-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathseccomp.json
More file actions
54 lines (54 loc) · 3.75 KB
/
seccomp.json
File metadata and controls
54 lines (54 loc) · 3.75 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
{
"defaultAction": "SCMP_ACT_ERRNO",
"defaultErrnoRet": 1,
"archMap": [
{ "architecture": "SCMP_ARCH_X86_64", "subArchitectures": ["SCMP_ARCH_X86", "SCMP_ARCH_X32"] },
{ "architecture": "SCMP_ARCH_AARCH64", "subArchitectures": ["SCMP_ARCH_ARM"] }
],
"syscalls": [
{
"names": [
"accept", "accept4", "access", "arch_prctl", "bind", "brk", "capget", "capset",
"chdir", "chmod", "chown", "clock_getres", "clock_gettime", "clock_nanosleep",
"clone", "clone3", "close", "connect", "dup", "dup2", "dup3", "epoll_create",
"epoll_create1", "epoll_ctl", "epoll_pwait", "epoll_pwait2", "epoll_wait",
"eventfd", "eventfd2", "execve", "execveat", "exit", "exit_group", "faccessat",
"faccessat2", "fadvise64", "fallocate", "fchdir", "fchmod", "fchmodat", "fchown",
"fchownat", "fcntl", "fdatasync", "fgetxattr", "flistxattr", "flock", "fork",
"fremovexattr", "fsetxattr", "fstat", "fstatfs", "fsync", "ftruncate", "futex",
"futex_waitv", "getcwd", "getdents", "getdents64", "getegid", "geteuid", "getgid",
"getgroups", "getitimer", "getpeername", "getpgid", "getpgrp", "getpid", "getppid",
"getpriority", "getrandom", "getresgid", "getresuid", "getrlimit", "getrusage",
"getsid", "getsockname", "getsockopt", "gettid", "gettimeofday", "getuid",
"getxattr", "inotify_add_watch", "inotify_init", "inotify_init1", "inotify_rm_watch",
"ioctl", "kill", "lgetxattr", "link", "linkat", "listen", "listxattr", "llistxattr",
"lremovexattr", "lseek", "lsetxattr", "lstat", "madvise", "membarrier", "memfd_create",
"mincore", "mkdir", "mkdirat", "mknod", "mknodat", "mlock", "mlock2", "mlockall",
"mmap", "mprotect", "mq_getsetattr", "mq_notify", "mq_open", "mq_timedreceive",
"mq_timedsend", "mq_unlink", "mremap", "msgctl", "msgget", "msgrcv", "msgsnd",
"msync", "munlock", "munlockall", "munmap", "nanosleep", "newfstatat", "open",
"openat", "openat2", "pause", "pipe", "pipe2", "poll", "ppoll", "prctl", "pread64",
"preadv", "preadv2", "prlimit64", "pselect6", "pwrite64", "pwritev", "pwritev2",
"read", "readahead", "readlink", "readlinkat", "readv", "recv", "recvfrom",
"recvmmsg", "recvmsg", "removexattr", "rename", "renameat", "renameat2", "restart_syscall",
"rmdir", "rseq", "rt_sigaction", "rt_sigpending", "rt_sigprocmask", "rt_sigqueueinfo",
"rt_sigreturn", "rt_sigsuspend", "rt_sigtimedwait", "rt_tgsigqueueinfo", "sched_getaffinity",
"sched_getattr", "sched_getparam", "sched_get_priority_max", "sched_get_priority_min",
"sched_getscheduler", "sched_setaffinity", "sched_setattr", "sched_setparam",
"sched_setscheduler", "sched_yield", "seccomp", "select", "semctl", "semget", "semop",
"semtimedop", "send", "sendfile", "sendmmsg", "sendmsg", "sendto", "setfsgid",
"setfsuid", "setgid", "setgroups", "setitimer", "setpgid", "setpriority", "setregid",
"setresgid", "setresuid", "setreuid", "setrlimit", "setsid", "setsockopt", "setuid",
"setxattr", "shmat", "shmctl", "shmdt", "shmget", "shutdown", "sigaltstack", "signalfd",
"signalfd4", "socket", "socketpair", "splice", "stat", "statfs", "statx", "symlink",
"symlinkat", "sync", "sync_file_range", "syncfs", "sysinfo", "tee", "tgkill", "time",
"timer_create", "timer_delete", "timerfd_create", "timerfd_gettime", "timerfd_settime",
"timer_getoverrun", "timer_gettime", "timer_settime", "times", "tkill", "truncate",
"umask", "uname", "unlink", "unlinkat", "utime", "utimensat", "utimes", "vfork",
"vmsplice", "wait4", "waitid", "write", "writev",
"io_uring_setup", "io_uring_enter", "io_uring_register"
],
"action": "SCMP_ACT_ALLOW"
}
]
}