extern crate libc;
#[allow(dead_code)]
#[allow(non_camel_case_types)]
#[allow(non_snake_case)]
#[allow(non_upper_case_globals)]
mod landlock;
pub use self::landlock::{
landlock_ruleset_attr,
landlock_rule_type,
landlock_rule_type_LANDLOCK_RULE_PATH_BENEATH,
LANDLOCK_ACCESS_FS_EXECUTE,
LANDLOCK_ACCESS_FS_WRITE_FILE,
LANDLOCK_ACCESS_FS_READ_FILE,
LANDLOCK_ACCESS_FS_READ_DIR,
LANDLOCK_ACCESS_FS_REMOVE_DIR,
LANDLOCK_ACCESS_FS_REMOVE_FILE,
LANDLOCK_ACCESS_FS_MAKE_CHAR,
LANDLOCK_ACCESS_FS_MAKE_DIR,
LANDLOCK_ACCESS_FS_MAKE_REG,
LANDLOCK_ACCESS_FS_MAKE_SOCK,
LANDLOCK_ACCESS_FS_MAKE_FIFO,
LANDLOCK_ACCESS_FS_MAKE_BLOCK,
LANDLOCK_ACCESS_FS_MAKE_SYM,
};
use libc::{size_t, __u32, c_int, c_void, syscall};
#[cfg(target_arch="x86_64")]
const __NR_LANDLOCK_CREATE_RULESET: u32 = 444;
#[cfg(target_arch="x86_64")]
const __NR_LANDLOCK_ADD_RULE: u32 = 445;
#[cfg(target_arch="x86_64")]
const __NR_LANDLOCK_RESTRICT_SELF: u32 = 446;
pub unsafe fn landlock_create_ruleset(attr: *const landlock_ruleset_attr, size: size_t,
flags: __u32) -> c_int {
syscall(__NR_LANDLOCK_CREATE_RULESET as i64, attr, size, flags) as c_int
}
pub unsafe fn landlock_add_rule(ruleset_fd: c_int, rule_type: landlock_rule_type,
rule_attr: *const c_void, flags: __u32) -> c_int {
syscall(__NR_LANDLOCK_ADD_RULE as i64, ruleset_fd, rule_type, rule_attr, flags) as c_int
}
pub unsafe fn landlock_restrict_self(ruleset_fd: c_int, flags: __u32) -> c_int {
syscall(__NR_LANDLOCK_RESTRICT_SELF as i64, ruleset_fd, flags) as c_int
}