Skip to content

[Question] libseccomp runtime dependency #4540

Answered by cyphar
sipasing asked this question in Q&A
Discussion options

You must be logged in to vote

(This probably would've been better left as a discussion thread, but I'll answer here anyway.)

The binaries we build and ship on the releases page are statically linked, in order to make sure they work on any Linux system. There is no runtime dependency on libseccomp for those binaries because libseccomp is already embedded inside the binary.

However, distributions usually prefer shared linking (aka dynamic linking) where the binary has a reference to libseccomp.so that the link loader will load when the binary is executed. They usually prefer this because it (in theory) allows you to update the shared library with patches without having to rebuild every dependency, and improves memory us…

Replies: 2 comments 8 replies

Comment options

You must be logged in to vote
0 replies
Answer selected by cyphar
Comment options

You must be logged in to vote
8 replies
@sipasing
Comment options

@cyphar
Comment options

@akhilerm
Comment options

@cyphar
Comment options

@akhilerm
Comment options

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Category
Q&A
Labels
None yet
3 participants
Converted from issue

This discussion was converted from issue #4537 on November 23, 2024 08:29.