mirror of
https://github.com/openwrt/openwrt.git
synced 2024-12-30 18:47:06 +00:00
01b83040d3
procd-seccomp switched to OCI-compliant seccomp parser instead of our (legacy, OpenWrt-specific) format. Convert ruleset to new format. Signed-off-by: Daniel Golle <daniel@makrotopia.org>
44 lines
636 B
JSON
44 lines
636 B
JSON
{
|
|
"defaultAction": "SCMP_ACT_KILL_PROCESS",
|
|
"syscalls": [
|
|
{
|
|
"names": [
|
|
"read",
|
|
"write",
|
|
"open",
|
|
"close",
|
|
"time",
|
|
"brk",
|
|
"ioctl",
|
|
"uname",
|
|
"bind",
|
|
"connect",
|
|
"getsockname",
|
|
"recvmsg",
|
|
"recvfrom",
|
|
"sendmsg",
|
|
"sendto",
|
|
"setsockopt",
|
|
"socket",
|
|
"pipe",
|
|
"poll",
|
|
"fcntl64",
|
|
"epoll_create",
|
|
"epoll_create1",
|
|
"epoll_ctl",
|
|
"epoll_wait",
|
|
"epoll_pwait",
|
|
"rt_sigaction",
|
|
"sigreturn",
|
|
"rt_sigreturn",
|
|
"rt_sigprocmask",
|
|
"exit_group",
|
|
"exit",
|
|
"fcntl",
|
|
"clock_gettime"
|
|
],
|
|
"action": "SCMP_ACT_ALLOW"
|
|
}
|
|
]
|
|
}
|