github/containerd
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases 2 Wiki Activity

Merge pull request #6494 from AkihiroSuda/seccomp-5.16

Browse Source 
seccomp: kernel 5.11 -> 5.16
This commit is contained in:
Derek McGowan 2022-02-01 18:13:36 -08:00 committed by GitHub
commit d6a576ae6e
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 8 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
contrib/seccomp/seccomp_default.go
View File

@ -128,6 +128,7 @@ func DefaultProfile(sp *specs.Spec) *specs.LinuxSeccomp {
"ftruncate64", "ftruncate64",
"futex", "futex",
"futex_time64", "futex_time64",
"futex_waitv",
"futimesat", "futimesat",
"getcpu", "getcpu",
"getcwd", "getcwd",
@ -184,6 +185,9 @@ func DefaultProfile(sp *specs.Spec) *specs.LinuxSeccomp {
"io_uring_setup", "io_uring_setup",
"ipc", "ipc",
"kill", "kill",
"landlock_add_rule",
"landlock_create_ruleset",
"landlock_restrict_self",
"lchown", "lchown",
"lchown32", "lchown32",
"lgetxattr", "lgetxattr",
@ -201,6 +205,7 @@ func DefaultProfile(sp *specs.Spec) *specs.LinuxSeccomp {
"madvise", "madvise",
"membarrier", "membarrier",
"memfd_create", "memfd_create",
"memfd_secret",
"mincore", "mincore",
"mkdir", "mkdir",
"mkdirat", "mkdirat",
@ -248,6 +253,7 @@ func DefaultProfile(sp *specs.Spec) *specs.LinuxSeccomp {
"preadv", "preadv",
"preadv2", "preadv2",
"prlimit64", "prlimit64",
"process_mrelease",
"pselect6", "pselect6",
"pselect6_time64", "pselect6_time64",
"pwrite64", "pwrite64",
@ -537,11 +543,13 @@ func DefaultProfile(sp *specs.Spec) *specs.LinuxSeccomp {
"fspick", "fspick",
"lookup_dcookie", "lookup_dcookie",
"mount", "mount",
"mount_setattr",
"move_mount", "move_mount",
"name_to_handle_at", "name_to_handle_at",
"open_tree", "open_tree",
"perf_event_open", "perf_event_open",
"quotactl", "quotactl",
"quotactl_fd",
"setdomainname", "setdomainname",
"sethostname", "sethostname",
"setns", "setns",