namespace sandbox {
struct arch_seccomp_data;
-class SandboxBPF;
-class SandboxBPFPolicy;
+namespace bpf_dsl {
+class Policy;
+class PolicyCompiler;
+}
class Verifier {
public:
// set by the "evaluators".
// Upon success, "err" is set to NULL. Upon failure, it contains a static
// error message that does not need to be free()'d.
- static bool VerifyBPF(SandboxBPF* sandbox,
+ static bool VerifyBPF(bpf_dsl::PolicyCompiler* compiler,
const std::vector<struct sock_filter>& program,
- const SandboxBPFPolicy& policy,
+ const bpf_dsl::Policy& policy,
const char** err);
// Evaluate a given BPF program for a particular set of system call