy()
177 bool Minijail::RunEnvPipesAndDestroy(struct minijail* jail, in RunEnvPipesAndDestroy() argument
184 bool res = RunEnvPipes(jail, args, env, pid, stdin, stdout, stderr); in RunEnvPipesAndDestroy()
185 Destroy(jail); in RunEnvPipesAndDestroy()