From baf556aa12ddfb301f2a54f5c741505b55bad18c Mon Sep 17 00:00:00 2001
From: "agl@chromium.org"
 <agl@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98>
Date: Fri, 4 Sep 2009 21:34:05 +0000
Subject: On Linux, move the passing of filedescriptors to a dedicated
 socketpair().

(Patch by Markus)

This allows the fast path to use read()/write() instead of recvmsg()/sendmsg()
which is much cheaper for the Seccomp sandbox.

Also, fixed minor seccomp sandbox issues discovered by this change.

BUG=19120
ISSUE=164373

http://codereview.chromium.org/177049


git-svn-id: svn://svn.chromium.org/chrome/trunk/src@25518 0039d316-1c4b-4281-b951-d872f2087c98
---
 sandbox/linux/seccomp/syscall.cc | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'sandbox/linux')

diff --git a/sandbox/linux/seccomp/syscall.cc b/sandbox/linux/seccomp/syscall.cc
index b25146b..8b14b30 100644
--- a/sandbox/linux/seccomp/syscall.cc
+++ b/sandbox/linux/seccomp/syscall.cc
@@ -203,7 +203,7 @@ void* Sandbox::defaultSystemCallHandler(int syscallNum, void* arg0, void* arg1,
   // the exact instruction sequence in libc, we might not be able to reliably
   // filter out these system calls at the time when we instrument the code.
   SysCalls sys;
-  unsigned long rc;
+  long     rc;
   switch (syscallNum) {
     case __NR_read:
       Debug::syscall(syscallNum, "Allowing unrestricted system call");
-- 
cgit v1.1