https://github.com/seccomp/libseccomp-golang
The libseccomp library provides an easy to use, platform independent, interface to the Linux Kernel's syscall filtering mechanism. The libseccomp API is designed to abstract away the underlying BPF based syscall filter language and present a more conventional function-call based filtering interface that should be familiar to, and easily adopted by, application developers.
The libseccomp-golang library provides a Go based interface to the libseccomp library.
The library source repository currently lives on GitHub at the following URLs:
Documentation for this package is also available at:
Starting with libseccomp-golang v0.10.0, the git tag corresponding to each release should be signed by one of the libseccomp-golang maintainers. It is recommended that before use you verify the release tags using the following command:
% git tag -v <tag>
At present, only the following keys, specified via the fingerprints below, are authorized to sign official libseccomp-golang release tags:
Paul Moore <[email protected]>
7100 AADF AE6E 6E94 0D2E 0AD6 55E4 5A5A E8CA 7C8A
Tom Hromatka <[email protected]>
47A6 8FCE 37C7 D702 4FD6 5E11 356C E62C 2B52 4099
Kir Kolyshkin <[email protected]>
C242 8CD7 5720 FACD CF76 B6EA 17DE 5ECB 75A1 100E
More information on GnuPG and git tag verification can be found at their respective websites: https://git-scm.com/docs/git and https://gnupg.org.
% go get github.com/seccomp/libseccomp-golang
See CONTRIBUTING.md.