Add sandbox support for AsanCoverage.

content/common/sandbox_linux/sandbox_linux.cc

 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.
 
 #include <dirent.h>
 #include <fcntl.h>
 #include <sys/resource.h>
 #include <sys/stat.h>
 #include <sys/time.h>
 #include <sys/types.h>
@@ skipping 91 matching lines @@
 
 namespace content {
 
 LinuxSandbox::LinuxSandbox()
     : proc_fd_(-1),
       seccomp_bpf_started_(false),
       sandbox_status_flags_(kSandboxLinuxInvalid),
       pre_initialized_(false),
       seccomp_bpf_supported_(false),
       yama_is_enforcing_(false),
-      setuid_sandbox_client_(sandbox::SetuidSandboxClient::Create()) {
+      setuid_sandbox_client_(sandbox::SetuidSandboxClient::Create())
+#if (defined(ADDRESS_SANITIZER) || defined(MEMORY_SANITIZER) || \
+     defined(LEAK_SANITIZER))  && defined(OS_LINUX)
+      , sanitizer_args_(NULL)
+#endif
+{
   if (setuid_sandbox_client_ == NULL) {
     LOG(FATAL) << "Failed to instantiate the setuid sandbox client.";
   }
 }
 
 LinuxSandbox::~LinuxSandbox() {
 }
 
 LinuxSandbox* LinuxSandbox::GetInstance() {
   LinuxSandbox* instance = Singleton<LinuxSandbox>::get();
   CHECK(instance);
   return instance;
 }
 
 #if (defined(ADDRESS_SANITIZER) || defined(MEMORY_SANITIZER) || \
      defined(LEAK_SANITIZER))  && defined(OS_LINUX)
 // Sanitizer API call to notify the tool the sandbox is going to be turned on.
 extern "C" void __sanitizer_sandbox_on_notify(void *reserved);
+
+void LinuxSandbox::SetSanitizerArgs(void *sanitizer_args) {

[jln (very slow on Chromium), 2014/05/13 01:17:35]

style: "void* blah".

[jln (very slow on Chromium), 2014/05/13 01:17:35]

Let's respect the order of declarations in the header file and put this After
LimitAddressSpace().

[earthdok, 2014/05/14 17:00:26]

Done.

[earthdok, 2014/05/14 17:00:26]

Done.

+  sanitizer_args_ = sanitizer_args;
+}
 #endif
 
 void LinuxSandbox::PreinitializeSandbox() {
   CHECK(!pre_initialized_);
   seccomp_bpf_supported_ = false;
 #if (defined(ADDRESS_SANITIZER) || defined(MEMORY_SANITIZER) || \
      defined(LEAK_SANITIZER))  && defined(OS_LINUX)
   // Sanitizers need to open some resources before the sandbox is enabled.
   // This should not fork, not launch threads, not open a directory.
-  __sanitizer_sandbox_on_notify(/*reserved*/ NULL);
+  __sanitizer_sandbox_on_notify(sanitizer_args_);
 #endif
 
 #if !defined(NDEBUG)
   // The in-process stack dumping needs to open /proc/self/maps and cache
   // its contents before the sandbox is enabled.  It also pre-opens the
   // object files that are already loaded in the process address space.
   base::debug::EnableInProcessStackDumpingForSandbox();
 
   // Open proc_fd_ only in Debug mode so that forgetting to close it doesn't
   // produce a sandbox escape in Release mode.
@@ skipping 253 matching lines @@
 
 void LinuxSandbox::StopThreadAndEnsureNotCounted(base::Thread* thread) const {
   DCHECK(thread);
   base::ScopedFD proc_self_task(OpenProcTaskFd(proc_fd_));
   PCHECK(proc_self_task.is_valid());
   CHECK(sandbox::ThreadHelpers::StopThreadAndWatchProcFS(proc_self_task.get(),
                                                          thread));
 }
 
 }  // namespace content