Struct oci_spec::runtime::SeccompBuilder

pub struct SeccompBuilder { /* private fields */ }

Builder for Seccomp.

Implementations

impl SeccompBuilder

pub fn enabled<VALUE: Into<bool>>(self, value: VALUE) -> Self

“enabled” field represents whether seccomp support is compiled in. “None” means “unknown”, not “false”.

pub fn actions<VALUE: Into<Vec<LinuxSeccompAction>>>(self, value: VALUE) -> Self

“actions” field represents the list of the recognized actions. “None” means “unknown”, not “no support for any action”.

pub fn operators<VALUE: Into<Vec<String>>>(self, value: VALUE) -> Self

“operators” field represents the list of the recognized operators. “None” means “unknown”, not “no support for any operator”.

pub fn archs<VALUE: Into<Vec<Arch>>>(self, value: VALUE) -> Self

“archs” field represents the list of the recognized architectures. “None” means “unknown”, not “no support for any architecture”.

pub fn known_flags<VALUE: Into<Vec<String>>>(self, value: VALUE) -> Self

“knownFlags” field represents the list of the recognized filter flags. “None” means “unknown”, not “no flags are recognized”.

pub fn supported_flags<VALUE: Into<Vec<String>>>(self, value: VALUE) -> Self

“supportedFlags” field represents the list of the supported filter flags. This list may be a subset of the “knownFlags” due to some of unsupported flags by the current kernel and/or libseccomp. “None” means “unknown”, not “no flags are supported”.

pub fn build(self) -> Result<Seccomp, OciSpecError>

Builds a new Seccomp.

Errors

If a required field has not been initialized.

Trait Implementations

impl Default for SeccompBuilder

fn default() -> Self

Returns the “default value” for a type.