Expand description
sandbox-seccomp: Seccomp BPF syscall filtering (no root required)
This crate provides seccomp-based syscall filtering using BPF programs.
Seccomp does NOT require root - it only needs PR_SET_NO_NEW_PRIVS.
Re-exports§
pub use bpf::SeccompBpf;pub use profile::SeccompFilter;pub use profile::SeccompProfile;
Modules§
- bpf
- Seccomp BPF filter compilation and loading using seccompiler
- profile
- Seccomp filter building and management
- syscall_
table - Syscall number lookup table