• Home
  • Line#
  • Scopes#
  • Navigate#
  • Raw
  • Download
1# Copyright 2017 The Chromium OS Authors. All rights reserved.
2# Use of this source code is governed by a BSD-style license that can be
3# found in the LICENSE file.
4
5close: 1
6dup: 1
7dup2: 1
8execve: 1
9exit_group: 1
10futex: 1
11lseek: 1
12mprotect: 1
13munmap: 1
14read: 1
15recvfrom: 1
16sched_getaffinity: 1
17set_robust_list: 1
18sigaltstack: 1
19# Disallow clone's other than new threads.
20clone: arg0 & 0x00010000
21write: 1
22eventfd2: 1
23poll: 1
24getpid: 1
25# Allow PR_SET_NAME only.
26prctl: arg0 == 15
27access: 1
28arch_prctl: 1
29brk: 1
30exit: 1
31fcntl: 1
32fstat: 1
33ftruncate: 1
34getcwd: 1
35getrlimit: 1
36# TUNGETFEATURES
37ioctl: arg1 == 0x800454CF
38madvise: 1
39memfd_create: 1
40mmap: 1
41open: 1
42openat: 1
43prlimit64: arg2 == 0 && arg3 != 0
44recvmsg: 1
45restart_syscall: 1
46rt_sigaction: 1
47rt_sigprocmask: 1
48sendmsg: 1
49set_tid_address: 1
50stat: 1
51writev: 1
52