Crate seccomp 

This crate is based on seccomp_sys and provides a higher level wrapper for libseccomp.

Example usage:

extern crate seccomp;
extern crate libc;

use seccomp::*;

fn main() {
    let mut ctx = Context::default(Action::Allow).unwrap();
    let rule = Rule::new(105 /* setuid on x86_64 */,
        Compare::arg(0)
                .with(1000)
                .using(Op::Eq)
                .build().unwrap(),
        Action::Errno(libc::EPERM) /* return EPERM */
    );
    ctx.add_rule(rule).unwrap();
    ctx.load().unwrap();
    let ret = unsafe { libc::setuid(1000) };
    println!("ret = {}, uid = {}", ret, unsafe { libc::getuid() });
}

Structs

Compare

Comparison definition builder

Context

Seccomp context

Rule

Seccomp rule

SeccompError

Error type

Enums

Action

Seccomp actions

Op

Comparison operators

Type Aliases

Cmp