GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → seccomp → Libseccomp

seccomp / Libseccomp

Licence: lgpl-2.1
The main libseccomp repository

Programming Languages

c
50402 projects - #5 most used programming language

Labels

bpf

Projects that are alternatives of or similar to Libseccomp

p2pflow
Ethereum p2p traffic analysis with eBPF
Stars: ✭ 24 (-95.09%)
Mutual labels:  bpf
bpflock
bpflock - eBPF driven security for locking and auditing Linux machines
Stars: ✭ 54 (-88.96%)
Mutual labels:  bpf
el7-bpf-specs
RPM specs for building bpf related tools on CentOS 7
Stars: ✭ 38 (-92.23%)
Mutual labels:  bpf
cgnet
No description or website provided.
Stars: ✭ 78 (-84.05%)
Mutual labels:  bpf
bpfps
A tool to list and diagnose bpf programs. (Who watches the watchers..? :)
Stars: ✭ 93 (-80.98%)
Mutual labels:  bpf
oxdpus
A toy tool that leverages the super powers of XDP to bring in-kernel IP filtering
Stars: ✭ 59 (-87.93%)
Mutual labels:  bpf
KubeArmor
Cloud-native Runtime Security Enforcement System
Stars: ✭ 434 (-11.25%)
Mutual labels:  bpf
Bpftrace
High-level tracing language for Linux eBPF
Stars: ✭ 4,526 (+825.56%)
Mutual labels:  bpf
tcpslice
tcpslice concatenates multiple pcap files together, or extracts time slices from one or more pcap files.
Stars: ✭ 48 (-90.18%)
Mutual labels:  bpf
libebpf
Experiemental userspace eBPF library
Stars: ✭ 14 (-97.14%)
Mutual labels:  bpf
XDP-Firewall
An XDP firewall that is capable of filtering specific packets based off of filtering rules specified in a config file. IPv6 is supported!
Stars: ✭ 129 (-73.62%)
Mutual labels:  bpf
packiffer
lightweight cross-platform networking toolkit
Stars: ✭ 52 (-89.37%)
Mutual labels:  bpf
ocaml-bpf
OCaml embedded eBPF assembler
Stars: ✭ 18 (-96.32%)
Mutual labels:  bpf
go-tc
traffic control in pure go - it allows to read and alter queues, filters and classes
Stars: ✭ 245 (-49.9%)
Mutual labels:  bpf
Rbpf
Rust virtual machine and JIT compiler for eBPF programs
Stars: ✭ 306 (-37.42%)
Mutual labels:  bpf
ebpfpub
ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.
Stars: ✭ 86 (-82.41%)
Mutual labels:  bpf
pwru
Packet, where are you? -- Linux kernel networking debugger
Stars: ✭ 694 (+41.92%)
Mutual labels:  bpf
Bpfd
Framework for running BPF programs with rules on Linux as a daemon. Container aware.
Stars: ✭ 396 (-19.02%)
Mutual labels:  bpf
Libbpf
Automated upstream mirror for libbpf stand-alone build.
Stars: ✭ 353 (-27.81%)
Mutual labels:  bpf
bpfjit
Just-in-Time compilation of bpf
Stars: ✭ 26 (-94.68%)
Mutual labels:  bpf
View All Similar Projects ➔

Enhanced Seccomp Helper Library

https://github.com/seccomp/libseccomp

CII Best Practices Build Status Coverage Status Language grade: C/C++

The libseccomp library provides an easy to use, platform independent, interface to the Linux Kernel's syscall filtering mechanism. The libseccomp API is designed to abstract away the underlying BPF based syscall filter language and present a more conventional function-call based filtering interface that should be familiar to, and easily adopted by, application developers.

Online Resources

The library source repository currently lives on GitHub at the following URL:

The Go language bindings repository currently lives on GitHub at the following URL:

The project mailing list is currently hosted on Google Groups at the URL below, please note that a Google account is not required to subscribe to the mailing list.

Supported Architectures

The libseccomp library currently supports the architectures listed below:

  • 32-bit x86 (x86)
  • 64-bit x86 (x86_64)
  • 64-bit x86 x32 ABI (x32)
  • 32-bit ARM EABI (arm)
  • 64-bit ARM (aarch64)
  • 32-bit MIPS (mips)
  • 32-bit MIPS little endian (mipsel)
  • 64-bit MIPS (mips64)
  • 64-bit MIPS little endian (mipsel64)
  • 64-bit MIPS n32 ABI (mips64n32)
  • 64-bit MIPS n32 ABI little endian (mipsel64n32)
  • 32-bit PA-RISC (parisc)
  • 64-bit PA-RISC (parisc64)
  • 32-bit PowerPC (ppc)
  • 64-bit PowerPC (ppc64)
  • 64-bit PowerPC little endian (ppc64le)
  • 32-bit s390 (s390)
  • 64-bit s390x (s390x)
  • 64-bit RISC-V (riscv64)
  • 32-bit SuperH big endian (sheb)
  • 32-bit SuperH (sh)

Documentation

The "doc/" directory contains all of the currently available documentation, mostly in the form of manpages. The top level directory also contains a README file (this file) as well as the LICENSE, CREDITS, CONTRIBUTING, and CHANGELOG files.

Those who are interested in contributing to the the project are encouraged to read the CONTRIBUTING in the top level directory.

Verifying Release Tarballs

Before use you should verify the downloaded release tarballs and checksums using the detached signatures supplied as part of the release; the detached signature files are the "*.asc" files. If you have GnuPG installed you can verify detached signatures using the following command:

# gpg --verify file.asc file

At present, only the following keys, specified via the fingerprints below, are authorized to sign official libseccomp releases:

Paul Moore <[email protected]>
7100 AADF AE6E 6E94 0D2E  0AD6 55E4 5A5A E8CA 7C8A

Tom Hromatka <[email protected]>
47A6 8FCE 37C7 D702 4FD6  5E11 356C E62C 2B52 4099

More information on GnuPG can be found at their website, https://gnupg.org.

Building and Installing the Library

If you are building the libseccomp library from an official release tarball, you should follow the familiar three step process used by most autotools based applications:

# ./configure
# make [V=0|1]
# make install

However, if you are building the library from sources retrieved from the source repository you may need to run the autogen.sh script before running configure. In both cases, running "./configure -h" will display a list of build-time configuration options.

Testing the Library

There are a number of tests located in the "tests/" directory and a make target which can be used to help automate their execution. If you want to run the standard regression tests you can execute the following after building the library:

# make check

These tests can be safely run on any Linux system, even those where the kernel does not support seccomp-bpf (seccomp mode 2). However, be warned that the test run can take a while to run and produces a lot of output.

The generated seccomp-bpf filters can be tested on a live system using the "live" tests; they can be executed using the following commands:

# make check-build
# (cd tests; ./regression -T live)

These tests will fail if the running Linux Kernel does not provide the necessary support.

Developer Tools

The "tools/" directory includes a number of tools which may be helpful in the development of the library, or applications using the library. Not all of these tools are installed by default.

Bug and Vulnerability Reporting

Problems with the libseccomp library can be reported using the GitHub issue tracking system or the mailing list. Those who wish to privately report potential vulnerabilities should follow the directions in SECURITY.md.

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].