seccompiler
seccompiler copied to clipboard
rust-vmm
Provides easy-to-use Linux seccomp-bpf jailing.
### Summary of the PR Add riscv64 support. ### Requirements Before submitting your PR, please make sure you addressed the following requirements: - [x] All commits in this PR have...
Bumps [rust-vmm-ci](https://github.com/rust-vmm/rust-vmm-ci) from `7c1057e` to `0100de0`. Commits 0100de0 update container version to v30 1f5d329 Update container version to v29 f91cfeb README: add link to rust-vmm-container repository cf98097 test_coverage: calculate the...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Is it basically always okay to use SeccompCmpArgLen::Qword on 64 bit systems? I'm doing so in my tests and I don't seem to see any issues, but I also don't...
# ISSUE ## Overview Hello, I'm writing concerning the following quote from the docs: > Before installing a filter, make sure that the current kernel version supports the actions of...
The [`errno`](https://github.com/rust-vmm/seccompiler/blob/main/docs/json_format.md) value in the `mismatch_action` needs to be positive: ``` JsonFrontend(SerdeJson(Error("invalid value: integer `-1`, expected u32", line: 5, column: 0))) ```
related to: https://github.com/SubconsciousCompute/seccomp-pledge/issues/5 ``` dora@openwrtbuildpc:~/coderepo/openwrt/seccomp-pledge$ cargo build --release --target mips-unknown-linux-musl Compiling serde v1.0.152 Compiling libc v0.2.139 Compiling serde_json v1.0.91 Compiling itoa v1.0.5 Compiling ryu v1.0.12 Compiling optional-fields-serde-macro v0.1.1 Compiling optional-field...
In the case where the SeccompFilter rules are generated from a list of `(syscall, VecBTreeMap `collect` implemenation. Given that `rules` is converted into an iterator over `(syscall, Vec
Currently it is not possible to only allow certain values in a filter that is permissive. If we had `x in [values]` and `x not_in [values]` operators, it would be...
