filter: add logging mode

The logging mode creates a BPF filter where all the syscalls trigger a notification to the seccomp notifier.
author: Alice Frosi <afrosi@redhat.com> 2023-03-23 17:06:00 +0100
committer: Alice Frosi <afrosi@redhat.com> 2023-03-23 17:16:12 +0100
commit: 06b0f6d323c396ca1df000af96fdd07cc69b06e0 (patch)
tree: f3f900d0cd928d6ec2e6d1ce019d87e119998c0c /filter.h
parent: 018da5282e74504c0bf232facd7cb35b392d389f (diff)
download: seitan-06b0f6d323c396ca1df000af96fdd07cc69b06e0.tar
seitan-06b0f6d323c396ca1df000af96fdd07cc69b06e0.tar.gz
seitan-06b0f6d323c396ca1df000af96fdd07cc69b06e0.tar.bz2
seitan-06b0f6d323c396ca1df000af96fdd07cc69b06e0.tar.lz
seitan-06b0f6d323c396ca1df000af96fdd07cc69b06e0.tar.xz
seitan-06b0f6d323c396ca1df000af96fdd07cc69b06e0.tar.zst
seitan-06b0f6d323c396ca1df000af96fdd07cc69b06e0.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/filter.h b/filter.h
index 134a16b..ee5ab12 100644
--- a/filter.h
+++ b/filter.h
@@ -34,6 +34,6 @@ unsigned int right_child(unsigned int parent_index);
 unsigned int create_bfp_program(struct syscall_entry table[],
 				struct sock_filter filter[],
 				unsigned int n_syscall);
-int convert_bpf(char *file, struct bpf_call *entries, int n);
+int convert_bpf(char *file, struct bpf_call *entries, int n, bool log);
 
 #endif
author	Alice Frosi <afrosi@redhat.com>	2023-03-23 17:06:00 +0100
committer	Alice Frosi <afrosi@redhat.com>	2023-03-23 17:16:12 +0100
commit	06b0f6d323c396ca1df000af96fdd07cc69b06e0 (patch)
tree	f3f900d0cd928d6ec2e6d1ce019d87e119998c0c /filter.h
parent	018da5282e74504c0bf232facd7cb35b392d389f (diff)
download	seitan-06b0f6d323c396ca1df000af96fdd07cc69b06e0.tar seitan-06b0f6d323c396ca1df000af96fdd07cc69b06e0.tar.gz seitan-06b0f6d323c396ca1df000af96fdd07cc69b06e0.tar.bz2 seitan-06b0f6d323c396ca1df000af96fdd07cc69b06e0.tar.lz seitan-06b0f6d323c396ca1df000af96fdd07cc69b06e0.tar.xz seitan-06b0f6d323c396ca1df000af96fdd07cc69b06e0.tar.zst seitan-06b0f6d323c396ca1df000af96fdd07cc69b06e0.zip