| Index: sandbox_impl.h
|
| ===================================================================
|
| --- sandbox_impl.h (revision 179)
|
| +++ sandbox_impl.h (working copy)
|
| @@ -79,11 +79,10 @@
|
|
|
| // The sandbox needs to be able to access "/proc/self/maps". If this file
|
| // is not accessible when "startSandbox()" gets called, the caller can
|
| - // provide an already opened file descriptor by calling "setProcSelfMaps()".
|
| + // provide an already opened file descriptor by calling "setProcSelf()".
|
| // The sandbox becomes the newer owner of this file descriptor and will
|
| // eventually close it when "startSandbox()" executes.
|
| - static void setProcSelfMaps(int proc_self_maps)
|
| - asm("SeccompSandboxSetProcSelfMaps");
|
| + static void setProcSelf(int proc_self) asm("SeccompSandboxSetProcSelf");
|
|
|
| // This is the main public entry point. It finds all system calls that
|
| // need rewriting, sets up the resources needed by the sandbox, and
|
| @@ -642,6 +641,7 @@
|
| // Seccomp mode.
|
| static void createTrustedThread(SecureMem::Args* secureMem);
|
|
|
| + static int proc_self_;
|
| static int proc_self_maps_;
|
| static enum SandboxStatus {
|
| STATUS_UNKNOWN, STATUS_UNSUPPORTED, STATUS_AVAILABLE, STATUS_ENABLED
|
|
|
Chromium Code Reviews
Issue 10178029:
Make a small change to the API. Instead of passing in a file (Closed)
Base URL: http://seccompsandbox.googlecode.com/svn/trunk/