List of all items

Structs

• Checkpoint
• SeccompData
• SeccompNotif
• context::PipePair
• dry_run::Change
• dry_run::DryRunResult
• http::HttpRule
• netlink::proto::IfAddrMsg
• netlink::proto::IfInfoMsg
• netlink::proto::NlMsgHdr
• netlink::proto::ParsedRequest
• netlink::proto::RtAttr
• netlink::proto::Writer
• netlink::state::NetlinkState
• pipeline::Gather
• pipeline::NamedStage
• pipeline::Pipeline
• pipeline::Stage
• policy_fn::LivePolicy
• policy_fn::PolicyContext
• policy_fn::PolicyEvent
• policy_fn::SyscallEvent
• profile::ConfigSection
• profile::DeterminismSection
• profile::FilesystemSection
• profile::HttpSection
• profile::LimitsSection
• profile::NetworkSection
• profile::ProfileInput
• profile::ProgramSection
• profile::ProgramSpec
• profile::SyscallsSection
• result::RunResult
• sandbox::ByteSize
• sandbox::Confinement
• sandbox::ConfinementBuilder
• sandbox::NetAllow
• sandbox::Sandbox
• sandbox::SandboxBuilder
• seccomp::dispatch::DispatchTable
• seccomp::dispatch::HandlerCtx
• seccomp::notif::NotifPolicy
• seccomp::notif::OnInjectSuccess
• seccomp::syscall::Syscall

Enums

• dry_run::ChangeKind
• error::BranchError
• error::ConfinementError
• error::NotifError
• error::SandboxError
• error::SandboxRuntimeError
• error::SandlockError
• error::SeccompError
• policy_fn::PolicyFnError
• policy_fn::SyscallCategory
• policy_fn::Verdict
• result::ExitStatus
• sandbox::BranchAction
• sandbox::FsIsolation
• sandbox::Protocol
• seccomp::dispatch::HandlerError
• seccomp::notif::NetworkPolicy
• seccomp::notif::NotifAction
• seccomp::notif::PortAllow
• seccomp::syscall::SyscallError

Traits

• seccomp::dispatch::Handler

Functions

• confine
• context::arg_filters
• context::blocklist_syscall_numbers
• context::no_supervisor_blocklist_syscall_numbers
• context::notif_syscalls
• context::syscall_name_to_nr
• http::http_acl_check
• http::normalize_path
• http::prefix_or_exact_match
• image::extract
• image::inspect_cmd
• landlock::abi_version
• landlock::confine
• landlock::confine_filesystem
• landlock_abi_version
• netlink::handlers::handle_bind
• netlink::handlers::handle_close
• netlink::handlers::handle_getsockname
• netlink::handlers::handle_netlink_recvmsg
• netlink::handlers::handle_socket
• netlink::proto::nlmsg_align
• netlink::proto::parse_request
• netlink::proxy::spawn_responder
• netlink::synth::synthesize_reply
• profile::list_profiles
• profile::load_profile
• profile::parse_input
• profile::parse_profile
• profile::profile_dir
• seccomp::bpf::assemble_filter
• seccomp::bpf::install_deny_filter
• seccomp::bpf::install_filter
• seccomp::notif::read_child_cstr
• seccomp::notif::read_child_mem
• seccomp::notif::supervisor
• seccomp::notif::write_child_mem

Type Aliases

• error::Result
• policy_fn::PolicyCallback

Constants

• MIN_LANDLOCK_ABI
• landlock::MIN_ABI
• netlink::proto::NLMSG_ALIGN_TO
• netlink::proto::NLMSG_DONE
• netlink::proto::NLMSG_ERROR
• netlink::proto::NLMSG_HDRLEN
• netlink::proto::NLM_F_DUMP
• netlink::proto::NLM_F_MULTI
• netlink::proto::NLM_F_REQUEST
• netlink::proto::RTA_HDRLEN
• netlink::proto::RTM_GETADDR
• netlink::proto::RTM_GETLINK
• netlink::proto::RTM_NEWADDR
• netlink::proto::RTM_NEWLINK