github.com/opencontainers/runc@v1.2.0-rc.1.0.20240520010911-492dc558cdd6/tests/integration/testdata/seccomp_syscall_test1.json (about) 1 { 2 "defaultAction": "SCMP_ACT_ERRNO", 3 "architectures": [ 4 "SCMP_ARCH_X86", 5 "SCMP_ARCH_X32", 6 "SCMP_ARCH_X86_64", 7 "SCMP_ARCH_AARCH64", 8 "SCMP_ARCH_ARM" 9 ], 10 "syscalls": [ 11 { 12 "action": "SCMP_ACT_ALLOW", 13 "names": [ 14 "accept", 15 "accept4", 16 "access", 17 "adjtimex", 18 "alarm", 19 "arch_prctl", 20 "bind", 21 "brk", 22 "capget", 23 "capset", 24 "chdir", 25 "chmod", 26 "chown", 27 "chown32", 28 "clock_adjtime", 29 "clock_adjtime64", 30 "clock_getres", 31 "clock_getres_time64", 32 "clock_gettime", 33 "clock_gettime64", 34 "clock_nanosleep", 35 "clock_nanosleep_time64", 36 "close", 37 "connect", 38 "copy_file_range", 39 "creat", 40 "dup", 41 "dup2", 42 "epoll_create", 43 "epoll_create1", 44 "epoll_ctl", 45 "epoll_ctl_old", 46 "epoll_pwait", 47 "epoll_wait", 48 "epoll_wait_old", 49 "eventfd", 50 "eventfd2", 51 "execve", 52 "execveat", 53 "exit", 54 "exit_group", 55 "faccessat", 56 "faccessat2", 57 "fadvise64", 58 "fadvise64_64", 59 "fallocate", 60 "fanotify_mark", 61 "fchdir", 62 "fchmod", 63 "fchmodat", 64 "fchown", 65 "fchown32", 66 "fchownat", 67 "fcntl", 68 "fcntl64", 69 "fdatasync", 70 "fgetxattr", 71 "flistxattr", 72 "flock", 73 "fork", 74 "fremovexattr", 75 "fsetxattr", 76 "fstat", 77 "fstat64", 78 "fstatat64", 79 "fstatfs", 80 "fstatfs64", 81 "fsync", 82 "futex", 83 "futex_time64", 84 "futimesat", 85 "getcpu", 86 "getcwd", 87 "getdents", 88 "getdents64", 89 "getegid", 90 "getegid32", 91 "geteuid", 92 "geteuid32", 93 "getgid", 94 "getgid32", 95 "getgroups", 96 "getgroups32", 97 "getitimer", 98 "getpeername", 99 "getpgid", 100 "getpgrp", 101 "getpid", 102 "getppid", 103 "getpriority", 104 "getrandom", 105 "getresgid", 106 "getresgid32", 107 "getresuid", 108 "getresuid32", 109 "getrlimit", 110 "get_robust_list", 111 "getrusage", 112 "getsid", 113 "getsockname", 114 "getsockopt", 115 "get_thread_area", 116 "gettid", 117 "gettimeofday", 118 "getuid", 119 "getuid32", 120 "getxattr", 121 "inotify_add_watch", 122 "inotify_init", 123 "inotify_init1", 124 "inotify_rm_watch", 125 "io_cancel", 126 "ioctl", 127 "io_destroy", 128 "io_getevents", 129 "io_pgetevents", 130 "io_pgetevents_time64", 131 "ioprio_get", 132 "ioprio_set", 133 "io_setup", 134 "io_submit", 135 "io_uring_enter", 136 "io_uring_register", 137 "io_uring_setup", 138 "ipc", 139 "kill", 140 "lchown", 141 "lchown32", 142 "lgetxattr", 143 "link", 144 "linkat", 145 "listen", 146 "listxattr", 147 "llistxattr", 148 "_llseek", 149 "lremovexattr", 150 "lseek", 151 "lsetxattr", 152 "lstat", 153 "lstat64", 154 "madvise", 155 "membarrier", 156 "memfd_create", 157 "mincore", 158 "mkdir", 159 "mkdirat", 160 "mknod", 161 "mknodat", 162 "mlock", 163 "mlock2", 164 "mlockall", 165 "mmap", 166 "mmap2", 167 "modify_ldt", 168 "mprotect", 169 "mq_getsetattr", 170 "mq_notify", 171 "mq_open", 172 "mq_timedreceive", 173 "mq_timedreceive_time64", 174 "mq_timedsend", 175 "mq_timedsend_time64", 176 "mq_unlink", 177 "mremap", 178 "msgctl", 179 "msgget", 180 "msgrcv", 181 "msgsnd", 182 "msync", 183 "munlock", 184 "munlockall", 185 "munmap", 186 "nanosleep", 187 "newfstatat", 188 "_newselect", 189 "open", 190 "openat", 191 "openat2", 192 "pause", 193 "pidfd_open", 194 "pidfd_send_signal", 195 "pipe", 196 "pipe2", 197 "poll", 198 "ppoll", 199 "ppoll_time64", 200 "prctl", 201 "pread64", 202 "preadv", 203 "preadv2", 204 "prlimit64", 205 "pselect6", 206 "pselect6_time64", 207 "pwrite64", 208 "pwritev", 209 "pwritev2", 210 "read", 211 "readahead", 212 "readlink", 213 "readlinkat", 214 "readv", 215 "recv", 216 "recvfrom", 217 "recvmmsg", 218 "recvmmsg_time64", 219 "recvmsg", 220 "remap_file_pages", 221 "removexattr", 222 "rename", 223 "renameat", 224 "renameat2", 225 "restart_syscall", 226 "rmdir", 227 "rseq", 228 "rt_sigaction", 229 "rt_sigpending", 230 "rt_sigprocmask", 231 "rt_sigqueueinfo", 232 "rt_sigreturn", 233 "rt_sigsuspend", 234 "rt_sigtimedwait", 235 "rt_sigtimedwait_time64", 236 "rt_tgsigqueueinfo", 237 "sched_getaffinity", 238 "sched_getattr", 239 "sched_getparam", 240 "sched_get_priority_max", 241 "sched_get_priority_min", 242 "sched_getscheduler", 243 "sched_rr_get_interval", 244 "sched_rr_get_interval_time64", 245 "sched_setaffinity", 246 "sched_setattr", 247 "sched_setparam", 248 "sched_setscheduler", 249 "sched_yield", 250 "seccomp", 251 "select", 252 "semctl", 253 "semget", 254 "semop", 255 "semtimedop", 256 "semtimedop_time64", 257 "send", 258 "sendfile", 259 "sendfile64", 260 "sendmmsg", 261 "sendmsg", 262 "sendto", 263 "setfsgid", 264 "setfsgid32", 265 "setfsuid", 266 "setfsuid32", 267 "setgid", 268 "setgid32", 269 "setgroups", 270 "setgroups32", 271 "setitimer", 272 "setpgid", 273 "setpriority", 274 "setregid", 275 "setregid32", 276 "setresgid", 277 "setresgid32", 278 "setresuid", 279 "setresuid32", 280 "setreuid", 281 "setreuid32", 282 "setrlimit", 283 "set_robust_list", 284 "setsid", 285 "setsockopt", 286 "set_thread_area", 287 "set_tid_address", 288 "setuid", 289 "setuid32", 290 "setxattr", 291 "shmat", 292 "shmctl", 293 "shmdt", 294 "shmget", 295 "shutdown", 296 "sigaltstack", 297 "signalfd", 298 "signalfd4", 299 "sigprocmask", 300 "sigreturn", 301 "socketcall", 302 "socketpair", 303 "splice", 304 "stat", 305 "stat64", 306 "statfs", 307 "statfs64", 308 "statx", 309 "symlink", 310 "symlinkat", 311 "sync", 312 "sync_file_range", 313 "syncfs", 314 "sysinfo", 315 "tee", 316 "tgkill", 317 "time", 318 "timer_create", 319 "timer_delete", 320 "timer_getoverrun", 321 "timer_gettime", 322 "timer_gettime64", 323 "timer_settime", 324 "timer_settime64", 325 "timerfd_create", 326 "timerfd_gettime", 327 "timerfd_gettime64", 328 "timerfd_settime", 329 "timerfd_settime64", 330 "times", 331 "tkill", 332 "truncate", 333 "truncate64", 334 "ugetrlimit", 335 "umask", 336 "uname", 337 "unlink", 338 "unlinkat", 339 "utime", 340 "utimensat", 341 "utimensat_time64", 342 "utimes", 343 "vfork", 344 "vmsplice", 345 "wait4", 346 "waitid", 347 "waitpid", 348 "write", 349 "writev" 350 ] 351 }, 352 { 353 "action": "SCMP_ACT_ALLOW", 354 "names": [ 355 "dup3" 356 ], 357 "args": [ 358 { 359 "index": 0, 360 "value": 1, 361 "op": "SCMP_CMP_EQ" 362 } 363 ] 364 }, 365 { 366 "action": "SCMP_ACT_ALLOW", 367 "names": [ 368 "dup3" 369 ], 370 "args": [ 371 { 372 "index": 0, 373 "value": 2, 374 "op": "SCMP_CMP_GT" 375 } 376 ] 377 }, 378 { 379 "action": "SCMP_ACT_ALLOW", 380 "names": [ 381 "ftruncate", 382 "ftruncate64" 383 ], 384 "args": [ 385 { 386 "index": 0, 387 "value": 123456789, 388 "op": "SCMP_CMP_EQ" 389 }, 390 { 391 "index": 1, 392 "value": 1337, 393 "op": "SCMP_CMP_EQ" 394 } 395 ] 396 }, 397 { 398 "action": "SCMP_ACT_ALLOW", 399 "names": [ 400 "process_vm_readv" 401 ], 402 "args": [ 403 { 404 "index": 0, 405 "value": 100, 406 "op": "SCMP_CMP_EQ" 407 }, 408 { 409 "index": 0, 410 "value": 9001, 411 "op": "SCMP_CMP_EQ" 412 } 413 ] 414 }, 415 { 416 "action": "SCMP_ACT_ERRNO", 417 "errnoRet": 55, 418 "names": [ 419 "process_vm_writev" 420 ], 421 "args": [ 422 { 423 "index": 0, 424 "value": 1337, 425 "op": "SCMP_CMP_EQ" 426 }, 427 { 428 "index": 0, 429 "value": 2020, 430 "op": "SCMP_CMP_EQ" 431 } 432 ] 433 }, 434 { 435 "action": "SCMP_ACT_ALLOW", 436 "names": [ 437 "clone" 438 ], 439 "args": [ 440 { 441 "index": 0, 442 "value": 2114060288, 443 "op": "SCMP_CMP_MASKED_EQ" 444 } 445 ] 446 }, 447 { 448 "action": "SCMP_ACT_ALLOW", 449 "names": [ 450 "socket" 451 ], 452 "args": [ 453 { 454 "index": 2, 455 "value": 3840, 456 "valueTwo": 0, 457 "op": "SCMP_CMP_MASKED_EQ" 458 } 459 ] 460 } 461 ] 462 } 463