Expand description
The raw FFI to libseccomp. This is all unsafe. Use it only if you understand what values should be returned, what objects you need to manage, etc.
Structs§
- seccomp_
data - Syscall data.
- seccomp_
notif - A notification from the kernel.
- seccomp_
notif_ resp - A Notification Response structure.
Enums§
- scmp_
filter_ attr - Attributes. ACT_DEFAULT is not included because seccomp_init already takes it.
Statics§
- SCMP_
ACT_ ALLOW - Allow the action.
- SCMP_
ACT_ KILL_ PROCESS - Kill the process
- SCMP_
ACT_ KILL_ THREAD - Kill the thread
- SCMP_
ACT_ LOG - Log the request to the Audit log
- SCMP_
ACT_ NOTIFY - Request a decision from the notify monitor.
- SCMP_
ACT_ TRAP - Trap Signal
Functions§
- seccomp_
api_ ⚠get - Get the current API level.
- seccomp_
arch_ ⚠native - Get the native architecture.
- seccomp_
attr_ ⚠set - Set an attribute. See seccomp.h for expected values, or see the Attributes trait.
- seccomp_
export_ ⚠bpf - Export the filter to BPF for Bubblewrap.
- seccomp_
init ⚠ - Initialize a SECCOMP context
- seccomp_
load ⚠ - Load the filter into the current process.
- seccomp_
notify_ ⚠alloc - Allocate a notification pair.
- seccomp_
notify_ ⚠fd - Get the Notify FD to receive and respond over.
- seccomp_
notify_ ⚠free - Free a notification pair.
- seccomp_
notify_ ⚠id_ valid - Check if a event is still valid.
- seccomp_
notify_ ⚠receive - Receive an event from the kernel.
- seccomp_
notify_ ⚠respond - Send a response to an event.
- seccomp_
release ⚠ - Release a context.
- seccomp_
rule_ ⚠add - Add a rule.
- seccomp_
set_ ⚠priority - Set the priority of a syscall.
- seccomp_
syscall_ ⚠resolve_ name - Resolve names, like “ptrace” to the associated number for the current architecture
- seccomp_
syscall_ ⚠resolve_ name_ arch - seccomp_
syscall_ ⚠resolve_ num_ arch - Resolve a syscall number with an architecture to the name.
Type Aliases§
- scmp_
filter_ ctx - A SECCOMP context.