Struct extrasafe::SafetyContext

source · [−]

pub struct SafetyContext { /* private fields */ }

Expand description

A struct representing a set of rules to be loaded into a seccomp filter and applied to the current thread, or all threads in the current process.

Create with new(). Add RuleSets with enable(), and then use apply_to_current_thread() to apply the filters to the current thread, or apply_to_all_threads() to apply the filter to all threads in the process.

Implementations

impl SafetyContext

pub fn new() -> SafetyContext

Create a new SafetyContext. The seccomp filters will not be loaded until either apply_to_current_thread or apply_to_all_threads is called.

pub fn enable(
self,
policy: impl RuleSet
) -> Result<SafetyContext, ExtraSafeError>

Enable the simple and conditional rules provided by the RuleSet.

Errors

Will return ExtraSafeError::ConditionalNoEffectError if a conditional rule is enabled at the same time as a simple rule for a syscall, which would override the conditional rule.

pub fn apply_to_current_thread(self) -> Result<(), ExtraSafeError>

Load the SafetyContext’s rules into a seccomp filter and apply the filter to the current thread.

Errors

May return ExtraSafeError::SeccompError.

pub fn apply_to_all_threads(self) -> Result<(), ExtraSafeError>

Load the SafetyContext’s rules into a seccomp filter and apply the filter to all threads in this process.

Errors

May return ExtraSafeError::SeccompError.

Trait Implementations

impl Debug for SafetyContext

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more

Auto Trait Implementations

impl RefUnwindSafe for SafetyContext

impl Send for SafetyContext

impl Sync for SafetyContext

impl Unpin for SafetyContext

impl UnwindSafe for SafetyContext

Blanket Implementations

impl<T> Any for T where
T: 'static + ?Sized,

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more

impl<T> Borrow<T> for T where
T: ?Sized,

const: unstable · source

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more

impl<T> BorrowMut<T> for T where
T: ?Sized,

const: unstable · source

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more

impl<T> From<T> for T

const: unstable · source

fn from(t: T) -> T

Returns the argument unchanged.

impl<T, U> Into<U> for T where
U: From<T>,

const: unstable · source

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

impl<T, U> TryFrom<U> for T where
U: Into<T>,

type Error = Infallible

The type returned in the event of a conversion error.

const: unstable · source

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.

impl<T, U> TryInto<U> for T where
U: TryFrom<T>,

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.

const: unstable · source

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.