public/seccomp-sandbox
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

change default behavior for execve from accept to log

Browse Source
This commit is contained in:
guochao 2023-11-02 00:00:06 +08:00
parent 6b52b19eaf
commit bc6ed96d43
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
src/main.rs
View File

@ -134,7 +134,7 @@ fn main() -> anyhow::Result<()> {
let mut filter = ScmpFilterContext::new_filter(default_action)?;
filter.add_rule(
ScmpAction::Allow,
ScmpAction::Log,
ScmpSyscall::from(nix::libc::SYS_execve as i32),
)?;