components/nacl/loader/sandbox_linux/nacl_sandbox_linux.h - Issue 276443003: NaCl: Add sanity check for number of open FDs at startup - Code Review

Chromium Code Reviews

chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out

(81)

My Issues | Starred Open | Closed | All

Unified Diff: components/nacl/loader/sandbox_linux/nacl_sandbox_linux.h

Issue 276443003: NaCl: Add sanity check for number of open FDs at startup (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src

Patch Set: Review Created 6 years, 7 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

« no previous file with comments | « no previous file | components/nacl/loader/sandbox_linux/nacl_sandbox_linux.cc » ('j') | components/nacl/loader/sandbox_linux/nacl_sandbox_linux.cc » ('J')
Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

Index: components/nacl/loader/sandbox_linux/nacl_sandbox_linux.h

diff --git a/components/nacl/loader/sandbox_linux/nacl_sandbox_linux.h b/components/nacl/loader/sandbox_linux/nacl_sandbox_linux.h

index ab6262563870f67eeddb81bd7892d331876e080c..333f8405c8636e5ce1092170c5ca07935d0518bf 100644

--- a/components/nacl/loader/sandbox_linux/nacl_sandbox_linux.h

+++ b/components/nacl/loader/sandbox_linux/nacl_sandbox_linux.h

@@ -7,6 +7,11 @@

#include "base/files/scoped_file.h"

#include "base/macros.h"

+#include "base/memory/scoped_ptr.h"

+

+namespace sandbox {

+class SetuidSandboxClient;

+}

namespace nacl {

@@ -61,6 +66,8 @@ class NaClSandbox {

bool layer_two_enabled() { return layer_two_enabled_; }

private:

+ void CheckForExpectedNumberOfOpenFds();

+

bool layer_one_enabled_;

bool layer_one_sealed_;

bool layer_two_enabled_;

@@ -68,6 +75,7 @@ class NaClSandbox {

// |proc_fd_| must be released before the layer-1 sandbox is considered

// enforcing.

base::ScopedFD proc_fd_;

+ scoped_ptr<sandbox::SetuidSandboxClient> setuid_sandbox_client_;

DISALLOW_COPY_AND_ASSIGN(NaClSandbox);

};

« no previous file with comments | « no previous file | components/nacl/loader/sandbox_linux/nacl_sandbox_linux.cc » ('j') | components/nacl/loader/sandbox_linux/nacl_sandbox_linux.cc » ('J')

Powered by Google App Engine

This is Rietveld 408576698