diff options
Diffstat (limited to 'src/include/seccomp.h')
-rw-r--r-- | src/include/seccomp.h | 14 |
1 files changed, 14 insertions, 0 deletions
diff --git a/src/include/seccomp.h b/src/include/seccomp.h index b8bfce96b..6d8983b39 100644 --- a/src/include/seccomp.h +++ b/src/include/seccomp.h | |||
@@ -67,6 +67,14 @@ | |||
67 | #include <sys/stat.h> | 67 | #include <sys/stat.h> |
68 | #include <fcntl.h> | 68 | #include <fcntl.h> |
69 | 69 | ||
70 | // From /usr/include/linux/filter.h | ||
71 | //struct sock_filter { /* Filter block */ | ||
72 | // __u16 code; /* Actual filter code */ | ||
73 | // __u8 jt; /* Jump true */ | ||
74 | // __u8 jf; /* Jump false */ | ||
75 | // __u32 k; /* Generic multiuse field */ | ||
76 | //}; | ||
77 | |||
70 | #include <sys/prctl.h> | 78 | #include <sys/prctl.h> |
71 | #ifndef PR_SET_NO_NEW_PRIVS | 79 | #ifndef PR_SET_NO_NEW_PRIVS |
72 | # define PR_SET_NO_NEW_PRIVS 38 | 80 | # define PR_SET_NO_NEW_PRIVS 38 |
@@ -81,6 +89,7 @@ | |||
81 | #define SECCOMP_RET_ALLOW 0x7fff0000U | 89 | #define SECCOMP_RET_ALLOW 0x7fff0000U |
82 | #define SECCOMP_RET_ERRNO 0x00050000U | 90 | #define SECCOMP_RET_ERRNO 0x00050000U |
83 | #define SECCOMP_RET_DATA 0x0000ffffU | 91 | #define SECCOMP_RET_DATA 0x0000ffffU |
92 | |||
84 | struct seccomp_data { | 93 | struct seccomp_data { |
85 | int nr; | 94 | int nr; |
86 | __u32 arch; | 95 | __u32 arch; |
@@ -89,6 +98,11 @@ struct seccomp_data { | |||
89 | }; | 98 | }; |
90 | #endif | 99 | #endif |
91 | 100 | ||
101 | #ifndef SECCOMP_RET_LOG | ||
102 | #define SECCOMP_RET_LOG 0x7ffc0000U | ||
103 | #endif | ||
104 | |||
105 | |||
92 | #if defined(__i386__) | 106 | #if defined(__i386__) |
93 | # define ARCH_NR AUDIT_ARCH_I386 | 107 | # define ARCH_NR AUDIT_ARCH_I386 |
94 | # define ARCH_32 AUDIT_ARCH_I386 | 108 | # define ARCH_32 AUDIT_ARCH_I386 |