| Index: sandbox/linux/seccomp-bpf/codegen.h
|
| diff --git a/sandbox/linux/seccomp-bpf/codegen.h b/sandbox/linux/seccomp-bpf/codegen.h
|
| index b7d1d3904cc3189479ee2f0f97e28e891c44be44..88521c2b52dd20fa303cb46ea0a6aca4594e9634 100644
|
| --- a/sandbox/linux/seccomp-bpf/codegen.h
|
| +++ b/sandbox/linux/seccomp-bpf/codegen.h
|
| @@ -77,6 +77,15 @@ class CodeGen {
|
| // or if a (conditional) jump still has an unsatisfied target.
|
| void JoinInstructions(Instruction *head, Instruction *tail);
|
|
|
| + // Traverse the graph of instructions and visit each instruction once.
|
| + // Traversal order is implementation-defined. It is acceptable to make
|
| + // changes to the graph from within the callback function. These changes
|
| + // do not affect traversal.
|
| + // The "fnc" function gets called with both the instruction and the opaque
|
| + // "aux" pointer.
|
| + void Traverse(Instruction *, void (*fnc)(Instruction *, void *aux),
|
| + void *aux);
|
| +
|
| // Compiles the graph of instructions into a BPF program that can be passed
|
| // to the kernel. Please note that this function modifies the graph in place
|
| // and must therefore only be called once per graph.
|
|
|
Chromium Code Reviews
Issue 11419121:
SECCOMP-BPF: Added support for greylisting of system calls. (Closed)
Base URL: svn://svn.chromium.org/chrome/trunk/src