Getting away from libseccomp #2724

utam0k · 2024-03-06T12:17:45Z

We will start looking into the possibility of implementing our own seccomp. libseccomp dependency issues have erupted in various places.
It would not be necessary to actually support that many architectures. However, we only need to know the number of the system call for each archs.

utam0k · 2024-03-06T12:18:25Z

I'll give it a try to implement PoC

jprendes · 2024-03-06T12:23:51Z

That's great!
Particularly, as libseccomp is LGPL licensed.
I know runc adds the libseecomp tarbal to their release due to static builds (see here), something we don't currently do.

YJDoc2 · 2024-03-06T16:12:17Z

This would be great! Let me know if I can help in any way 💜

YJDoc2 · 2024-04-11T07:07:52Z

Hey, we should also take a look at https://github.com/rust-vmm/seccompiler

utam0k · 2024-04-11T13:25:57Z

Hey, we should also take a look at https://github.com/rust-vmm/seccompiler

Thanks for sharing. I have already checked it but it doesn't support seccomp notify.

utam0k self-assigned this Mar 6, 2024

utam0k added the kind/feature label Mar 6, 2024

utam0k mentioned this issue Mar 16, 2024

Init a seccomp project #2729

Merged

Mossaka mentioned this issue Apr 8, 2024

method not found in ScmpFilterContext containerd/runwasi#486

Open

utam0k mentioned this issue Apr 29, 2024

seccomp: Add a case for checking arguments #2775

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Getting away from libseccomp #2724

Getting away from libseccomp #2724

utam0k commented Mar 6, 2024

utam0k commented Mar 6, 2024

jprendes commented Mar 6, 2024

YJDoc2 commented Mar 6, 2024

YJDoc2 commented Apr 11, 2024

utam0k commented Apr 11, 2024

Getting away from libseccomp #2724

Getting away from libseccomp #2724

Comments

utam0k commented Mar 6, 2024

utam0k commented Mar 6, 2024

jprendes commented Mar 6, 2024

YJDoc2 commented Mar 6, 2024

YJDoc2 commented Apr 11, 2024

utam0k commented Apr 11, 2024