Default return actions - Githubissues

twtiger / gosecco

Go seccomp parser and compiler

GNU Lesser General Public License v3.0

53 stars 7 forks source link

Default return actions #24

Closed chelseakomlo closed 8 years ago

chelseakomlo commented 8 years ago

[ ] Blacklist default should be retAllow()
[ ] Whitelist default should be kill if enforce, otherwise trace

chelseakomlo commented 8 years ago

I think these can be assigned in the unifier.

chelseakomlo commented 8 years ago

It isn't clear to me how we are differentiating whitelists and blacklists once the policy has been parsed. I'm going to add that, but we can revert if there is an existing solution to this.

olabini commented 8 years ago

To be crystal clear here - the difference between whitelists and blacklists only becomes interesting once we are compiling the policy - it is mostly concerned with what the default actions are etc.