pub struct TbfHeaderFilterDefaultAllow {}
Expand description
An allow list system call filter based on the TBF header, with a default allow all fallback.
This will check if the process has TbfHeaderPermissions specified. If the process has TbfHeaderPermissions they will be used to determine access permissions. For details on this see the TockBinaryFormat documentation. If no permissions are specified the default is to allow the syscall.
Trait Implementations§
Source§impl SyscallFilter for TbfHeaderFilterDefaultAllow
impl SyscallFilter for TbfHeaderFilterDefaultAllow
Implement default SyscallFilter trait for filtering based on the TBF header.
Source§fn filter_syscall(
&self,
process: &dyn Process,
syscall: &Syscall,
) -> Result<(), ErrorCode>
fn filter_syscall( &self, process: &dyn Process, syscall: &Syscall, ) -> Result<(), ErrorCode>
Check the platform-provided system call filter for all non-yield system
calls. If the system call is allowed for the provided process then
return
Ok(())
. Otherwise, return Err()
with an ErrorCode
that will
be returned to the calling application. The default implementation
allows all system calls. Read moreAuto Trait Implementations§
impl Freeze for TbfHeaderFilterDefaultAllow
impl RefUnwindSafe for TbfHeaderFilterDefaultAllow
impl Send for TbfHeaderFilterDefaultAllow
impl Sync for TbfHeaderFilterDefaultAllow
impl Unpin for TbfHeaderFilterDefaultAllow
impl UnwindSafe for TbfHeaderFilterDefaultAllow
Blanket Implementations§
Source§impl<T> BorrowMut<T> for Twhere
T: ?Sized,
impl<T> BorrowMut<T> for Twhere
T: ?Sized,
Source§fn borrow_mut(&mut self) -> &mut T
fn borrow_mut(&mut self) -> &mut T
Mutably borrows from an owned value. Read more