Tree - rpms/skopeo - CentOS Git server

rpms / skopeo

Blame SOURCES/seccomp.json

Blob History Raw

		689117	`{`
		689117	`"defaultAction": "SCMP_ACT_ERRNO",`
		689117	`"archMap": [`
		689117	`{`
		689117	`"architecture": "SCMP_ARCH_X86_64",`
		689117	`"subArchitectures": [`
		689117	`"SCMP_ARCH_X86",`
		689117	`"SCMP_ARCH_X32"`
		689117	`]`
		689117	`},`
		689117	`{`
		689117	`"architecture": "SCMP_ARCH_AARCH64",`
		689117	`"subArchitectures": [`
		689117	`"SCMP_ARCH_ARM"`
		689117	`]`
		689117	`},`
		689117	`{`
		689117	`"architecture": "SCMP_ARCH_MIPS64",`
		689117	`"subArchitectures": [`
		689117	`"SCMP_ARCH_MIPS",`
		689117	`"SCMP_ARCH_MIPS64N32"`
		689117	`]`
		689117	`},`
		689117	`{`
		689117	`"architecture": "SCMP_ARCH_MIPS64N32",`
		689117	`"subArchitectures": [`
		689117	`"SCMP_ARCH_MIPS",`
		689117	`"SCMP_ARCH_MIPS64"`
		689117	`]`
		689117	`},`
		689117	`{`
		689117	`"architecture": "SCMP_ARCH_MIPSEL64",`
		689117	`"subArchitectures": [`
		689117	`"SCMP_ARCH_MIPSEL",`
		689117	`"SCMP_ARCH_MIPSEL64N32"`
		689117	`]`
		689117	`},`
		689117	`{`
		689117	`"architecture": "SCMP_ARCH_MIPSEL64N32",`
		689117	`"subArchitectures": [`
		689117	`"SCMP_ARCH_MIPSEL",`
		689117	`"SCMP_ARCH_MIPSEL64"`
		689117	`]`
		689117	`},`
		689117	`{`
		689117	`"architecture": "SCMP_ARCH_S390X",`
		689117	`"subArchitectures": [`
		689117	`"SCMP_ARCH_S390"`
		689117	`]`
		689117	`}`
		689117	`],`
		689117	`"syscalls": [`
		689117	`{`
		689117	`"names": [`
		689117	`"accept",`
		689117	`"accept4",`
		689117	`"access",`
		689117	`"adjtimex",`
		689117	`"alarm",`
		689117	`"bind",`
		689117	`"brk",`
		689117	`"capget",`
		689117	`"capset",`
		689117	`"chdir",`
		689117	`"chmod",`
		689117	`"chown",`
		689117	`"chown32",`
		689117	`"clock_getres",`
		689117	`"clock_gettime",`
		689117	`"clock_nanosleep",`
		689117	`"close",`
		689117	`"connect",`
		689117	`"copy_file_range",`
		689117	`"creat",`
		689117	`"dup",`
		689117	`"dup2",`
		689117	`"dup3",`
		689117	`"epoll_create",`
		689117	`"epoll_create1",`
		689117	`"epoll_ctl",`
		689117	`"epoll_ctl_old",`
		689117	`"epoll_pwait",`
		689117	`"epoll_wait",`
		689117	`"epoll_wait_old",`
		689117	`"eventfd",`
		689117	`"eventfd2",`
		689117	`"execve",`
		689117	`"execveat",`
		689117	`"exit",`
		689117	`"exit_group",`
		689117	`"faccessat",`
		689117	`"fadvise64",`
		689117	`"fadvise64_64",`
		689117	`"fallocate",`
		689117	`"fanotify_mark",`
		689117	`"fchdir",`
		689117	`"fchmod",`
		689117	`"fchmodat",`
		689117	`"fchown",`
		689117	`"fchown32",`
		689117	`"fchownat",`
		689117	`"fcntl",`
		689117	`"fcntl64",`
		689117	`"fdatasync",`
		689117	`"fgetxattr",`
		689117	`"flistxattr",`
		689117	`"flock",`
		689117	`"fork",`
		689117	`"fremovexattr",`
		689117	`"fsetxattr",`
		689117	`"fstat",`
		689117	`"fstat64",`
		689117	`"fstatat64",`
		689117	`"fstatfs",`
		689117	`"fstatfs64",`
		689117	`"fsync",`
		689117	`"ftruncate",`
		689117	`"ftruncate64",`
		689117	`"futex",`
		689117	`"futimesat",`
		689117	`"getcpu",`
		689117	`"getcwd",`
		689117	`"getdents",`
		689117	`"getdents64",`
		689117	`"getegid",`
		689117	`"getegid32",`
		689117	`"geteuid",`
		689117	`"geteuid32",`
		689117	`"getgid",`
		689117	`"getgid32",`
		689117	`"getgroups",`
		689117	`"getgroups32",`
		689117	`"getitimer",`
		689117	`"getpeername",`
		689117	`"getpgid",`
		689117	`"getpgrp",`
		689117	`"getpid",`
		689117	`"getppid",`
		689117	`"getpriority",`
		689117	`"getrandom",`
		689117	`"getresgid",`
		689117	`"getresgid32",`
		689117	`"getresuid",`
		689117	`"getresuid32",`
		689117	`"getrlimit",`
		689117	`"get_robust_list",`
		689117	`"getrusage",`
		689117	`"getsid",`
		689117	`"getsockname",`
		689117	`"getsockopt",`
		689117	`"get_thread_area",`
		689117	`"gettid",`
		689117	`"gettimeofday",`
		689117	`"getuid",`
		689117	`"getuid32",`
		689117	`"getxattr",`
		689117	`"inotify_add_watch",`
		689117	`"inotify_init",`
		689117	`"inotify_init1",`
		689117	`"inotify_rm_watch",`
		689117	`"io_cancel",`
		689117	`"ioctl",`
		689117	`"io_destroy",`
		689117	`"io_getevents",`
		689117	`"ioprio_get",`
		689117	`"ioprio_set",`
		689117	`"io_setup",`
		689117	`"io_submit",`
		689117	`"ipc",`
		689117	`"kill",`
		689117	`"lchown",`
		689117	`"lchown32",`
		689117	`"lgetxattr",`
		689117	`"link",`
		689117	`"linkat",`
		689117	`"listen",`
		689117	`"listxattr",`
		689117	`"llistxattr",`
		689117	`"_llseek",`
		689117	`"lremovexattr",`
		689117	`"lseek",`
		689117	`"lsetxattr",`
		689117	`"lstat",`
		689117	`"lstat64",`
		689117	`"madvise",`
		689117	`"memfd_create",`
		689117	`"mincore",`
		689117	`"mkdir",`
		689117	`"mkdirat",`
		689117	`"mknod",`
		689117	`"mknodat",`
		689117	`"mlock",`
		689117	`"mlock2",`
		689117	`"mlockall",`
		689117	`"mmap",`
		689117	`"mmap2",`
		689117	`"mprotect",`
		689117	`"mq_getsetattr",`
		689117	`"mq_notify",`
		689117	`"mq_open",`
		689117	`"mq_timedreceive",`
		689117	`"mq_timedsend",`
		689117	`"mq_unlink",`
		689117	`"mremap",`
		689117	`"msgctl",`
		689117	`"msgget",`
		689117	`"msgrcv",`
		689117	`"msgsnd",`
		689117	`"msync",`
		689117	`"munlock",`
		689117	`"munlockall",`
		689117	`"munmap",`
		689117	`"nanosleep",`
		689117	`"newfstatat",`
		689117	`"_newselect",`
		689117	`"open",`
		689117	`"openat",`
		689117	`"pause",`
		689117	`"pipe",`
		689117	`"pipe2",`
		689117	`"poll",`
		689117	`"ppoll",`
		689117	`"prctl",`
		689117	`"pread64",`
		689117	`"preadv",`
		689117	`"preadv2",`
		689117	`"prlimit64",`
		689117	`"pselect6",`
		689117	`"pwrite64",`
		689117	`"pwritev",`
		689117	`"pwritev2",`
		689117	`"read",`
		689117	`"readahead",`
		689117	`"readlink",`
		689117	`"readlinkat",`
		689117	`"readv",`
		689117	`"recv",`
		689117	`"recvfrom",`
		689117	`"recvmmsg",`
		689117	`"recvmsg",`
		689117	`"remap_file_pages",`
		689117	`"removexattr",`
		689117	`"rename",`
		689117	`"renameat",`
		689117	`"renameat2",`
		689117	`"restart_syscall",`
		689117	`"rmdir",`
		689117	`"rt_sigaction",`
		689117	`"rt_sigpending",`
		689117	`"rt_sigprocmask",`
		689117	`"rt_sigqueueinfo",`
		689117	`"rt_sigreturn",`
		689117	`"rt_sigsuspend",`
		689117	`"rt_sigtimedwait",`
		689117	`"rt_tgsigqueueinfo",`
		689117	`"sched_getaffinity",`
		689117	`"sched_getattr",`
		689117	`"sched_getparam",`
		689117	`"sched_get_priority_max",`
		689117	`"sched_get_priority_min",`
		689117	`"sched_getscheduler",`
		689117	`"sched_rr_get_interval",`
		689117	`"sched_setaffinity",`
		689117	`"sched_setattr",`
		689117	`"sched_setparam",`
		689117	`"sched_setscheduler",`
		689117	`"sched_yield",`
		689117	`"seccomp",`
		689117	`"select",`
		689117	`"semctl",`
		689117	`"semget",`
		689117	`"semop",`
		689117	`"semtimedop",`
		689117	`"send",`
		689117	`"sendfile",`
		689117	`"sendfile64",`
		689117	`"sendmmsg",`
		689117	`"sendmsg",`
		689117	`"sendto",`
		689117	`"setfsgid",`
		689117	`"setfsgid32",`
		689117	`"setfsuid",`
		689117	`"setfsuid32",`
		689117	`"setgid",`
		689117	`"setgid32",`
		689117	`"setgroups",`
		689117	`"setgroups32",`
		689117	`"setitimer",`
		689117	`"setpgid",`
		689117	`"setpriority",`
		689117	`"setregid",`
		689117	`"setregid32",`
		689117	`"setresgid",`
		689117	`"setresgid32",`
		689117	`"setresuid",`
		689117	`"setresuid32",`
		689117	`"setreuid",`
		689117	`"setreuid32",`
		689117	`"setrlimit",`
		689117	`"set_robust_list",`
		689117	`"setsid",`
		689117	`"setsockopt",`
		689117	`"set_thread_area",`
		689117	`"set_tid_address",`
		689117	`"setuid",`
		689117	`"setuid32",`
		689117	`"setxattr",`
		689117	`"shmat",`
		689117	`"shmctl",`
		689117	`"shmdt",`
		689117	`"shmget",`
		689117	`"shutdown",`
		689117	`"sigaltstack",`
		689117	`"signalfd",`
		689117	`"signalfd4",`
		689117	`"sigreturn",`
		689117	`"socket",`
		689117	`"socketcall",`
		689117	`"socketpair",`
		689117	`"splice",`
		689117	`"stat",`
		689117	`"stat64",`
		689117	`"statfs",`
		689117	`"statfs64",`
		689117	`"statx",`
		689117	`"symlink",`
		689117	`"symlinkat",`
		689117	`"sync",`
		689117	`"sync_file_range",`
		689117	`"syncfs",`
		689117	`"sysinfo",`
		689117	`"syslog",`
		689117	`"tee",`
		689117	`"tgkill",`
		689117	`"time",`
		689117	`"timer_create",`
		689117	`"timer_delete",`
		689117	`"timerfd_create",`
		689117	`"timerfd_gettime",`
		689117	`"timerfd_settime",`
		689117	`"timer_getoverrun",`
		689117	`"timer_gettime",`
		689117	`"timer_settime",`
		689117	`"times",`
		689117	`"tkill",`
		689117	`"truncate",`
		689117	`"truncate64",`
		689117	`"ugetrlimit",`
		689117	`"umask",`
		689117	`"uname",`
		689117	`"unlink",`
		689117	`"unlinkat",`
		689117	`"utime",`
		689117	`"utimensat",`
		689117	`"utimes",`
		689117	`"vfork",`
		689117	`"vmsplice",`
		689117	`"wait4",`
		689117	`"waitid",`
		689117	`"waitpid",`
		689117	`"write",`
		689117	`"writev",`
		689117	`"mount",`
		689117	`"umount2",`
		689117	`"reboot",`
		689117	`"name_to_handle_at",`
		689117	`"unshare"`
		689117	`],`
		689117	`"action": "SCMP_ACT_ALLOW",`
		689117	`"args": [],`
		689117	`"comment": "",`
		689117	`"includes": {},`
		689117	`"excludes": {}`
		689117	`},`
		689117	`{`
		689117	`"names": [`
		689117	`"personality"`
		689117	`],`
		689117	`"action": "SCMP_ACT_ALLOW",`
		689117	`"args": [`
		689117	`{`
		689117	`"index": 0,`
		689117	`"value": 0,`
		689117	`"valueTwo": 0,`
		689117	`"op": "SCMP_CMP_EQ"`
		689117	`}`
		689117	`],`
		689117	`"comment": "",`
		689117	`"includes": {},`
		689117	`"excludes": {}`
		689117	`},`
		689117	`{`
		689117	`"names": [`
		689117	`"personality"`
		689117	`],`
		689117	`"action": "SCMP_ACT_ALLOW",`
		689117	`"args": [`
		689117	`{`
		689117	`"index": 0,`
		689117	`"value": 8,`
		689117	`"valueTwo": 0,`
		689117	`"op": "SCMP_CMP_EQ"`
		689117	`}`
		689117	`],`
		689117	`"comment": "",`
		689117	`"includes": {},`
		689117	`"excludes": {}`
		689117	`},`
		689117	`{`
		689117	`"names": [`
		689117	`"personality"`
		689117	`],`
		689117	`"action": "SCMP_ACT_ALLOW",`
		689117	`"args": [`
		689117	`{`
		689117	`"index": 0,`
		689117	`"value": 131072,`
		689117	`"valueTwo": 0,`
		689117	`"op": "SCMP_CMP_EQ"`
		689117	`}`
		689117	`],`
		689117	`"comment": "",`
		689117	`"includes": {},`
		689117	`"excludes": {}`
		689117	`},`
		689117	`{`
		689117	`"names": [`
		689117	`"personality"`
		689117	`],`
		689117	`"action": "SCMP_ACT_ALLOW",`
		689117	`"args": [`
		689117	`{`
		689117	`"index": 0,`
		689117	`"value": 131080,`
		689117	`"valueTwo": 0,`
		689117	`"op": "SCMP_CMP_EQ"`
		689117	`}`
		689117	`],`
		689117	`"comment": "",`
		689117	`"includes": {},`
		689117	`"excludes": {}`
		689117	`},`
		689117	`{`
		689117	`"names": [`
		689117	`"personality"`
		689117	`],`
		689117	`"action": "SCMP_ACT_ALLOW",`
		689117	`"args": [`
		689117	`{`
		689117	`"index": 0,`
		689117	`"value": 4294967295,`
		689117	`"valueTwo": 0,`
		689117	`"op": "SCMP_CMP_EQ"`
		689117	`}`
		689117	`],`
		689117	`"comment": "",`
		689117	`"includes": {},`
		689117	`"excludes": {}`
		689117	`},`
		689117	`{`
		689117	`"names": [`
		689117	`"sync_file_range2"`
		689117	`],`
		689117	`"action": "SCMP_ACT_ALLOW",`
		689117	`"args": [],`
		689117	`"comment": "",`
		689117	`"includes": {`
		689117	`"arches": [`
		689117	`"ppc64le"`
		689117	`]`
		689117	`},`
		689117	`"excludes": {}`
		689117	`},`
		689117	`{`
		689117	`"names": [`
		689117	`"arm_fadvise64_64",`
		689117	`"arm_sync_file_range",`
		689117	`"sync_file_range2",`
		689117	`"breakpoint",`
		689117	`"cacheflush",`
		689117	`"set_tls"`
		689117	`],`
		689117	`"action": "SCMP_ACT_ALLOW",`
		689117	`"args": [],`
		689117	`"comment": "",`
		689117	`"includes": {`
		689117	`"arches": [`
		689117	`"arm",`
		689117	`"arm64"`
		689117	`]`
		689117	`},`
		689117	`"excludes": {}`
		689117	`},`
		689117	`{`
		689117	`"names": [`
		689117	`"arch_prctl"`
		689117	`],`
		689117	`"action": "SCMP_ACT_ALLOW",`
		689117	`"args": [],`
		689117	`"comment": "",`
		689117	`"includes": {`
		689117	`"arches": [`
		689117	`"amd64",`
		689117	`"x32"`
		689117	`]`
		689117	`},`
		689117	`"excludes": {}`
		689117	`},`
		689117	`{`
		689117	`"names": [`
		689117	`"modify_ldt"`
		689117	`],`
		689117	`"action": "SCMP_ACT_ALLOW",`
		689117	`"args": [],`
		689117	`"comment": "",`
		689117	`"includes": {`
		689117	`"arches": [`
		689117	`"amd64",`
		689117	`"x32",`
		689117	`"x86"`
		689117	`]`
		689117	`},`
		689117	`"excludes": {}`
		689117	`},`
		689117	`{`
		689117	`"names": [`
		689117	`"s390_pci_mmio_read",`
		689117	`"s390_pci_mmio_write",`
		689117	`"s390_runtime_instr"`
		689117	`],`
		689117	`"action": "SCMP_ACT_ALLOW",`
		689117	`"args": [],`
		689117	`"comment": "",`
		689117	`"includes": {`
		689117	`"arches": [`
		689117	`"s390",`
		689117	`"s390x"`
		689117	`]`
		689117	`},`
		689117	`"excludes": {}`
		689117	`},`
		689117	`{`
		689117	`"names": [`
		689117	`"open_by_handle_at"`
		689117	`],`
		689117	`"action": "SCMP_ACT_ALLOW",`
		689117	`"args": [],`
		689117	`"comment": "",`
		689117	`"includes": {`
		689117	`"caps": [`
		689117	`"CAP_DAC_READ_SEARCH"`
		689117	`]`
		689117	`},`
		689117	`"excludes": {}`
		689117	`},`
		689117	`{`
		689117	`"names": [`
		689117	`"bpf",`
		689117	`"clone",`
		689117	`"fanotify_init",`
		689117	`"lookup_dcookie",`
		689117	`"mount",`
		689117	`"name_to_handle_at",`
		689117	`"perf_event_open",`
		689117	`"quotactl",`
		689117	`"setdomainname",`
		689117	`"sethostname",`
		689117	`"setns",`
		689117	`"umount",`
		689117	`"umount2",`
		689117	`"unshare"`
		689117	`],`
		689117	`"action": "SCMP_ACT_ALLOW",`
		689117	`"args": [],`
		689117	`"comment": "",`
		689117	`"includes": {`
		689117	`"caps": [`
		689117	`"CAP_SYS_ADMIN"`
		689117	`]`
		689117	`},`
		689117	`"excludes": {}`
		689117	`},`
		689117	`{`
		689117	`"names": [`
		689117	`"clone"`
		689117	`],`
		689117	`"action": "SCMP_ACT_ALLOW",`
		689117	`"args": [`
		689117	`{`
		689117	`"index": 0,`
		689117	`"value": 2080505856,`
		689117	`"valueTwo": 0,`
		689117	`"op": "SCMP_CMP_MASKED_EQ"`
		689117	`}`
		689117	`],`
		689117	`"comment": "",`
		689117	`"includes": {},`
		689117	`"excludes": {`
		689117	`"caps": [`
		689117	`"CAP_SYS_ADMIN"`
		689117	`],`
		689117	`"arches": [`
		689117	`"s390",`
		689117	`"s390x"`
		689117	`]`
		689117	`}`
		689117	`},`
		689117	`{`
		689117	`"names": [`
		689117	`"clone"`
		689117	`],`
		689117	`"action": "SCMP_ACT_ALLOW",`
		689117	`"args": [`
		689117	`{`
		689117	`"index": 1,`
		689117	`"value": 2080505856,`
		689117	`"valueTwo": 0,`
		689117	`"op": "SCMP_CMP_MASKED_EQ"`
		689117	`}`
		689117	`],`
		689117	`"comment": "s390 parameter ordering for clone is different",`
		689117	`"includes": {`
		689117	`"arches": [`
		689117	`"s390",`
		689117	`"s390x"`
		689117	`]`
		689117	`},`
		689117	`"excludes": {`
		689117	`"caps": [`
		689117	`"CAP_SYS_ADMIN"`
		689117	`]`
		689117	`}`
		689117	`},`
		689117	`{`
		689117	`"names": [`
		689117	`"reboot"`
		689117	`],`
		689117	`"action": "SCMP_ACT_ALLOW",`
		689117	`"args": [],`
		689117	`"comment": "",`
		689117	`"includes": {`
		689117	`"caps": [`
		689117	`"CAP_SYS_BOOT"`
		689117	`]`
		689117	`},`
		689117	`"excludes": {}`
		689117	`},`
		689117	`{`
		689117	`"names": [`
		689117	`"chroot"`
		689117	`],`
		689117	`"action": "SCMP_ACT_ALLOW",`
		689117	`"args": [],`
		689117	`"comment": "",`
		689117	`"includes": {`
		689117	`"caps": [`
		689117	`"CAP_SYS_CHROOT"`
		689117	`]`
		689117	`},`
		689117	`"excludes": {}`
		689117	`},`
		689117	`{`
		689117	`"names": [`
		689117	`"delete_module",`
		689117	`"init_module",`
		689117	`"finit_module",`
		689117	`"query_module"`
		689117	`],`
		689117	`"action": "SCMP_ACT_ALLOW",`
		689117	`"args": [],`
		689117	`"comment": "",`
		689117	`"includes": {`
		689117	`"caps": [`
		689117	`"CAP_SYS_MODULE"`
		689117	`]`
		689117	`},`
		689117	`"excludes": {}`
		689117	`},`
		689117	`{`
		689117	`"names": [`
		689117	`"get_mempolicy",`
		689117	`"mbind",`
		689117	`"name_to_handle_at",`
		689117	`"set_mempolicy"`
		689117	`],`
		689117	`"action": "SCMP_ACT_ALLOW",`
		689117	`"args": [],`
		689117	`"comment": "",`
		689117	`"includes": {`
		689117	`"caps": [`
		689117	`"CAP_SYS_NICE"`
		689117	`]`
		689117	`},`
		689117	`"excludes": {}`
		689117	`},`
		689117	`{`
		689117	`"names": [`
		689117	`"acct"`
		689117	`],`
		689117	`"action": "SCMP_ACT_ALLOW",`
		689117	`"args": [],`
		689117	`"comment": "",`
		689117	`"includes": {`
		689117	`"caps": [`
		689117	`"CAP_SYS_PACCT"`
		689117	`]`
		689117	`},`
		689117	`"excludes": {}`
		689117	`},`
		689117	`{`
		689117	`"names": [`
		689117	`"kcmp",`
		689117	`"process_vm_readv",`
		689117	`"process_vm_writev",`
		689117	`"ptrace"`
		689117	`],`
		689117	`"action": "SCMP_ACT_ALLOW",`
		689117	`"args": [],`
		689117	`"comment": "",`
		689117	`"includes": {`
		689117	`"caps": [`
		689117	`"CAP_SYS_PTRACE"`
		689117	`]`
		689117	`},`
		689117	`"excludes": {}`
		689117	`},`
		689117	`{`
		689117	`"names": [`
		689117	`"iopl",`
		689117	`"ioperm"`
		689117	`],`
		689117	`"action": "SCMP_ACT_ALLOW",`
		689117	`"args": [],`
		689117	`"comment": "",`
		689117	`"includes": {`
		689117	`"caps": [`
		689117	`"CAP_SYS_RAWIO"`
		689117	`]`
		689117	`},`
		689117	`"excludes": {}`
		689117	`},`
		689117	`{`
		689117	`"names": [`
		689117	`"settimeofday",`
		689117	`"stime",`
		689117	`"clock_settime"`
		689117	`],`
		689117	`"action": "SCMP_ACT_ALLOW",`
		689117	`"args": [],`
		689117	`"comment": "",`
		689117	`"includes": {`
		689117	`"caps": [`
		689117	`"CAP_SYS_TIME"`
		689117	`]`
		689117	`},`
		689117	`"excludes": {}`
		689117	`},`
		689117	`{`
		689117	`"names": [`
		689117	`"vhangup"`
		689117	`],`
		689117	`"action": "SCMP_ACT_ALLOW",`
		689117	`"args": [],`
		689117	`"comment": "",`
		689117	`"includes": {`
		689117	`"caps": [`
		689117	`"CAP_SYS_TTY_CONFIG"`
		689117	`]`
		689117	`},`
		689117	`"excludes": {}`
		689117	`}`
		689117	`]`
		689117	`}`

rpms / skopeo

Source Code

Blame SOURCES/seccomp.json