sys: specify context for syscall filter

Specify a context to enable different processes using different (more restrictive) syscall filters.
2025-12-03 17:55:07 -05:00 · 2019-11-26 14:10:24 +01:00
parent 3e537416a9
commit e6848b1e3f
5 changed files with 12 additions and 6 deletions
--- a/sys.c
+++ b/sys.c
@@ -114,10 +114,10 @@ void SYS_DropRoot(uid_t uid, gid_t gid)

 /* ================================================== */

-void SYS_EnableSystemCallFilter(int level)
+void SYS_EnableSystemCallFilter(int level, SYS_SystemCallContext context)
 {
 #if defined(LINUX) && defined(FEAT_SCFILTER)
-  SYS_Linux_EnableSystemCallFilter(level);
+  SYS_Linux_EnableSystemCallFilter(level, context);
 #else
  LOG_FATAL("system call filter not supported");
 #endif