sandbox/linux/seccomp-bpf/syscall.h - Issue 260793003: [MIPS] Add seccomp bpf support

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: sandbox/linux/seccomp-bpf/syscall.h

Issue 260793003: [MIPS] Add seccomp bpf support (Closed) Base URL: https://git.chromium.org/git/chromium/src.git@master

Patch Set: Update per code review Created 6 years, 5 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: sandbox/linux/seccomp-bpf/syscall.h

diff --git a/sandbox/linux/seccomp-bpf/syscall.h b/sandbox/linux/seccomp-bpf/syscall.h

index 10a1253e8c2be65a265665dfc0e7fa2a86208f0f..3105036e50babd611967dc16aed200a8d897bc47 100644

--- a/sandbox/linux/seccomp-bpf/syscall.h

+++ b/sandbox/linux/seccomp-bpf/syscall.h

@@ -5,6 +5,7 @@

#ifndef SANDBOX_LINUX_SECCOMP_BPF_SYSCALL_H__

#define SANDBOX_LINUX_SECCOMP_BPF_SYSCALL_H__

+#include <signal.h>

#include <stdint.h>

#include "base/macros.h"

@@ -112,6 +113,11 @@ class SANDBOX_EXPORT Syscall {

return Call(nr, 0, 0, 0, 0, 0, 0, 0, 0);

}

+ // Set the registers in |ctx| to match what they would be after a system call

+ // returning |ret_val|. |ret_val| must follow the Syscall::Call() convention

+ // of being -errno on errors.

+ static void PutValueInUcontext(intptr_t ret_val, ucontext_t* ctx);

private:

// This performs system call |nr| with the arguments p0 to p7 from a constant

// userland address, which is for instance observable by seccomp-bpf filters.

@@ -129,6 +135,21 @@ class SANDBOX_EXPORT Syscall {

intptr_t p6,

intptr_t p7);

+#if defined(__mips__)

+ // This function basically does on MIPS what SandboxSyscall() is doing on

+ // other architectures. However, because of specificity of MIPS regarding

+ // handling syscall errors, SandboxSyscall() is made as a wrapper for this

+ // function in order for SandboxSyscall() to behave more like on other

+ // architectures on places where return value from SandboxSyscall() is used

+ // directly (like in most tests).

+ // The syscall "nr" is called with arguments that are set in an array on which

+ // pointer "args" points to and an information weather there is an error or no

+ // is returned to SandboxSyscall() by err_stat.

+ static intptr_t SandboxSyscallRaw(int nr,

+ const intptr_t* args,

+ intptr_t* err_stat);

+#endif // defined(__mips__)

DISALLOW_IMPLICIT_CONSTRUCTORS(Syscall);

};

« no previous file with comments | « sandbox/linux/seccomp-bpf/sandbox_bpf_unittest.cc ('k') | sandbox/linux/seccomp-bpf/syscall.cc » ('j') | no next file with comments »