Chromium-sandbox-LowLevelPolicy-analysis
本篇是sandbox源码剖析的第十三篇,主要分析了架设在PolicyEngine之上的low-level Policy机制。Low-level policy为TargetPolicy(实际上是PolicyBase)所用,用以evaluate high-level操作的可行性(job+alternative desktop+stricted token(include IL/AC)几乎把target