kotovalexarian-likes-github
/
moby--moby
mirror of https://github.com/moby/moby.git
1
0
Fork 0
Code Releases Activity
moby--moby/profiles/seccomp
History
Justin Cormack 96896f2d0b Add new syscalls in libseccomp 2.3.0 to seccomp default profile 
This adds the following new syscalls that are supported in libseccomp 2.3.0,
including calls added up to kernel 4.5-rc4:
mlock2 - same as mlock but with a flag
copy_file_range - copy file contents, like splice but with reflink support.

The following are not added, and mentioned in docs:
userfaultfd - userspace page fault handling, mainly designed for process migration

The following are not added, only apply to less common architectures:
switch_endian
membarrier
breakpoint
set_tls
I plan to review the other architectures, some of which can now have seccomp
enabled in the build as they are now supported.

Signed-off-by: Justin Cormack <justin.cormack@docker.com>
 		2016-03-16 21:17:32 +00:00
..
fixtures move default seccomp profile into package 2016-01-21 16:55:29 -08:00
default.json Add new syscalls in libseccomp 2.3.0 to seccomp default profile 2016-03-16 21:17:32 +00:00
generate.go generate seccomp profile convert type 2016-02-19 13:32:54 -08:00
seccomp.go fix some typos. 2016-03-10 10:09:27 +08:00
seccomp_default.go Add new syscalls in libseccomp 2.3.0 to seccomp default profile 2016-03-16 21:17:32 +00:00
seccomp_test.go add seccomp default profile fix tests 2016-02-19 13:32:54 -08:00
seccomp_unsupported.go generate seccomp profile convert type 2016-02-19 13:32:54 -08:00