seccomp: add new helper call seccomp_load_filter_set()

This allows us to unify most of the code in apply_protect_kernel_modules() and apply_private_devices().
author: Lennart Poettering <lennart@poettering.net> 2016-10-21 21:18:46 +0200
committer: Lennart Poettering <lennart@poettering.net> 2016-10-24 17:32:50 +0200
commit: a3be2849b2570482757f83181b999febbfc7bbef (patch)
tree: 332aa307c5a8120dc25a3472e18df4383c88c50b /src/shared/seccomp-util.h
parent: 60f547cf684d27e8c0e7ff44663650e90f9e0bcf (diff)
1 files changed, 2 insertions, 0 deletions
diff --git a/src/shared/seccomp-util.h b/src/shared/seccomp-util.h
index 2de429a772..667687b14f 100644
--- a/src/shared/seccomp-util.h
+++ b/src/shared/seccomp-util.h
@@ -59,3 +59,5 @@ extern const SyscallFilterSet syscall_filter_sets[];
 const SyscallFilterSet *syscall_filter_set_find(const char *name);
 
 int seccomp_add_syscall_filter_set(scmp_filter_ctx seccomp, const SyscallFilterSet *set, uint32_t action);
+
+int seccomp_load_filter_set(uint32_t default_action, const SyscallFilterSet *set, uint32_t action);
author	Lennart Poettering <lennart@poettering.net>	2016-10-21 21:18:46 +0200
committer	Lennart Poettering <lennart@poettering.net>	2016-10-24 17:32:50 +0200
commit	a3be2849b2570482757f83181b999febbfc7bbef (patch)
tree	332aa307c5a8120dc25a3472e18df4383c88c50b /src/shared/seccomp-util.h
parent	60f547cf684d27e8c0e7ff44663650e90f9e0bcf (diff)