Enum libseccomp::ScmpFilterAttr

source · [−]

#[non_exhaustive]
pub enum ScmpFilterAttr {
    ActDefault,
    ActBadArch,
    CtlNnp,
    CtlTsync,
    ApiTskip,
    CtlLog,
    CtlSsb,
    CtlOptimize,
    ApiSysRawRc,
}

Expand description

Represents filter attributes.

You can set/get the attributes of a filter context with ScmpFilterContext::set_filter_attr and ScmpFilterContext::get_filter_attr methods.

Variants (Non-exhaustive)

This enum is marked as non-exhaustive

Non-exhaustive enums could have additional variants added in future. Therefore, when matching against variants of non-exhaustive enums, an extra wildcard arm must be added to account for any future variants.

`ActDefault`

The default filter action as specified in the call to seccomp reset.

`ActBadArch`

The filter action taken when the loaded filter does not match the architecture of the executing application.

`CtlNnp`

A flag to specify if the NO_NEW_PRIVS functionality should be enabled before loading the seccomp filter into the kernel.

`CtlTsync`

A flag to specify if the kernel should attempt to synchronize the filters across all threads on seccomp load.

`ApiTskip`

A flag to specify if the libseccomp should allow filter rules to be created for the -1 syscall.

`CtlLog`

A flag to specify if the kernel should log all filter actions taken except for the ScmpAction::Allow action.

`CtlSsb`

A flag to disable Speculative Store Bypass mitigations for this filter.

`CtlOptimize`

A flag to specify the optimization level of the seccomp filter.

`ApiSysRawRc`

A flag to specify if the libseccomp should pass system error codes back to the caller instead of the default -ECANCELED.

Trait Implementations

impl Clone for ScmpFilterAttr

fn clone(&self) -> ScmpFilterAttr

Returns a copy of the value. Read more

1.0.0 · source

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more

impl Debug for ScmpFilterAttr

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more

impl FromStr for ScmpFilterAttr

fn from_str(attr: &str) -> Result<Self, SeccompError>

Converts string seccomp filter attribute to ScmpFilterAttr.

Arguments

attr - A string filter attribute, e.g. SCMP_FLTATR_*.

See the seccomp_attr_set(3) man page for details on valid filter attribute values.

Errors

If an invalid filter attribute is specified, an error will be returned.

type Err = SeccompError

The associated error which can be returned from parsing.

impl Hash for ScmpFilterAttr

fn hash<H: Hasher>(&self, state: &mut H)

Feeds this value into the given Hasher. Read more

1.3.0 · source

fn hash_slice<H>(data: &[Self], state: &mut H)where
H: Hasher,

Feeds a slice of this type into the given Hasher. Read more

impl PartialEq<ScmpFilterAttr> for ScmpFilterAttr

fn eq(&self, other: &ScmpFilterAttr) -> bool

This method tests for self and other values to be equal, and is used by ==. Read more

1.0.0 · source

fn ne(&self, other: &Rhs) -> bool

This method tests for !=. The default implementation is almost always sufficient, and should not be overridden without very good reason. Read more

impl Copy for ScmpFilterAttr

impl Eq for ScmpFilterAttr

impl StructuralEq for ScmpFilterAttr

impl StructuralPartialEq for ScmpFilterAttr

Auto Trait Implementations

impl RefUnwindSafe for ScmpFilterAttr

impl Send for ScmpFilterAttr

impl Sync for ScmpFilterAttr

impl Unpin for ScmpFilterAttr

impl UnwindSafe for ScmpFilterAttr

Blanket Implementations

impl<T> Any for Twhere
T: 'static + ?Sized,

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more

impl<T> Borrow<T> for Twhere
T: ?Sized,

const: unstable · source

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more

impl<T> BorrowMut<T> for Twhere
T: ?Sized,

const: unstable · source

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more

impl<T> From<T> for T

const: unstable · source

fn from(t: T) -> T

Returns the argument unchanged.

impl<T, U> Into<U> for Twhere
U: From<T>,

const: unstable · source

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

impl<T> ToOwned for Twhere
T: Clone,

type Owned = T

The resulting type after obtaining ownership.

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more

impl<T, U> TryFrom<U> for Twhere
U: Into<T>,

type Error = Infallible

The type returned in the event of a conversion error.

const: unstable · source

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.

impl<T, U> TryInto<U> for Twhere
U: TryFrom<T>,

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.

const: unstable · source

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.