Enum libscmp::Flag[−][src]

#[non_exhaustive]
#[repr(i32)]
pub enum Flag {
    NoNewPrivs,
    Tsync,
    Tskip,
    Log,
    DisableSSB,
    SysRawRC,
}

Expand description

Represents a boolean flag that can be set on a filter.

Variants (Non-exhaustive)

This enum is marked as non-exhaustive

Non-exhaustive enums could have additional variants added in future. Therefore, when matching against variants of non-exhaustive enums, an extra wildcard arm must be added to account for any future variants.

NoNewPrivs

Whether libseccomp should enable the “no-new-privs” mechanism before loading the seccomp filter (default true).

In most cases, this should be set to true.

Tsync

Whether the kernel should attempt to synchronize the seccomp filters across all threads when loading them into the kernel (default false).

This is only supported on Linux 3.17+, and it may cause loading the seccomp filters to fail.

Tskip

Whether libseccomp should allow filter rules that target the -1 syscall (sometimes used by ptrace()rs to skip syscalls; default false). Only supported on libseccomp v2.4.0+.

Log

Whether the kernel should log all non-“allow” actions taken (default false). Only supported on libseccomp v2.4.0+.

DisableSSB

Whether to disable Speculative Store Bypass mitigation for this filter (default false). Only supported on libseccomp v2.5.0+.

SysRawRC

Whether libseccomp should pass system error codes back to the caller instead of returning ECANCELED (default false). Only supported on libseccomp v2.5.0+.

Note: Use of this option is not reccommended. The Error struct already specially checks for ECANCELED and retrieves the value of errno in that case; enabling this option will simply make the returned errors more confusing.

Trait Implementations

impl Clone for Flag[src]

fn clone(&self) -> Flag[src]

Returns a copy of the value. Read more

fn clone_from(&mut self, source: &Self)1.0.0 [src]

Performs copy-assignment from source. Read more

impl Debug for Flag[src]

fn fmt(&self, f: &mut Formatter<'_>) -> Result[src]

Formats the value using the given formatter. Read more

impl Hash for Flag[src]

fn hash<__H: Hasher>(&self, state: &mut __H)[src]

Feeds this value into the given Hasher. Read more

fn hash_slice<H>(data: &[Self], state: &mut H) where
    H: Hasher,

1.3.0 [src]

Feeds a slice of this type into the given Hasher. Read more

impl PartialEq<Flag> for Flag[src]

fn eq(&self, other: &Flag) -> bool[src]

This method tests for self and other values to be equal, and is used by ==. Read more

#[must_use]
fn ne(&self, other: &Rhs) -> bool

1.0.0 [src]

This method tests for !=.

impl Copy for Flag[src]

impl Eq for Flag[src]

impl StructuralEq for Flag[src]

impl StructuralPartialEq for Flag[src]

Auto Trait Implementations

impl RefUnwindSafe for Flag

impl Send for Flag

impl Sync for Flag

impl Unpin for Flag

impl UnwindSafe for Flag

Blanket Implementations

impl<T> Any for T where
    T: 'static + ?Sized,

[src]

pub fn type_id(&self) -> TypeId[src]

Gets the TypeId of self. Read more

impl<T> Borrow<T> for T where
    T: ?Sized,

[src]

pub fn borrow(&self) -> &T[src]

Immutably borrows from an owned value. Read more

impl<T> BorrowMut<T> for T where
    T: ?Sized,

[src]

pub fn borrow_mut(&mut self) -> &mut T[src]

Mutably borrows from an owned value. Read more

impl<T> From<T> for T[src]

pub fn from(t: T) -> T[src]

Performs the conversion.

impl<T, U> Into<U> for T where
    U: From<T>,

[src]

pub fn into(self) -> U[src]

Performs the conversion.

impl<T> ToOwned for T where
    T: Clone,

[src]

type Owned = T

The resulting type after obtaining ownership.

pub fn to_owned(&self) -> T[src]

Creates owned data from borrowed data, usually by cloning. Read more

pub fn clone_into(&self, target: &mut T)[src]

🔬 This is a nightly-only experimental API. (toowned_clone_into)

recently added

Uses borrowed data to replace owned data, usually by cloning. Read more

impl<T, U> TryFrom<U> for T where
    U: Into<T>,

[src]

type Error = Infallible

The type returned in the event of a conversion error.

pub fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>[src]

Performs the conversion.

impl<T, U> TryInto<U> for T where
    U: TryFrom<T>,

[src]

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.

pub fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>[src]

Performs the conversion.