Hi I really like libseccomp, but now I am facing a requirement I'm not sure I can accomplish with it and I might need to fallback to direct BPF use.
I was wondering if I can create filters based on the user-space address of the system call? For example: enable SYS_open from the address range on glibc .text section but not from other places. I know I can do it from BPF, but I have a lot of reasons not to ;-) thx Ben -- You received this message because you are subscribed to the Google Groups "libseccomp" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. For more options, visit https://groups.google.com/d/optout.
