Function libseccomp_sys::seccomp_rule_add

source · [−]

pub unsafe extern "C" fn seccomp_rule_add(
    ctx: scmp_filter_ctx, 
    action: u32, 
    syscall: c_int, 
    arg_cnt: c_uint,
     ...
) -> c_int

Expand description

Add a new rule to the filter

ctx: the filter context
action: the filter action
syscall: the syscall number
arg_cnt: the number of argument filters in the argument filter chain
...: scmp_arg_cmp structs

This function adds a series of new argument/value checks to the seccomp filter for the given syscall; multiple argument/value checks can be specified and they will be chained together (AND’d together) in the filter. If the specified rule needs to be adjusted due to architecture specifics it will be adjusted without notification. Returns zero on success, negative values on failure.