aboutsummaryrefslogtreecommitdiff
path: root/src/pseccomp.h
diff options
context:
space:
mode:
Diffstat (limited to 'src/pseccomp.h')
-rw-r--r--src/pseccomp.h27
1 files changed, 27 insertions, 0 deletions
diff --git a/src/pseccomp.h b/src/pseccomp.h
new file mode 100644
index 0000000..70fe3de
--- /dev/null
+++ b/src/pseccomp.h
@@ -0,0 +1,27 @@
+#ifndef POTD_SECCOMP_H
+#define POTD_SECCOMP_H 1
+
+#include <seccomp.h>
+
+#define PS_ALLOW 0x1
+#define PS_MINIMUM 0x2
+
+typedef struct pseccomp_ctx {
+ unsigned flags;
+ scmp_filter_ctx sfilter;
+} pseccomp_ctx;
+
+
+int pseccomp_init(pseccomp_ctx **ctx, unsigned flags);
+
+void pseccomp_free(pseccomp_ctx **ctx);
+
+int pseccomp_set_immutable(void);
+
+int pseccomp_default_rules(pseccomp_ctx *ctx);
+
+int pseccomp_protocol_rules(pseccomp_ctx *ctx);
+
+int pseccomp_jail_rules(pseccomp_ctx *ctx);
+
+#endif
Powered by cgit, Themed by Ted Yin.